./Ultimate.py --spec ../../sv-benchmarks/c/properties/valid-memsafety.prp --file ../../sv-benchmarks/c/memsafety/test-0234-1.i --full-output --architecture 32bit -------------------------------------------------------------------------------- Checking for memory safety (deref-memtrack) Using default analysis Version 826ab2ba Calling Ultimate with: /usr/bin/java -Dosgi.configuration.area=/tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/data/config -Xmx15G -Xms4m -jar /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/plugins/org.eclipse.equinox.launcher_1.6.800.v20240513-1750.jar -data @noDefault -ultimatedata /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/data -tc /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/config/TaipanMemDerefMemtrack.xml -i ../../sv-benchmarks/c/memsafety/test-0234-1.i -s /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/config/svcomp-DerefFreeMemtrack-32bit-Taipan_Default.epf --cacsl2boogietranslator.entry.function main --witnessprinter.witness.directory /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E --witnessprinter.witness.filename witness --witnessprinter.write.witness.besides.input.file false --witnessprinter.graph.data.specification CHECK( init(main()), LTL(G valid-free) ) CHECK( init(main()), LTL(G valid-deref) ) CHECK( init(main()), LTL(G valid-memtrack) ) --witnessprinter.graph.data.producer Taipan --witnessprinter.graph.data.architecture 32bit --witnessprinter.graph.data.programhash 2e40f9e7b474ba5b84186650c7060a1f3eed5394bab52ac2eaa493135efa417c --- Real Ultimate output --- This is Ultimate 0.3.0-dev-826ab2b [2024-11-14 04:17:02,588 INFO L188 SettingsManager]: Resetting all preferences to default values... [2024-11-14 04:17:02,689 INFO L114 SettingsManager]: Loading settings from /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/config/svcomp-DerefFreeMemtrack-32bit-Taipan_Default.epf [2024-11-14 04:17:02,695 WARN L101 SettingsManager]: Preference file contains the following unknown settings: [2024-11-14 04:17:02,696 WARN L103 SettingsManager]: * de.uni_freiburg.informatik.ultimate.core.Log level for class [2024-11-14 04:17:02,746 INFO L130 SettingsManager]: Preferences different from defaults after loading the file: [2024-11-14 04:17:02,747 INFO L151 SettingsManager]: Preferences of UltimateCore differ from their defaults: [2024-11-14 04:17:02,747 INFO L153 SettingsManager]: * Log level for class=de.uni_freiburg.informatik.ultimate.lib.smtlibutils.quantifier.QuantifierPusher=ERROR; [2024-11-14 04:17:02,748 INFO L151 SettingsManager]: Preferences of Boogie Procedure Inliner differ from their defaults: [2024-11-14 04:17:02,748 INFO L153 SettingsManager]: * Ignore calls to procedures called more than once=ONLY_FOR_SEQUENTIAL_PROGRAMS [2024-11-14 04:17:02,748 INFO L153 SettingsManager]: * User list type=DISABLED [2024-11-14 04:17:02,748 INFO L151 SettingsManager]: Preferences of Abstract Interpretation differ from their defaults: [2024-11-14 04:17:02,748 INFO L153 SettingsManager]: * Explicit value domain=true [2024-11-14 04:17:02,748 INFO L153 SettingsManager]: * Abstract domain for RCFG-of-the-future=PoormanAbstractDomain [2024-11-14 04:17:02,748 INFO L153 SettingsManager]: * Octagon Domain=false [2024-11-14 04:17:02,752 INFO L153 SettingsManager]: * Abstract domain=CompoundDomain [2024-11-14 04:17:02,752 INFO L153 SettingsManager]: * Check feasibility of abstract posts with an SMT solver=true [2024-11-14 04:17:02,753 INFO L153 SettingsManager]: * Use the RCFG-of-the-future interface=true [2024-11-14 04:17:02,754 INFO L153 SettingsManager]: * Interval Domain=false [2024-11-14 04:17:02,754 INFO L151 SettingsManager]: Preferences of Sifa differ from their defaults: [2024-11-14 04:17:02,754 INFO L153 SettingsManager]: * Call Summarizer=TopInputCallSummarizer [2024-11-14 04:17:02,754 INFO L153 SettingsManager]: * Simplification Technique=POLY_PAC [2024-11-14 04:17:02,755 INFO L151 SettingsManager]: Preferences of BlockEncodingV2 differ from their defaults: [2024-11-14 04:17:02,755 INFO L153 SettingsManager]: * Create parallel compositions if possible=false [2024-11-14 04:17:02,756 INFO L151 SettingsManager]: Preferences of CACSL2BoogieTranslator differ from their defaults: [2024-11-14 04:17:02,756 INFO L153 SettingsManager]: * sizeof long=4 [2024-11-14 04:17:02,756 INFO L153 SettingsManager]: * Overapproximate operations on floating types=true [2024-11-14 04:17:02,757 INFO L153 SettingsManager]: * sizeof POINTER=4 [2024-11-14 04:17:02,757 INFO L153 SettingsManager]: * Check division by zero=IGNORE [2024-11-14 04:17:02,757 INFO L153 SettingsManager]: * Check for the main procedure if all allocated memory was freed=true [2024-11-14 04:17:02,757 INFO L153 SettingsManager]: * Bitprecise bitfields=true [2024-11-14 04:17:02,757 INFO L153 SettingsManager]: * SV-COMP memtrack compatibility mode=true [2024-11-14 04:17:02,757 INFO L153 SettingsManager]: * If two pointers are subtracted or compared they have the same base address=IGNORE [2024-11-14 04:17:02,757 INFO L153 SettingsManager]: * Adapt memory model on pointer casts if necessary=true [2024-11-14 04:17:02,758 INFO L153 SettingsManager]: * Allow undefined functions=false [2024-11-14 04:17:02,758 INFO L153 SettingsManager]: * Check unreachability of reach_error function=false [2024-11-14 04:17:02,759 INFO L153 SettingsManager]: * sizeof long double=12 [2024-11-14 04:17:02,759 INFO L153 SettingsManager]: * Use constant arrays=true [2024-11-14 04:17:02,759 INFO L151 SettingsManager]: Preferences of RCFGBuilder differ from their defaults: [2024-11-14 04:17:02,759 INFO L153 SettingsManager]: * Only consider context switches at boundaries of atomic blocks=true [2024-11-14 04:17:02,760 INFO L153 SettingsManager]: * SMT solver=External_DefaultMode [2024-11-14 04:17:02,760 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2024-11-14 04:17:02,760 INFO L151 SettingsManager]: Preferences of TraceAbstraction differ from their defaults: [2024-11-14 04:17:02,760 INFO L153 SettingsManager]: * Compute Interpolants along a Counterexample=FPandBP [2024-11-14 04:17:02,760 INFO L153 SettingsManager]: * Trace refinement strategy=SIFA_TAIPAN [2024-11-14 04:17:02,760 INFO L153 SettingsManager]: * Command for external solver=z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in [2024-11-14 04:17:02,761 INFO L153 SettingsManager]: * Apply one-shot large block encoding in concurrent analysis=false [2024-11-14 04:17:02,761 INFO L153 SettingsManager]: * Trace refinement exception blacklist=NONE [2024-11-14 04:17:02,761 INFO L153 SettingsManager]: * SMT solver=External_ModelsAndUnsatCoreMode [2024-11-14 04:17:02,761 INFO L153 SettingsManager]: * Abstract interpretation Mode=USE_PREDICATES Applying setting for plugin de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator: Entry function -> main Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness directory -> /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Witness filename -> witness Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Write witness besides input file -> false Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data specification -> CHECK( init(main()), LTL(G valid-free) ) CHECK( init(main()), LTL(G valid-deref) ) CHECK( init(main()), LTL(G valid-memtrack) ) Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data producer -> Taipan Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data architecture -> 32bit Applying setting for plugin de.uni_freiburg.informatik.ultimate.witnessprinter: Graph data programhash -> 2e40f9e7b474ba5b84186650c7060a1f3eed5394bab52ac2eaa493135efa417c [2024-11-14 04:17:03,136 INFO L75 nceAwareModelManager]: Repository-Root is: /tmp [2024-11-14 04:17:03,152 INFO L261 ainManager$Toolchain]: [Toolchain 1]: Applicable parser(s) successfully (re)initialized [2024-11-14 04:17:03,156 INFO L217 ainManager$Toolchain]: [Toolchain 1]: Toolchain selected. [2024-11-14 04:17:03,157 INFO L270 PluginConnector]: Initializing CDTParser... [2024-11-14 04:17:03,158 INFO L274 PluginConnector]: CDTParser initialized [2024-11-14 04:17:03,159 INFO L431 ainManager$Toolchain]: [Toolchain 1]: Parsing single file: /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/../../sv-benchmarks/c/memsafety/test-0234-1.i Unable to find full path for "g++" [2024-11-14 04:17:05,508 INFO L533 CDTParser]: Created temporary CDT project at NULL [2024-11-14 04:17:05,868 INFO L384 CDTParser]: Found 1 translation units. [2024-11-14 04:17:05,869 INFO L180 CDTParser]: Scanning /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/sv-benchmarks/c/memsafety/test-0234-1.i [2024-11-14 04:17:05,886 INFO L427 CDTParser]: About to delete temporary CDT project at /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/data/49f138bb2/a7bdeb365a6642afbb743b2a7d1c83da/FLAGf7754f36b [2024-11-14 04:17:05,904 INFO L435 CDTParser]: Successfully deleted /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/data/49f138bb2/a7bdeb365a6642afbb743b2a7d1c83da [2024-11-14 04:17:05,907 INFO L299 ainManager$Toolchain]: ####################### [Toolchain 1] ####################### [2024-11-14 04:17:05,909 INFO L133 ToolchainWalker]: Walking toolchain with 6 elements. [2024-11-14 04:17:05,911 INFO L112 PluginConnector]: ------------------------CACSL2BoogieTranslator---------------------------- [2024-11-14 04:17:05,911 INFO L270 PluginConnector]: Initializing CACSL2BoogieTranslator... [2024-11-14 04:17:05,917 INFO L274 PluginConnector]: CACSL2BoogieTranslator initialized [2024-11-14 04:17:05,918 INFO L184 PluginConnector]: Executing the observer ACSLObjectContainerObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 14.11 04:17:05" (1/1) ... [2024-11-14 04:17:05,919 INFO L204 PluginConnector]: Invalid model from CACSL2BoogieTranslator for observer de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator.ACSLObjectContainerObserver@39fa898 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 04:17:05, skipping insertion in model container [2024-11-14 04:17:05,920 INFO L184 PluginConnector]: Executing the observer CACSL2BoogieTranslatorObserver from plugin CACSL2BoogieTranslator for "CDTParser AST 14.11 04:17:05" (1/1) ... [2024-11-14 04:17:05,958 INFO L175 MainTranslator]: Built tables and reachable declarations [2024-11-14 04:17:06,583 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-14 04:17:06,597 INFO L200 MainTranslator]: Completed pre-run [2024-11-14 04:17:06,677 INFO L210 PostProcessor]: Analyzing one entry point: main [2024-11-14 04:17:06,729 INFO L204 MainTranslator]: Completed translation [2024-11-14 04:17:06,729 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 04:17:06 WrapperNode [2024-11-14 04:17:06,730 INFO L131 PluginConnector]: ------------------------ END CACSL2BoogieTranslator---------------------------- [2024-11-14 04:17:06,731 INFO L112 PluginConnector]: ------------------------Boogie Procedure Inliner---------------------------- [2024-11-14 04:17:06,731 INFO L270 PluginConnector]: Initializing Boogie Procedure Inliner... [2024-11-14 04:17:06,731 INFO L274 PluginConnector]: Boogie Procedure Inliner initialized [2024-11-14 04:17:06,739 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 04:17:06" (1/1) ... [2024-11-14 04:17:06,755 INFO L184 PluginConnector]: Executing the observer Inliner from plugin Boogie Procedure Inliner for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 04:17:06" (1/1) ... [2024-11-14 04:17:06,783 INFO L138 Inliner]: procedures = 188, calls = 60, calls flagged for inlining = 14, calls inlined = 14, statements flattened = 203 [2024-11-14 04:17:06,783 INFO L131 PluginConnector]: ------------------------ END Boogie Procedure Inliner---------------------------- [2024-11-14 04:17:06,784 INFO L112 PluginConnector]: ------------------------Boogie Preprocessor---------------------------- [2024-11-14 04:17:06,784 INFO L270 PluginConnector]: Initializing Boogie Preprocessor... [2024-11-14 04:17:06,784 INFO L274 PluginConnector]: Boogie Preprocessor initialized [2024-11-14 04:17:06,792 INFO L184 PluginConnector]: Executing the observer EnsureBoogieModelObserver from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 04:17:06" (1/1) ... [2024-11-14 04:17:06,792 INFO L184 PluginConnector]: Executing the observer TypeChecker from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 04:17:06" (1/1) ... [2024-11-14 04:17:06,796 INFO L184 PluginConnector]: Executing the observer ConstExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 04:17:06" (1/1) ... [2024-11-14 04:17:06,796 INFO L184 PluginConnector]: Executing the observer StructExpander from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 04:17:06" (1/1) ... [2024-11-14 04:17:06,807 INFO L184 PluginConnector]: Executing the observer UnstructureCode from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 04:17:06" (1/1) ... [2024-11-14 04:17:06,812 INFO L184 PluginConnector]: Executing the observer FunctionInliner from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 04:17:06" (1/1) ... [2024-11-14 04:17:06,814 INFO L184 PluginConnector]: Executing the observer LTLStepAnnotator from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 04:17:06" (1/1) ... [2024-11-14 04:17:06,815 INFO L184 PluginConnector]: Executing the observer BoogieSymbolTableConstructor from plugin Boogie Preprocessor for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 04:17:06" (1/1) ... [2024-11-14 04:17:06,818 INFO L131 PluginConnector]: ------------------------ END Boogie Preprocessor---------------------------- [2024-11-14 04:17:06,819 INFO L112 PluginConnector]: ------------------------RCFGBuilder---------------------------- [2024-11-14 04:17:06,820 INFO L270 PluginConnector]: Initializing RCFGBuilder... [2024-11-14 04:17:06,820 INFO L274 PluginConnector]: RCFGBuilder initialized [2024-11-14 04:17:06,821 INFO L184 PluginConnector]: Executing the observer RCFGBuilderObserver from plugin RCFGBuilder for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 04:17:06" (1/1) ... [2024-11-14 04:17:06,828 INFO L173 SolverBuilder]: Constructing external solver with command: z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 [2024-11-14 04:17:06,845 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 04:17:06,861 INFO L229 MonitoredProcess]: Starting monitored process 1 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (exit command is (exit), workingDir is null) [2024-11-14 04:17:06,867 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 SMTLIB2_COMPLIANT=true -memory:2024 -smt2 -in -t:2000 (1)] Waiting until timeout for monitored process [2024-11-14 04:17:06,895 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocOnHeap [2024-11-14 04:17:06,895 INFO L130 BoogieDeclarations]: Found specification of procedure #Ultimate.allocInit [2024-11-14 04:17:06,895 INFO L130 BoogieDeclarations]: Found specification of procedure write~$Pointer$ [2024-11-14 04:17:06,896 INFO L130 BoogieDeclarations]: Found specification of procedure read~$Pointer$ [2024-11-14 04:17:06,896 INFO L130 BoogieDeclarations]: Found specification of procedure zalloc_or_die [2024-11-14 04:17:06,896 INFO L138 BoogieDeclarations]: Found implementation of procedure zalloc_or_die [2024-11-14 04:17:06,896 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.dealloc [2024-11-14 04:17:06,897 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~$Pointer$ [2024-11-14 04:17:06,897 INFO L130 BoogieDeclarations]: Found specification of procedure write~init~int [2024-11-14 04:17:06,897 INFO L130 BoogieDeclarations]: Found specification of procedure ULTIMATE.start [2024-11-14 04:17:06,897 INFO L138 BoogieDeclarations]: Found implementation of procedure ULTIMATE.start [2024-11-14 04:17:07,070 INFO L238 CfgBuilder]: Building ICFG [2024-11-14 04:17:07,072 INFO L264 CfgBuilder]: Building CFG for each procedure with an implementation [2024-11-14 04:17:07,850 INFO L? ?]: Removed 197 outVars from TransFormulas that were not future-live. [2024-11-14 04:17:07,850 INFO L287 CfgBuilder]: Performing block encoding [2024-11-14 04:17:07,972 INFO L311 CfgBuilder]: Using the 1 location(s) as analysis (start of procedure ULTIMATE.start) [2024-11-14 04:17:07,972 INFO L316 CfgBuilder]: Removed 10 assume(true) statements. [2024-11-14 04:17:07,973 INFO L201 PluginConnector]: Adding new model de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 14.11 04:17:07 BoogieIcfgContainer [2024-11-14 04:17:07,973 INFO L131 PluginConnector]: ------------------------ END RCFGBuilder---------------------------- [2024-11-14 04:17:07,976 INFO L112 PluginConnector]: ------------------------TraceAbstraction---------------------------- [2024-11-14 04:17:07,976 INFO L270 PluginConnector]: Initializing TraceAbstraction... [2024-11-14 04:17:07,983 INFO L274 PluginConnector]: TraceAbstraction initialized [2024-11-14 04:17:07,983 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "CDTParser AST 14.11 04:17:05" (1/3) ... [2024-11-14 04:17:07,984 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@58664ef3 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 14.11 04:17:07, skipping insertion in model container [2024-11-14 04:17:07,984 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.cacsl2boogietranslator AST 14.11 04:17:06" (2/3) ... [2024-11-14 04:17:07,984 INFO L204 PluginConnector]: Invalid model from TraceAbstraction for observer de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction.TraceAbstractionObserver@58664ef3 and model type de.uni_freiburg.informatik.ultimate.plugins.generator.traceabstraction AST 14.11 04:17:07, skipping insertion in model container [2024-11-14 04:17:07,985 INFO L184 PluginConnector]: Executing the observer TraceAbstractionObserver from plugin TraceAbstraction for "de.uni_freiburg.informatik.ultimate.plugins.generator.rcfgbuilder CFG 14.11 04:17:07" (3/3) ... [2024-11-14 04:17:07,986 INFO L112 eAbstractionObserver]: Analyzing ICFG test-0234-1.i [2024-11-14 04:17:08,007 INFO L217 ceAbstractionStarter]: Automizer settings: Hoare:None NWA Interpolation:FPandBP Determinization: PREDICATE_ABSTRACTION [2024-11-14 04:17:08,009 INFO L154 ceAbstractionStarter]: Applying trace abstraction to ICFG test-0234-1.i that has 2 procedures, 159 locations, 1 initial locations, 11 loop locations, and 75 error locations. [2024-11-14 04:17:08,070 INFO L332 AbstractCegarLoop]: ======== Iteration 0 == of CEGAR loop == AllErrorsAtOnce ======== [2024-11-14 04:17:08,092 INFO L333 AbstractCegarLoop]: Settings: SEPARATE_VIOLATION_CHECK=true, mInterprocedural=true, mMaxIterations=1000000, mWatchIteration=1000000, mArtifact=RCFG, mInterpolation=FPandBP, mInterpolantAutomaton=STRAIGHT_LINE, mDumpAutomata=false, mAutomataFormat=ATS_NUMERATE, mDumpPath=., mDeterminiation=PREDICATE_ABSTRACTION, mMinimize=MINIMIZE_SEVPA, mAutomataTypeConcurrency=FINITE_AUTOMATA, mHoareTripleChecks=INCREMENTAL, mHoareAnnotationPositions=None, mDumpOnlyReuseAutomata=false, mLimitTraceHistogram=0, mErrorLocTimeLimit=0, mLimitPathProgramCount=0, mCollectInterpolantStatistics=true, mHeuristicEmptinessCheck=false, mHeuristicEmptinessCheckAStarHeuristic=ZERO, mHeuristicEmptinessCheckAStarHeuristicRandomSeed=1337, mHeuristicEmptinessCheckSmtFeatureScoringMethod=DAGSIZE, mSMTFeatureExtraction=false, mSMTFeatureExtractionDumpPath=., mOverrideInterpolantAutomaton=false, mMcrInterpolantMethod=WP, mPorIndependenceSettings=[Lde.uni_freiburg.informatik.ultimate.lib.tracecheckerutils.partialorder.independence.IndependenceSettings;@74fe311d, mLbeIndependenceSettings=[IndependenceType=SEMANTIC, AbstractionType=NONE, UseConditional=false, UseSemiCommutativity=true, Solver=Z3, SolverTimeout=1000ms] [2024-11-14 04:17:08,093 INFO L334 AbstractCegarLoop]: Starting to check reachability of 75 error locations. [2024-11-14 04:17:08,099 INFO L276 IsEmpty]: Start isEmpty. Operand has 159 states, 76 states have (on average 2.263157894736842) internal successors, (172), 151 states have internal predecessors, (172), 6 states have call successors, (6), 1 states have call predecessors, (6), 1 states have return successors, (6), 6 states have call predecessors, (6), 6 states have call successors, (6) [2024-11-14 04:17:08,108 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 4 [2024-11-14 04:17:08,108 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 04:17:08,109 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1] [2024-11-14 04:17:08,110 INFO L396 AbstractCegarLoop]: === Iteration 1 === Targeting ULTIMATE.startErr32REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2024-11-14 04:17:08,117 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 04:17:08,118 INFO L85 PathProgramCache]: Analyzing trace with hash 350315, now seen corresponding path program 1 times [2024-11-14 04:17:08,127 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 04:17:08,130 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1034120405] [2024-11-14 04:17:08,130 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:17:08,131 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 04:17:08,238 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:17:08,292 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-14 04:17:08,293 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 04:17:08,293 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1034120405] [2024-11-14 04:17:08,294 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1034120405] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 04:17:08,294 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 04:17:08,294 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2024-11-14 04:17:08,296 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1271788271] [2024-11-14 04:17:08,297 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 04:17:08,302 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 2 states [2024-11-14 04:17:08,302 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 04:17:08,333 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 2 interpolants. [2024-11-14 04:17:08,334 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-14 04:17:08,337 INFO L87 Difference]: Start difference. First operand has 159 states, 76 states have (on average 2.263157894736842) internal successors, (172), 151 states have internal predecessors, (172), 6 states have call successors, (6), 1 states have call predecessors, (6), 1 states have return successors, (6), 6 states have call predecessors, (6), 6 states have call successors, (6) Second operand has 2 states, 2 states have (on average 1.5) internal successors, (3), 2 states have internal predecessors, (3), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-11-14 04:17:08,451 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 04:17:08,452 INFO L93 Difference]: Finished difference Result 159 states and 174 transitions. [2024-11-14 04:17:08,453 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 2 states. [2024-11-14 04:17:08,455 INFO L78 Accepts]: Start accepts. Automaton has has 2 states, 2 states have (on average 1.5) internal successors, (3), 2 states have internal predecessors, (3), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 3 [2024-11-14 04:17:08,455 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 04:17:08,463 INFO L225 Difference]: With dead ends: 159 [2024-11-14 04:17:08,463 INFO L226 Difference]: Without dead ends: 158 [2024-11-14 04:17:08,465 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 2 SyntacticMatches, 0 SemanticMatches, 0 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=1, Invalid=1, Unknown=0, NotChecked=0, Total=2 [2024-11-14 04:17:08,470 INFO L432 NwaCegarLoop]: 150 mSDtfsCounter, 0 mSDsluCounter, 0 mSDsCounter, 0 mSdLazyCounter, 24 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 0 SdHoareTripleChecker+Valid, 150 SdHoareTripleChecker+Invalid, 24 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 24 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-14 04:17:08,471 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [0 Valid, 150 Invalid, 24 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 24 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-14 04:17:08,494 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 158 states. [2024-11-14 04:17:08,527 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 158 to 158. [2024-11-14 04:17:08,528 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 158 states, 76 states have (on average 2.1184210526315788) internal successors, (161), 150 states have internal predecessors, (161), 6 states have call successors, (6), 1 states have call predecessors, (6), 1 states have return successors, (6), 6 states have call predecessors, (6), 6 states have call successors, (6) [2024-11-14 04:17:08,534 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 158 states to 158 states and 173 transitions. [2024-11-14 04:17:08,536 INFO L78 Accepts]: Start accepts. Automaton has 158 states and 173 transitions. Word has length 3 [2024-11-14 04:17:08,536 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 04:17:08,536 INFO L471 AbstractCegarLoop]: Abstraction has 158 states and 173 transitions. [2024-11-14 04:17:08,536 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 2 states, 2 states have (on average 1.5) internal successors, (3), 2 states have internal predecessors, (3), 0 states have call successors, (0), 0 states have call predecessors, (0), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-11-14 04:17:08,537 INFO L276 IsEmpty]: Start isEmpty. Operand 158 states and 173 transitions. [2024-11-14 04:17:08,537 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 6 [2024-11-14 04:17:08,537 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 04:17:08,537 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1] [2024-11-14 04:17:08,537 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable0 [2024-11-14 04:17:08,538 INFO L396 AbstractCegarLoop]: === Iteration 2 === Targeting zalloc_or_dieErr0ASSERT_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2024-11-14 04:17:08,538 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 04:17:08,538 INFO L85 PathProgramCache]: Analyzing trace with hash 332944560, now seen corresponding path program 1 times [2024-11-14 04:17:08,539 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 04:17:08,539 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1053174144] [2024-11-14 04:17:08,539 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:17:08,539 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 04:17:08,587 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:17:08,728 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-14 04:17:08,729 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 04:17:08,729 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1053174144] [2024-11-14 04:17:08,730 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1053174144] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 04:17:08,730 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 04:17:08,730 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [2] imperfect sequences [] total 2 [2024-11-14 04:17:08,730 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1929171922] [2024-11-14 04:17:08,730 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 04:17:08,732 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 3 states [2024-11-14 04:17:08,732 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 04:17:08,733 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 3 interpolants. [2024-11-14 04:17:08,733 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-14 04:17:08,734 INFO L87 Difference]: Start difference. First operand 158 states and 173 transitions. Second operand has 3 states, 2 states have (on average 2.0) internal successors, (4), 3 states have internal predecessors, (4), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-11-14 04:17:08,941 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 04:17:08,941 INFO L93 Difference]: Finished difference Result 157 states and 172 transitions. [2024-11-14 04:17:08,942 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 3 states. [2024-11-14 04:17:08,942 INFO L78 Accepts]: Start accepts. Automaton has has 3 states, 2 states have (on average 2.0) internal successors, (4), 3 states have internal predecessors, (4), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 5 [2024-11-14 04:17:08,942 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 04:17:08,944 INFO L225 Difference]: With dead ends: 157 [2024-11-14 04:17:08,944 INFO L226 Difference]: Without dead ends: 157 [2024-11-14 04:17:08,944 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 2 GetRequests, 1 SyntacticMatches, 0 SemanticMatches, 1 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=3, Invalid=3, Unknown=0, NotChecked=0, Total=6 [2024-11-14 04:17:08,945 INFO L432 NwaCegarLoop]: 145 mSDtfsCounter, 3 mSDsluCounter, 98 mSDsCounter, 0 mSdLazyCounter, 97 mSolverCounterSat, 0 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 3 SdHoareTripleChecker+Valid, 243 SdHoareTripleChecker+Invalid, 97 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 0 IncrementalHoareTripleChecker+Valid, 97 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-14 04:17:08,946 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [3 Valid, 243 Invalid, 97 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [0 Valid, 97 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-14 04:17:08,947 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 157 states. [2024-11-14 04:17:08,959 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 157 to 157. [2024-11-14 04:17:08,961 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 157 states, 76 states have (on average 2.1052631578947367) internal successors, (160), 149 states have internal predecessors, (160), 6 states have call successors, (6), 1 states have call predecessors, (6), 1 states have return successors, (6), 6 states have call predecessors, (6), 6 states have call successors, (6) [2024-11-14 04:17:08,964 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 157 states to 157 states and 172 transitions. [2024-11-14 04:17:08,964 INFO L78 Accepts]: Start accepts. Automaton has 157 states and 172 transitions. Word has length 5 [2024-11-14 04:17:08,964 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 04:17:08,965 INFO L471 AbstractCegarLoop]: Abstraction has 157 states and 172 transitions. [2024-11-14 04:17:08,965 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 3 states, 2 states have (on average 2.0) internal successors, (4), 3 states have internal predecessors, (4), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-11-14 04:17:08,965 INFO L276 IsEmpty]: Start isEmpty. Operand 157 states and 172 transitions. [2024-11-14 04:17:08,965 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 7 [2024-11-14 04:17:08,965 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 04:17:08,966 INFO L215 NwaCegarLoop]: trace histogram [1, 1, 1, 1, 1, 1] [2024-11-14 04:17:08,966 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable1 [2024-11-14 04:17:08,966 INFO L396 AbstractCegarLoop]: === Iteration 3 === Targeting zalloc_or_dieErr1ASSERT_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2024-11-14 04:17:08,967 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 04:17:08,967 INFO L85 PathProgramCache]: Analyzing trace with hash 1731347083, now seen corresponding path program 1 times [2024-11-14 04:17:08,967 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 04:17:08,967 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [363709998] [2024-11-14 04:17:08,968 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:17:08,968 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 04:17:08,999 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-11-14 04:17:09,002 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1867011712] [2024-11-14 04:17:09,002 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:17:09,002 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 04:17:09,003 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 04:17:09,005 INFO L229 MonitoredProcess]: Starting monitored process 2 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-14 04:17:09,011 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Waiting until timeout for monitored process [2024-11-14 04:17:09,137 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:17:09,140 INFO L255 TraceCheckSpWp]: Trace formula consists of 83 conjuncts, 24 conjuncts are in the unsatisfiable core [2024-11-14 04:17:09,146 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-14 04:17:09,296 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2024-11-14 04:17:09,338 INFO L134 CoverageAnalysis]: Checked inductivity of 0 backedges. 0 proven. 0 refuted. 0 times theorem prover too weak. 0 trivial. 0 not checked. [2024-11-14 04:17:09,338 INFO L307 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-14 04:17:09,338 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 04:17:09,338 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [363709998] [2024-11-14 04:17:09,339 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-11-14 04:17:09,339 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1867011712] [2024-11-14 04:17:09,339 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1867011712] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 04:17:09,339 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 04:17:09,341 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [3] imperfect sequences [] total 3 [2024-11-14 04:17:09,341 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [453987840] [2024-11-14 04:17:09,341 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 04:17:09,342 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 4 states [2024-11-14 04:17:09,342 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 04:17:09,342 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 4 interpolants. [2024-11-14 04:17:09,342 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=5, Invalid=7, Unknown=0, NotChecked=0, Total=12 [2024-11-14 04:17:09,343 INFO L87 Difference]: Start difference. First operand 157 states and 172 transitions. Second operand has 4 states, 3 states have (on average 1.6666666666666667) internal successors, (5), 3 states have internal predecessors, (5), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-11-14 04:17:09,617 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 04:17:09,617 INFO L93 Difference]: Finished difference Result 162 states and 177 transitions. [2024-11-14 04:17:09,618 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 4 states. [2024-11-14 04:17:09,618 INFO L78 Accepts]: Start accepts. Automaton has has 4 states, 3 states have (on average 1.6666666666666667) internal successors, (5), 3 states have internal predecessors, (5), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) Word has length 6 [2024-11-14 04:17:09,619 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 04:17:09,620 INFO L225 Difference]: With dead ends: 162 [2024-11-14 04:17:09,623 INFO L226 Difference]: Without dead ends: 162 [2024-11-14 04:17:09,623 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 6 GetRequests, 3 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 0 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=9, Invalid=11, Unknown=0, NotChecked=0, Total=20 [2024-11-14 04:17:09,625 INFO L432 NwaCegarLoop]: 140 mSDtfsCounter, 7 mSDsluCounter, 243 mSDsCounter, 0 mSdLazyCounter, 128 mSolverCounterSat, 4 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 7 SdHoareTripleChecker+Valid, 383 SdHoareTripleChecker+Invalid, 132 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 4 IncrementalHoareTripleChecker+Valid, 128 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.2s IncrementalHoareTripleChecker+Time [2024-11-14 04:17:09,625 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [7 Valid, 383 Invalid, 132 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [4 Valid, 128 Invalid, 0 Unknown, 0 Unchecked, 0.2s Time] [2024-11-14 04:17:09,626 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 162 states. [2024-11-14 04:17:09,646 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 162 to 162. [2024-11-14 04:17:09,647 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 162 states, 80 states have (on average 2.0625) internal successors, (165), 153 states have internal predecessors, (165), 6 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (6), 6 states have call predecessors, (6), 6 states have call successors, (6) [2024-11-14 04:17:09,651 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 162 states to 162 states and 177 transitions. [2024-11-14 04:17:09,651 INFO L78 Accepts]: Start accepts. Automaton has 162 states and 177 transitions. Word has length 6 [2024-11-14 04:17:09,654 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 04:17:09,655 INFO L471 AbstractCegarLoop]: Abstraction has 162 states and 177 transitions. [2024-11-14 04:17:09,655 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 4 states, 3 states have (on average 1.6666666666666667) internal successors, (5), 3 states have internal predecessors, (5), 1 states have call successors, (1), 1 states have call predecessors, (1), 0 states have return successors, (0), 0 states have call predecessors, (0), 0 states have call successors, (0) [2024-11-14 04:17:09,655 INFO L276 IsEmpty]: Start isEmpty. Operand 162 states and 177 transitions. [2024-11-14 04:17:09,656 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 46 [2024-11-14 04:17:09,656 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 04:17:09,656 INFO L215 NwaCegarLoop]: trace histogram [6, 6, 5, 5, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 04:17:09,683 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (2)] Forceful destruction successful, exit code 0 [2024-11-14 04:17:09,857 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable2,2 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 04:17:09,858 INFO L396 AbstractCegarLoop]: === Iteration 4 === Targeting zalloc_or_dieErr1ASSERT_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2024-11-14 04:17:09,858 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 04:17:09,858 INFO L85 PathProgramCache]: Analyzing trace with hash -133129875, now seen corresponding path program 1 times [2024-11-14 04:17:09,859 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 04:17:09,859 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [710891728] [2024-11-14 04:17:09,859 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:17:09,859 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 04:17:09,979 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-11-14 04:17:09,986 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1904655964] [2024-11-14 04:17:09,986 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:17:09,986 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 04:17:09,987 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 04:17:09,989 INFO L229 MonitoredProcess]: Starting monitored process 3 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-14 04:17:09,992 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Waiting until timeout for monitored process [2024-11-14 04:17:10,264 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:17:10,268 INFO L255 TraceCheckSpWp]: Trace formula consists of 455 conjuncts, 87 conjuncts are in the unsatisfiable core [2024-11-14 04:17:10,277 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-14 04:17:10,347 INFO L134 CoverageAnalysis]: Checked inductivity of 65 backedges. 47 proven. 0 refuted. 0 times theorem prover too weak. 18 trivial. 0 not checked. [2024-11-14 04:17:10,347 INFO L307 TraceCheckSpWp]: Omiting computation of backward sequence because forward sequence was already perfect [2024-11-14 04:17:10,347 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 04:17:10,347 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [710891728] [2024-11-14 04:17:10,347 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-11-14 04:17:10,347 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1904655964] [2024-11-14 04:17:10,347 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1904655964] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 04:17:10,348 INFO L185 FreeRefinementEngine]: Found 1 perfect and 0 imperfect interpolant sequences. [2024-11-14 04:17:10,348 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [5] imperfect sequences [] total 5 [2024-11-14 04:17:10,348 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1863600592] [2024-11-14 04:17:10,348 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 04:17:10,348 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 5 states [2024-11-14 04:17:10,348 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 04:17:10,349 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 5 interpolants. [2024-11-14 04:17:10,349 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=8, Invalid=12, Unknown=0, NotChecked=0, Total=20 [2024-11-14 04:17:10,350 INFO L87 Difference]: Start difference. First operand 162 states and 177 transitions. Second operand has 5 states, 4 states have (on average 6.0) internal successors, (24), 5 states have internal predecessors, (24), 2 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (5), 2 states have call predecessors, (5), 2 states have call successors, (5) [2024-11-14 04:17:10,507 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 04:17:10,507 INFO L93 Difference]: Finished difference Result 166 states and 181 transitions. [2024-11-14 04:17:10,508 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 5 states. [2024-11-14 04:17:10,509 INFO L78 Accepts]: Start accepts. Automaton has has 5 states, 4 states have (on average 6.0) internal successors, (24), 5 states have internal predecessors, (24), 2 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (5), 2 states have call predecessors, (5), 2 states have call successors, (5) Word has length 45 [2024-11-14 04:17:10,509 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 04:17:10,510 INFO L225 Difference]: With dead ends: 166 [2024-11-14 04:17:10,510 INFO L226 Difference]: Without dead ends: 164 [2024-11-14 04:17:10,510 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 44 GetRequests, 41 SyntacticMatches, 0 SemanticMatches, 3 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1 ImplicationChecksByTransitivity, 0.0s TimeCoverageRelationStatistics Valid=8, Invalid=12, Unknown=0, NotChecked=0, Total=20 [2024-11-14 04:17:10,511 INFO L432 NwaCegarLoop]: 146 mSDtfsCounter, 2 mSDsluCounter, 278 mSDsCounter, 0 mSdLazyCounter, 91 mSolverCounterSat, 5 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 2 SdHoareTripleChecker+Valid, 424 SdHoareTripleChecker+Invalid, 96 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 5 IncrementalHoareTripleChecker+Valid, 91 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 0.1s IncrementalHoareTripleChecker+Time [2024-11-14 04:17:10,515 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [2 Valid, 424 Invalid, 96 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [5 Valid, 91 Invalid, 0 Unknown, 0 Unchecked, 0.1s Time] [2024-11-14 04:17:10,516 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 164 states. [2024-11-14 04:17:10,530 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 164 to 164. [2024-11-14 04:17:10,531 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 164 states, 82 states have (on average 2.0365853658536586) internal successors, (167), 155 states have internal predecessors, (167), 6 states have call successors, (6), 2 states have call predecessors, (6), 2 states have return successors, (6), 6 states have call predecessors, (6), 6 states have call successors, (6) [2024-11-14 04:17:10,532 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 164 states to 164 states and 179 transitions. [2024-11-14 04:17:10,532 INFO L78 Accepts]: Start accepts. Automaton has 164 states and 179 transitions. Word has length 45 [2024-11-14 04:17:10,536 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 04:17:10,537 INFO L471 AbstractCegarLoop]: Abstraction has 164 states and 179 transitions. [2024-11-14 04:17:10,537 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 5 states, 4 states have (on average 6.0) internal successors, (24), 5 states have internal predecessors, (24), 2 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (5), 2 states have call predecessors, (5), 2 states have call successors, (5) [2024-11-14 04:17:10,537 INFO L276 IsEmpty]: Start isEmpty. Operand 164 states and 179 transitions. [2024-11-14 04:17:10,538 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 51 [2024-11-14 04:17:10,538 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 04:17:10,538 INFO L215 NwaCegarLoop]: trace histogram [6, 6, 5, 5, 5, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 04:17:10,564 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (3)] Ended with exit code 0 [2024-11-14 04:17:10,739 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable3,3 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 04:17:10,739 INFO L396 AbstractCegarLoop]: === Iteration 5 === Targeting zalloc_or_dieErr1ASSERT_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2024-11-14 04:17:10,740 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 04:17:10,740 INFO L85 PathProgramCache]: Analyzing trace with hash 1064887724, now seen corresponding path program 1 times [2024-11-14 04:17:10,740 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 04:17:10,740 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1886039904] [2024-11-14 04:17:10,740 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:17:10,740 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 04:17:11,144 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-11-14 04:17:11,157 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [916994350] [2024-11-14 04:17:11,158 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:17:11,158 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 04:17:11,158 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 04:17:11,164 INFO L229 MonitoredProcess]: Starting monitored process 4 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-14 04:17:11,166 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Waiting until timeout for monitored process [2024-11-14 04:17:11,534 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:17:11,539 INFO L255 TraceCheckSpWp]: Trace formula consists of 530 conjuncts, 37 conjuncts are in the unsatisfiable core [2024-11-14 04:17:11,547 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-14 04:17:11,612 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 8 treesize of output 7 [2024-11-14 04:17:11,688 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2024-11-14 04:17:11,783 INFO L134 CoverageAnalysis]: Checked inductivity of 100 backedges. 44 proven. 12 refuted. 0 times theorem prover too weak. 44 trivial. 0 not checked. [2024-11-14 04:17:11,784 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-14 04:17:12,123 INFO L134 CoverageAnalysis]: Checked inductivity of 100 backedges. 43 proven. 1 refuted. 0 times theorem prover too weak. 56 trivial. 0 not checked. [2024-11-14 04:17:12,123 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 04:17:12,123 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1886039904] [2024-11-14 04:17:12,123 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-11-14 04:17:12,123 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [916994350] [2024-11-14 04:17:12,123 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [916994350] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-14 04:17:12,123 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1831609618] [2024-11-14 04:17:12,154 INFO L159 IcfgInterpreter]: Started Sifa with 23 locations of interest [2024-11-14 04:17:12,155 INFO L166 IcfgInterpreter]: Building call graph [2024-11-14 04:17:12,160 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2024-11-14 04:17:12,165 INFO L176 IcfgInterpreter]: Starting interpretation [2024-11-14 04:17:12,166 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2024-11-14 04:17:14,478 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 65 for LOIs [2024-11-14 04:17:14,934 INFO L180 IcfgInterpreter]: Interpretation finished [2024-11-14 04:17:16,983 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSifa [1831609618] provided 1 perfect and 0 imperfect interpolant sequences [2024-11-14 04:17:16,983 INFO L185 FreeRefinementEngine]: Found 1 perfect and 2 imperfect interpolant sequences. [2024-11-14 04:17:16,983 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [15] imperfect sequences [7, 6] total 26 [2024-11-14 04:17:16,984 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1382996595] [2024-11-14 04:17:16,984 INFO L85 oduleStraightlineAll]: Using 1 perfect interpolants to construct interpolant automaton [2024-11-14 04:17:16,985 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 17 states [2024-11-14 04:17:16,985 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 04:17:16,986 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 17 interpolants. [2024-11-14 04:17:16,986 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=88, Invalid=562, Unknown=0, NotChecked=0, Total=650 [2024-11-14 04:17:16,987 INFO L87 Difference]: Start difference. First operand 164 states and 179 transitions. Second operand has 17 states, 10 states have (on average 1.7) internal successors, (17), 13 states have internal predecessors, (17), 6 states have call successors, (6), 1 states have call predecessors, (6), 1 states have return successors, (5), 3 states have call predecessors, (5), 5 states have call successors, (5) [2024-11-14 04:17:19,531 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 04:17:19,532 INFO L93 Difference]: Finished difference Result 240 states and 269 transitions. [2024-11-14 04:17:19,532 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 17 states. [2024-11-14 04:17:19,533 INFO L78 Accepts]: Start accepts. Automaton has has 17 states, 10 states have (on average 1.7) internal successors, (17), 13 states have internal predecessors, (17), 6 states have call successors, (6), 1 states have call predecessors, (6), 1 states have return successors, (5), 3 states have call predecessors, (5), 5 states have call successors, (5) Word has length 50 [2024-11-14 04:17:19,533 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 04:17:19,534 INFO L225 Difference]: With dead ends: 240 [2024-11-14 04:17:19,535 INFO L226 Difference]: Without dead ends: 240 [2024-11-14 04:17:19,535 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 153 GetRequests, 117 SyntacticMatches, 7 SemanticMatches, 29 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 230 ImplicationChecksByTransitivity, 2.9s TimeCoverageRelationStatistics Valid=131, Invalid=799, Unknown=0, NotChecked=0, Total=930 [2024-11-14 04:17:19,539 INFO L432 NwaCegarLoop]: 105 mSDtfsCounter, 119 mSDsluCounter, 880 mSDsCounter, 0 mSdLazyCounter, 1002 mSolverCounterSat, 11 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.6s Time, 0 mProtectedPredicate, 0 mProtectedAction, 120 SdHoareTripleChecker+Valid, 985 SdHoareTripleChecker+Invalid, 1013 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 11 IncrementalHoareTripleChecker+Valid, 1002 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.8s IncrementalHoareTripleChecker+Time [2024-11-14 04:17:19,540 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [120 Valid, 985 Invalid, 1013 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [11 Valid, 1002 Invalid, 0 Unknown, 0 Unchecked, 1.8s Time] [2024-11-14 04:17:19,541 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 240 states. [2024-11-14 04:17:19,560 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 240 to 209. [2024-11-14 04:17:19,560 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 209 states, 119 states have (on average 1.9831932773109244) internal successors, (236), 192 states have internal predecessors, (236), 12 states have call successors, (12), 4 states have call predecessors, (12), 4 states have return successors, (12), 12 states have call predecessors, (12), 12 states have call successors, (12) [2024-11-14 04:17:19,566 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 209 states to 209 states and 260 transitions. [2024-11-14 04:17:19,566 INFO L78 Accepts]: Start accepts. Automaton has 209 states and 260 transitions. Word has length 50 [2024-11-14 04:17:19,567 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 04:17:19,567 INFO L471 AbstractCegarLoop]: Abstraction has 209 states and 260 transitions. [2024-11-14 04:17:19,567 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 17 states, 10 states have (on average 1.7) internal successors, (17), 13 states have internal predecessors, (17), 6 states have call successors, (6), 1 states have call predecessors, (6), 1 states have return successors, (5), 3 states have call predecessors, (5), 5 states have call successors, (5) [2024-11-14 04:17:19,567 INFO L276 IsEmpty]: Start isEmpty. Operand 209 states and 260 transitions. [2024-11-14 04:17:19,568 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 55 [2024-11-14 04:17:19,568 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 04:17:19,568 INFO L215 NwaCegarLoop]: trace histogram [6, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 04:17:19,593 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (4)] Forceful destruction successful, exit code 0 [2024-11-14 04:17:19,769 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable4,4 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 04:17:19,769 INFO L396 AbstractCegarLoop]: === Iteration 6 === Targeting ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2024-11-14 04:17:19,770 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 04:17:19,770 INFO L85 PathProgramCache]: Analyzing trace with hash 1754056875, now seen corresponding path program 1 times [2024-11-14 04:17:19,770 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 04:17:19,770 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [523186591] [2024-11-14 04:17:19,770 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:17:19,771 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 04:17:19,908 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:17:20,844 INFO L134 CoverageAnalysis]: Checked inductivity of 126 backedges. 61 proven. 7 refuted. 0 times theorem prover too weak. 58 trivial. 0 not checked. [2024-11-14 04:17:20,844 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 04:17:20,844 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [523186591] [2024-11-14 04:17:20,844 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [523186591] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 04:17:20,845 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1958111750] [2024-11-14 04:17:20,845 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:17:20,845 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 04:17:20,845 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 04:17:20,848 INFO L229 MonitoredProcess]: Starting monitored process 5 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-14 04:17:20,851 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Waiting until timeout for monitored process [2024-11-14 04:17:21,103 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:17:21,109 INFO L255 TraceCheckSpWp]: Trace formula consists of 565 conjuncts, 18 conjuncts are in the unsatisfiable core [2024-11-14 04:17:21,114 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-14 04:17:21,184 WARN L873 $PredicateComparison]: unable to prove that (exists ((|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (= (store |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| 1) |c_#valid|)) is different from true [2024-11-14 04:17:21,214 INFO L349 Elim1Store]: treesize reduction 15, result has 25.0 percent of original size [2024-11-14 04:17:21,215 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 12 treesize of output 14 [2024-11-14 04:17:21,231 INFO L134 CoverageAnalysis]: Checked inductivity of 126 backedges. 61 proven. 1 refuted. 0 times theorem prover too weak. 58 trivial. 6 not checked. [2024-11-14 04:17:21,232 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-14 04:17:21,477 INFO L349 Elim1Store]: treesize reduction 5, result has 37.5 percent of original size [2024-11-14 04:17:21,480 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 12 treesize of output 11 [2024-11-14 04:17:21,508 INFO L134 CoverageAnalysis]: Checked inductivity of 126 backedges. 61 proven. 7 refuted. 0 times theorem prover too weak. 58 trivial. 0 not checked. [2024-11-14 04:17:21,508 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1958111750] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-14 04:17:21,509 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [2017472205] [2024-11-14 04:17:21,512 INFO L159 IcfgInterpreter]: Started Sifa with 24 locations of interest [2024-11-14 04:17:21,512 INFO L166 IcfgInterpreter]: Building call graph [2024-11-14 04:17:21,513 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2024-11-14 04:17:21,513 INFO L176 IcfgInterpreter]: Starting interpretation [2024-11-14 04:17:21,514 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2024-11-14 04:17:24,403 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 65 for LOIs [2024-11-14 04:17:24,635 INFO L180 IcfgInterpreter]: Interpretation finished [2024-11-14 04:17:31,079 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '2721#(and (<= 1 |#StackHeapBarrier|) (= |~#list~0.offset| 0) (exists ((|v_ULTIMATE.start_l4_insert_~item~0#1.base_21| Int)) (and (not (= (select |#valid| |v_ULTIMATE.start_l4_insert_~item~0#1.base_21|) 1)) (or (and (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (exists ((|v_#memory_$Pointer$.offset_BEFORE_CALL_30| (Array Int (Array Int Int)))) (= (select (select |v_#memory_$Pointer$.offset_BEFORE_CALL_30| 3) 0) 0)) (exists ((|v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_93| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#amount#1_70| Int)) (and (<= (mod |v_zalloc_or_die_#Ultimate.C_memset_#amount#1_70| 4294967296) (mod |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_93| 4294967296)) (or (= |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_93| 0) (< 0 |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_93|)))) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l2_insert_~item~2#1.base|) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l3_insert_~item~1#1.base|) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l1_insert_~item~3#1.base|) (not (= |ULTIMATE.start_l4_insert_#t~ret7#1.base| 0)) (exists ((|v_#length_BEFORE_CALL_30| (Array Int Int))) (and (= (select |v_#length_BEFORE_CALL_30| 3) 4) (= 2 (select |v_#length_BEFORE_CALL_30| 1)) (= 14 (select |v_#length_BEFORE_CALL_30| 2)))) (exists ((|v_#memory_int_BEFORE_CALL_30| (Array Int (Array Int Int)))) (and (= (select (select |v_#memory_int_BEFORE_CALL_30| 1) 1) 0) (= 48 (select (select |v_#memory_int_BEFORE_CALL_30| 1) 0)))) (exists ((|v_#memory_$Pointer$.base_BEFORE_CALL_30| (Array Int (Array Int Int)))) (= (select (select |v_#memory_$Pointer$.base_BEFORE_CALL_30| 3) 0) 0)) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l0_insert_~item~4#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (not (= |v_ULTIMATE.start_l4_insert_~item~0#1.base_21| 0))) (and (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (exists ((|v_#memory_$Pointer$.offset_BEFORE_CALL_28| (Array Int (Array Int Int)))) (= (select (select |v_#memory_$Pointer$.offset_BEFORE_CALL_28| 3) 0) 0)) (exists ((|v_#memory_$Pointer$.base_BEFORE_CALL_28| (Array Int (Array Int Int)))) (= (select (select |v_#memory_$Pointer$.base_BEFORE_CALL_28| 3) 0) 0)) (exists ((|v_#length_BEFORE_CALL_28| (Array Int Int))) (and (= (select |v_#length_BEFORE_CALL_28| 3) 4) (= (select |v_#length_BEFORE_CALL_28| 2) 14) (= (select |v_#length_BEFORE_CALL_28| 1) 2))) (exists ((|v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_93| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#amount#1_70| Int)) (and (<= (mod |v_zalloc_or_die_#Ultimate.C_memset_#amount#1_70| 4294967296) (mod |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_93| 4294967296)) (or (= |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_93| 0) (< 0 |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_93|)))) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (exists ((|v_#memory_int_BEFORE_CALL_28| (Array Int (Array Int Int)))) (and (= 48 (select (select |v_#memory_int_BEFORE_CALL_28| 1) 0)) (= (select (select |v_#memory_int_BEFORE_CALL_28| 1) 1) 0))) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l2_insert_~item~2#1.base|) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l3_insert_~item~1#1.base|) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l1_insert_~item~3#1.base|) (not (= |ULTIMATE.start_l4_insert_#t~ret7#1.base| 0)) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l0_insert_~item~4#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (not (= |v_ULTIMATE.start_l4_insert_~item~0#1.base_21| 0)))))) (= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= 3 |~#list~0.base|) (= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (= 0 |ULTIMATE.start_l4_insert_~list#1.offset|) (= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= |ULTIMATE.start_l4_insert_#t~ret7#1.offset| 0) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0))' at error location [2024-11-14 04:17:31,079 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2024-11-14 04:17:31,080 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-14 04:17:31,080 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [8, 9, 8] total 13 [2024-11-14 04:17:31,080 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1198269764] [2024-11-14 04:17:31,080 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-14 04:17:31,080 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 14 states [2024-11-14 04:17:31,081 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 04:17:31,081 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 14 interpolants. [2024-11-14 04:17:31,082 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=159, Invalid=1034, Unknown=1, NotChecked=66, Total=1260 [2024-11-14 04:17:31,082 INFO L87 Difference]: Start difference. First operand 209 states and 260 transitions. Second operand has 14 states, 11 states have (on average 3.5454545454545454) internal successors, (39), 12 states have internal predecessors, (39), 2 states have call successors, (7), 3 states have call predecessors, (7), 5 states have return successors, (8), 3 states have call predecessors, (8), 2 states have call successors, (8) [2024-11-14 04:17:31,743 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 04:17:31,743 INFO L93 Difference]: Finished difference Result 207 states and 256 transitions. [2024-11-14 04:17:31,744 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 8 states. [2024-11-14 04:17:31,744 INFO L78 Accepts]: Start accepts. Automaton has has 14 states, 11 states have (on average 3.5454545454545454) internal successors, (39), 12 states have internal predecessors, (39), 2 states have call successors, (7), 3 states have call predecessors, (7), 5 states have return successors, (8), 3 states have call predecessors, (8), 2 states have call successors, (8) Word has length 54 [2024-11-14 04:17:31,744 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 04:17:31,745 INFO L225 Difference]: With dead ends: 207 [2024-11-14 04:17:31,746 INFO L226 Difference]: Without dead ends: 207 [2024-11-14 04:17:31,747 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 173 GetRequests, 126 SyntacticMatches, 10 SemanticMatches, 37 ConstructedPredicates, 1 IntricatePredicates, 0 DeprecatedPredicates, 323 ImplicationChecksByTransitivity, 6.7s TimeCoverageRelationStatistics Valid=182, Invalid=1227, Unknown=1, NotChecked=72, Total=1482 [2024-11-14 04:17:31,748 INFO L432 NwaCegarLoop]: 135 mSDtfsCounter, 16 mSDsluCounter, 732 mSDsCounter, 0 mSdLazyCounter, 620 mSolverCounterSat, 21 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 16 SdHoareTripleChecker+Valid, 867 SdHoareTripleChecker+Invalid, 807 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 21 IncrementalHoareTripleChecker+Valid, 620 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 166 IncrementalHoareTripleChecker+Unchecked, 0.5s IncrementalHoareTripleChecker+Time [2024-11-14 04:17:31,748 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [16 Valid, 867 Invalid, 807 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [21 Valid, 620 Invalid, 0 Unknown, 166 Unchecked, 0.5s Time] [2024-11-14 04:17:31,749 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 207 states. [2024-11-14 04:17:31,756 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 207 to 207. [2024-11-14 04:17:31,756 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 207 states, 119 states have (on average 1.949579831932773) internal successors, (232), 190 states have internal predecessors, (232), 12 states have call successors, (12), 4 states have call predecessors, (12), 4 states have return successors, (12), 12 states have call predecessors, (12), 12 states have call successors, (12) [2024-11-14 04:17:31,758 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 207 states to 207 states and 256 transitions. [2024-11-14 04:17:31,758 INFO L78 Accepts]: Start accepts. Automaton has 207 states and 256 transitions. Word has length 54 [2024-11-14 04:17:31,759 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 04:17:31,759 INFO L471 AbstractCegarLoop]: Abstraction has 207 states and 256 transitions. [2024-11-14 04:17:31,759 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 14 states, 11 states have (on average 3.5454545454545454) internal successors, (39), 12 states have internal predecessors, (39), 2 states have call successors, (7), 3 states have call predecessors, (7), 5 states have return successors, (8), 3 states have call predecessors, (8), 2 states have call successors, (8) [2024-11-14 04:17:31,759 INFO L276 IsEmpty]: Start isEmpty. Operand 207 states and 256 transitions. [2024-11-14 04:17:31,760 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 55 [2024-11-14 04:17:31,760 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 04:17:31,761 INFO L215 NwaCegarLoop]: trace histogram [6, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 04:17:31,783 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (5)] Ended with exit code 0 [2024-11-14 04:17:31,965 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable5,5 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 04:17:31,965 INFO L396 AbstractCegarLoop]: === Iteration 7 === Targeting ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2024-11-14 04:17:31,965 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 04:17:31,966 INFO L85 PathProgramCache]: Analyzing trace with hash 1754056876, now seen corresponding path program 1 times [2024-11-14 04:17:31,966 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 04:17:31,966 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [695027463] [2024-11-14 04:17:31,966 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:17:31,966 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 04:17:32,191 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-11-14 04:17:32,196 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [435165864] [2024-11-14 04:17:32,197 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:17:32,197 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 04:17:32,197 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 04:17:32,200 INFO L229 MonitoredProcess]: Starting monitored process 6 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-14 04:17:32,202 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Waiting until timeout for monitored process [2024-11-14 04:17:32,536 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:17:32,540 INFO L255 TraceCheckSpWp]: Trace formula consists of 565 conjuncts, 48 conjuncts are in the unsatisfiable core [2024-11-14 04:17:32,547 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-14 04:17:32,564 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 8 treesize of output 7 [2024-11-14 04:17:32,811 WARN L873 $PredicateComparison]: unable to prove that (exists ((|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (and (= (store |c_old(#length)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| (select |c_#length| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|)) |c_#length|) (= (select |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 0))) is different from true [2024-11-14 04:17:32,851 INFO L190 IndexEqualityManager]: detected not equals via solver [2024-11-14 04:17:32,852 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 9 [2024-11-14 04:17:32,863 INFO L349 Elim1Store]: treesize reduction 4, result has 50.0 percent of original size [2024-11-14 04:17:32,864 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 11 treesize of output 11 [2024-11-14 04:17:32,884 INFO L134 CoverageAnalysis]: Checked inductivity of 126 backedges. 61 proven. 0 refuted. 0 times theorem prover too weak. 58 trivial. 7 not checked. [2024-11-14 04:17:32,884 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-14 04:17:33,023 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 04:17:33,023 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [695027463] [2024-11-14 04:17:33,023 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-11-14 04:17:33,023 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [435165864] [2024-11-14 04:17:33,023 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [435165864] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 04:17:33,023 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1176456338] [2024-11-14 04:17:33,026 INFO L159 IcfgInterpreter]: Started Sifa with 24 locations of interest [2024-11-14 04:17:33,026 INFO L166 IcfgInterpreter]: Building call graph [2024-11-14 04:17:33,027 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2024-11-14 04:17:33,027 INFO L176 IcfgInterpreter]: Starting interpretation [2024-11-14 04:17:33,027 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2024-11-14 04:17:35,081 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 65 for LOIs [2024-11-14 04:17:35,271 INFO L180 IcfgInterpreter]: Interpretation finished [2024-11-14 04:17:41,172 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '3342#(and (<= 1 |#StackHeapBarrier|) (= |~#list~0.offset| 0) (= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= 3 |~#list~0.base|) (= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (= 0 |ULTIMATE.start_l4_insert_~list#1.offset|) (= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= |ULTIMATE.start_l4_insert_#t~ret7#1.offset| 0) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (exists ((|v_ULTIMATE.start_l4_insert_~item~0#1.base_22| Int)) (and (or (and (exists ((|v_#memory_$Pointer$.base_BEFORE_CALL_60| (Array Int (Array Int Int)))) (= (select (select |v_#memory_$Pointer$.base_BEFORE_CALL_60| 3) 0) 0)) (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (not (= |v_ULTIMATE.start_l4_insert_~item~0#1.base_22| 0)) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l2_insert_~item~2#1.base|) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l3_insert_~item~1#1.base|) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l1_insert_~item~3#1.base|) (not (= |ULTIMATE.start_l4_insert_#t~ret7#1.base| 0)) (exists ((|v_#memory_int_BEFORE_CALL_60| (Array Int (Array Int Int)))) (and (= 48 (select (select |v_#memory_int_BEFORE_CALL_60| 1) 0)) (= (select (select |v_#memory_int_BEFORE_CALL_60| 1) 1) 0))) (exists ((|v_zalloc_or_die_#Ultimate.C_memset_#amount#1_75| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_104| Int)) (and (or (< 0 |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_104|) (= |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_104| 0)) (<= (mod |v_zalloc_or_die_#Ultimate.C_memset_#amount#1_75| 4294967296) (mod |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_104| 4294967296)))) (exists ((|v_#length_BEFORE_CALL_62| (Array Int Int))) (and (= 4 (select |v_#length_BEFORE_CALL_62| 3)) (= (select |v_#length_BEFORE_CALL_62| 1) 2) (= (select |v_#length_BEFORE_CALL_62| 2) 14))) (exists ((|v_#memory_$Pointer$.offset_BEFORE_CALL_60| (Array Int (Array Int Int)))) (= (select (select |v_#memory_$Pointer$.offset_BEFORE_CALL_60| 3) 0) 0)) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l0_insert_~item~4#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0)) (and (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (exists ((|v_#length_BEFORE_CALL_60| (Array Int Int))) (and (= (select |v_#length_BEFORE_CALL_60| 3) 4) (= (select |v_#length_BEFORE_CALL_60| 2) 14) (= (select |v_#length_BEFORE_CALL_60| 1) 2))) (not (= |v_ULTIMATE.start_l4_insert_~item~0#1.base_22| 0)) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (exists ((|v_#memory_int_BEFORE_CALL_58| (Array Int (Array Int Int)))) (and (= (select (select |v_#memory_int_BEFORE_CALL_58| 1) 1) 0) (= (select (select |v_#memory_int_BEFORE_CALL_58| 1) 0) 48))) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l2_insert_~item~2#1.base|) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (exists ((|v_#memory_$Pointer$.offset_BEFORE_CALL_58| (Array Int (Array Int Int)))) (= (select (select |v_#memory_$Pointer$.offset_BEFORE_CALL_58| 3) 0) 0)) (= |ULTIMATE.start_l4_insert_~list#1.base| |ULTIMATE.start_l3_insert_~item~1#1.base|) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l1_insert_~item~3#1.base|) (not (= |ULTIMATE.start_l4_insert_#t~ret7#1.base| 0)) (exists ((|v_zalloc_or_die_#Ultimate.C_memset_#amount#1_75| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_104| Int)) (and (or (< 0 |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_104|) (= |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_104| 0)) (<= (mod |v_zalloc_or_die_#Ultimate.C_memset_#amount#1_75| 4294967296) (mod |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_104| 4294967296)))) (exists ((|v_#memory_$Pointer$.base_BEFORE_CALL_58| (Array Int (Array Int Int)))) (= (select (select |v_#memory_$Pointer$.base_BEFORE_CALL_58| 3) 0) 0)) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l0_insert_~item~4#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0))) (<= (select |#length| |v_ULTIMATE.start_l4_insert_~item~0#1.base_22|) 7))) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0))' at error location [2024-11-14 04:17:41,172 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2024-11-14 04:17:41,172 INFO L185 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2024-11-14 04:17:41,172 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [10] total 10 [2024-11-14 04:17:41,173 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1688423673] [2024-11-14 04:17:41,173 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2024-11-14 04:17:41,173 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 11 states [2024-11-14 04:17:41,173 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 04:17:41,174 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 11 interpolants. [2024-11-14 04:17:41,175 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=152, Invalid=973, Unknown=1, NotChecked=64, Total=1190 [2024-11-14 04:17:41,175 INFO L87 Difference]: Start difference. First operand 207 states and 256 transitions. Second operand has 11 states, 8 states have (on average 3.375) internal successors, (27), 8 states have internal predecessors, (27), 2 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (6), 3 states have call predecessors, (6), 2 states have call successors, (6) [2024-11-14 04:17:41,997 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 04:17:41,997 INFO L93 Difference]: Finished difference Result 205 states and 252 transitions. [2024-11-14 04:17:41,998 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 9 states. [2024-11-14 04:17:41,998 INFO L78 Accepts]: Start accepts. Automaton has has 11 states, 8 states have (on average 3.375) internal successors, (27), 8 states have internal predecessors, (27), 2 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (6), 3 states have call predecessors, (6), 2 states have call successors, (6) Word has length 54 [2024-11-14 04:17:41,998 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 04:17:42,000 INFO L225 Difference]: With dead ends: 205 [2024-11-14 04:17:42,000 INFO L226 Difference]: Without dead ends: 205 [2024-11-14 04:17:42,001 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 112 GetRequests, 70 SyntacticMatches, 6 SemanticMatches, 36 ConstructedPredicates, 1 IntricatePredicates, 0 DeprecatedPredicates, 304 ImplicationChecksByTransitivity, 6.3s TimeCoverageRelationStatistics Valid=165, Invalid=1170, Unknown=1, NotChecked=70, Total=1406 [2024-11-14 04:17:42,002 INFO L432 NwaCegarLoop]: 128 mSDtfsCounter, 15 mSDsluCounter, 486 mSDsCounter, 0 mSdLazyCounter, 704 mSolverCounterSat, 8 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 15 SdHoareTripleChecker+Valid, 614 SdHoareTripleChecker+Invalid, 875 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 8 IncrementalHoareTripleChecker+Valid, 704 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 163 IncrementalHoareTripleChecker+Unchecked, 0.6s IncrementalHoareTripleChecker+Time [2024-11-14 04:17:42,002 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [15 Valid, 614 Invalid, 875 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [8 Valid, 704 Invalid, 0 Unknown, 163 Unchecked, 0.6s Time] [2024-11-14 04:17:42,003 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 205 states. [2024-11-14 04:17:42,015 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 205 to 205. [2024-11-14 04:17:42,016 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 205 states, 119 states have (on average 1.915966386554622) internal successors, (228), 188 states have internal predecessors, (228), 12 states have call successors, (12), 4 states have call predecessors, (12), 4 states have return successors, (12), 12 states have call predecessors, (12), 12 states have call successors, (12) [2024-11-14 04:17:42,017 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 205 states to 205 states and 252 transitions. [2024-11-14 04:17:42,020 INFO L78 Accepts]: Start accepts. Automaton has 205 states and 252 transitions. Word has length 54 [2024-11-14 04:17:42,021 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 04:17:42,021 INFO L471 AbstractCegarLoop]: Abstraction has 205 states and 252 transitions. [2024-11-14 04:17:42,021 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 11 states, 8 states have (on average 3.375) internal successors, (27), 8 states have internal predecessors, (27), 2 states have call successors, (6), 2 states have call predecessors, (6), 3 states have return successors, (6), 3 states have call predecessors, (6), 2 states have call successors, (6) [2024-11-14 04:17:42,021 INFO L276 IsEmpty]: Start isEmpty. Operand 205 states and 252 transitions. [2024-11-14 04:17:42,023 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 56 [2024-11-14 04:17:42,023 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 04:17:42,023 INFO L215 NwaCegarLoop]: trace histogram [6, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 04:17:42,049 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (6)] Forceful destruction successful, exit code 0 [2024-11-14 04:17:42,223 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable6,6 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 04:17:42,224 INFO L396 AbstractCegarLoop]: === Iteration 8 === Targeting ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2024-11-14 04:17:42,224 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 04:17:42,224 INFO L85 PathProgramCache]: Analyzing trace with hash -1458802663, now seen corresponding path program 1 times [2024-11-14 04:17:42,224 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 04:17:42,224 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1991856744] [2024-11-14 04:17:42,224 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:17:42,225 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 04:17:42,286 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:17:43,198 INFO L134 CoverageAnalysis]: Checked inductivity of 126 backedges. 83 proven. 9 refuted. 0 times theorem prover too weak. 34 trivial. 0 not checked. [2024-11-14 04:17:43,198 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 04:17:43,198 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1991856744] [2024-11-14 04:17:43,198 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1991856744] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 04:17:43,198 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [877504419] [2024-11-14 04:17:43,198 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:17:43,199 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 04:17:43,199 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 04:17:43,200 INFO L229 MonitoredProcess]: Starting monitored process 7 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-14 04:17:43,203 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Waiting until timeout for monitored process [2024-11-14 04:17:43,452 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:17:43,455 INFO L255 TraceCheckSpWp]: Trace formula consists of 581 conjuncts, 29 conjuncts are in the unsatisfiable core [2024-11-14 04:17:43,458 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-14 04:17:43,507 WARN L873 $PredicateComparison]: unable to prove that (exists ((|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (and (= |c_#valid| (store |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| (select |c_#valid| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|))) (= (select |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 0))) is different from true [2024-11-14 04:17:43,554 INFO L349 Elim1Store]: treesize reduction 20, result has 33.3 percent of original size [2024-11-14 04:17:43,554 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 19 treesize of output 16 [2024-11-14 04:17:43,590 WARN L873 $PredicateComparison]: unable to prove that (exists ((|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (= (store |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| 1) |c_#valid|)) is different from true [2024-11-14 04:17:43,614 INFO L349 Elim1Store]: treesize reduction 15, result has 25.0 percent of original size [2024-11-14 04:17:43,614 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 12 treesize of output 14 [2024-11-14 04:17:43,633 INFO L134 CoverageAnalysis]: Checked inductivity of 126 backedges. 71 proven. 1 refuted. 0 times theorem prover too weak. 34 trivial. 20 not checked. [2024-11-14 04:17:43,633 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-14 04:17:43,930 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [877504419] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 04:17:43,930 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1582448478] [2024-11-14 04:17:43,932 INFO L159 IcfgInterpreter]: Started Sifa with 25 locations of interest [2024-11-14 04:17:43,933 INFO L166 IcfgInterpreter]: Building call graph [2024-11-14 04:17:43,933 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2024-11-14 04:17:43,933 INFO L176 IcfgInterpreter]: Starting interpretation [2024-11-14 04:17:43,933 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2024-11-14 04:17:44,654 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 65 for LOIs [2024-11-14 04:17:44,765 INFO L180 IcfgInterpreter]: Interpretation finished [2024-11-14 04:17:48,978 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '3996#(and (exists ((|v_ULTIMATE.start_l4_insert_~list#1.base_14| Int)) (not (= (select |#valid| |v_ULTIMATE.start_l4_insert_~list#1.base_14|) 1))) (<= 1 |#StackHeapBarrier|) (= |~#list~0.offset| 0) (= |ULTIMATE.start_l0_insert_~list#1.base| 3) (<= (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|)) (exists ((|v_#memory_int_155| (Array Int (Array Int Int)))) (= |#memory_int| (store |v_#memory_int_155| |ULTIMATE.start_l4_insert_~item~0#1.base| (store (select |v_#memory_int_155| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select (select |#memory_int| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)))))) (= (select |#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1) (= 3 |~#list~0.base|) (exists ((|v_#memory_$Pointer$.base_191| (Array Int (Array Int Int)))) (= (store |v_#memory_$Pointer$.base_191| |ULTIMATE.start_l4_insert_~item~0#1.base| (store (select |v_#memory_$Pointer$.base_191| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)))) |#memory_$Pointer$.base|)) (exists ((|v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_121| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#value#1_87| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#res#1.offset_75| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#amount#1_84| Int)) (and (<= (mod |v_zalloc_or_die_#Ultimate.C_memset_#amount#1_84| 4294967296) (mod |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_121| 4294967296)) (<= 0 |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_121|) (= 0 |v_zalloc_or_die_#Ultimate.C_memset_#res#1.offset_75|) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0) (= |v_zalloc_or_die_#Ultimate.C_memset_#value#1_87| 0))) (= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (not (= (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0)) (exists ((|v_#memory_$Pointer$.offset_191| (Array Int (Array Int Int)))) (= |#memory_$Pointer$.offset| (store |v_#memory_$Pointer$.offset_191| |ULTIMATE.start_l4_insert_~item~0#1.base| (store (select |v_#memory_$Pointer$.offset_191| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)))))) (<= 0 (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)))' at error location [2024-11-14 04:17:48,979 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2024-11-14 04:17:48,979 INFO L185 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2024-11-14 04:17:48,979 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [13, 11] total 17 [2024-11-14 04:17:48,979 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1870104572] [2024-11-14 04:17:48,979 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2024-11-14 04:17:48,979 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 18 states [2024-11-14 04:17:48,979 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 04:17:48,980 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 18 interpolants. [2024-11-14 04:17:48,981 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=120, Invalid=1217, Unknown=3, NotChecked=142, Total=1482 [2024-11-14 04:17:48,981 INFO L87 Difference]: Start difference. First operand 205 states and 252 transitions. Second operand has 18 states, 14 states have (on average 3.357142857142857) internal successors, (47), 15 states have internal predecessors, (47), 3 states have call successors, (7), 2 states have call predecessors, (7), 6 states have return successors, (8), 5 states have call predecessors, (8), 3 states have call successors, (8) [2024-11-14 04:17:49,915 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 04:17:49,915 INFO L93 Difference]: Finished difference Result 202 states and 246 transitions. [2024-11-14 04:17:49,916 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 9 states. [2024-11-14 04:17:49,916 INFO L78 Accepts]: Start accepts. Automaton has has 18 states, 14 states have (on average 3.357142857142857) internal successors, (47), 15 states have internal predecessors, (47), 3 states have call successors, (7), 2 states have call predecessors, (7), 6 states have return successors, (8), 5 states have call predecessors, (8), 3 states have call successors, (8) Word has length 55 [2024-11-14 04:17:49,917 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 04:17:49,918 INFO L225 Difference]: With dead ends: 202 [2024-11-14 04:17:49,918 INFO L226 Difference]: Without dead ends: 202 [2024-11-14 04:17:49,919 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 140 GetRequests, 90 SyntacticMatches, 10 SemanticMatches, 40 ConstructedPredicates, 2 IntricatePredicates, 0 DeprecatedPredicates, 441 ImplicationChecksByTransitivity, 4.7s TimeCoverageRelationStatistics Valid=144, Invalid=1421, Unknown=3, NotChecked=154, Total=1722 [2024-11-14 04:17:49,919 INFO L432 NwaCegarLoop]: 126 mSDtfsCounter, 27 mSDsluCounter, 1089 mSDsCounter, 0 mSdLazyCounter, 1000 mSolverCounterSat, 10 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.7s Time, 0 mProtectedPredicate, 0 mProtectedAction, 27 SdHoareTripleChecker+Valid, 1215 SdHoareTripleChecker+Invalid, 1331 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 10 IncrementalHoareTripleChecker+Valid, 1000 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 321 IncrementalHoareTripleChecker+Unchecked, 0.8s IncrementalHoareTripleChecker+Time [2024-11-14 04:17:49,920 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [27 Valid, 1215 Invalid, 1331 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [10 Valid, 1000 Invalid, 0 Unknown, 321 Unchecked, 0.8s Time] [2024-11-14 04:17:49,920 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 202 states. [2024-11-14 04:17:49,926 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 202 to 202. [2024-11-14 04:17:49,926 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 202 states, 119 states have (on average 1.865546218487395) internal successors, (222), 185 states have internal predecessors, (222), 12 states have call successors, (12), 4 states have call predecessors, (12), 4 states have return successors, (12), 12 states have call predecessors, (12), 12 states have call successors, (12) [2024-11-14 04:17:49,928 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 202 states to 202 states and 246 transitions. [2024-11-14 04:17:49,928 INFO L78 Accepts]: Start accepts. Automaton has 202 states and 246 transitions. Word has length 55 [2024-11-14 04:17:49,929 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 04:17:49,929 INFO L471 AbstractCegarLoop]: Abstraction has 202 states and 246 transitions. [2024-11-14 04:17:49,929 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 18 states, 14 states have (on average 3.357142857142857) internal successors, (47), 15 states have internal predecessors, (47), 3 states have call successors, (7), 2 states have call predecessors, (7), 6 states have return successors, (8), 5 states have call predecessors, (8), 3 states have call successors, (8) [2024-11-14 04:17:49,929 INFO L276 IsEmpty]: Start isEmpty. Operand 202 states and 246 transitions. [2024-11-14 04:17:49,930 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 56 [2024-11-14 04:17:49,930 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 04:17:49,931 INFO L215 NwaCegarLoop]: trace histogram [6, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 04:17:49,949 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (7)] Ended with exit code 0 [2024-11-14 04:17:50,131 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable7,7 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 04:17:50,132 INFO L396 AbstractCegarLoop]: === Iteration 9 === Targeting ULTIMATE.startErr3REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2024-11-14 04:17:50,132 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 04:17:50,132 INFO L85 PathProgramCache]: Analyzing trace with hash -1458802662, now seen corresponding path program 1 times [2024-11-14 04:17:50,132 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 04:17:50,132 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [537923829] [2024-11-14 04:17:50,132 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:17:50,132 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 04:17:50,292 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:17:51,458 INFO L134 CoverageAnalysis]: Checked inductivity of 126 backedges. 66 proven. 18 refuted. 0 times theorem prover too weak. 42 trivial. 0 not checked. [2024-11-14 04:17:51,458 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 04:17:51,458 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [537923829] [2024-11-14 04:17:51,458 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [537923829] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 04:17:51,458 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [634057299] [2024-11-14 04:17:51,458 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:17:51,459 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 04:17:51,459 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 04:17:51,461 INFO L229 MonitoredProcess]: Starting monitored process 8 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-14 04:17:51,463 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (8)] Waiting until timeout for monitored process [2024-11-14 04:17:51,771 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:17:51,775 INFO L255 TraceCheckSpWp]: Trace formula consists of 581 conjuncts, 43 conjuncts are in the unsatisfiable core [2024-11-14 04:17:51,779 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-14 04:17:51,832 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2024-11-14 04:17:52,488 WARN L873 $PredicateComparison]: unable to prove that (exists ((|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (and (= (store |c_old(#length)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| (select |c_#length| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|)) |c_#length|) (= (select |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 0))) is different from true [2024-11-14 04:17:52,525 INFO L190 IndexEqualityManager]: detected not equals via solver [2024-11-14 04:17:52,526 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 9 [2024-11-14 04:17:52,539 INFO L349 Elim1Store]: treesize reduction 4, result has 50.0 percent of original size [2024-11-14 04:17:52,540 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 11 treesize of output 11 [2024-11-14 04:17:52,576 INFO L134 CoverageAnalysis]: Checked inductivity of 126 backedges. 58 proven. 9 refuted. 0 times theorem prover too weak. 50 trivial. 9 not checked. [2024-11-14 04:17:52,576 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-14 04:17:52,719 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [634057299] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 04:17:52,719 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [23015938] [2024-11-14 04:17:52,721 INFO L159 IcfgInterpreter]: Started Sifa with 25 locations of interest [2024-11-14 04:17:52,722 INFO L166 IcfgInterpreter]: Building call graph [2024-11-14 04:17:52,722 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2024-11-14 04:17:52,722 INFO L176 IcfgInterpreter]: Starting interpretation [2024-11-14 04:17:52,722 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2024-11-14 04:17:54,774 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 65 for LOIs [2024-11-14 04:17:54,985 INFO L180 IcfgInterpreter]: Interpretation finished [2024-11-14 04:18:26,992 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '4621#(and (<= 1 |#StackHeapBarrier|) (= |~#list~0.offset| 0) (= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= (select |#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1) (= 3 |~#list~0.base|) (exists ((|v_ULTIMATE.start_l4_insert_~list#1.base_15| Int)) (and (<= (select |#length| |v_ULTIMATE.start_l4_insert_~list#1.base_15|) 3) (or (and (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |v_ULTIMATE.start_l4_insert_~list#1.base_15|) (exists ((|v_#length_BEFORE_CALL_122| (Array Int Int))) (and (= 14 (select |v_#length_BEFORE_CALL_122| 2)) (= 4 (select |v_#length_BEFORE_CALL_122| 3)) (= 2 (select |v_#length_BEFORE_CALL_122| 1)))) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (exists ((|v_#memory_int_BEFORE_CALL_118| (Array Int (Array Int Int)))) (and (= (select (select |v_#memory_int_BEFORE_CALL_118| 1) 1) 0) (= (select (select |v_#memory_int_BEFORE_CALL_118| 1) 0) 48))) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l2_insert_~item~2#1.base|) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l1_insert_~item~3#1.base|) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l0_insert_~item~4#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (exists ((|v_old(#memory_$Pointer$.base)_AFTER_CALL_82| (Array Int (Array Int Int)))) (= (select (select |v_old(#memory_$Pointer$.base)_AFTER_CALL_82| 3) 0) 0)) (exists ((|v_#memory_$Pointer$.offset_BEFORE_CALL_118| (Array Int (Array Int Int)))) (= (select (select |v_#memory_$Pointer$.offset_BEFORE_CALL_118| 3) 0) 0)) (not (= (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) 4) 0)) (exists ((|v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_139| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#amount#1_94| Int)) (and (<= (mod |v_zalloc_or_die_#Ultimate.C_memset_#amount#1_94| 4294967296) (mod |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_139| 4294967296)) (or (< 0 |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_139|) (= |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_139| 0))))) (and (exists ((|v_#length_BEFORE_CALL_124| (Array Int Int))) (and (= 14 (select |v_#length_BEFORE_CALL_124| 2)) (= (select |v_#length_BEFORE_CALL_124| 1) 2) (= (select |v_#length_BEFORE_CALL_124| 3) 4))) (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |v_ULTIMATE.start_l4_insert_~list#1.base_15|) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l2_insert_~item~2#1.base|) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l1_insert_~item~3#1.base|) (exists ((|v_#memory_int_BEFORE_CALL_120| (Array Int (Array Int Int)))) (and (= (select (select |v_#memory_int_BEFORE_CALL_120| 1) 1) 0) (= (select (select |v_#memory_int_BEFORE_CALL_120| 1) 0) 48))) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l0_insert_~item~4#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (exists ((|v_#memory_$Pointer$.offset_BEFORE_CALL_120| (Array Int (Array Int Int)))) (= (select (select |v_#memory_$Pointer$.offset_BEFORE_CALL_120| 3) 0) 0)) (exists ((|v_old(#memory_$Pointer$.base)_AFTER_CALL_83| (Array Int (Array Int Int)))) (= (select (select |v_old(#memory_$Pointer$.base)_AFTER_CALL_83| 3) 0) 0)) (not (= (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) 4) 0)) (exists ((|v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_139| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#amount#1_94| Int)) (and (<= (mod |v_zalloc_or_die_#Ultimate.C_memset_#amount#1_94| 4294967296) (mod |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_139| 4294967296)) (or (< 0 |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_139|) (= |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_139| 0)))))))) (= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (exists ((|v_#memory_$Pointer$.offset_202| (Array Int (Array Int Int)))) (= |#memory_$Pointer$.offset| (store |v_#memory_$Pointer$.offset_202| |ULTIMATE.start_l4_insert_~item~0#1.base| (store (select |v_#memory_$Pointer$.offset_202| |ULTIMATE.start_l4_insert_~item~0#1.base|) 4 0)))) (<= 8 (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|)) (= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (exists ((|v_#memory_$Pointer$.base_202| (Array Int (Array Int Int)))) (= |#memory_$Pointer$.base| (store |v_#memory_$Pointer$.base_202| |ULTIMATE.start_l4_insert_~item~0#1.base| (store (select |v_#memory_$Pointer$.base_202| |ULTIMATE.start_l4_insert_~item~0#1.base|) 4 (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) 4))))) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (exists ((|v_#memory_int_166| (Array Int (Array Int Int)))) (= |#memory_int| (store |v_#memory_int_166| |ULTIMATE.start_l4_insert_~item~0#1.base| (store (select |v_#memory_int_166| |ULTIMATE.start_l4_insert_~item~0#1.base|) 4 (select (select |#memory_int| |ULTIMATE.start_l4_insert_~item~0#1.base|) 4))))) (= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0))' at error location [2024-11-14 04:18:26,992 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2024-11-14 04:18:26,992 INFO L185 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2024-11-14 04:18:26,992 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [13, 13] total 23 [2024-11-14 04:18:26,992 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [242509079] [2024-11-14 04:18:26,992 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2024-11-14 04:18:26,993 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 23 states [2024-11-14 04:18:26,993 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 04:18:26,993 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 23 interpolants. [2024-11-14 04:18:26,995 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=207, Invalid=1956, Unknown=3, NotChecked=90, Total=2256 [2024-11-14 04:18:26,995 INFO L87 Difference]: Start difference. First operand 202 states and 246 transitions. Second operand has 23 states, 18 states have (on average 2.5555555555555554) internal successors, (46), 18 states have internal predecessors, (46), 3 states have call successors, (7), 2 states have call predecessors, (7), 5 states have return successors, (8), 5 states have call predecessors, (8), 3 states have call successors, (8) [2024-11-14 04:18:29,024 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-11-14 04:18:31,215 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 04:18:31,215 INFO L93 Difference]: Finished difference Result 216 states and 274 transitions. [2024-11-14 04:18:31,216 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 12 states. [2024-11-14 04:18:31,216 INFO L78 Accepts]: Start accepts. Automaton has has 23 states, 18 states have (on average 2.5555555555555554) internal successors, (46), 18 states have internal predecessors, (46), 3 states have call successors, (7), 2 states have call predecessors, (7), 5 states have return successors, (8), 5 states have call predecessors, (8), 3 states have call successors, (8) Word has length 55 [2024-11-14 04:18:31,217 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 04:18:31,220 INFO L225 Difference]: With dead ends: 216 [2024-11-14 04:18:31,220 INFO L226 Difference]: Without dead ends: 212 [2024-11-14 04:18:31,221 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 132 GetRequests, 74 SyntacticMatches, 7 SemanticMatches, 51 ConstructedPredicates, 1 IntricatePredicates, 0 DeprecatedPredicates, 830 ImplicationChecksByTransitivity, 33.5s TimeCoverageRelationStatistics Valid=252, Invalid=2401, Unknown=3, NotChecked=100, Total=2756 [2024-11-14 04:18:31,221 INFO L432 NwaCegarLoop]: 135 mSDtfsCounter, 9 mSDsluCounter, 946 mSDsCounter, 0 mSdLazyCounter, 1046 mSolverCounterSat, 7 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 3.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 9 SdHoareTripleChecker+Valid, 1081 SdHoareTripleChecker+Invalid, 1224 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 7 IncrementalHoareTripleChecker+Valid, 1046 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 170 IncrementalHoareTripleChecker+Unchecked, 3.4s IncrementalHoareTripleChecker+Time [2024-11-14 04:18:31,222 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [9 Valid, 1081 Invalid, 1224 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [7 Valid, 1046 Invalid, 1 Unknown, 170 Unchecked, 3.4s Time] [2024-11-14 04:18:31,223 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 212 states. [2024-11-14 04:18:31,231 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 212 to 208. [2024-11-14 04:18:31,231 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 208 states, 122 states have (on average 1.860655737704918) internal successors, (227), 190 states have internal predecessors, (227), 13 states have call successors, (13), 4 states have call predecessors, (13), 6 states have return successors, (21), 13 states have call predecessors, (21), 12 states have call successors, (21) [2024-11-14 04:18:31,235 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 208 states to 208 states and 261 transitions. [2024-11-14 04:18:31,235 INFO L78 Accepts]: Start accepts. Automaton has 208 states and 261 transitions. Word has length 55 [2024-11-14 04:18:31,236 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 04:18:31,236 INFO L471 AbstractCegarLoop]: Abstraction has 208 states and 261 transitions. [2024-11-14 04:18:31,236 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 23 states, 18 states have (on average 2.5555555555555554) internal successors, (46), 18 states have internal predecessors, (46), 3 states have call successors, (7), 2 states have call predecessors, (7), 5 states have return successors, (8), 5 states have call predecessors, (8), 3 states have call successors, (8) [2024-11-14 04:18:31,236 INFO L276 IsEmpty]: Start isEmpty. Operand 208 states and 261 transitions. [2024-11-14 04:18:31,238 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 57 [2024-11-14 04:18:31,240 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 04:18:31,240 INFO L215 NwaCegarLoop]: trace histogram [7, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 04:18:31,269 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (8)] Ended with exit code 0 [2024-11-14 04:18:31,440 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable8,8 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 04:18:31,440 INFO L396 AbstractCegarLoop]: === Iteration 10 === Targeting ULTIMATE.startErr3REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2024-11-14 04:18:31,441 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 04:18:31,441 INFO L85 PathProgramCache]: Analyzing trace with hash 1818838705, now seen corresponding path program 2 times [2024-11-14 04:18:31,441 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 04:18:31,441 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2026353636] [2024-11-14 04:18:31,441 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:18:31,441 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 04:18:31,559 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:18:32,766 INFO L134 CoverageAnalysis]: Checked inductivity of 138 backedges. 69 proven. 12 refuted. 0 times theorem prover too weak. 57 trivial. 0 not checked. [2024-11-14 04:18:32,766 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 04:18:32,766 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2026353636] [2024-11-14 04:18:32,767 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2026353636] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 04:18:32,767 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [985043217] [2024-11-14 04:18:32,767 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2024-11-14 04:18:32,767 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 04:18:32,767 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 04:18:32,770 INFO L229 MonitoredProcess]: Starting monitored process 9 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-14 04:18:32,773 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (9)] Waiting until timeout for monitored process [2024-11-14 04:18:33,013 INFO L227 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 2 check-sat command(s) [2024-11-14 04:18:33,014 INFO L228 tOrderPrioritization]: Conjunction of SSA is unsat [2024-11-14 04:18:33,016 INFO L255 TraceCheckSpWp]: Trace formula consists of 202 conjuncts, 29 conjuncts are in the unsatisfiable core [2024-11-14 04:18:33,020 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-14 04:18:33,036 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 8 treesize of output 7 [2024-11-14 04:18:33,102 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2024-11-14 04:18:33,249 INFO L134 CoverageAnalysis]: Checked inductivity of 138 backedges. 37 proven. 1 refuted. 0 times theorem prover too weak. 100 trivial. 0 not checked. [2024-11-14 04:18:33,249 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-14 04:18:33,619 INFO L134 CoverageAnalysis]: Checked inductivity of 138 backedges. 37 proven. 1 refuted. 0 times theorem prover too weak. 100 trivial. 0 not checked. [2024-11-14 04:18:33,619 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [985043217] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-14 04:18:33,619 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [551321843] [2024-11-14 04:18:33,621 INFO L159 IcfgInterpreter]: Started Sifa with 25 locations of interest [2024-11-14 04:18:33,622 INFO L166 IcfgInterpreter]: Building call graph [2024-11-14 04:18:33,622 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2024-11-14 04:18:33,622 INFO L176 IcfgInterpreter]: Starting interpretation [2024-11-14 04:18:33,622 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2024-11-14 04:18:35,502 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 65 for LOIs [2024-11-14 04:18:35,691 INFO L180 IcfgInterpreter]: Interpretation finished [2024-11-14 04:18:43,921 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '5430#(and (<= 1 |#StackHeapBarrier|) (= |~#list~0.offset| 0) (= |ULTIMATE.start_l4_insert_~item~0#1.offset| 0) (= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= (select |#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1) (= 3 |~#list~0.base|) (exists ((|v_#memory_int_195| (Array Int (Array Int Int)))) (= |#memory_int| (store |v_#memory_int_195| |ULTIMATE.start_l4_insert_~item~0#1.base| (store (select |v_#memory_int_195| |ULTIMATE.start_l4_insert_~item~0#1.base|) 4 (select (select |#memory_int| |ULTIMATE.start_l4_insert_~item~0#1.base|) 4))))) (= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (<= 8 (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|)) (= |ULTIMATE.start_l3_insert_~list#1.offset| 4) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (exists ((|v_ULTIMATE.start_l4_insert_~list#1.base_16| Int)) (and (<= (select |#length| |v_ULTIMATE.start_l4_insert_~list#1.base_16|) 3) (or (and (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (exists ((|v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_177| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#amount#1_117| Int)) (and (or (= |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_177| 0) (< 0 |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_177|)) (<= (mod |v_zalloc_or_die_#Ultimate.C_memset_#amount#1_117| 4294967296) (mod |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_177| 4294967296)))) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l2_insert_~item~2#1.base|) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (exists ((|v_#memory_$Pointer$.base_BEFORE_CALL_148| (Array Int (Array Int Int)))) (= (select (select |v_#memory_$Pointer$.base_BEFORE_CALL_148| 3) 0) 0)) (exists ((|v_old(#memory_int)_AFTER_CALL_100| (Array Int (Array Int Int)))) (and (= (select (select |v_old(#memory_int)_AFTER_CALL_100| 1) 1) 0) (= 48 (select (select |v_old(#memory_int)_AFTER_CALL_100| 1) 0)))) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l1_insert_~item~3#1.base|) (exists ((|v_#length_BEFORE_CALL_152| (Array Int Int))) (and (= (select |v_#length_BEFORE_CALL_152| 2) 14) (= (select |v_#length_BEFORE_CALL_152| 3) 4) (= (select |v_#length_BEFORE_CALL_152| 1) 2))) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l0_insert_~item~4#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (exists ((|v_#memory_$Pointer$.offset_BEFORE_CALL_148| (Array Int (Array Int Int)))) (= (select (select |v_#memory_$Pointer$.offset_BEFORE_CALL_148| 3) 0) 0)) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |v_ULTIMATE.start_l4_insert_~list#1.base_16|) (not (= (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) 4) 0))) (and (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (not (= |ULTIMATE.start_l4_insert_~item~0#1.base| 0)) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (exists ((|v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_177| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#amount#1_117| Int)) (and (or (= |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_177| 0) (< 0 |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_177|)) (<= (mod |v_zalloc_or_die_#Ultimate.C_memset_#amount#1_117| 4294967296) (mod |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_177| 4294967296)))) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (= |ULTIMATE.start_l3_insert_~list#1.base| |ULTIMATE.start_l2_insert_~item~2#1.base|) (not (= |ULTIMATE.start_l3_insert_~item~1#1.base| 0)) (exists ((|v_old(#memory_int)_AFTER_CALL_101| (Array Int (Array Int Int)))) (and (= 48 (select (select |v_old(#memory_int)_AFTER_CALL_101| 1) 0)) (= (select (select |v_old(#memory_int)_AFTER_CALL_101| 1) 1) 0))) (exists ((|v_#length_BEFORE_CALL_154| (Array Int Int))) (and (= 14 (select |v_#length_BEFORE_CALL_154| 2)) (= (select |v_#length_BEFORE_CALL_154| 3) 4) (= 2 (select |v_#length_BEFORE_CALL_154| 1)))) (= |ULTIMATE.start_l2_insert_~list#1.base| |ULTIMATE.start_l1_insert_~item~3#1.base|) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l0_insert_~item~4#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (= |ULTIMATE.start_l3_insert_~item~1#1.base| |v_ULTIMATE.start_l4_insert_~list#1.base_16|) (exists ((|v_#memory_$Pointer$.base_BEFORE_CALL_150| (Array Int (Array Int Int)))) (= (select (select |v_#memory_$Pointer$.base_BEFORE_CALL_150| 3) 0) 0)) (exists ((|v_#memory_$Pointer$.offset_BEFORE_CALL_150| (Array Int (Array Int Int)))) (= (select (select |v_#memory_$Pointer$.offset_BEFORE_CALL_150| 3) 0) 0)) (not (= (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) 4) 0)))))) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (exists ((|v_#memory_$Pointer$.base_231| (Array Int (Array Int Int)))) (= |#memory_$Pointer$.base| (store |v_#memory_$Pointer$.base_231| |ULTIMATE.start_l4_insert_~item~0#1.base| (store (select |v_#memory_$Pointer$.base_231| |ULTIMATE.start_l4_insert_~item~0#1.base|) 4 (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) 4))))) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0) (= |ULTIMATE.start_l2_insert_~list#1.offset| 0) (exists ((|v_#memory_$Pointer$.offset_231| (Array Int (Array Int Int)))) (= |#memory_$Pointer$.offset| (store |v_#memory_$Pointer$.offset_231| |ULTIMATE.start_l4_insert_~item~0#1.base| (store (select |v_#memory_$Pointer$.offset_231| |ULTIMATE.start_l4_insert_~item~0#1.base|) 4 0)))) (= |ULTIMATE.start_l3_insert_~item~1#1.offset| 0))' at error location [2024-11-14 04:18:43,921 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2024-11-14 04:18:43,921 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-14 04:18:43,921 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [13, 6, 6] total 21 [2024-11-14 04:18:43,921 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1268889366] [2024-11-14 04:18:43,921 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-14 04:18:43,922 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 21 states [2024-11-14 04:18:43,922 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 04:18:43,923 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 21 interpolants. [2024-11-14 04:18:43,923 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=193, Invalid=1699, Unknown=0, NotChecked=0, Total=1892 [2024-11-14 04:18:43,924 INFO L87 Difference]: Start difference. First operand 208 states and 261 transitions. Second operand has 21 states, 16 states have (on average 2.5625) internal successors, (41), 18 states have internal predecessors, (41), 2 states have call successors, (7), 2 states have call predecessors, (7), 5 states have return successors, (9), 4 states have call predecessors, (9), 2 states have call successors, (9) [2024-11-14 04:18:46,344 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 04:18:46,344 INFO L93 Difference]: Finished difference Result 228 states and 282 transitions. [2024-11-14 04:18:46,344 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 21 states. [2024-11-14 04:18:46,345 INFO L78 Accepts]: Start accepts. Automaton has has 21 states, 16 states have (on average 2.5625) internal successors, (41), 18 states have internal predecessors, (41), 2 states have call successors, (7), 2 states have call predecessors, (7), 5 states have return successors, (9), 4 states have call predecessors, (9), 2 states have call successors, (9) Word has length 56 [2024-11-14 04:18:46,345 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 04:18:46,346 INFO L225 Difference]: With dead ends: 228 [2024-11-14 04:18:46,347 INFO L226 Difference]: Without dead ends: 216 [2024-11-14 04:18:46,348 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 193 GetRequests, 131 SyntacticMatches, 6 SemanticMatches, 56 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 783 ImplicationChecksByTransitivity, 9.8s TimeCoverageRelationStatistics Valid=369, Invalid=2937, Unknown=0, NotChecked=0, Total=3306 [2024-11-14 04:18:46,348 INFO L432 NwaCegarLoop]: 130 mSDtfsCounter, 29 mSDsluCounter, 1249 mSDsCounter, 0 mSdLazyCounter, 1088 mSolverCounterSat, 26 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 29 SdHoareTripleChecker+Valid, 1379 SdHoareTripleChecker+Invalid, 1114 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 26 IncrementalHoareTripleChecker+Valid, 1088 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.4s IncrementalHoareTripleChecker+Time [2024-11-14 04:18:46,349 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [29 Valid, 1379 Invalid, 1114 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [26 Valid, 1088 Invalid, 0 Unknown, 0 Unchecked, 1.4s Time] [2024-11-14 04:18:46,349 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 216 states. [2024-11-14 04:18:46,358 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 216 to 216. [2024-11-14 04:18:46,358 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 216 states, 130 states have (on average 1.8076923076923077) internal successors, (235), 198 states have internal predecessors, (235), 13 states have call successors, (13), 4 states have call predecessors, (13), 6 states have return successors, (21), 13 states have call predecessors, (21), 12 states have call successors, (21) [2024-11-14 04:18:46,360 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 216 states to 216 states and 269 transitions. [2024-11-14 04:18:46,360 INFO L78 Accepts]: Start accepts. Automaton has 216 states and 269 transitions. Word has length 56 [2024-11-14 04:18:46,360 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 04:18:46,360 INFO L471 AbstractCegarLoop]: Abstraction has 216 states and 269 transitions. [2024-11-14 04:18:46,360 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 21 states, 16 states have (on average 2.5625) internal successors, (41), 18 states have internal predecessors, (41), 2 states have call successors, (7), 2 states have call predecessors, (7), 5 states have return successors, (9), 4 states have call predecessors, (9), 2 states have call successors, (9) [2024-11-14 04:18:46,361 INFO L276 IsEmpty]: Start isEmpty. Operand 216 states and 269 transitions. [2024-11-14 04:18:46,362 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 65 [2024-11-14 04:18:46,362 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 04:18:46,362 INFO L215 NwaCegarLoop]: trace histogram [15, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 04:18:46,385 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (9)] Ended with exit code 0 [2024-11-14 04:18:46,566 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 9 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable9 [2024-11-14 04:18:46,566 INFO L396 AbstractCegarLoop]: === Iteration 11 === Targeting ULTIMATE.startErr3REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2024-11-14 04:18:46,566 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 04:18:46,567 INFO L85 PathProgramCache]: Analyzing trace with hash -1989250565, now seen corresponding path program 3 times [2024-11-14 04:18:46,567 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 04:18:46,567 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [508211410] [2024-11-14 04:18:46,567 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:18:46,567 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 04:18:46,675 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:18:48,170 INFO L134 CoverageAnalysis]: Checked inductivity of 270 backedges. 137 proven. 29 refuted. 0 times theorem prover too weak. 104 trivial. 0 not checked. [2024-11-14 04:18:48,170 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 04:18:48,171 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [508211410] [2024-11-14 04:18:48,171 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [508211410] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 04:18:48,171 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [379020891] [2024-11-14 04:18:48,171 INFO L93 rtionOrderModulation]: Changing assertion order to TERMS_WITH_SMALL_CONSTANTS_FIRST [2024-11-14 04:18:48,171 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 04:18:48,171 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 04:18:48,174 INFO L229 MonitoredProcess]: Starting monitored process 10 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-14 04:18:48,175 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (10)] Waiting until timeout for monitored process [2024-11-14 04:18:48,706 INFO L227 tOrderPrioritization]: Assert order TERMS_WITH_SMALL_CONSTANTS_FIRST issued 0 check-sat command(s) [2024-11-14 04:18:48,706 INFO L228 tOrderPrioritization]: Conjunction of SSA is unsat [2024-11-14 04:18:48,712 INFO L255 TraceCheckSpWp]: Trace formula consists of 716 conjuncts, 58 conjuncts are in the unsatisfiable core [2024-11-14 04:18:48,719 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-14 04:18:48,817 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2024-11-14 04:18:48,832 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2024-11-14 04:18:51,628 WARN L873 $PredicateComparison]: unable to prove that (exists ((|zalloc_or_die_calloc_model_~ptr~0#1.base| Int)) (and (= (store |c_old(#length)| |zalloc_or_die_calloc_model_~ptr~0#1.base| (select |c_#length| |zalloc_or_die_calloc_model_~ptr~0#1.base|)) |c_#length|) (= (select |c_old(#valid)| |zalloc_or_die_calloc_model_~ptr~0#1.base|) 0))) is different from true [2024-11-14 04:18:51,893 INFO L190 IndexEqualityManager]: detected not equals via solver [2024-11-14 04:18:51,894 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 9 [2024-11-14 04:18:51,908 INFO L349 Elim1Store]: treesize reduction 4, result has 50.0 percent of original size [2024-11-14 04:18:51,908 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 11 treesize of output 11 [2024-11-14 04:18:51,949 INFO L134 CoverageAnalysis]: Checked inductivity of 270 backedges. 116 proven. 76 refuted. 0 times theorem prover too weak. 64 trivial. 14 not checked. [2024-11-14 04:18:51,949 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-14 04:18:52,101 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [379020891] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 04:18:52,101 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1416561268] [2024-11-14 04:18:52,103 INFO L159 IcfgInterpreter]: Started Sifa with 25 locations of interest [2024-11-14 04:18:52,103 INFO L166 IcfgInterpreter]: Building call graph [2024-11-14 04:18:52,103 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2024-11-14 04:18:52,103 INFO L176 IcfgInterpreter]: Starting interpretation [2024-11-14 04:18:52,104 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2024-11-14 04:18:52,898 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 65 for LOIs [2024-11-14 04:18:52,998 INFO L180 IcfgInterpreter]: Interpretation finished [2024-11-14 04:19:08,232 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '6156#(and (<= 1 |#StackHeapBarrier|) (= |~#list~0.offset| 0) (exists ((|v_#memory_$Pointer$.offset_245| (Array Int (Array Int Int)))) (= |#memory_$Pointer$.offset| (store |v_#memory_$Pointer$.offset_245| |ULTIMATE.start_l4_insert_~item~0#1.base| (store (select |v_#memory_$Pointer$.offset_245| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)))))) (= |ULTIMATE.start_l0_insert_~list#1.base| 3) (<= (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|)) (exists ((|v_#memory_$Pointer$.base_245| (Array Int (Array Int Int)))) (= (store |v_#memory_$Pointer$.base_245| |ULTIMATE.start_l4_insert_~item~0#1.base| (store (select |v_#memory_$Pointer$.base_245| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)))) |#memory_$Pointer$.base|)) (= (select |#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1) (= 3 |~#list~0.base|) (exists ((|v_zalloc_or_die_#Ultimate.C_memset_#value#1_131| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#amount#1_124| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#res#1.offset_110| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_202| Int)) (and (<= (mod |v_zalloc_or_die_#Ultimate.C_memset_#amount#1_124| 4294967296) (mod |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_202| 4294967296)) (= |v_zalloc_or_die_#Ultimate.C_memset_#res#1.offset_110| 0) (= |v_zalloc_or_die_#Ultimate.C_memset_#value#1_131| 0) (<= 0 |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_202|) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0))) (= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (not (= (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0)) (<= 0 (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) (exists ((|v_#memory_int_209| (Array Int (Array Int Int)))) (= |#memory_int| (store |v_#memory_int_209| |ULTIMATE.start_l4_insert_~item~0#1.base| (store (select |v_#memory_int_209| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select (select |#memory_int| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)))))))' at error location [2024-11-14 04:19:08,233 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2024-11-14 04:19:08,233 INFO L185 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2024-11-14 04:19:08,233 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [14, 20] total 31 [2024-11-14 04:19:08,233 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [189009155] [2024-11-14 04:19:08,233 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2024-11-14 04:19:08,234 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 31 states [2024-11-14 04:19:08,234 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 04:19:08,234 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 31 interpolants. [2024-11-14 04:19:08,235 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=155, Invalid=2199, Unknown=2, NotChecked=94, Total=2450 [2024-11-14 04:19:08,235 INFO L87 Difference]: Start difference. First operand 216 states and 269 transitions. Second operand has 31 states, 26 states have (on average 1.9615384615384615) internal successors, (51), 26 states have internal predecessors, (51), 3 states have call successors, (7), 2 states have call predecessors, (7), 5 states have return successors, (8), 5 states have call predecessors, (8), 3 states have call successors, (8) [2024-11-14 04:19:10,794 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 04:19:10,794 INFO L93 Difference]: Finished difference Result 226 states and 289 transitions. [2024-11-14 04:19:10,794 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 17 states. [2024-11-14 04:19:10,795 INFO L78 Accepts]: Start accepts. Automaton has has 31 states, 26 states have (on average 1.9615384615384615) internal successors, (51), 26 states have internal predecessors, (51), 3 states have call successors, (7), 2 states have call predecessors, (7), 5 states have return successors, (8), 5 states have call predecessors, (8), 3 states have call successors, (8) Word has length 64 [2024-11-14 04:19:10,795 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 04:19:10,797 INFO L225 Difference]: With dead ends: 226 [2024-11-14 04:19:10,797 INFO L226 Difference]: Without dead ends: 222 [2024-11-14 04:19:10,798 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 153 GetRequests, 90 SyntacticMatches, 7 SemanticMatches, 56 ConstructedPredicates, 1 IntricatePredicates, 0 DeprecatedPredicates, 1022 ImplicationChecksByTransitivity, 19.2s TimeCoverageRelationStatistics Valid=230, Invalid=2964, Unknown=2, NotChecked=110, Total=3306 [2024-11-14 04:19:10,799 INFO L432 NwaCegarLoop]: 144 mSDtfsCounter, 7 mSDsluCounter, 1468 mSDsCounter, 0 mSdLazyCounter, 1604 mSolverCounterSat, 13 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.6s Time, 0 mProtectedPredicate, 0 mProtectedAction, 7 SdHoareTripleChecker+Valid, 1612 SdHoareTripleChecker+Invalid, 1799 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 13 IncrementalHoareTripleChecker+Valid, 1604 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 182 IncrementalHoareTripleChecker+Unchecked, 1.8s IncrementalHoareTripleChecker+Time [2024-11-14 04:19:10,799 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [7 Valid, 1612 Invalid, 1799 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [13 Valid, 1604 Invalid, 0 Unknown, 182 Unchecked, 1.8s Time] [2024-11-14 04:19:10,800 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 222 states. [2024-11-14 04:19:10,813 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 222 to 218. [2024-11-14 04:19:10,816 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 218 states, 132 states have (on average 1.8106060606060606) internal successors, (239), 200 states have internal predecessors, (239), 13 states have call successors, (13), 4 states have call predecessors, (13), 6 states have return successors, (21), 13 states have call predecessors, (21), 12 states have call successors, (21) [2024-11-14 04:19:10,818 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 218 states to 218 states and 273 transitions. [2024-11-14 04:19:10,818 INFO L78 Accepts]: Start accepts. Automaton has 218 states and 273 transitions. Word has length 64 [2024-11-14 04:19:10,818 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 04:19:10,818 INFO L471 AbstractCegarLoop]: Abstraction has 218 states and 273 transitions. [2024-11-14 04:19:10,819 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 31 states, 26 states have (on average 1.9615384615384615) internal successors, (51), 26 states have internal predecessors, (51), 3 states have call successors, (7), 2 states have call predecessors, (7), 5 states have return successors, (8), 5 states have call predecessors, (8), 3 states have call successors, (8) [2024-11-14 04:19:10,819 INFO L276 IsEmpty]: Start isEmpty. Operand 218 states and 273 transitions. [2024-11-14 04:19:10,824 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 66 [2024-11-14 04:19:10,824 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 04:19:10,824 INFO L215 NwaCegarLoop]: trace histogram [16, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 04:19:10,843 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (10)] Ended with exit code 0 [2024-11-14 04:19:11,024 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 10 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable10 [2024-11-14 04:19:11,025 INFO L396 AbstractCegarLoop]: === Iteration 12 === Targeting ULTIMATE.startErr3REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2024-11-14 04:19:11,025 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 04:19:11,025 INFO L85 PathProgramCache]: Analyzing trace with hash 313868532, now seen corresponding path program 4 times [2024-11-14 04:19:11,025 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 04:19:11,025 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1615154933] [2024-11-14 04:19:11,025 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:19:11,025 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 04:19:11,143 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:19:12,701 INFO L134 CoverageAnalysis]: Checked inductivity of 291 backedges. 149 proven. 38 refuted. 0 times theorem prover too weak. 104 trivial. 0 not checked. [2024-11-14 04:19:12,701 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 04:19:12,701 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1615154933] [2024-11-14 04:19:12,701 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1615154933] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 04:19:12,701 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [142698712] [2024-11-14 04:19:12,701 INFO L93 rtionOrderModulation]: Changing assertion order to NOT_INCREMENTALLY [2024-11-14 04:19:12,701 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 04:19:12,702 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 04:19:12,703 INFO L229 MonitoredProcess]: Starting monitored process 11 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-14 04:19:12,704 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (11)] Waiting until timeout for monitored process [2024-11-14 04:19:13,090 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:19:13,094 INFO L255 TraceCheckSpWp]: Trace formula consists of 731 conjuncts, 39 conjuncts are in the unsatisfiable core [2024-11-14 04:19:13,099 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-14 04:19:13,124 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 8 treesize of output 1 [2024-11-14 04:19:30,877 WARN L873 $PredicateComparison]: unable to prove that (exists ((|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (and (= (store |c_old(#length)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| (select |c_#length| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|)) |c_#length|) (= (select |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 0))) is different from true [2024-11-14 04:19:30,923 INFO L190 IndexEqualityManager]: detected not equals via solver [2024-11-14 04:19:30,924 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 18 treesize of output 13 [2024-11-14 04:19:30,934 INFO L349 Elim1Store]: treesize reduction 4, result has 50.0 percent of original size [2024-11-14 04:19:30,934 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 11 treesize of output 11 [2024-11-14 04:19:31,179 INFO L134 CoverageAnalysis]: Checked inductivity of 291 backedges. 149 proven. 10 refuted. 0 times theorem prover too weak. 104 trivial. 28 not checked. [2024-11-14 04:19:31,180 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-14 04:19:31,327 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [142698712] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 04:19:31,327 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [926525763] [2024-11-14 04:19:31,329 INFO L159 IcfgInterpreter]: Started Sifa with 25 locations of interest [2024-11-14 04:19:31,329 INFO L166 IcfgInterpreter]: Building call graph [2024-11-14 04:19:31,329 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2024-11-14 04:19:31,329 INFO L176 IcfgInterpreter]: Starting interpretation [2024-11-14 04:19:31,330 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2024-11-14 04:19:32,052 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 65 for LOIs [2024-11-14 04:19:32,164 INFO L180 IcfgInterpreter]: Interpretation finished [2024-11-14 04:19:55,351 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '6864#(and (<= 1 |#StackHeapBarrier|) (= |~#list~0.offset| 0) (exists ((|v_#memory_$Pointer$.offset_259| (Array Int (Array Int Int)))) (= |#memory_$Pointer$.offset| (store |v_#memory_$Pointer$.offset_259| |ULTIMATE.start_l4_insert_~item~0#1.base| (store (select |v_#memory_$Pointer$.offset_259| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)))))) (= |ULTIMATE.start_l0_insert_~list#1.base| 3) (<= (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|)) (= (select |#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1) (= 3 |~#list~0.base|) (exists ((|v_zalloc_or_die_#Ultimate.C_memset_#amount#1_134| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#res#1.offset_119| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_225| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#value#1_141| Int)) (and (= |v_zalloc_or_die_#Ultimate.C_memset_#value#1_141| 0) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0) (<= (mod |v_zalloc_or_die_#Ultimate.C_memset_#amount#1_134| 4294967296) (mod |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_225| 4294967296)) (= |v_zalloc_or_die_#Ultimate.C_memset_#res#1.offset_119| 0) (<= 0 |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_225|))) (= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (exists ((|v_#memory_int_223| (Array Int (Array Int Int)))) (= |#memory_int| (store |v_#memory_int_223| |ULTIMATE.start_l4_insert_~item~0#1.base| (store (select |v_#memory_int_223| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select (select |#memory_int| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)))))) (not (= (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0)) (<= 0 (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) (exists ((|v_#memory_$Pointer$.base_259| (Array Int (Array Int Int)))) (= (store |v_#memory_$Pointer$.base_259| |ULTIMATE.start_l4_insert_~item~0#1.base| (store (select |v_#memory_$Pointer$.base_259| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)))) |#memory_$Pointer$.base|)))' at error location [2024-11-14 04:19:55,351 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2024-11-14 04:19:55,351 INFO L185 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2024-11-14 04:19:55,351 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [15, 15] total 27 [2024-11-14 04:19:55,352 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1989154871] [2024-11-14 04:19:55,352 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2024-11-14 04:19:55,352 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 27 states [2024-11-14 04:19:55,352 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 04:19:55,353 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 27 interpolants. [2024-11-14 04:19:55,353 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=142, Invalid=1833, Unknown=9, NotChecked=86, Total=2070 [2024-11-14 04:19:55,354 INFO L87 Difference]: Start difference. First operand 218 states and 273 transitions. Second operand has 27 states, 22 states have (on average 2.090909090909091) internal successors, (46), 22 states have internal predecessors, (46), 3 states have call successors, (7), 2 states have call predecessors, (7), 5 states have return successors, (8), 5 states have call predecessors, (8), 3 states have call successors, (8) [2024-11-14 04:19:57,378 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-11-14 04:20:00,407 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-11-14 04:20:02,273 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 04:20:02,273 INFO L93 Difference]: Finished difference Result 232 states and 301 transitions. [2024-11-14 04:20:02,273 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 15 states. [2024-11-14 04:20:02,274 INFO L78 Accepts]: Start accepts. Automaton has has 27 states, 22 states have (on average 2.090909090909091) internal successors, (46), 22 states have internal predecessors, (46), 3 states have call successors, (7), 2 states have call predecessors, (7), 5 states have return successors, (8), 5 states have call predecessors, (8), 3 states have call successors, (8) Word has length 65 [2024-11-14 04:20:02,274 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 04:20:02,276 INFO L225 Difference]: With dead ends: 232 [2024-11-14 04:20:02,276 INFO L226 Difference]: Without dead ends: 228 [2024-11-14 04:20:02,276 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 156 GetRequests, 98 SyntacticMatches, 6 SemanticMatches, 52 ConstructedPredicates, 1 IntricatePredicates, 0 DeprecatedPredicates, 760 ImplicationChecksByTransitivity, 42.0s TimeCoverageRelationStatistics Valid=219, Invalid=2532, Unknown=9, NotChecked=102, Total=2862 [2024-11-14 04:20:02,277 INFO L432 NwaCegarLoop]: 135 mSDtfsCounter, 15 mSDsluCounter, 790 mSDsCounter, 0 mSdLazyCounter, 1150 mSolverCounterSat, 13 mSolverCounterUnsat, 2 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 5.9s Time, 0 mProtectedPredicate, 0 mProtectedAction, 15 SdHoareTripleChecker+Valid, 925 SdHoareTripleChecker+Invalid, 1335 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 13 IncrementalHoareTripleChecker+Valid, 1150 IncrementalHoareTripleChecker+Invalid, 2 IncrementalHoareTripleChecker+Unknown, 170 IncrementalHoareTripleChecker+Unchecked, 6.1s IncrementalHoareTripleChecker+Time [2024-11-14 04:20:02,277 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [15 Valid, 925 Invalid, 1335 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [13 Valid, 1150 Invalid, 2 Unknown, 170 Unchecked, 6.1s Time] [2024-11-14 04:20:02,278 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 228 states. [2024-11-14 04:20:02,286 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 228 to 220. [2024-11-14 04:20:02,287 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 220 states, 134 states have (on average 1.8134328358208955) internal successors, (243), 202 states have internal predecessors, (243), 13 states have call successors, (13), 4 states have call predecessors, (13), 6 states have return successors, (21), 13 states have call predecessors, (21), 12 states have call successors, (21) [2024-11-14 04:20:02,288 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 220 states to 220 states and 277 transitions. [2024-11-14 04:20:02,288 INFO L78 Accepts]: Start accepts. Automaton has 220 states and 277 transitions. Word has length 65 [2024-11-14 04:20:02,289 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 04:20:02,289 INFO L471 AbstractCegarLoop]: Abstraction has 220 states and 277 transitions. [2024-11-14 04:20:02,289 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 27 states, 22 states have (on average 2.090909090909091) internal successors, (46), 22 states have internal predecessors, (46), 3 states have call successors, (7), 2 states have call predecessors, (7), 5 states have return successors, (8), 5 states have call predecessors, (8), 3 states have call successors, (8) [2024-11-14 04:20:02,289 INFO L276 IsEmpty]: Start isEmpty. Operand 220 states and 277 transitions. [2024-11-14 04:20:02,290 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 67 [2024-11-14 04:20:02,291 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 04:20:02,291 INFO L215 NwaCegarLoop]: trace histogram [17, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 04:20:02,312 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (11)] Ended with exit code 0 [2024-11-14 04:20:02,491 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 11 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable11 [2024-11-14 04:20:02,491 INFO L396 AbstractCegarLoop]: === Iteration 13 === Targeting ULTIMATE.startErr3REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2024-11-14 04:20:02,492 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 04:20:02,492 INFO L85 PathProgramCache]: Analyzing trace with hash -1303883493, now seen corresponding path program 5 times [2024-11-14 04:20:02,492 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 04:20:02,492 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [2071025673] [2024-11-14 04:20:02,492 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:20:02,492 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 04:20:02,580 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:20:04,274 INFO L134 CoverageAnalysis]: Checked inductivity of 313 backedges. 161 proven. 48 refuted. 0 times theorem prover too weak. 104 trivial. 0 not checked. [2024-11-14 04:20:04,275 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 04:20:04,275 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [2071025673] [2024-11-14 04:20:04,275 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [2071025673] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 04:20:04,275 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [944535732] [2024-11-14 04:20:04,275 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2024-11-14 04:20:04,276 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 04:20:04,276 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 04:20:04,278 INFO L229 MonitoredProcess]: Starting monitored process 12 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-14 04:20:04,282 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (12)] Waiting until timeout for monitored process [2024-11-14 04:20:04,689 INFO L227 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 3 check-sat command(s) [2024-11-14 04:20:04,689 INFO L228 tOrderPrioritization]: Conjunction of SSA is unsat [2024-11-14 04:20:04,693 INFO L255 TraceCheckSpWp]: Trace formula consists of 353 conjuncts, 35 conjuncts are in the unsatisfiable core [2024-11-14 04:20:04,696 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-14 04:20:04,706 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 8 treesize of output 7 [2024-11-14 04:20:04,778 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2024-11-14 04:20:05,087 INFO L134 CoverageAnalysis]: Checked inductivity of 313 backedges. 105 proven. 10 refuted. 0 times theorem prover too weak. 198 trivial. 0 not checked. [2024-11-14 04:20:05,087 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-14 04:20:05,626 INFO L134 CoverageAnalysis]: Checked inductivity of 313 backedges. 105 proven. 10 refuted. 0 times theorem prover too weak. 198 trivial. 0 not checked. [2024-11-14 04:20:05,626 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [944535732] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-14 04:20:05,626 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1034885034] [2024-11-14 04:20:05,628 INFO L159 IcfgInterpreter]: Started Sifa with 25 locations of interest [2024-11-14 04:20:05,628 INFO L166 IcfgInterpreter]: Building call graph [2024-11-14 04:20:05,628 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2024-11-14 04:20:05,632 INFO L176 IcfgInterpreter]: Starting interpretation [2024-11-14 04:20:05,632 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2024-11-14 04:20:06,349 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 65 for LOIs [2024-11-14 04:20:06,470 INFO L180 IcfgInterpreter]: Interpretation finished [2024-11-14 04:20:09,709 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '7770#(and (<= 1 |#StackHeapBarrier|) (= |~#list~0.offset| 0) (= |ULTIMATE.start_l0_insert_~list#1.base| 3) (<= (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|)) (= (select |#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1) (= 3 |~#list~0.base|) (exists ((|v_#memory_int_264| (Array Int (Array Int Int)))) (= |#memory_int| (store |v_#memory_int_264| |ULTIMATE.start_l4_insert_~item~0#1.base| (store (select |v_#memory_int_264| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select (select |#memory_int| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)))))) (= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (exists ((|v_#memory_$Pointer$.base_300| (Array Int (Array Int Int)))) (= (store |v_#memory_$Pointer$.base_300| |ULTIMATE.start_l4_insert_~item~0#1.base| (store (select |v_#memory_$Pointer$.base_300| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)))) |#memory_$Pointer$.base|)) (not (= (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0)) (exists ((|v_#memory_$Pointer$.offset_300| (Array Int (Array Int Int)))) (= |#memory_$Pointer$.offset| (store |v_#memory_$Pointer$.offset_300| |ULTIMATE.start_l4_insert_~item~0#1.base| (store (select |v_#memory_$Pointer$.offset_300| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)))))) (<= 0 (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) (exists ((|v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_282| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#amount#1_161| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#value#1_173| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#res#1.offset_144| Int)) (and (= |v_zalloc_or_die_#Ultimate.C_memset_#res#1.offset_144| 0) (<= (mod |v_zalloc_or_die_#Ultimate.C_memset_#amount#1_161| 4294967296) (mod |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_282| 4294967296)) (<= 0 |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_282|) (= |v_zalloc_or_die_#Ultimate.C_memset_#value#1_173| 0) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0))))' at error location [2024-11-14 04:20:09,709 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2024-11-14 04:20:09,709 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-14 04:20:09,709 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [16, 9, 9] total 30 [2024-11-14 04:20:09,709 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1133659722] [2024-11-14 04:20:09,709 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-14 04:20:09,710 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 30 states [2024-11-14 04:20:09,710 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 04:20:09,711 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 30 interpolants. [2024-11-14 04:20:09,711 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=173, Invalid=1989, Unknown=0, NotChecked=0, Total=2162 [2024-11-14 04:20:09,712 INFO L87 Difference]: Start difference. First operand 220 states and 277 transitions. Second operand has 30 states, 25 states have (on average 2.0) internal successors, (50), 27 states have internal predecessors, (50), 2 states have call successors, (7), 2 states have call predecessors, (7), 5 states have return successors, (9), 4 states have call predecessors, (9), 2 states have call successors, (9) [2024-11-14 04:20:14,062 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 04:20:14,062 INFO L93 Difference]: Finished difference Result 246 states and 310 transitions. [2024-11-14 04:20:14,062 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 30 states. [2024-11-14 04:20:14,062 INFO L78 Accepts]: Start accepts. Automaton has has 30 states, 25 states have (on average 2.0) internal successors, (50), 27 states have internal predecessors, (50), 2 states have call successors, (7), 2 states have call predecessors, (7), 5 states have return successors, (9), 4 states have call predecessors, (9), 2 states have call successors, (9) Word has length 66 [2024-11-14 04:20:14,062 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 04:20:14,063 INFO L225 Difference]: With dead ends: 246 [2024-11-14 04:20:14,063 INFO L226 Difference]: Without dead ends: 234 [2024-11-14 04:20:14,064 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 235 GetRequests, 161 SyntacticMatches, 6 SemanticMatches, 68 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 1125 ImplicationChecksByTransitivity, 6.9s TimeCoverageRelationStatistics Valid=589, Invalid=4241, Unknown=0, NotChecked=0, Total=4830 [2024-11-14 04:20:14,065 INFO L432 NwaCegarLoop]: 130 mSDtfsCounter, 50 mSDsluCounter, 1747 mSDsCounter, 0 mSdLazyCounter, 1511 mSolverCounterSat, 71 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 1.4s Time, 0 mProtectedPredicate, 0 mProtectedAction, 50 SdHoareTripleChecker+Valid, 1877 SdHoareTripleChecker+Invalid, 1582 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 71 IncrementalHoareTripleChecker+Valid, 1511 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 1.6s IncrementalHoareTripleChecker+Time [2024-11-14 04:20:14,065 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [50 Valid, 1877 Invalid, 1582 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [71 Valid, 1511 Invalid, 0 Unknown, 0 Unchecked, 1.6s Time] [2024-11-14 04:20:14,066 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 234 states. [2024-11-14 04:20:14,073 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 234 to 234. [2024-11-14 04:20:14,073 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 234 states, 148 states have (on average 1.7094594594594594) internal successors, (253), 216 states have internal predecessors, (253), 13 states have call successors, (13), 4 states have call predecessors, (13), 6 states have return successors, (21), 13 states have call predecessors, (21), 12 states have call successors, (21) [2024-11-14 04:20:14,075 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 234 states to 234 states and 287 transitions. [2024-11-14 04:20:14,075 INFO L78 Accepts]: Start accepts. Automaton has 234 states and 287 transitions. Word has length 66 [2024-11-14 04:20:14,075 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 04:20:14,075 INFO L471 AbstractCegarLoop]: Abstraction has 234 states and 287 transitions. [2024-11-14 04:20:14,076 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 30 states, 25 states have (on average 2.0) internal successors, (50), 27 states have internal predecessors, (50), 2 states have call successors, (7), 2 states have call predecessors, (7), 5 states have return successors, (9), 4 states have call predecessors, (9), 2 states have call successors, (9) [2024-11-14 04:20:14,076 INFO L276 IsEmpty]: Start isEmpty. Operand 234 states and 287 transitions. [2024-11-14 04:20:14,077 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 86 [2024-11-14 04:20:14,077 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 04:20:14,077 INFO L215 NwaCegarLoop]: trace histogram [36, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 04:20:14,102 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (12)] Ended with exit code 0 [2024-11-14 04:20:14,281 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 12 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable12 [2024-11-14 04:20:14,281 INFO L396 AbstractCegarLoop]: === Iteration 14 === Targeting ULTIMATE.startErr3REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2024-11-14 04:20:14,281 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 04:20:14,281 INFO L85 PathProgramCache]: Analyzing trace with hash -1767391588, now seen corresponding path program 6 times [2024-11-14 04:20:14,281 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 04:20:14,281 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1792137661] [2024-11-14 04:20:14,282 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:20:14,282 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 04:20:14,431 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:20:16,531 INFO L134 CoverageAnalysis]: Checked inductivity of 921 backedges. 461 proven. 101 refuted. 0 times theorem prover too weak. 359 trivial. 0 not checked. [2024-11-14 04:20:16,532 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 04:20:16,532 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1792137661] [2024-11-14 04:20:16,532 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1792137661] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 04:20:16,532 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2002412365] [2024-11-14 04:20:16,532 INFO L93 rtionOrderModulation]: Changing assertion order to TERMS_WITH_SMALL_CONSTANTS_FIRST [2024-11-14 04:20:16,532 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 04:20:16,532 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 04:20:16,534 INFO L229 MonitoredProcess]: Starting monitored process 13 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-14 04:20:16,535 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (13)] Waiting until timeout for monitored process [2024-11-14 04:20:17,855 INFO L227 tOrderPrioritization]: Assert order TERMS_WITH_SMALL_CONSTANTS_FIRST issued 0 check-sat command(s) [2024-11-14 04:20:17,856 INFO L228 tOrderPrioritization]: Conjunction of SSA is unsat [2024-11-14 04:20:17,862 INFO L255 TraceCheckSpWp]: Trace formula consists of 1031 conjuncts, 59 conjuncts are in the unsatisfiable core [2024-11-14 04:20:17,866 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-14 04:20:18,024 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2024-11-14 04:20:18,032 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2024-11-14 04:20:21,175 WARN L873 $PredicateComparison]: unable to prove that (exists ((|zalloc_or_die_calloc_model_~ptr~0#1.base| Int)) (and (= (store |c_old(#length)| |zalloc_or_die_calloc_model_~ptr~0#1.base| (select |c_#length| |zalloc_or_die_calloc_model_~ptr~0#1.base|)) |c_#length|) (= (select |c_old(#valid)| |zalloc_or_die_calloc_model_~ptr~0#1.base|) 0))) is different from true [2024-11-14 04:20:21,252 INFO L190 IndexEqualityManager]: detected not equals via solver [2024-11-14 04:20:21,252 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 9 [2024-11-14 04:20:21,263 INFO L349 Elim1Store]: treesize reduction 4, result has 50.0 percent of original size [2024-11-14 04:20:21,263 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 11 treesize of output 11 [2024-11-14 04:20:21,308 INFO L134 CoverageAnalysis]: Checked inductivity of 921 backedges. 359 proven. 180 refuted. 0 times theorem prover too weak. 236 trivial. 146 not checked. [2024-11-14 04:20:21,308 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-14 04:20:21,483 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [2002412365] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 04:20:21,483 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [446929465] [2024-11-14 04:20:21,485 INFO L159 IcfgInterpreter]: Started Sifa with 25 locations of interest [2024-11-14 04:20:21,485 INFO L166 IcfgInterpreter]: Building call graph [2024-11-14 04:20:21,485 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2024-11-14 04:20:21,485 INFO L176 IcfgInterpreter]: Starting interpretation [2024-11-14 04:20:21,485 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2024-11-14 04:20:22,006 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 65 for LOIs [2024-11-14 04:20:22,126 INFO L180 IcfgInterpreter]: Interpretation finished [2024-11-14 04:20:36,014 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '8612#(and (<= 1 |#StackHeapBarrier|) (= |~#list~0.offset| 0) (= |ULTIMATE.start_l0_insert_~list#1.base| 3) (<= (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|)) (exists ((|v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_320| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#res#1.offset_153| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#amount#1_172| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#value#1_183| Int)) (and (<= (mod |v_zalloc_or_die_#Ultimate.C_memset_#amount#1_172| 4294967296) (mod |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_320| 4294967296)) (= |v_zalloc_or_die_#Ultimate.C_memset_#res#1.offset_153| 0) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0) (<= 0 |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_320|) (= |v_zalloc_or_die_#Ultimate.C_memset_#value#1_183| 0))) (= (select |#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1) (= 3 |~#list~0.base|) (exists ((|v_#memory_$Pointer$.base_321| (Array Int (Array Int Int)))) (= |#memory_$Pointer$.base| (store |v_#memory_$Pointer$.base_321| |ULTIMATE.start_l4_insert_~item~0#1.base| (store (select |v_#memory_$Pointer$.base_321| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)))))) (= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (exists ((|v_#memory_$Pointer$.offset_321| (Array Int (Array Int Int)))) (= |#memory_$Pointer$.offset| (store |v_#memory_$Pointer$.offset_321| |ULTIMATE.start_l4_insert_~item~0#1.base| (store (select |v_#memory_$Pointer$.offset_321| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)))))) (not (= (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0)) (<= 0 (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) (exists ((|v_#memory_int_285| (Array Int (Array Int Int)))) (= |#memory_int| (store |v_#memory_int_285| |ULTIMATE.start_l4_insert_~item~0#1.base| (store (select |v_#memory_int_285| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select (select |#memory_int| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)))))))' at error location [2024-11-14 04:20:36,014 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2024-11-14 04:20:36,014 INFO L185 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2024-11-14 04:20:36,014 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [17, 22] total 36 [2024-11-14 04:20:36,014 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1302632307] [2024-11-14 04:20:36,014 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2024-11-14 04:20:36,015 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 36 states [2024-11-14 04:20:36,015 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 04:20:36,015 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 36 interpolants. [2024-11-14 04:20:36,016 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=170, Invalid=2694, Unknown=2, NotChecked=104, Total=2970 [2024-11-14 04:20:36,017 INFO L87 Difference]: Start difference. First operand 234 states and 287 transitions. Second operand has 36 states, 31 states have (on average 1.8387096774193548) internal successors, (57), 31 states have internal predecessors, (57), 3 states have call successors, (7), 2 states have call predecessors, (7), 5 states have return successors, (8), 5 states have call predecessors, (8), 3 states have call successors, (8) [2024-11-14 04:20:39,832 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 04:20:39,832 INFO L93 Difference]: Finished difference Result 244 states and 307 transitions. [2024-11-14 04:20:39,833 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 20 states. [2024-11-14 04:20:39,833 INFO L78 Accepts]: Start accepts. Automaton has has 36 states, 31 states have (on average 1.8387096774193548) internal successors, (57), 31 states have internal predecessors, (57), 3 states have call successors, (7), 2 states have call predecessors, (7), 5 states have return successors, (8), 5 states have call predecessors, (8), 3 states have call successors, (8) Word has length 85 [2024-11-14 04:20:39,834 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 04:20:39,835 INFO L225 Difference]: With dead ends: 244 [2024-11-14 04:20:39,835 INFO L226 Difference]: Without dead ends: 240 [2024-11-14 04:20:39,836 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 200 GetRequests, 130 SyntacticMatches, 6 SemanticMatches, 64 ConstructedPredicates, 1 IntricatePredicates, 0 DeprecatedPredicates, 1203 ImplicationChecksByTransitivity, 18.9s TimeCoverageRelationStatistics Valid=275, Invalid=3887, Unknown=2, NotChecked=126, Total=4290 [2024-11-14 04:20:39,837 INFO L432 NwaCegarLoop]: 139 mSDtfsCounter, 7 mSDsluCounter, 2025 mSDsCounter, 0 mSdLazyCounter, 2004 mSolverCounterSat, 7 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 2.2s Time, 0 mProtectedPredicate, 0 mProtectedAction, 7 SdHoareTripleChecker+Valid, 2164 SdHoareTripleChecker+Invalid, 2186 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 7 IncrementalHoareTripleChecker+Valid, 2004 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 175 IncrementalHoareTripleChecker+Unchecked, 2.4s IncrementalHoareTripleChecker+Time [2024-11-14 04:20:39,837 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [7 Valid, 2164 Invalid, 2186 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [7 Valid, 2004 Invalid, 0 Unknown, 175 Unchecked, 2.4s Time] [2024-11-14 04:20:39,838 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 240 states. [2024-11-14 04:20:39,846 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 240 to 236. [2024-11-14 04:20:39,847 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 236 states, 150 states have (on average 1.7133333333333334) internal successors, (257), 218 states have internal predecessors, (257), 13 states have call successors, (13), 4 states have call predecessors, (13), 6 states have return successors, (21), 13 states have call predecessors, (21), 12 states have call successors, (21) [2024-11-14 04:20:39,849 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 236 states to 236 states and 291 transitions. [2024-11-14 04:20:39,849 INFO L78 Accepts]: Start accepts. Automaton has 236 states and 291 transitions. Word has length 85 [2024-11-14 04:20:39,849 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 04:20:39,849 INFO L471 AbstractCegarLoop]: Abstraction has 236 states and 291 transitions. [2024-11-14 04:20:39,850 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 36 states, 31 states have (on average 1.8387096774193548) internal successors, (57), 31 states have internal predecessors, (57), 3 states have call successors, (7), 2 states have call predecessors, (7), 5 states have return successors, (8), 5 states have call predecessors, (8), 3 states have call successors, (8) [2024-11-14 04:20:39,850 INFO L276 IsEmpty]: Start isEmpty. Operand 236 states and 291 transitions. [2024-11-14 04:20:39,851 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 87 [2024-11-14 04:20:39,851 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 04:20:39,851 INFO L215 NwaCegarLoop]: trace histogram [37, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 04:20:39,896 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (13)] Ended with exit code 0 [2024-11-14 04:20:40,051 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable13,13 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 04:20:40,052 INFO L396 AbstractCegarLoop]: === Iteration 15 === Targeting ULTIMATE.startErr3REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2024-11-14 04:20:40,052 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 04:20:40,052 INFO L85 PathProgramCache]: Analyzing trace with hash -1961343245, now seen corresponding path program 7 times [2024-11-14 04:20:40,053 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 04:20:40,053 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [589664818] [2024-11-14 04:20:40,053 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:20:40,053 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 04:20:40,182 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:20:42,583 INFO L134 CoverageAnalysis]: Checked inductivity of 963 backedges. 485 proven. 119 refuted. 0 times theorem prover too weak. 359 trivial. 0 not checked. [2024-11-14 04:20:42,583 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 04:20:42,583 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [589664818] [2024-11-14 04:20:42,583 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [589664818] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 04:20:42,583 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2023271652] [2024-11-14 04:20:42,583 INFO L93 rtionOrderModulation]: Changing assertion order to NOT_INCREMENTALLY [2024-11-14 04:20:42,583 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 04:20:42,584 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 04:20:42,586 INFO L229 MonitoredProcess]: Starting monitored process 14 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-14 04:20:42,587 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (14)] Waiting until timeout for monitored process [2024-11-14 04:20:44,301 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:20:44,309 INFO L255 TraceCheckSpWp]: Trace formula consists of 1046 conjuncts, 97 conjuncts are in the unsatisfiable core [2024-11-14 04:20:44,314 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-14 04:20:44,485 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2024-11-14 04:20:54,553 INFO L349 Elim1Store]: treesize reduction 18, result has 35.7 percent of original size [2024-11-14 04:20:54,553 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 17 treesize of output 21 [2024-11-14 04:20:54,567 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 9 [2024-11-14 04:20:54,919 WARN L873 $PredicateComparison]: unable to prove that (exists ((|v_zalloc_or_die_#Ultimate.C_memset_#res#1.base_135| Int)) (and (= (store |c_old(#length)| |v_zalloc_or_die_#Ultimate.C_memset_#res#1.base_135| (select |c_#length| |v_zalloc_or_die_#Ultimate.C_memset_#res#1.base_135|)) |c_#length|) (= (select |c_old(#valid)| |v_zalloc_or_die_#Ultimate.C_memset_#res#1.base_135|) 0))) is different from true [2024-11-14 04:20:54,934 INFO L190 IndexEqualityManager]: detected not equals via solver [2024-11-14 04:20:54,935 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 2 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 9 [2024-11-14 04:20:54,958 INFO L349 Elim1Store]: treesize reduction 8, result has 52.9 percent of original size [2024-11-14 04:20:54,958 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 3 select indices, 3 select index equivalence classes, 1 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 2 case distinctions, treesize of input 16 treesize of output 18 [2024-11-14 04:20:55,029 INFO L134 CoverageAnalysis]: Checked inductivity of 963 backedges. 297 proven. 525 refuted. 0 times theorem prover too weak. 139 trivial. 2 not checked. [2024-11-14 04:20:55,030 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-14 04:20:55,305 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [2023271652] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 04:20:55,306 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1885073659] [2024-11-14 04:20:55,308 INFO L159 IcfgInterpreter]: Started Sifa with 25 locations of interest [2024-11-14 04:20:55,308 INFO L166 IcfgInterpreter]: Building call graph [2024-11-14 04:20:55,309 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2024-11-14 04:20:55,309 INFO L176 IcfgInterpreter]: Starting interpretation [2024-11-14 04:20:55,309 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2024-11-14 04:20:55,970 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 65 for LOIs [2024-11-14 04:20:56,202 INFO L180 IcfgInterpreter]: Interpretation finished [2024-11-14 04:21:24,784 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '9440#(and (<= 1 |#StackHeapBarrier|) (= |~#list~0.offset| 0) (= |ULTIMATE.start_l0_insert_~list#1.base| 3) (<= (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|)) (= (select |#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1) (= 3 |~#list~0.base|) (exists ((|v_#memory_int_305| (Array Int (Array Int Int)))) (= (store |v_#memory_int_305| |ULTIMATE.start_l4_insert_~item~0#1.base| (store (select |v_#memory_int_305| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select (select |#memory_int| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)))) |#memory_int|)) (= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (exists ((|v_#memory_$Pointer$.offset_341| (Array Int (Array Int Int)))) (= |#memory_$Pointer$.offset| (store |v_#memory_$Pointer$.offset_341| |ULTIMATE.start_l4_insert_~item~0#1.base| (store (select |v_#memory_$Pointer$.offset_341| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)))))) (exists ((|v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_359| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#amount#1_182| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#res#1.offset_162| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#value#1_193| Int)) (and (<= 0 |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_359|) (<= (mod |v_zalloc_or_die_#Ultimate.C_memset_#amount#1_182| 4294967296) (mod |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_359| 4294967296)) (= |v_zalloc_or_die_#Ultimate.C_memset_#res#1.offset_162| 0) (= |v_zalloc_or_die_#Ultimate.C_memset_#value#1_193| 0) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0))) (not (= (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0)) (exists ((|v_#memory_$Pointer$.base_341| (Array Int (Array Int Int)))) (= (store |v_#memory_$Pointer$.base_341| |ULTIMATE.start_l4_insert_~item~0#1.base| (store (select |v_#memory_$Pointer$.base_341| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)))) |#memory_$Pointer$.base|)) (<= 0 (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)))' at error location [2024-11-14 04:21:24,784 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2024-11-14 04:21:24,784 INFO L185 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2024-11-14 04:21:24,784 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [18, 27] total 43 [2024-11-14 04:21:24,785 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [394376553] [2024-11-14 04:21:24,785 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2024-11-14 04:21:24,785 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 43 states [2024-11-14 04:21:24,785 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 04:21:24,786 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 43 interpolants. [2024-11-14 04:21:24,788 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=194, Invalid=3465, Unknown=5, NotChecked=118, Total=3782 [2024-11-14 04:21:24,788 INFO L87 Difference]: Start difference. First operand 236 states and 291 transitions. Second operand has 43 states, 35 states have (on average 1.8571428571428572) internal successors, (65), 38 states have internal predecessors, (65), 4 states have call successors, (8), 2 states have call predecessors, (8), 6 states have return successors, (9), 6 states have call predecessors, (9), 4 states have call successors, (9) [2024-11-14 04:21:26,849 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-11-14 04:21:33,186 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 04:21:33,186 INFO L93 Difference]: Finished difference Result 282 states and 366 transitions. [2024-11-14 04:21:33,187 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 25 states. [2024-11-14 04:21:33,187 INFO L78 Accepts]: Start accepts. Automaton has has 43 states, 35 states have (on average 1.8571428571428572) internal successors, (65), 38 states have internal predecessors, (65), 4 states have call successors, (8), 2 states have call predecessors, (8), 6 states have return successors, (9), 6 states have call predecessors, (9), 4 states have call successors, (9) Word has length 86 [2024-11-14 04:21:33,187 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 04:21:33,191 INFO L225 Difference]: With dead ends: 282 [2024-11-14 04:21:33,191 INFO L226 Difference]: Without dead ends: 274 [2024-11-14 04:21:33,193 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 210 GetRequests, 127 SyntacticMatches, 7 SemanticMatches, 76 ConstructedPredicates, 1 IntricatePredicates, 0 DeprecatedPredicates, 1682 ImplicationChecksByTransitivity, 42.1s TimeCoverageRelationStatistics Valid=389, Invalid=5462, Unknown=5, NotChecked=150, Total=6006 [2024-11-14 04:21:33,194 INFO L432 NwaCegarLoop]: 127 mSDtfsCounter, 47 mSDsluCounter, 2055 mSDsCounter, 0 mSdLazyCounter, 2506 mSolverCounterSat, 23 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 5.3s Time, 0 mProtectedPredicate, 0 mProtectedAction, 47 SdHoareTripleChecker+Valid, 2182 SdHoareTripleChecker+Invalid, 2737 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 23 IncrementalHoareTripleChecker+Valid, 2506 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 207 IncrementalHoareTripleChecker+Unchecked, 5.6s IncrementalHoareTripleChecker+Time [2024-11-14 04:21:33,194 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [47 Valid, 2182 Invalid, 2737 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [23 Valid, 2506 Invalid, 1 Unknown, 207 Unchecked, 5.6s Time] [2024-11-14 04:21:33,195 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 274 states. [2024-11-14 04:21:33,205 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 274 to 262. [2024-11-14 04:21:33,206 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 262 states, 170 states have (on average 1.6647058823529413) internal successors, (283), 238 states have internal predecessors, (283), 17 states have call successors, (17), 4 states have call predecessors, (17), 8 states have return successors, (36), 19 states have call predecessors, (36), 16 states have call successors, (36) [2024-11-14 04:21:33,208 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 262 states to 262 states and 336 transitions. [2024-11-14 04:21:33,209 INFO L78 Accepts]: Start accepts. Automaton has 262 states and 336 transitions. Word has length 86 [2024-11-14 04:21:33,209 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 04:21:33,209 INFO L471 AbstractCegarLoop]: Abstraction has 262 states and 336 transitions. [2024-11-14 04:21:33,209 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 43 states, 35 states have (on average 1.8571428571428572) internal successors, (65), 38 states have internal predecessors, (65), 4 states have call successors, (8), 2 states have call predecessors, (8), 6 states have return successors, (9), 6 states have call predecessors, (9), 4 states have call successors, (9) [2024-11-14 04:21:33,210 INFO L276 IsEmpty]: Start isEmpty. Operand 262 states and 336 transitions. [2024-11-14 04:21:33,211 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 89 [2024-11-14 04:21:33,211 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 04:21:33,211 INFO L215 NwaCegarLoop]: trace histogram [39, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 04:21:33,251 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (14)] Ended with exit code 0 [2024-11-14 04:21:33,412 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable14,14 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 04:21:33,412 INFO L396 AbstractCegarLoop]: === Iteration 16 === Targeting ULTIMATE.startErr3REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2024-11-14 04:21:33,412 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 04:21:33,412 INFO L85 PathProgramCache]: Analyzing trace with hash 738460095, now seen corresponding path program 8 times [2024-11-14 04:21:33,412 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 04:21:33,413 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1875425422] [2024-11-14 04:21:33,413 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:21:33,413 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 04:21:33,610 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:21:35,791 INFO L134 CoverageAnalysis]: Checked inductivity of 1050 backedges. 521 proven. 269 refuted. 0 times theorem prover too weak. 260 trivial. 0 not checked. [2024-11-14 04:21:35,791 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 04:21:35,791 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1875425422] [2024-11-14 04:21:35,791 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1875425422] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 04:21:35,791 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [700335444] [2024-11-14 04:21:35,792 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2024-11-14 04:21:35,792 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 04:21:35,792 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 04:21:35,795 INFO L229 MonitoredProcess]: Starting monitored process 15 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-14 04:21:35,798 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (15)] Waiting until timeout for monitored process [2024-11-14 04:21:37,219 INFO L227 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 4 check-sat command(s) [2024-11-14 04:21:37,219 INFO L228 tOrderPrioritization]: Conjunction of SSA is unsat [2024-11-14 04:21:37,225 INFO L255 TraceCheckSpWp]: Trace formula consists of 519 conjuncts, 67 conjuncts are in the unsatisfiable core [2024-11-14 04:21:37,230 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-14 04:21:37,249 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2024-11-14 04:21:37,297 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2024-11-14 04:21:38,871 INFO L349 Elim1Store]: treesize reduction 13, result has 40.9 percent of original size [2024-11-14 04:21:38,872 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 27 treesize of output 24 [2024-11-14 04:21:38,962 INFO L349 Elim1Store]: treesize reduction 18, result has 35.7 percent of original size [2024-11-14 04:21:38,963 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 17 treesize of output 21 [2024-11-14 04:21:39,869 WARN L873 $PredicateComparison]: unable to prove that (exists ((|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (and (= (store |c_old(#length)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| (select |c_#length| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|)) |c_#length|) (= (select |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 0))) is different from true [2024-11-14 04:21:39,985 INFO L190 IndexEqualityManager]: detected not equals via solver [2024-11-14 04:21:39,986 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 2 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 16 treesize of output 11 [2024-11-14 04:21:40,012 INFO L349 Elim1Store]: treesize reduction 8, result has 52.9 percent of original size [2024-11-14 04:21:40,012 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 3 select indices, 3 select index equivalence classes, 1 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 2 case distinctions, treesize of input 16 treesize of output 18 [2024-11-14 04:21:40,177 INFO L134 CoverageAnalysis]: Checked inductivity of 1050 backedges. 521 proven. 66 refuted. 0 times theorem prover too weak. 281 trivial. 182 not checked. [2024-11-14 04:21:40,177 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-14 04:21:40,409 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [700335444] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 04:21:40,409 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1694472498] [2024-11-14 04:21:40,411 INFO L159 IcfgInterpreter]: Started Sifa with 25 locations of interest [2024-11-14 04:21:40,412 INFO L166 IcfgInterpreter]: Building call graph [2024-11-14 04:21:40,413 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2024-11-14 04:21:40,413 INFO L176 IcfgInterpreter]: Starting interpretation [2024-11-14 04:21:40,413 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2024-11-14 04:21:40,999 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 65 for LOIs [2024-11-14 04:21:41,099 INFO L180 IcfgInterpreter]: Interpretation finished [2024-11-14 04:21:44,891 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '10339#(and (<= 1 |#StackHeapBarrier|) (= |~#list~0.offset| 0) (= |ULTIMATE.start_l0_insert_~list#1.base| 3) (<= (+ 8 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select |#length| |ULTIMATE.start_l4_insert_~item~0#1.base|)) (= (select |#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1) (= 3 |~#list~0.base|) (exists ((|v_#memory_$Pointer$.base_362| (Array Int (Array Int Int)))) (= (store |v_#memory_$Pointer$.base_362| |ULTIMATE.start_l4_insert_~item~0#1.base| (store (select |v_#memory_$Pointer$.base_362| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)))) |#memory_$Pointer$.base|)) (= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (exists ((|v_#memory_int_326| (Array Int (Array Int Int)))) (= (store |v_#memory_int_326| |ULTIMATE.start_l4_insert_~item~0#1.base| (store (select |v_#memory_int_326| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select (select |#memory_int| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)))) |#memory_int|)) (not (= (select (select |#memory_$Pointer$.base| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0)) (exists ((|v_#memory_$Pointer$.offset_362| (Array Int (Array Int Int)))) (= |#memory_$Pointer$.offset| (store |v_#memory_$Pointer$.offset_362| |ULTIMATE.start_l4_insert_~item~0#1.base| (store (select |v_#memory_$Pointer$.offset_362| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|) (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)))))) (<= 0 (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) (exists ((|v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_384| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#amount#1_191| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#res#1.offset_171| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#value#1_203| Int)) (and (= |v_zalloc_or_die_#Ultimate.C_memset_#res#1.offset_171| 0) (= |v_zalloc_or_die_#Ultimate.C_memset_#value#1_203| 0) (<= (mod |v_zalloc_or_die_#Ultimate.C_memset_#amount#1_191| 4294967296) (mod |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_384| 4294967296)) (= (select (select |#memory_$Pointer$.offset| |ULTIMATE.start_l4_insert_~item~0#1.base|) (+ 4 |ULTIMATE.start_l4_insert_~item~0#1.offset|)) 0) (<= 0 |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_384|))))' at error location [2024-11-14 04:21:44,891 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2024-11-14 04:21:44,891 INFO L185 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2024-11-14 04:21:44,891 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [19, 14] total 31 [2024-11-14 04:21:44,892 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [720795368] [2024-11-14 04:21:44,892 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2024-11-14 04:21:44,892 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 32 states [2024-11-14 04:21:44,892 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 04:21:44,893 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 32 interpolants. [2024-11-14 04:21:44,894 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=170, Invalid=2283, Unknown=1, NotChecked=96, Total=2550 [2024-11-14 04:21:44,894 INFO L87 Difference]: Start difference. First operand 262 states and 336 transitions. Second operand has 32 states, 24 states have (on average 2.4166666666666665) internal successors, (58), 28 states have internal predecessors, (58), 4 states have call successors, (8), 2 states have call predecessors, (8), 7 states have return successors, (9), 7 states have call predecessors, (9), 4 states have call successors, (9) [2024-11-14 04:21:47,084 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 1.90s for a HTC check with result INVALID. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-11-14 04:21:54,407 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 04:21:54,407 INFO L93 Difference]: Finished difference Result 259 states and 329 transitions. [2024-11-14 04:21:54,409 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 19 states. [2024-11-14 04:21:54,410 INFO L78 Accepts]: Start accepts. Automaton has has 32 states, 24 states have (on average 2.4166666666666665) internal successors, (58), 28 states have internal predecessors, (58), 4 states have call successors, (8), 2 states have call predecessors, (8), 7 states have return successors, (9), 7 states have call predecessors, (9), 4 states have call successors, (9) Word has length 88 [2024-11-14 04:21:54,410 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 04:21:54,412 INFO L225 Difference]: With dead ends: 259 [2024-11-14 04:21:54,412 INFO L226 Difference]: Without dead ends: 258 [2024-11-14 04:21:54,413 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 212 GetRequests, 144 SyntacticMatches, 6 SemanticMatches, 62 ConstructedPredicates, 1 IntricatePredicates, 0 DeprecatedPredicates, 1101 ImplicationChecksByTransitivity, 11.0s TimeCoverageRelationStatistics Valid=314, Invalid=3594, Unknown=2, NotChecked=122, Total=4032 [2024-11-14 04:21:54,414 INFO L432 NwaCegarLoop]: 119 mSDtfsCounter, 33 mSDsluCounter, 1143 mSDsCounter, 0 mSdLazyCounter, 1949 mSolverCounterSat, 17 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 4.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 33 SdHoareTripleChecker+Valid, 1262 SdHoareTripleChecker+Invalid, 2128 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 17 IncrementalHoareTripleChecker+Valid, 1949 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 162 IncrementalHoareTripleChecker+Unchecked, 4.8s IncrementalHoareTripleChecker+Time [2024-11-14 04:21:54,414 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [33 Valid, 1262 Invalid, 2128 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [17 Valid, 1949 Invalid, 0 Unknown, 162 Unchecked, 4.8s Time] [2024-11-14 04:21:54,415 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 258 states. [2024-11-14 04:21:54,425 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 258 to 258. [2024-11-14 04:21:54,425 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 258 states, 169 states have (on average 1.6272189349112427) internal successors, (275), 234 states have internal predecessors, (275), 17 states have call successors, (17), 4 states have call predecessors, (17), 8 states have return successors, (36), 19 states have call predecessors, (36), 16 states have call successors, (36) [2024-11-14 04:21:54,427 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 258 states to 258 states and 328 transitions. [2024-11-14 04:21:54,428 INFO L78 Accepts]: Start accepts. Automaton has 258 states and 328 transitions. Word has length 88 [2024-11-14 04:21:54,429 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 04:21:54,429 INFO L471 AbstractCegarLoop]: Abstraction has 258 states and 328 transitions. [2024-11-14 04:21:54,429 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 32 states, 24 states have (on average 2.4166666666666665) internal successors, (58), 28 states have internal predecessors, (58), 4 states have call successors, (8), 2 states have call predecessors, (8), 7 states have return successors, (9), 7 states have call predecessors, (9), 4 states have call successors, (9) [2024-11-14 04:21:54,429 INFO L276 IsEmpty]: Start isEmpty. Operand 258 states and 328 transitions. [2024-11-14 04:21:54,430 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 92 [2024-11-14 04:21:54,431 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 04:21:54,431 INFO L215 NwaCegarLoop]: trace histogram [38, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 04:21:54,464 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (15)] Forceful destruction successful, exit code 0 [2024-11-14 04:21:54,631 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 15 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable15 [2024-11-14 04:21:54,632 INFO L396 AbstractCegarLoop]: === Iteration 17 === Targeting ULTIMATE.startErr8REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2024-11-14 04:21:54,632 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 04:21:54,632 INFO L85 PathProgramCache]: Analyzing trace with hash 545093444, now seen corresponding path program 1 times [2024-11-14 04:21:54,633 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 04:21:54,633 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [790073783] [2024-11-14 04:21:54,633 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:21:54,633 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 04:21:54,780 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:21:56,382 INFO L134 CoverageAnalysis]: Checked inductivity of 1006 backedges. 654 proven. 99 refuted. 0 times theorem prover too weak. 253 trivial. 0 not checked. [2024-11-14 04:21:56,382 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 04:21:56,383 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [790073783] [2024-11-14 04:21:56,383 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [790073783] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 04:21:56,383 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2098942392] [2024-11-14 04:21:56,383 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:21:56,383 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 04:21:56,383 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 04:21:56,386 INFO L229 MonitoredProcess]: Starting monitored process 16 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-14 04:21:56,390 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (16)] Waiting until timeout for monitored process [2024-11-14 04:21:57,035 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:21:57,042 INFO L255 TraceCheckSpWp]: Trace formula consists of 1105 conjuncts, 40 conjuncts are in the unsatisfiable core [2024-11-14 04:21:57,045 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-14 04:21:57,102 WARN L873 $PredicateComparison]: unable to prove that (exists ((|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (and (= |c_#valid| (store |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| (select |c_#valid| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|))) (= (select |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 0))) is different from true [2024-11-14 04:21:57,166 INFO L349 Elim1Store]: treesize reduction 20, result has 33.3 percent of original size [2024-11-14 04:21:57,166 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 19 treesize of output 16 [2024-11-14 04:21:57,231 WARN L851 $PredicateComparison]: unable to prove that (or (= (select |c_#valid| |c_ULTIMATE.start_l3_insert_~list#1.base|) 1) (exists ((|v_#valid_BEFORE_CALL_386| (Array Int Int))) (let ((.cse0 (@diff |v_#valid_BEFORE_CALL_386| |c_#valid|))) (and (= (select |v_#valid_BEFORE_CALL_386| |c_ULTIMATE.start_l3_insert_~list#1.base|) 1) (= .cse0 |c_ULTIMATE.start_l4_insert_#t~ret6#1.base|) (= |c_#valid| (store |v_#valid_BEFORE_CALL_386| .cse0 (select |c_#valid| .cse0))))))) is different from false [2024-11-14 04:21:57,234 WARN L873 $PredicateComparison]: unable to prove that (or (= (select |c_#valid| |c_ULTIMATE.start_l3_insert_~list#1.base|) 1) (exists ((|v_#valid_BEFORE_CALL_386| (Array Int Int))) (let ((.cse0 (@diff |v_#valid_BEFORE_CALL_386| |c_#valid|))) (and (= (select |v_#valid_BEFORE_CALL_386| |c_ULTIMATE.start_l3_insert_~list#1.base|) 1) (= .cse0 |c_ULTIMATE.start_l4_insert_#t~ret6#1.base|) (= |c_#valid| (store |v_#valid_BEFORE_CALL_386| .cse0 (select |c_#valid| .cse0))))))) is different from true [2024-11-14 04:21:57,250 WARN L851 $PredicateComparison]: unable to prove that (or (exists ((|v_#valid_BEFORE_CALL_386| (Array Int Int))) (let ((.cse0 (@diff |v_#valid_BEFORE_CALL_386| |c_#valid|))) (and (= (select |v_#valid_BEFORE_CALL_386| |c_ULTIMATE.start_l3_insert_~list#1.base|) 1) (= |c_ULTIMATE.start_l4_insert_~item~0#1.base| .cse0) (= |c_#valid| (store |v_#valid_BEFORE_CALL_386| .cse0 (select |c_#valid| .cse0)))))) (= (select |c_#valid| |c_ULTIMATE.start_l3_insert_~list#1.base|) 1)) is different from false [2024-11-14 04:21:57,254 WARN L873 $PredicateComparison]: unable to prove that (or (exists ((|v_#valid_BEFORE_CALL_386| (Array Int Int))) (let ((.cse0 (@diff |v_#valid_BEFORE_CALL_386| |c_#valid|))) (and (= (select |v_#valid_BEFORE_CALL_386| |c_ULTIMATE.start_l3_insert_~list#1.base|) 1) (= |c_ULTIMATE.start_l4_insert_~item~0#1.base| .cse0) (= |c_#valid| (store |v_#valid_BEFORE_CALL_386| .cse0 (select |c_#valid| .cse0)))))) (= (select |c_#valid| |c_ULTIMATE.start_l3_insert_~list#1.base|) 1)) is different from true [2024-11-14 04:21:57,296 WARN L873 $PredicateComparison]: unable to prove that (exists ((|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (= (store |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| 1) |c_#valid|)) is different from true [2024-11-14 04:21:57,361 INFO L349 Elim1Store]: treesize reduction 15, result has 25.0 percent of original size [2024-11-14 04:21:57,361 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 12 treesize of output 14 [2024-11-14 04:21:57,369 WARN L851 $PredicateComparison]: unable to prove that (or (exists ((|v_old(#valid)_AFTER_CALL_225| (Array Int Int)) (|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (and (exists ((|v_#valid_BEFORE_CALL_386| (Array Int Int))) (let ((.cse0 (@diff |v_#valid_BEFORE_CALL_386| |v_old(#valid)_AFTER_CALL_225|))) (and (= |c_ULTIMATE.start_l4_insert_~item~0#1.base| .cse0) (= (store |v_#valid_BEFORE_CALL_386| .cse0 (select |v_old(#valid)_AFTER_CALL_225| .cse0)) |v_old(#valid)_AFTER_CALL_225|) (= (select |v_#valid_BEFORE_CALL_386| |c_ULTIMATE.start_l3_insert_~list#1.base|) 1)))) (= |c_#valid| (store |v_old(#valid)_AFTER_CALL_225| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| 1)))) (and (exists ((|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (= (select |c_#valid| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 1)) (= (select |c_#valid| |c_ULTIMATE.start_l3_insert_~list#1.base|) 1))) is different from false [2024-11-14 04:21:57,372 WARN L873 $PredicateComparison]: unable to prove that (or (exists ((|v_old(#valid)_AFTER_CALL_225| (Array Int Int)) (|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (and (exists ((|v_#valid_BEFORE_CALL_386| (Array Int Int))) (let ((.cse0 (@diff |v_#valid_BEFORE_CALL_386| |v_old(#valid)_AFTER_CALL_225|))) (and (= |c_ULTIMATE.start_l4_insert_~item~0#1.base| .cse0) (= (store |v_#valid_BEFORE_CALL_386| .cse0 (select |v_old(#valid)_AFTER_CALL_225| .cse0)) |v_old(#valid)_AFTER_CALL_225|) (= (select |v_#valid_BEFORE_CALL_386| |c_ULTIMATE.start_l3_insert_~list#1.base|) 1)))) (= |c_#valid| (store |v_old(#valid)_AFTER_CALL_225| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| 1)))) (and (exists ((|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (= (select |c_#valid| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 1)) (= (select |c_#valid| |c_ULTIMATE.start_l3_insert_~list#1.base|) 1))) is different from true [2024-11-14 04:21:57,404 WARN L851 $PredicateComparison]: unable to prove that (or (exists ((|v_old(#valid)_AFTER_CALL_225| (Array Int Int)) (|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int) (|v_#valid_BEFORE_CALL_386| (Array Int Int))) (let ((.cse0 (@diff |v_#valid_BEFORE_CALL_386| |v_old(#valid)_AFTER_CALL_225|))) (and (= 1 (select |c_#valid| .cse0)) (= |c_#valid| (store |v_old(#valid)_AFTER_CALL_225| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| 1)) (= (store |v_#valid_BEFORE_CALL_386| .cse0 (select |v_old(#valid)_AFTER_CALL_225| .cse0)) |v_old(#valid)_AFTER_CALL_225|) (= (select |v_#valid_BEFORE_CALL_386| |c_ULTIMATE.start_l3_insert_~list#1.base|) 1)))) (and (exists ((|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (= (select |c_#valid| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 1)) (exists ((|ULTIMATE.start_l4_insert_~item~0#1.base| Int)) (= (select |c_#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1)) (= (select |c_#valid| |c_ULTIMATE.start_l3_insert_~list#1.base|) 1))) is different from false [2024-11-14 04:21:57,407 WARN L873 $PredicateComparison]: unable to prove that (or (exists ((|v_old(#valid)_AFTER_CALL_225| (Array Int Int)) (|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int) (|v_#valid_BEFORE_CALL_386| (Array Int Int))) (let ((.cse0 (@diff |v_#valid_BEFORE_CALL_386| |v_old(#valid)_AFTER_CALL_225|))) (and (= 1 (select |c_#valid| .cse0)) (= |c_#valid| (store |v_old(#valid)_AFTER_CALL_225| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| 1)) (= (store |v_#valid_BEFORE_CALL_386| .cse0 (select |v_old(#valid)_AFTER_CALL_225| .cse0)) |v_old(#valid)_AFTER_CALL_225|) (= (select |v_#valid_BEFORE_CALL_386| |c_ULTIMATE.start_l3_insert_~list#1.base|) 1)))) (and (exists ((|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (= (select |c_#valid| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 1)) (exists ((|ULTIMATE.start_l4_insert_~item~0#1.base| Int)) (= (select |c_#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1)) (= (select |c_#valid| |c_ULTIMATE.start_l3_insert_~list#1.base|) 1))) is different from true [2024-11-14 04:21:57,524 INFO L134 CoverageAnalysis]: Checked inductivity of 1006 backedges. 417 proven. 59 refuted. 0 times theorem prover too weak. 196 trivial. 334 not checked. [2024-11-14 04:21:57,524 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-14 04:21:57,681 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [2098942392] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 04:21:57,682 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [853297034] [2024-11-14 04:21:57,684 INFO L159 IcfgInterpreter]: Started Sifa with 29 locations of interest [2024-11-14 04:21:57,684 INFO L166 IcfgInterpreter]: Building call graph [2024-11-14 04:21:57,684 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2024-11-14 04:21:57,685 INFO L176 IcfgInterpreter]: Starting interpretation [2024-11-14 04:21:57,685 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2024-11-14 04:21:58,951 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 65 for LOIs [2024-11-14 04:21:59,230 INFO L180 IcfgInterpreter]: Interpretation finished [2024-11-14 04:22:11,077 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '11217#(and (exists ((|v_#memory_int_349| (Array Int (Array Int Int))) (|v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_408| Int) (|v_#memory_int_348| (Array Int (Array Int Int))) (|v_ULTIMATE.start_l4_insert_~list#1.offset_20| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#res#1.offset_180| Int) (|v_ULTIMATE.start_l4_insert_~list#1.base_23| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#amount#1_200| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#value#1_213| Int) (|v_#memory_$Pointer$.offset_384| (Array Int (Array Int Int))) (|v_#memory_$Pointer$.offset_385| (Array Int (Array Int Int))) (|v_#memory_$Pointer$.base_385| (Array Int (Array Int Int))) (|v_#memory_int_350| (Array Int (Array Int Int))) (|v_#memory_$Pointer$.base_384| (Array Int (Array Int Int)))) (and (= (store |v_#memory_int_348| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|) (store (select |v_#memory_int_348| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|)) (+ (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|) 4) (select (select |v_#memory_int_349| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|)) (+ (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|) 4)))) |v_#memory_int_349|) (= (store |v_#memory_$Pointer$.offset_384| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|) (store (select |v_#memory_$Pointer$.offset_384| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|)) (+ (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|) 4) 0)) |v_#memory_$Pointer$.offset_385|) (= |v_zalloc_or_die_#Ultimate.C_memset_#res#1.offset_180| 0) (<= (mod |v_zalloc_or_die_#Ultimate.C_memset_#amount#1_200| 4294967296) (mod |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_408| 4294967296)) (<= (+ 4 |v_ULTIMATE.start_l4_insert_~list#1.offset_20|) (select |#length| |v_ULTIMATE.start_l4_insert_~list#1.base_23|)) (= |#memory_$Pointer$.offset| (store (store |v_#memory_$Pointer$.offset_385| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|) (store (select |v_#memory_$Pointer$.offset_385| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|)) (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|) (select (select |v_#memory_$Pointer$.offset_385| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|))) |v_ULTIMATE.start_l4_insert_~list#1.base_23| (store (select (store |v_#memory_$Pointer$.offset_385| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|) (store (select |v_#memory_$Pointer$.offset_385| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|)) (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|) (select (select |v_#memory_$Pointer$.offset_385| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|))) |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20| (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|)))) (= |#memory_$Pointer$.base| (store (store |v_#memory_$Pointer$.base_385| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|) (store (select |v_#memory_$Pointer$.base_385| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|)) (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|) (select (select |v_#memory_$Pointer$.base_385| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|))) |v_ULTIMATE.start_l4_insert_~list#1.base_23| (store (select (store |v_#memory_$Pointer$.base_385| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|) (store (select |v_#memory_$Pointer$.base_385| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|)) (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|) (select (select |v_#memory_$Pointer$.base_385| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|))) |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|)))) (not (= (select (select |v_#memory_$Pointer$.base_385| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|)) (+ (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|) 4)) 0)) (<= (+ (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|) 8) (select |#length| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|))) (<= 0 |v_ULTIMATE.start_l4_insert_~list#1.offset_20|) (= (select |#valid| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|)) 1) (= (store |v_#memory_$Pointer$.base_384| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|) (store (select |v_#memory_$Pointer$.base_384| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|)) (+ (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|) 4) (select (select |v_#memory_$Pointer$.base_385| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|)) (+ (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|) 4)))) |v_#memory_$Pointer$.base_385|) (= |v_zalloc_or_die_#Ultimate.C_memset_#value#1_213| 0) (= (store |v_#memory_int_349| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|) (store (select |v_#memory_int_349| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|)) (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|) (select (select |v_#memory_int_350| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|)) (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|)))) |v_#memory_int_350|) (<= 0 |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_408|) (= (select |#valid| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) 1) (= |#memory_int| (store |v_#memory_int_350| |v_ULTIMATE.start_l4_insert_~list#1.base_23| (store (select |v_#memory_int_350| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20| (select (select |#memory_int| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|)))) (<= 0 (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l4_insert_~list#1.base_23|) |v_ULTIMATE.start_l4_insert_~list#1.offset_20|)))) (<= 1 |#StackHeapBarrier|) (= |~#list~0.offset| 0) (= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= 3 |~#list~0.base|) (= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (exists ((|v_ULTIMATE.start_l3_insert_~list#1.base_14| Int)) (not (= (select |#valid| |v_ULTIMATE.start_l3_insert_~list#1.base_14|) 1))))' at error location [2024-11-14 04:22:11,077 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2024-11-14 04:22:11,077 INFO L185 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2024-11-14 04:22:11,078 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [16, 17] total 24 [2024-11-14 04:22:11,078 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [625622457] [2024-11-14 04:22:11,078 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2024-11-14 04:22:11,078 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 25 states [2024-11-14 04:22:11,078 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 04:22:11,079 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 25 interpolants. [2024-11-14 04:22:11,080 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=145, Invalid=1671, Unknown=14, NotChecked=522, Total=2352 [2024-11-14 04:22:11,080 INFO L87 Difference]: Start difference. First operand 258 states and 328 transitions. Second operand has 25 states, 20 states have (on average 2.9) internal successors, (58), 19 states have internal predecessors, (58), 5 states have call successors, (8), 2 states have call predecessors, (8), 6 states have return successors, (9), 8 states have call predecessors, (9), 5 states have call successors, (9) [2024-11-14 04:22:11,433 WARN L851 $PredicateComparison]: unable to prove that (let ((.cse0 (= (select |c_#valid| |c_ULTIMATE.start_l3_insert_~list#1.base|) 1))) (and (= (select |c_#valid| |c_ULTIMATE.start_l2_insert_~item~2#1.base|) 1) .cse0 (or .cse0 (exists ((|v_#valid_BEFORE_CALL_386| (Array Int Int))) (let ((.cse1 (@diff |v_#valid_BEFORE_CALL_386| |c_#valid|))) (and (= (select |v_#valid_BEFORE_CALL_386| |c_ULTIMATE.start_l3_insert_~list#1.base|) 1) (= .cse1 |c_ULTIMATE.start_l4_insert_#t~ret6#1.base|) (= |c_#valid| (store |v_#valid_BEFORE_CALL_386| .cse1 (select |c_#valid| .cse1))))))))) is different from false [2024-11-14 04:22:11,436 WARN L873 $PredicateComparison]: unable to prove that (let ((.cse0 (= (select |c_#valid| |c_ULTIMATE.start_l3_insert_~list#1.base|) 1))) (and (= (select |c_#valid| |c_ULTIMATE.start_l2_insert_~item~2#1.base|) 1) .cse0 (or .cse0 (exists ((|v_#valid_BEFORE_CALL_386| (Array Int Int))) (let ((.cse1 (@diff |v_#valid_BEFORE_CALL_386| |c_#valid|))) (and (= (select |v_#valid_BEFORE_CALL_386| |c_ULTIMATE.start_l3_insert_~list#1.base|) 1) (= .cse1 |c_ULTIMATE.start_l4_insert_#t~ret6#1.base|) (= |c_#valid| (store |v_#valid_BEFORE_CALL_386| .cse1 (select |c_#valid| .cse1))))))))) is different from true [2024-11-14 04:22:11,440 WARN L851 $PredicateComparison]: unable to prove that (let ((.cse0 (= (select |c_#valid| |c_ULTIMATE.start_l3_insert_~list#1.base|) 1))) (and (or (= |c_ULTIMATE.start_l4_insert_~item~0#1.base| |c_ULTIMATE.start_l3_insert_~list#1.base|) .cse0 (= |c_ULTIMATE.start_l3_insert_~list#1.base| |c_ULTIMATE.start_l4_insert_~list#1.base|)) (or (exists ((|v_#valid_BEFORE_CALL_386| (Array Int Int))) (let ((.cse1 (@diff |v_#valid_BEFORE_CALL_386| |c_#valid|))) (and (= (select |v_#valid_BEFORE_CALL_386| |c_ULTIMATE.start_l3_insert_~list#1.base|) 1) (= |c_ULTIMATE.start_l4_insert_~item~0#1.base| .cse1) (= |c_#valid| (store |v_#valid_BEFORE_CALL_386| .cse1 (select |c_#valid| .cse1)))))) .cse0))) is different from false [2024-11-14 04:22:11,443 WARN L873 $PredicateComparison]: unable to prove that (let ((.cse0 (= (select |c_#valid| |c_ULTIMATE.start_l3_insert_~list#1.base|) 1))) (and (or (= |c_ULTIMATE.start_l4_insert_~item~0#1.base| |c_ULTIMATE.start_l3_insert_~list#1.base|) .cse0 (= |c_ULTIMATE.start_l3_insert_~list#1.base| |c_ULTIMATE.start_l4_insert_~list#1.base|)) (or (exists ((|v_#valid_BEFORE_CALL_386| (Array Int Int))) (let ((.cse1 (@diff |v_#valid_BEFORE_CALL_386| |c_#valid|))) (and (= (select |v_#valid_BEFORE_CALL_386| |c_ULTIMATE.start_l3_insert_~list#1.base|) 1) (= |c_ULTIMATE.start_l4_insert_~item~0#1.base| .cse1) (= |c_#valid| (store |v_#valid_BEFORE_CALL_386| .cse1 (select |c_#valid| .cse1)))))) .cse0))) is different from true [2024-11-14 04:22:11,448 WARN L851 $PredicateComparison]: unable to prove that (let ((.cse0 (= (select |c_#valid| |c_ULTIMATE.start_l3_insert_~list#1.base|) 1))) (and (or (= |c_ULTIMATE.start_l4_insert_~item~0#1.base| |c_ULTIMATE.start_l3_insert_~list#1.base|) .cse0 (= |c_ULTIMATE.start_l3_insert_~list#1.base| |c_ULTIMATE.start_l4_insert_~list#1.base|)) (or (exists ((|v_old(#valid)_AFTER_CALL_225| (Array Int Int)) (|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (and (exists ((|v_#valid_BEFORE_CALL_386| (Array Int Int))) (let ((.cse1 (@diff |v_#valid_BEFORE_CALL_386| |v_old(#valid)_AFTER_CALL_225|))) (and (= |c_ULTIMATE.start_l4_insert_~item~0#1.base| .cse1) (= (store |v_#valid_BEFORE_CALL_386| .cse1 (select |v_old(#valid)_AFTER_CALL_225| .cse1)) |v_old(#valid)_AFTER_CALL_225|) (= (select |v_#valid_BEFORE_CALL_386| |c_ULTIMATE.start_l3_insert_~list#1.base|) 1)))) (= |c_#valid| (store |v_old(#valid)_AFTER_CALL_225| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| 1)))) (and (exists ((|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (= (select |c_#valid| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 1)) .cse0)))) is different from false [2024-11-14 04:22:11,451 WARN L873 $PredicateComparison]: unable to prove that (let ((.cse0 (= (select |c_#valid| |c_ULTIMATE.start_l3_insert_~list#1.base|) 1))) (and (or (= |c_ULTIMATE.start_l4_insert_~item~0#1.base| |c_ULTIMATE.start_l3_insert_~list#1.base|) .cse0 (= |c_ULTIMATE.start_l3_insert_~list#1.base| |c_ULTIMATE.start_l4_insert_~list#1.base|)) (or (exists ((|v_old(#valid)_AFTER_CALL_225| (Array Int Int)) (|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (and (exists ((|v_#valid_BEFORE_CALL_386| (Array Int Int))) (let ((.cse1 (@diff |v_#valid_BEFORE_CALL_386| |v_old(#valid)_AFTER_CALL_225|))) (and (= |c_ULTIMATE.start_l4_insert_~item~0#1.base| .cse1) (= (store |v_#valid_BEFORE_CALL_386| .cse1 (select |v_old(#valid)_AFTER_CALL_225| .cse1)) |v_old(#valid)_AFTER_CALL_225|) (= (select |v_#valid_BEFORE_CALL_386| |c_ULTIMATE.start_l3_insert_~list#1.base|) 1)))) (= |c_#valid| (store |v_old(#valid)_AFTER_CALL_225| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| 1)))) (and (exists ((|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (= (select |c_#valid| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 1)) .cse0)))) is different from true [2024-11-14 04:22:11,456 WARN L851 $PredicateComparison]: unable to prove that (let ((.cse0 (= (select |c_#valid| |c_ULTIMATE.start_l3_insert_~list#1.base|) 1))) (and (or .cse0 (= |c_ULTIMATE.start_l3_insert_~list#1.base| |c_ULTIMATE.start_l4_insert_~list#1.base|)) (or (exists ((|v_old(#valid)_AFTER_CALL_225| (Array Int Int)) (|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int) (|v_#valid_BEFORE_CALL_386| (Array Int Int))) (let ((.cse1 (@diff |v_#valid_BEFORE_CALL_386| |v_old(#valid)_AFTER_CALL_225|))) (and (= 1 (select |c_#valid| .cse1)) (= |c_#valid| (store |v_old(#valid)_AFTER_CALL_225| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| 1)) (= (store |v_#valid_BEFORE_CALL_386| .cse1 (select |v_old(#valid)_AFTER_CALL_225| .cse1)) |v_old(#valid)_AFTER_CALL_225|) (= (select |v_#valid_BEFORE_CALL_386| |c_ULTIMATE.start_l3_insert_~list#1.base|) 1)))) (and (exists ((|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (= (select |c_#valid| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 1)) (exists ((|ULTIMATE.start_l4_insert_~item~0#1.base| Int)) (= (select |c_#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1)) .cse0)))) is different from false [2024-11-14 04:22:11,459 WARN L873 $PredicateComparison]: unable to prove that (let ((.cse0 (= (select |c_#valid| |c_ULTIMATE.start_l3_insert_~list#1.base|) 1))) (and (or .cse0 (= |c_ULTIMATE.start_l3_insert_~list#1.base| |c_ULTIMATE.start_l4_insert_~list#1.base|)) (or (exists ((|v_old(#valid)_AFTER_CALL_225| (Array Int Int)) (|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int) (|v_#valid_BEFORE_CALL_386| (Array Int Int))) (let ((.cse1 (@diff |v_#valid_BEFORE_CALL_386| |v_old(#valid)_AFTER_CALL_225|))) (and (= 1 (select |c_#valid| .cse1)) (= |c_#valid| (store |v_old(#valid)_AFTER_CALL_225| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| 1)) (= (store |v_#valid_BEFORE_CALL_386| .cse1 (select |v_old(#valid)_AFTER_CALL_225| .cse1)) |v_old(#valid)_AFTER_CALL_225|) (= (select |v_#valid_BEFORE_CALL_386| |c_ULTIMATE.start_l3_insert_~list#1.base|) 1)))) (and (exists ((|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (= (select |c_#valid| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 1)) (exists ((|ULTIMATE.start_l4_insert_~item~0#1.base| Int)) (= (select |c_#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1)) .cse0)))) is different from true [2024-11-14 04:22:11,463 WARN L851 $PredicateComparison]: unable to prove that (let ((.cse1 (= (select |c_#valid| |c_ULTIMATE.start_l3_insert_~list#1.base|) 1))) (and (or (exists ((|v_old(#valid)_AFTER_CALL_225| (Array Int Int)) (|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int) (|v_#valid_BEFORE_CALL_386| (Array Int Int))) (let ((.cse0 (@diff |v_#valid_BEFORE_CALL_386| |v_old(#valid)_AFTER_CALL_225|))) (and (= 1 (select |c_#valid| .cse0)) (= |c_#valid| (store |v_old(#valid)_AFTER_CALL_225| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| 1)) (= (store |v_#valid_BEFORE_CALL_386| .cse0 (select |v_old(#valid)_AFTER_CALL_225| .cse0)) |v_old(#valid)_AFTER_CALL_225|) (= (select |v_#valid_BEFORE_CALL_386| |c_ULTIMATE.start_l3_insert_~list#1.base|) 1)))) (and (exists ((|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (= (select |c_#valid| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 1)) (exists ((|ULTIMATE.start_l4_insert_~item~0#1.base| Int)) (= (select |c_#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1)) .cse1)) .cse1)) is different from false [2024-11-14 04:22:11,466 WARN L873 $PredicateComparison]: unable to prove that (let ((.cse1 (= (select |c_#valid| |c_ULTIMATE.start_l3_insert_~list#1.base|) 1))) (and (or (exists ((|v_old(#valid)_AFTER_CALL_225| (Array Int Int)) (|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int) (|v_#valid_BEFORE_CALL_386| (Array Int Int))) (let ((.cse0 (@diff |v_#valid_BEFORE_CALL_386| |v_old(#valid)_AFTER_CALL_225|))) (and (= 1 (select |c_#valid| .cse0)) (= |c_#valid| (store |v_old(#valid)_AFTER_CALL_225| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| 1)) (= (store |v_#valid_BEFORE_CALL_386| .cse0 (select |v_old(#valid)_AFTER_CALL_225| .cse0)) |v_old(#valid)_AFTER_CALL_225|) (= (select |v_#valid_BEFORE_CALL_386| |c_ULTIMATE.start_l3_insert_~list#1.base|) 1)))) (and (exists ((|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (= (select |c_#valid| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 1)) (exists ((|ULTIMATE.start_l4_insert_~item~0#1.base| Int)) (= (select |c_#valid| |ULTIMATE.start_l4_insert_~item~0#1.base|) 1)) .cse1)) .cse1)) is different from true [2024-11-14 04:22:12,254 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 04:22:12,254 INFO L93 Difference]: Finished difference Result 311 states and 407 transitions. [2024-11-14 04:22:12,258 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 15 states. [2024-11-14 04:22:12,258 INFO L78 Accepts]: Start accepts. Automaton has has 25 states, 20 states have (on average 2.9) internal successors, (58), 19 states have internal predecessors, (58), 5 states have call successors, (8), 2 states have call predecessors, (8), 6 states have return successors, (9), 8 states have call predecessors, (9), 5 states have call successors, (9) Word has length 91 [2024-11-14 04:22:12,259 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 04:22:12,260 INFO L225 Difference]: With dead ends: 311 [2024-11-14 04:22:12,261 INFO L226 Difference]: Without dead ends: 311 [2024-11-14 04:22:12,261 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 221 GetRequests, 158 SyntacticMatches, 8 SemanticMatches, 55 ConstructedPredicates, 11 IntricatePredicates, 0 DeprecatedPredicates, 646 ImplicationChecksByTransitivity, 12.5s TimeCoverageRelationStatistics Valid=179, Invalid=1911, Unknown=24, NotChecked=1078, Total=3192 [2024-11-14 04:22:12,262 INFO L432 NwaCegarLoop]: 129 mSDtfsCounter, 15 mSDsluCounter, 1171 mSDsCounter, 0 mSdLazyCounter, 1114 mSolverCounterSat, 27 mSolverCounterUnsat, 0 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 0.8s Time, 0 mProtectedPredicate, 0 mProtectedAction, 15 SdHoareTripleChecker+Valid, 1300 SdHoareTripleChecker+Invalid, 2412 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 27 IncrementalHoareTripleChecker+Valid, 1114 IncrementalHoareTripleChecker+Invalid, 0 IncrementalHoareTripleChecker+Unknown, 1271 IncrementalHoareTripleChecker+Unchecked, 0.9s IncrementalHoareTripleChecker+Time [2024-11-14 04:22:12,262 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [15 Valid, 1300 Invalid, 2412 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [27 Valid, 1114 Invalid, 0 Unknown, 1271 Unchecked, 0.9s Time] [2024-11-14 04:22:12,263 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 311 states. [2024-11-14 04:22:12,274 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 311 to 309. [2024-11-14 04:22:12,274 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 309 states, 210 states have (on average 1.542857142857143) internal successors, (324), 273 states have internal predecessors, (324), 27 states have call successors, (27), 4 states have call predecessors, (27), 8 states have return successors, (54), 31 states have call predecessors, (54), 26 states have call successors, (54) [2024-11-14 04:22:12,277 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 309 states to 309 states and 405 transitions. [2024-11-14 04:22:12,277 INFO L78 Accepts]: Start accepts. Automaton has 309 states and 405 transitions. Word has length 91 [2024-11-14 04:22:12,278 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 04:22:12,278 INFO L471 AbstractCegarLoop]: Abstraction has 309 states and 405 transitions. [2024-11-14 04:22:12,278 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 25 states, 20 states have (on average 2.9) internal successors, (58), 19 states have internal predecessors, (58), 5 states have call successors, (8), 2 states have call predecessors, (8), 6 states have return successors, (9), 8 states have call predecessors, (9), 5 states have call successors, (9) [2024-11-14 04:22:12,278 INFO L276 IsEmpty]: Start isEmpty. Operand 309 states and 405 transitions. [2024-11-14 04:22:12,279 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 92 [2024-11-14 04:22:12,279 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 04:22:12,279 INFO L215 NwaCegarLoop]: trace histogram [38, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 04:22:12,297 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (16)] Forceful destruction successful, exit code 0 [2024-11-14 04:22:12,480 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 16 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable16 [2024-11-14 04:22:12,480 INFO L396 AbstractCegarLoop]: === Iteration 18 === Targeting ULTIMATE.startErr9REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2024-11-14 04:22:12,480 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 04:22:12,480 INFO L85 PathProgramCache]: Analyzing trace with hash 545093445, now seen corresponding path program 1 times [2024-11-14 04:22:12,481 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 04:22:12,481 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [901971250] [2024-11-14 04:22:12,481 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:22:12,481 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 04:22:12,746 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unknown [2024-11-14 04:22:12,756 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleZ3 [1653176574] [2024-11-14 04:22:12,757 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:22:12,757 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 04:22:12,757 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 04:22:12,759 INFO L229 MonitoredProcess]: Starting monitored process 17 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-14 04:22:12,762 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (17)] Waiting until timeout for monitored process [2024-11-14 04:22:14,193 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:22:14,203 INFO L255 TraceCheckSpWp]: Trace formula consists of 1105 conjuncts, 102 conjuncts are in the unsatisfiable core [2024-11-14 04:22:14,210 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-14 04:22:14,469 WARN L873 $PredicateComparison]: unable to prove that (exists ((|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (and (= (store |c_old(#length)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| (select |c_#length| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|)) |c_#length|) (= |c_#valid| (store |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| (select |c_#valid| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|))) (= (select |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 0))) is different from true [2024-11-14 04:22:14,572 INFO L190 IndexEqualityManager]: detected not equals via solver [2024-11-14 04:22:14,573 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 9 [2024-11-14 04:22:14,601 INFO L349 Elim1Store]: treesize reduction 20, result has 33.3 percent of original size [2024-11-14 04:22:14,602 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 19 treesize of output 16 [2024-11-14 04:22:14,652 WARN L873 $PredicateComparison]: unable to prove that (exists ((|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (and (= (store |c_old(#length)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| (select |c_#length| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|)) |c_#length|) (= (select |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 0))) is different from true [2024-11-14 04:22:14,987 INFO L190 IndexEqualityManager]: detected not equals via solver [2024-11-14 04:22:14,987 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 9 [2024-11-14 04:22:15,000 INFO L349 Elim1Store]: treesize reduction 4, result has 50.0 percent of original size [2024-11-14 04:22:15,000 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 11 treesize of output 11 [2024-11-14 04:22:15,113 WARN L873 $PredicateComparison]: unable to prove that (exists ((|v_zalloc_or_die_calloc_model_~size#1_317| Int) (|v_zalloc_or_die_calloc_model_~nmemb#1_317| Int) (|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (let ((.cse1 (* |v_zalloc_or_die_calloc_model_~size#1_317| |v_zalloc_or_die_calloc_model_~nmemb#1_317|)) (.cse0 (select |c_#length| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|))) (and (= (store |c_old(#length)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| .cse0) |c_#length|) (= |c_zalloc_or_die_#Ultimate.C_memset_#amount#1| .cse1) (<= (mod .cse1 4294967296) .cse0)))) is different from true [2024-11-14 04:22:16,709 INFO L349 Elim1Store]: treesize reduction 13, result has 40.9 percent of original size [2024-11-14 04:22:16,709 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 14 treesize of output 13 [2024-11-14 04:22:16,886 INFO L134 CoverageAnalysis]: Checked inductivity of 1006 backedges. 417 proven. 261 refuted. 0 times theorem prover too weak. 107 trivial. 221 not checked. [2024-11-14 04:22:16,886 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-14 04:22:18,840 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 04:22:18,840 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [901971250] [2024-11-14 04:22:18,841 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: SMT_SOLVER_CANNOT_INTERPOLATE_INPUT [2024-11-14 04:22:18,841 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1653176574] [2024-11-14 04:22:18,841 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1653176574] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 04:22:18,841 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1882715846] [2024-11-14 04:22:18,843 INFO L159 IcfgInterpreter]: Started Sifa with 29 locations of interest [2024-11-14 04:22:18,843 INFO L166 IcfgInterpreter]: Building call graph [2024-11-14 04:22:18,843 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2024-11-14 04:22:18,843 INFO L176 IcfgInterpreter]: Starting interpretation [2024-11-14 04:22:18,844 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2024-11-14 04:22:19,891 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 65 for LOIs [2024-11-14 04:22:20,100 INFO L180 IcfgInterpreter]: Interpretation finished [2024-11-14 04:22:38,388 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '12200#(and (<= 1 |#StackHeapBarrier|) (= |~#list~0.offset| 0) (= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= 3 |~#list~0.base|) (= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (exists ((|v_#memory_$Pointer$.base_409| (Array Int (Array Int Int))) (|v_ULTIMATE.start_l4_insert_~list#1.offset_21| Int) (|v_#memory_$Pointer$.offset_409| (Array Int (Array Int Int))) (|v_ULTIMATE.start_l4_insert_~list#1.base_24| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_447| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#res#1.offset_189| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#value#1_223| Int) (|v_#memory_int_375| (Array Int (Array Int Int))) (|v_#memory_int_374| (Array Int (Array Int Int))) (|v_zalloc_or_die_#Ultimate.C_memset_#amount#1_209| Int) (|v_#memory_$Pointer$.base_410| (Array Int (Array Int Int))) (|v_#memory_int_373| (Array Int (Array Int Int))) (|v_#memory_$Pointer$.offset_410| (Array Int (Array Int Int)))) (and (= (store |v_#memory_$Pointer$.base_409| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|) (store (select |v_#memory_$Pointer$.base_409| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|)) (+ (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|) 4) (select (select |v_#memory_$Pointer$.base_410| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|)) (+ (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|) 4)))) |v_#memory_$Pointer$.base_410|) (<= 0 |v_ULTIMATE.start_l4_insert_~list#1.offset_21|) (= (store |v_#memory_int_375| |v_ULTIMATE.start_l4_insert_~list#1.base_24| (store (select |v_#memory_int_375| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21| (select (select |#memory_int| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|))) |#memory_int|) (= (store (store |v_#memory_$Pointer$.base_410| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|) (store (select |v_#memory_$Pointer$.base_410| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|)) (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|) (select (select |v_#memory_$Pointer$.base_410| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|))) |v_ULTIMATE.start_l4_insert_~list#1.base_24| (store (select (store |v_#memory_$Pointer$.base_410| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|) (store (select |v_#memory_$Pointer$.base_410| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|)) (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|) (select (select |v_#memory_$Pointer$.base_410| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|))) |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|))) |#memory_$Pointer$.base|) (<= 0 (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|)) (= (select |#valid| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|)) 1) (<= (+ (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|) 8) (select |#length| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|))) (= (store |v_#memory_int_374| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|) (store (select |v_#memory_int_374| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|)) (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|) (select (select |v_#memory_int_375| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|)) (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|)))) |v_#memory_int_375|) (not (= (select (select |v_#memory_$Pointer$.base_410| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|)) (+ (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|) 4)) 0)) (<= (+ 4 |v_ULTIMATE.start_l4_insert_~list#1.offset_21|) (select |#length| |v_ULTIMATE.start_l4_insert_~list#1.base_24|)) (= |#memory_$Pointer$.offset| (store (store |v_#memory_$Pointer$.offset_410| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|) (store (select |v_#memory_$Pointer$.offset_410| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|)) (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|) (select (select |v_#memory_$Pointer$.offset_410| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|))) |v_ULTIMATE.start_l4_insert_~list#1.base_24| (store (select (store |v_#memory_$Pointer$.offset_410| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|) (store (select |v_#memory_$Pointer$.offset_410| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|)) (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|) (select (select |v_#memory_$Pointer$.offset_410| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|))) |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21| (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|)))) (= (store |v_#memory_int_373| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|) (store (select |v_#memory_int_373| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|)) (+ (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|) 4) (select (select |v_#memory_int_374| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|)) (+ (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|) 4)))) |v_#memory_int_374|) (<= 0 |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_447|) (= (select |#valid| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) 1) (= (store |v_#memory_$Pointer$.offset_409| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|) (store (select |v_#memory_$Pointer$.offset_409| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|)) (+ (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l4_insert_~list#1.base_24|) |v_ULTIMATE.start_l4_insert_~list#1.offset_21|) 4) 0)) |v_#memory_$Pointer$.offset_410|) (= |v_zalloc_or_die_#Ultimate.C_memset_#value#1_223| 0) (= |v_zalloc_or_die_#Ultimate.C_memset_#res#1.offset_189| 0) (<= (mod |v_zalloc_or_die_#Ultimate.C_memset_#amount#1_209| 4294967296) (mod |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_447| 4294967296)))))' at error location [2024-11-14 04:22:38,389 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2024-11-14 04:22:38,389 INFO L185 FreeRefinementEngine]: Found 0 perfect and 1 imperfect interpolant sequences. [2024-11-14 04:22:38,389 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [30] total 30 [2024-11-14 04:22:38,389 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1028631627] [2024-11-14 04:22:38,389 INFO L85 oduleStraightlineAll]: Using 1 imperfect interpolants to construct interpolant automaton [2024-11-14 04:22:38,390 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 31 states [2024-11-14 04:22:38,390 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 04:22:38,390 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 31 interpolants. [2024-11-14 04:22:38,391 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=145, Invalid=2395, Unknown=22, NotChecked=300, Total=2862 [2024-11-14 04:22:38,391 INFO L87 Difference]: Start difference. First operand 309 states and 405 transitions. Second operand has 31 states, 29 states have (on average 1.9655172413793103) internal successors, (57), 28 states have internal predecessors, (57), 3 states have call successors, (6), 3 states have call predecessors, (6), 5 states have return successors, (6), 4 states have call predecessors, (6), 3 states have call successors, (6) [2024-11-14 04:22:43,002 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.03s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-11-14 04:22:47,399 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.08s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-11-14 04:22:49,949 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.03s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-11-14 04:22:52,290 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-11-14 04:22:56,644 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-11-14 04:22:59,139 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.03s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-11-14 04:23:03,698 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.20s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-11-14 04:23:06,860 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-11-14 04:23:13,035 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.02s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-11-14 04:23:15,191 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-11-14 04:23:17,383 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-11-14 04:23:19,621 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.04s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-11-14 04:23:21,974 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-11-14 04:23:25,846 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-11-14 04:23:28,573 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-11-14 04:23:31,014 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.16s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-11-14 04:23:33,908 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.02s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-11-14 04:23:33,909 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 04:23:33,909 INFO L93 Difference]: Finished difference Result 305 states and 388 transitions. [2024-11-14 04:23:33,917 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 19 states. [2024-11-14 04:23:33,917 INFO L78 Accepts]: Start accepts. Automaton has has 31 states, 29 states have (on average 1.9655172413793103) internal successors, (57), 28 states have internal predecessors, (57), 3 states have call successors, (6), 3 states have call predecessors, (6), 5 states have return successors, (6), 4 states have call predecessors, (6), 3 states have call successors, (6) Word has length 91 [2024-11-14 04:23:33,918 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 04:23:33,919 INFO L225 Difference]: With dead ends: 305 [2024-11-14 04:23:33,919 INFO L226 Difference]: Without dead ends: 283 [2024-11-14 04:23:33,920 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 203 GetRequests, 129 SyntacticMatches, 8 SemanticMatches, 66 ConstructedPredicates, 3 IntricatePredicates, 0 DeprecatedPredicates, 698 ImplicationChecksByTransitivity, 33.9s TimeCoverageRelationStatistics Valid=238, Invalid=3907, Unknown=27, NotChecked=384, Total=4556 [2024-11-14 04:23:33,921 INFO L432 NwaCegarLoop]: 113 mSDtfsCounter, 50 mSDsluCounter, 1944 mSDsCounter, 0 mSdLazyCounter, 2095 mSolverCounterSat, 24 mSolverCounterUnsat, 35 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 41.1s Time, 0 mProtectedPredicate, 0 mProtectedAction, 50 SdHoareTripleChecker+Valid, 2057 SdHoareTripleChecker+Invalid, 2645 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 24 IncrementalHoareTripleChecker+Valid, 2095 IncrementalHoareTripleChecker+Invalid, 35 IncrementalHoareTripleChecker+Unknown, 491 IncrementalHoareTripleChecker+Unchecked, 42.6s IncrementalHoareTripleChecker+Time [2024-11-14 04:23:33,922 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [50 Valid, 2057 Invalid, 2645 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [24 Valid, 2095 Invalid, 35 Unknown, 491 Unchecked, 42.6s Time] [2024-11-14 04:23:33,923 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 283 states. [2024-11-14 04:23:33,934 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 283 to 241. [2024-11-14 04:23:33,935 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 241 states, 160 states have (on average 1.56875) internal successors, (251), 220 states have internal predecessors, (251), 15 states have call successors, (15), 4 states have call predecessors, (15), 8 states have return successors, (33), 16 states have call predecessors, (33), 14 states have call successors, (33) [2024-11-14 04:23:33,937 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 241 states to 241 states and 299 transitions. [2024-11-14 04:23:33,937 INFO L78 Accepts]: Start accepts. Automaton has 241 states and 299 transitions. Word has length 91 [2024-11-14 04:23:33,937 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 04:23:33,937 INFO L471 AbstractCegarLoop]: Abstraction has 241 states and 299 transitions. [2024-11-14 04:23:33,938 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 31 states, 29 states have (on average 1.9655172413793103) internal successors, (57), 28 states have internal predecessors, (57), 3 states have call successors, (6), 3 states have call predecessors, (6), 5 states have return successors, (6), 4 states have call predecessors, (6), 3 states have call successors, (6) [2024-11-14 04:23:33,938 INFO L276 IsEmpty]: Start isEmpty. Operand 241 states and 299 transitions. [2024-11-14 04:23:33,939 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 97 [2024-11-14 04:23:33,939 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 04:23:33,939 INFO L215 NwaCegarLoop]: trace histogram [39, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 04:23:33,982 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (17)] Ended with exit code 0 [2024-11-14 04:23:34,140 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 17 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable17 [2024-11-14 04:23:34,140 INFO L396 AbstractCegarLoop]: === Iteration 19 === Targeting ULTIMATE.startErr15REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2024-11-14 04:23:34,140 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 04:23:34,140 INFO L85 PathProgramCache]: Analyzing trace with hash 2108371760, now seen corresponding path program 1 times [2024-11-14 04:23:34,140 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 04:23:34,140 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1096110457] [2024-11-14 04:23:34,141 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:23:34,141 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 04:23:34,400 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:23:37,724 INFO L134 CoverageAnalysis]: Checked inductivity of 1050 backedges. 429 proven. 368 refuted. 0 times theorem prover too weak. 253 trivial. 0 not checked. [2024-11-14 04:23:37,724 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 04:23:37,724 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1096110457] [2024-11-14 04:23:37,724 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1096110457] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 04:23:37,725 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1088097190] [2024-11-14 04:23:37,725 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:23:37,725 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 04:23:37,725 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 04:23:37,727 INFO L229 MonitoredProcess]: Starting monitored process 18 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-14 04:23:37,729 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (18)] Waiting until timeout for monitored process [2024-11-14 04:23:39,990 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:23:39,998 INFO L255 TraceCheckSpWp]: Trace formula consists of 1164 conjuncts, 82 conjuncts are in the unsatisfiable core [2024-11-14 04:23:40,004 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-14 04:23:40,312 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2024-11-14 04:23:43,847 INFO L349 Elim1Store]: treesize reduction 20, result has 33.3 percent of original size [2024-11-14 04:23:43,847 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 19 treesize of output 16 [2024-11-14 04:23:43,868 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 9 [2024-11-14 04:23:44,060 WARN L873 $PredicateComparison]: unable to prove that (exists ((|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (and (= (store |c_old(#length)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| (select |c_#length| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|)) |c_#length|) (= (select |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 0))) is different from true [2024-11-14 04:23:44,186 INFO L190 IndexEqualityManager]: detected not equals via solver [2024-11-14 04:23:44,187 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 9 [2024-11-14 04:23:44,206 INFO L349 Elim1Store]: treesize reduction 4, result has 50.0 percent of original size [2024-11-14 04:23:44,206 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 1 case distinctions, treesize of input 11 treesize of output 11 [2024-11-14 04:23:44,343 INFO L134 CoverageAnalysis]: Checked inductivity of 1050 backedges. 365 proven. 264 refuted. 0 times theorem prover too weak. 173 trivial. 248 not checked. [2024-11-14 04:23:44,343 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-14 04:23:44,629 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1088097190] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 04:23:44,629 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [343886465] [2024-11-14 04:23:44,631 INFO L159 IcfgInterpreter]: Started Sifa with 33 locations of interest [2024-11-14 04:23:44,631 INFO L166 IcfgInterpreter]: Building call graph [2024-11-14 04:23:44,631 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2024-11-14 04:23:44,632 INFO L176 IcfgInterpreter]: Starting interpretation [2024-11-14 04:23:44,632 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2024-11-14 04:23:46,860 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 65 for LOIs [2024-11-14 04:23:46,965 INFO L180 IcfgInterpreter]: Interpretation finished [2024-11-14 04:25:08,915 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '13157#(and (<= 1 |#StackHeapBarrier|) (= |~#list~0.offset| 0) (= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= 3 |~#list~0.base|) (exists ((|v_#memory_$Pointer$.offset_435| (Array Int (Array Int Int))) (|v_#memory_int_401| (Array Int (Array Int Int))) (|v_ULTIMATE.start_l2_insert_~list#1.base_14| Int) (|v_#memory_$Pointer$.base_438| (Array Int (Array Int Int))) (|v_#memory_int_400| (Array Int (Array Int Int))) (|v_#memory_int_403| (Array Int (Array Int Int))) (|v_#memory_$Pointer$.base_436| (Array Int (Array Int Int))) (|v_#memory_int_402| (Array Int (Array Int Int))) (|v_ULTIMATE.start_l3_insert_~list#1.base_16| Int) (|v_#memory_$Pointer$.base_435| (Array Int (Array Int Int))) (|v_#memory_int_399| (Array Int (Array Int Int))) (|v_ULTIMATE.start_l4_insert_~list#1.base_25| Int)) (and (<= 8 (select |#length| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_16|) 4))) (= (store |v_#memory_int_399| (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0) (store (select |v_#memory_int_399| (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0)) 4 (select (select |v_#memory_int_400| (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0)) 4))) |v_#memory_int_400|) (= (store |v_#memory_$Pointer$.base_435| (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0) (store (select |v_#memory_$Pointer$.base_435| (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0)) 4 (select (select |v_#memory_$Pointer$.base_436| (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0)) 4))) |v_#memory_$Pointer$.base_436|) (or (and (exists ((|v_#length_BEFORE_CALL_448| (Array Int Int))) (and (= (select |v_#length_BEFORE_CALL_448| 3) 4) (= 2 (select |v_#length_BEFORE_CALL_448| 1)) (= 14 (select |v_#length_BEFORE_CALL_448| 2)))) (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (not (= (select (select |v_#memory_$Pointer$.base_436| (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0)) 4) 0)) (= |ULTIMATE.start_l2_insert_~item~2#1.base| |v_ULTIMATE.start_l3_insert_~list#1.base_16|) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (exists ((|v_#memory_$Pointer$.offset_BEFORE_CALL_420| (Array Int (Array Int Int)))) (= (select (select |v_#memory_$Pointer$.offset_BEFORE_CALL_420| 3) 0) 0)) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (exists ((|v_#memory_$Pointer$.base_BEFORE_CALL_420| (Array Int (Array Int Int)))) (= (select (select |v_#memory_$Pointer$.base_BEFORE_CALL_420| 3) 0) 0)) (exists ((|v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_484| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#amount#1_220| Int)) (and (<= (mod |v_zalloc_or_die_#Ultimate.C_memset_#amount#1_220| 4294967296) (mod |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_484| 4294967296)) (or (= |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_484| 0) (< 0 |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_484|)))) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l0_insert_~item~4#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (not (= (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0) 0)) (= |ULTIMATE.start_l1_insert_~item~3#1.base| |v_ULTIMATE.start_l2_insert_~list#1.base_14|) (not (= (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_16|) 4) 0)) (= |v_ULTIMATE.start_l4_insert_~list#1.base_25| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_16|) 4)) (exists ((|v_old(#memory_int)_AFTER_CALL_263| (Array Int (Array Int Int)))) (and (= 48 (select (select |v_old(#memory_int)_AFTER_CALL_263| 1) 0)) (= (select (select |v_old(#memory_int)_AFTER_CALL_263| 1) 1) 0)))) (and (exists ((|v_#length_BEFORE_CALL_446| (Array Int Int))) (and (= (select |v_#length_BEFORE_CALL_446| 1) 2) (= 14 (select |v_#length_BEFORE_CALL_446| 2)) (= (select |v_#length_BEFORE_CALL_446| 3) 4))) (not (= |ULTIMATE.start_l1_insert_~item~3#1.base| 0)) (not (= (select (select |v_#memory_$Pointer$.base_436| (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0)) 4) 0)) (exists ((|v_#memory_$Pointer$.base_BEFORE_CALL_418| (Array Int (Array Int Int)))) (= (select (select |v_#memory_$Pointer$.base_BEFORE_CALL_418| 3) 0) 0)) (= |ULTIMATE.start_l2_insert_~item~2#1.base| |v_ULTIMATE.start_l3_insert_~list#1.base_16|) (not (= |ULTIMATE.start_l2_insert_~item~2#1.base| 0)) (not (= |ULTIMATE.start_l0_insert_~item~4#1.base| 0)) (= (select |ULTIMATE.start_main_old_#valid#1| 1) 1) (= (select |ULTIMATE.start_main_old_#valid#1| 2) 1) (= (select |ULTIMATE.start_main_old_#valid#1| 3) 1) (exists ((|v_old(#memory_int)_AFTER_CALL_262| (Array Int (Array Int Int)))) (and (= (select (select |v_old(#memory_int)_AFTER_CALL_262| 1) 1) 0) (= 48 (select (select |v_old(#memory_int)_AFTER_CALL_262| 1) 0)))) (exists ((|v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_484| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#amount#1_220| Int)) (and (<= (mod |v_zalloc_or_die_#Ultimate.C_memset_#amount#1_220| 4294967296) (mod |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_484| 4294967296)) (or (= |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_484| 0) (< 0 |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_484|)))) (exists ((|v_#memory_$Pointer$.offset_BEFORE_CALL_418| (Array Int (Array Int Int)))) (= (select (select |v_#memory_$Pointer$.offset_BEFORE_CALL_418| 3) 0) 0)) (= |ULTIMATE.start_l1_insert_~list#1.base| |ULTIMATE.start_l0_insert_~item~4#1.base|) (= (select |ULTIMATE.start_main_old_#valid#1| 0) 0) (not (= (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0) 0)) (= |ULTIMATE.start_l1_insert_~item~3#1.base| |v_ULTIMATE.start_l2_insert_~list#1.base_14|) (not (= (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_16|) 4) 0)) (= |v_ULTIMATE.start_l4_insert_~list#1.base_25| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_16|) 4)))) (= (store (store |v_#memory_$Pointer$.base_436| (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0) (store (select |v_#memory_$Pointer$.base_436| (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0)) 0 (select (select |v_#memory_$Pointer$.base_436| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0))) |v_ULTIMATE.start_l4_insert_~list#1.base_25| (store (select (store |v_#memory_$Pointer$.base_436| (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0) (store (select |v_#memory_$Pointer$.base_436| (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0)) 0 (select (select |v_#memory_$Pointer$.base_436| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0))) |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0 (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0))) |v_#memory_$Pointer$.base_438|) (= (select |#valid| |v_ULTIMATE.start_l3_insert_~list#1.base_16|) 1) (= (store (store |v_#memory_$Pointer$.base_438| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_16|) 4) (store (select |v_#memory_$Pointer$.base_438| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_16|) 4)) 4 (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l3_insert_~list#1.base_16|) 4))) |v_ULTIMATE.start_l3_insert_~list#1.base_16| (store (select (store |v_#memory_$Pointer$.base_438| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_16|) 4) (store (select |v_#memory_$Pointer$.base_438| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_16|) 4)) 4 (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l3_insert_~list#1.base_16|) 4))) |v_ULTIMATE.start_l3_insert_~list#1.base_16|) 4 (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_16|) 4))) |#memory_$Pointer$.base|) (= (store |v_#memory_int_402| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_16|) 4) (store (select |v_#memory_int_402| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_16|) 4)) 4 (select (select |v_#memory_int_403| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_16|) 4)) 4))) |v_#memory_int_403|) (= |#memory_int| (store |v_#memory_int_403| |v_ULTIMATE.start_l3_insert_~list#1.base_16| (store (select |v_#memory_int_403| |v_ULTIMATE.start_l3_insert_~list#1.base_16|) 4 (select (select |#memory_int| |v_ULTIMATE.start_l3_insert_~list#1.base_16|) 4)))) (= |#memory_$Pointer$.offset| (store (store (store (store |v_#memory_$Pointer$.offset_435| (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0) (store (store (select |v_#memory_$Pointer$.offset_435| (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0)) 4 0) 0 (select (select |v_#memory_$Pointer$.offset_435| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0))) |v_ULTIMATE.start_l4_insert_~list#1.base_25| (store (select (store |v_#memory_$Pointer$.offset_435| (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0) (store (store (select |v_#memory_$Pointer$.offset_435| (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0)) 4 0) 0 (select (select |v_#memory_$Pointer$.offset_435| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0))) |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0 0)) (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_16|) 4) (store (select (store (store |v_#memory_$Pointer$.offset_435| (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0) (store (store (select |v_#memory_$Pointer$.offset_435| (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0)) 4 0) 0 (select (select |v_#memory_$Pointer$.offset_435| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0))) |v_ULTIMATE.start_l4_insert_~list#1.base_25| (store (select (store |v_#memory_$Pointer$.offset_435| (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0) (store (store (select |v_#memory_$Pointer$.offset_435| (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0)) 4 0) 0 (select (select |v_#memory_$Pointer$.offset_435| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0))) |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0 0)) (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_16|) 4)) 4 (select (select (store (store |v_#memory_$Pointer$.offset_435| (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0) (store (store (select |v_#memory_$Pointer$.offset_435| (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0)) 4 0) 0 (select (select |v_#memory_$Pointer$.offset_435| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0))) |v_ULTIMATE.start_l4_insert_~list#1.base_25| (store (select (store |v_#memory_$Pointer$.offset_435| (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0) (store (store (select |v_#memory_$Pointer$.offset_435| (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0)) 4 0) 0 (select (select |v_#memory_$Pointer$.offset_435| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0))) |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0 0)) |v_ULTIMATE.start_l3_insert_~list#1.base_16|) 4))) |v_ULTIMATE.start_l3_insert_~list#1.base_16| (store (select (store (store (store |v_#memory_$Pointer$.offset_435| (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0) (store (store (select |v_#memory_$Pointer$.offset_435| (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0)) 4 0) 0 (select (select |v_#memory_$Pointer$.offset_435| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0))) |v_ULTIMATE.start_l4_insert_~list#1.base_25| (store (select (store |v_#memory_$Pointer$.offset_435| (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0) (store (store (select |v_#memory_$Pointer$.offset_435| (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0)) 4 0) 0 (select (select |v_#memory_$Pointer$.offset_435| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0))) |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0 0)) (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_16|) 4) (store (select (store (store |v_#memory_$Pointer$.offset_435| (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0) (store (store (select |v_#memory_$Pointer$.offset_435| (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0)) 4 0) 0 (select (select |v_#memory_$Pointer$.offset_435| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0))) |v_ULTIMATE.start_l4_insert_~list#1.base_25| (store (select (store |v_#memory_$Pointer$.offset_435| (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0) (store (store (select |v_#memory_$Pointer$.offset_435| (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0)) 4 0) 0 (select (select |v_#memory_$Pointer$.offset_435| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0))) |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0 0)) (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_16|) 4)) 4 (select (select (store (store |v_#memory_$Pointer$.offset_435| (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0) (store (store (select |v_#memory_$Pointer$.offset_435| (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0)) 4 0) 0 (select (select |v_#memory_$Pointer$.offset_435| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0))) |v_ULTIMATE.start_l4_insert_~list#1.base_25| (store (select (store |v_#memory_$Pointer$.offset_435| (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0) (store (store (select |v_#memory_$Pointer$.offset_435| (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0)) 4 0) 0 (select (select |v_#memory_$Pointer$.offset_435| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0))) |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0 0)) |v_ULTIMATE.start_l3_insert_~list#1.base_16|) 4))) |v_ULTIMATE.start_l3_insert_~list#1.base_16|) 4 0))) (<= 8 (select |#length| |v_ULTIMATE.start_l3_insert_~list#1.base_16|)) (<= (select |#length| |v_ULTIMATE.start_l2_insert_~list#1.base_14|) 3) (= (store |v_#memory_int_400| (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0) (store (select |v_#memory_int_400| (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0)) 0 (select (select |v_#memory_int_401| (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0)) 0))) |v_#memory_int_401|) (<= 8 (select |#length| (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0))) (= |v_#memory_int_402| (store |v_#memory_int_401| |v_ULTIMATE.start_l4_insert_~list#1.base_25| (store (select |v_#memory_int_401| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0 (select (select |v_#memory_int_402| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0)))) (= (select |#valid| (select (select |v_#memory_$Pointer$.base_438| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 0)) 1) (= (select |#valid| |v_ULTIMATE.start_l4_insert_~list#1.base_25|) 1))) (= |ULTIMATE.start_l1_insert_~list#1.offset| 4) (= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (= |ULTIMATE.start_l0_insert_~item~4#1.offset| 0) (= |ULTIMATE.start_l1_insert_~item~3#1.offset| 0) (= |ULTIMATE.start_l2_insert_~item~2#1.offset| 0))' at error location [2024-11-14 04:25:08,915 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2024-11-14 04:25:08,915 INFO L185 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2024-11-14 04:25:08,915 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [19, 26] total 41 [2024-11-14 04:25:08,915 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [42437734] [2024-11-14 04:25:08,916 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2024-11-14 04:25:08,916 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 41 states [2024-11-14 04:25:08,916 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 04:25:08,917 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 41 interpolants. [2024-11-14 04:25:08,917 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=344, Invalid=4906, Unknown=10, NotChecked=142, Total=5402 [2024-11-14 04:25:08,918 INFO L87 Difference]: Start difference. First operand 241 states and 299 transitions. Second operand has 41 states, 36 states have (on average 2.2222222222222223) internal successors, (80), 37 states have internal predecessors, (80), 3 states have call successors, (9), 2 states have call predecessors, (9), 7 states have return successors, (10), 7 states have call predecessors, (10), 3 states have call successors, (10) [2024-11-14 04:25:10,972 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-11-14 04:25:17,847 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 04:25:17,848 INFO L93 Difference]: Finished difference Result 333 states and 432 transitions. [2024-11-14 04:25:17,849 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 24 states. [2024-11-14 04:25:17,849 INFO L78 Accepts]: Start accepts. Automaton has has 41 states, 36 states have (on average 2.2222222222222223) internal successors, (80), 37 states have internal predecessors, (80), 3 states have call successors, (9), 2 states have call predecessors, (9), 7 states have return successors, (10), 7 states have call predecessors, (10), 3 states have call successors, (10) Word has length 96 [2024-11-14 04:25:17,849 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 04:25:17,851 INFO L225 Difference]: With dead ends: 333 [2024-11-14 04:25:17,851 INFO L226 Difference]: Without dead ends: 292 [2024-11-14 04:25:17,853 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 244 GetRequests, 150 SyntacticMatches, 8 SemanticMatches, 86 ConstructedPredicates, 1 IntricatePredicates, 0 DeprecatedPredicates, 2035 ImplicationChecksByTransitivity, 89.2s TimeCoverageRelationStatistics Valid=493, Invalid=6983, Unknown=10, NotChecked=170, Total=7656 [2024-11-14 04:25:17,854 INFO L432 NwaCegarLoop]: 121 mSDtfsCounter, 61 mSDsluCounter, 1759 mSDsCounter, 0 mSdLazyCounter, 2036 mSolverCounterSat, 22 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 5.7s Time, 0 mProtectedPredicate, 0 mProtectedAction, 61 SdHoareTripleChecker+Valid, 1880 SdHoareTripleChecker+Invalid, 2272 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 22 IncrementalHoareTripleChecker+Valid, 2036 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 213 IncrementalHoareTripleChecker+Unchecked, 6.0s IncrementalHoareTripleChecker+Time [2024-11-14 04:25:17,854 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [61 Valid, 1880 Invalid, 2272 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [22 Valid, 2036 Invalid, 1 Unknown, 213 Unchecked, 6.0s Time] [2024-11-14 04:25:17,855 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 292 states. [2024-11-14 04:25:17,868 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 292 to 246. [2024-11-14 04:25:17,869 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 246 states, 162 states have (on average 1.5617283950617284) internal successors, (253), 224 states have internal predecessors, (253), 16 states have call successors, (16), 4 states have call predecessors, (16), 10 states have return successors, (45), 17 states have call predecessors, (45), 15 states have call successors, (45) [2024-11-14 04:25:17,871 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 246 states to 246 states and 314 transitions. [2024-11-14 04:25:17,871 INFO L78 Accepts]: Start accepts. Automaton has 246 states and 314 transitions. Word has length 96 [2024-11-14 04:25:17,871 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 04:25:17,871 INFO L471 AbstractCegarLoop]: Abstraction has 246 states and 314 transitions. [2024-11-14 04:25:17,872 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 41 states, 36 states have (on average 2.2222222222222223) internal successors, (80), 37 states have internal predecessors, (80), 3 states have call successors, (9), 2 states have call predecessors, (9), 7 states have return successors, (10), 7 states have call predecessors, (10), 3 states have call successors, (10) [2024-11-14 04:25:17,872 INFO L276 IsEmpty]: Start isEmpty. Operand 246 states and 314 transitions. [2024-11-14 04:25:17,873 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 99 [2024-11-14 04:25:17,873 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 04:25:17,873 INFO L215 NwaCegarLoop]: trace histogram [41, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 04:25:17,927 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (18)] Ended with exit code 0 [2024-11-14 04:25:18,074 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable18,18 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 04:25:18,074 INFO L396 AbstractCegarLoop]: === Iteration 20 === Targeting ULTIMATE.startErr15REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2024-11-14 04:25:18,075 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 04:25:18,075 INFO L85 PathProgramCache]: Analyzing trace with hash 381946788, now seen corresponding path program 2 times [2024-11-14 04:25:18,075 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 04:25:18,076 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [852971462] [2024-11-14 04:25:18,076 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:25:18,076 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 04:25:18,332 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:25:21,477 INFO L134 CoverageAnalysis]: Checked inductivity of 1141 backedges. 453 proven. 492 refuted. 0 times theorem prover too weak. 196 trivial. 0 not checked. [2024-11-14 04:25:21,477 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 04:25:21,477 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [852971462] [2024-11-14 04:25:21,477 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [852971462] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 04:25:21,477 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [2147197617] [2024-11-14 04:25:21,477 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2024-11-14 04:25:21,477 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 04:25:21,477 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 04:25:21,480 INFO L229 MonitoredProcess]: Starting monitored process 19 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-14 04:25:21,482 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (19)] Waiting until timeout for monitored process [2024-11-14 04:26:22,195 INFO L227 tOrderPrioritization]: Assert order OUTSIDE_LOOP_FIRST2 issued 6 check-sat command(s) [2024-11-14 04:26:22,195 INFO L228 tOrderPrioritization]: Conjunction of SSA is unsat [2024-11-14 04:26:22,207 INFO L255 TraceCheckSpWp]: Trace formula consists of 847 conjuncts, 47 conjuncts are in the unsatisfiable core [2024-11-14 04:26:22,211 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-14 04:26:22,221 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 8 treesize of output 7 [2024-11-14 04:26:22,309 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 13 treesize of output 9 [2024-11-14 04:26:23,515 INFO L134 CoverageAnalysis]: Checked inductivity of 1141 backedges. 411 proven. 55 refuted. 0 times theorem prover too weak. 675 trivial. 0 not checked. [2024-11-14 04:26:23,515 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-14 04:26:25,726 INFO L134 CoverageAnalysis]: Checked inductivity of 1141 backedges. 411 proven. 55 refuted. 0 times theorem prover too weak. 675 trivial. 0 not checked. [2024-11-14 04:26:25,726 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [2147197617] provided 0 perfect and 2 imperfect interpolant sequences [2024-11-14 04:26:25,726 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1303127933] [2024-11-14 04:26:25,728 INFO L159 IcfgInterpreter]: Started Sifa with 33 locations of interest [2024-11-14 04:26:25,728 INFO L166 IcfgInterpreter]: Building call graph [2024-11-14 04:26:25,729 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2024-11-14 04:26:25,729 INFO L176 IcfgInterpreter]: Starting interpretation [2024-11-14 04:26:25,729 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2024-11-14 04:26:26,838 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 65 for LOIs [2024-11-14 04:26:27,060 INFO L180 IcfgInterpreter]: Interpretation finished [2024-11-14 04:27:09,755 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '14427#(and (<= 1 |#StackHeapBarrier|) (= |~#list~0.offset| 0) (= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= 3 |~#list~0.base|) (= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (exists ((|v_#memory_$Pointer$.base_517| (Array Int (Array Int Int))) (|v_#memory_$Pointer$.offset_514| (Array Int (Array Int Int))) (|v_#memory_$Pointer$.offset_515| (Array Int (Array Int Int))) (|v_#memory_int_478| (Array Int (Array Int Int))) (|v_#memory_$Pointer$.base_515| (Array Int (Array Int Int))) (|v_#memory_$Pointer$.offset_517| (Array Int (Array Int Int))) (|v_#memory_$Pointer$.base_514| (Array Int (Array Int Int))) (|v_#memory_int_479| (Array Int (Array Int Int))) (|v_ULTIMATE.start_l4_insert_~list#1.base_26| Int) (|v_ULTIMATE.start_l4_insert_~list#1.offset_23| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#amount#1_243| Int) (|v_ULTIMATE.start_l3_insert_~list#1.offset_14| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_573| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#res#1.offset_219| Int) (|v_ULTIMATE.start_l3_insert_~list#1.base_17| Int) (|v_#memory_int_481| (Array Int (Array Int Int))) (|v_#memory_int_480| (Array Int (Array Int Int))) (|v_zalloc_or_die_#Ultimate.C_memset_#value#1_261| Int) (|v_#memory_int_482| (Array Int (Array Int Int)))) (and (= |#memory_$Pointer$.base| (store (store |v_#memory_$Pointer$.base_517| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_17|) |v_ULTIMATE.start_l3_insert_~list#1.offset_14|) (store (select |v_#memory_$Pointer$.base_517| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_17|) |v_ULTIMATE.start_l3_insert_~list#1.offset_14|)) (+ (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l3_insert_~list#1.base_17|) |v_ULTIMATE.start_l3_insert_~list#1.offset_14|) 4) (select (select |v_#memory_$Pointer$.base_517| |v_ULTIMATE.start_l3_insert_~list#1.base_17|) |v_ULTIMATE.start_l3_insert_~list#1.offset_14|))) |v_ULTIMATE.start_l3_insert_~list#1.base_17| (store (select (store |v_#memory_$Pointer$.base_517| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_17|) |v_ULTIMATE.start_l3_insert_~list#1.offset_14|) (store (select |v_#memory_$Pointer$.base_517| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_17|) |v_ULTIMATE.start_l3_insert_~list#1.offset_14|)) (+ (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l3_insert_~list#1.base_17|) |v_ULTIMATE.start_l3_insert_~list#1.offset_14|) 4) (select (select |v_#memory_$Pointer$.base_517| |v_ULTIMATE.start_l3_insert_~list#1.base_17|) |v_ULTIMATE.start_l3_insert_~list#1.offset_14|))) |v_ULTIMATE.start_l3_insert_~list#1.base_17|) |v_ULTIMATE.start_l3_insert_~list#1.offset_14| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_17|) |v_ULTIMATE.start_l3_insert_~list#1.offset_14|)))) (<= 0 |v_ULTIMATE.start_l4_insert_~list#1.offset_23|) (= |v_#memory_int_481| (store |v_#memory_int_480| |v_ULTIMATE.start_l4_insert_~list#1.base_26| (store (select |v_#memory_int_480| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23| (select (select |v_#memory_int_481| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|)))) (= (store (store |v_#memory_$Pointer$.base_515| (select (select |v_#memory_$Pointer$.base_517| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|) (store (select |v_#memory_$Pointer$.base_515| (select (select |v_#memory_$Pointer$.base_517| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|)) (select (select |v_#memory_$Pointer$.offset_517| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|) (select (select |v_#memory_$Pointer$.base_515| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|))) |v_ULTIMATE.start_l4_insert_~list#1.base_26| (store (select (store |v_#memory_$Pointer$.base_515| (select (select |v_#memory_$Pointer$.base_517| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|) (store (select |v_#memory_$Pointer$.base_515| (select (select |v_#memory_$Pointer$.base_517| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|)) (select (select |v_#memory_$Pointer$.offset_517| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|) (select (select |v_#memory_$Pointer$.base_515| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|))) |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23| (select (select |v_#memory_$Pointer$.base_517| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|))) |v_#memory_$Pointer$.base_517|) (= (store |v_#memory_int_478| (select (select |v_#memory_$Pointer$.base_517| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|) (store (select |v_#memory_int_478| (select (select |v_#memory_$Pointer$.base_517| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|)) (+ 4 (select (select |v_#memory_$Pointer$.offset_517| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|)) (select (select |v_#memory_int_479| (select (select |v_#memory_$Pointer$.base_517| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|)) (+ 4 (select (select |v_#memory_$Pointer$.offset_517| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|))))) |v_#memory_int_479|) (= (select |#valid| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) 1) (= (select |#valid| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_17|) |v_ULTIMATE.start_l3_insert_~list#1.offset_14|)) 1) (<= (+ (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l3_insert_~list#1.base_17|) |v_ULTIMATE.start_l3_insert_~list#1.offset_14|) 8) (select |#length| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_17|) |v_ULTIMATE.start_l3_insert_~list#1.offset_14|))) (<= (+ 4 |v_ULTIMATE.start_l4_insert_~list#1.offset_23|) (select |#length| |v_ULTIMATE.start_l4_insert_~list#1.base_26|)) (<= 0 |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_573|) (<= 0 |v_ULTIMATE.start_l3_insert_~list#1.offset_14|) (= (store |v_#memory_$Pointer$.base_514| (select (select |v_#memory_$Pointer$.base_517| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|) (store (select |v_#memory_$Pointer$.base_514| (select (select |v_#memory_$Pointer$.base_517| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|)) (+ 4 (select (select |v_#memory_$Pointer$.offset_517| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|)) (select (select |v_#memory_$Pointer$.base_515| (select (select |v_#memory_$Pointer$.base_517| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|)) (+ 4 (select (select |v_#memory_$Pointer$.offset_517| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|))))) |v_#memory_$Pointer$.base_515|) (= |v_zalloc_or_die_#Ultimate.C_memset_#value#1_261| 0) (= (select |#valid| |v_ULTIMATE.start_l3_insert_~list#1.base_17|) 1) (<= (mod |v_zalloc_or_die_#Ultimate.C_memset_#amount#1_243| 4294967296) (mod |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_573| 4294967296)) (= (select |#valid| (select (select |v_#memory_$Pointer$.base_517| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|)) 1) (= |#memory_int| (store |v_#memory_int_482| |v_ULTIMATE.start_l3_insert_~list#1.base_17| (store (select |v_#memory_int_482| |v_ULTIMATE.start_l3_insert_~list#1.base_17|) |v_ULTIMATE.start_l3_insert_~list#1.offset_14| (select (select |#memory_int| |v_ULTIMATE.start_l3_insert_~list#1.base_17|) |v_ULTIMATE.start_l3_insert_~list#1.offset_14|)))) (not (= 0 (select (select |v_#memory_$Pointer$.base_515| (select (select |v_#memory_$Pointer$.base_517| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|)) (+ 4 (select (select |v_#memory_$Pointer$.offset_517| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|))))) (<= (+ 4 |v_ULTIMATE.start_l3_insert_~list#1.offset_14|) (select |#length| |v_ULTIMATE.start_l3_insert_~list#1.base_17|)) (= |v_#memory_$Pointer$.offset_515| (store |v_#memory_$Pointer$.offset_514| (select (select |v_#memory_$Pointer$.base_517| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|) (store (select |v_#memory_$Pointer$.offset_514| (select (select |v_#memory_$Pointer$.base_517| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|)) (+ 4 (select (select |v_#memory_$Pointer$.offset_517| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|)) 0))) (= |#memory_$Pointer$.offset| (store (store |v_#memory_$Pointer$.offset_517| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_17|) |v_ULTIMATE.start_l3_insert_~list#1.offset_14|) (store (select |v_#memory_$Pointer$.offset_517| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_17|) |v_ULTIMATE.start_l3_insert_~list#1.offset_14|)) (+ (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l3_insert_~list#1.base_17|) |v_ULTIMATE.start_l3_insert_~list#1.offset_14|) 4) (select (select |v_#memory_$Pointer$.offset_517| |v_ULTIMATE.start_l3_insert_~list#1.base_17|) |v_ULTIMATE.start_l3_insert_~list#1.offset_14|))) |v_ULTIMATE.start_l3_insert_~list#1.base_17| (store (select (store |v_#memory_$Pointer$.offset_517| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_17|) |v_ULTIMATE.start_l3_insert_~list#1.offset_14|) (store (select |v_#memory_$Pointer$.offset_517| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_17|) |v_ULTIMATE.start_l3_insert_~list#1.offset_14|)) (+ (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l3_insert_~list#1.base_17|) |v_ULTIMATE.start_l3_insert_~list#1.offset_14|) 4) (select (select |v_#memory_$Pointer$.offset_517| |v_ULTIMATE.start_l3_insert_~list#1.base_17|) |v_ULTIMATE.start_l3_insert_~list#1.offset_14|))) |v_ULTIMATE.start_l3_insert_~list#1.base_17|) |v_ULTIMATE.start_l3_insert_~list#1.offset_14| (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l3_insert_~list#1.base_17|) |v_ULTIMATE.start_l3_insert_~list#1.offset_14|)))) (= (store |v_#memory_int_481| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_17|) |v_ULTIMATE.start_l3_insert_~list#1.offset_14|) (store (select |v_#memory_int_481| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_17|) |v_ULTIMATE.start_l3_insert_~list#1.offset_14|)) (+ (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l3_insert_~list#1.base_17|) |v_ULTIMATE.start_l3_insert_~list#1.offset_14|) 4) (select (select |v_#memory_int_482| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_17|) |v_ULTIMATE.start_l3_insert_~list#1.offset_14|)) (+ (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l3_insert_~list#1.base_17|) |v_ULTIMATE.start_l3_insert_~list#1.offset_14|) 4)))) |v_#memory_int_482|) (<= 0 (+ (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l3_insert_~list#1.base_17|) |v_ULTIMATE.start_l3_insert_~list#1.offset_14|) 4)) (<= 0 (select (select |v_#memory_$Pointer$.offset_517| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|)) (= (store (store |v_#memory_$Pointer$.offset_515| (select (select |v_#memory_$Pointer$.base_517| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|) (store (select |v_#memory_$Pointer$.offset_515| (select (select |v_#memory_$Pointer$.base_517| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|)) (select (select |v_#memory_$Pointer$.offset_517| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|) (select (select |v_#memory_$Pointer$.offset_515| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|))) |v_ULTIMATE.start_l4_insert_~list#1.base_26| (store (select (store |v_#memory_$Pointer$.offset_515| (select (select |v_#memory_$Pointer$.base_517| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|) (store (select |v_#memory_$Pointer$.offset_515| (select (select |v_#memory_$Pointer$.base_517| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|)) (select (select |v_#memory_$Pointer$.offset_517| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|) (select (select |v_#memory_$Pointer$.offset_515| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|))) |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23| (select (select |v_#memory_$Pointer$.offset_517| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|))) |v_#memory_$Pointer$.offset_517|) (<= (+ 8 (select (select |v_#memory_$Pointer$.offset_517| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|)) (select |#length| (select (select |v_#memory_$Pointer$.base_517| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|))) (= |v_zalloc_or_die_#Ultimate.C_memset_#res#1.offset_219| 0) (= (store |v_#memory_int_479| (select (select |v_#memory_$Pointer$.base_517| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|) (store (select |v_#memory_int_479| (select (select |v_#memory_$Pointer$.base_517| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|)) (select (select |v_#memory_$Pointer$.offset_517| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|) (select (select |v_#memory_int_480| (select (select |v_#memory_$Pointer$.base_517| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|)) (select (select |v_#memory_$Pointer$.offset_517| |v_ULTIMATE.start_l4_insert_~list#1.base_26|) |v_ULTIMATE.start_l4_insert_~list#1.offset_23|)))) |v_#memory_int_480|))))' at error location [2024-11-14 04:27:09,755 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2024-11-14 04:27:09,755 INFO L185 FreeRefinementEngine]: Found 0 perfect and 3 imperfect interpolant sequences. [2024-11-14 04:27:09,756 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [21, 15, 15] total 47 [2024-11-14 04:27:09,756 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [58165390] [2024-11-14 04:27:09,756 INFO L85 oduleStraightlineAll]: Using 3 imperfect interpolants to construct interpolant automaton [2024-11-14 04:27:09,757 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 47 states [2024-11-14 04:27:09,757 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 04:27:09,757 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 47 interpolants. [2024-11-14 04:27:09,758 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=357, Invalid=4745, Unknown=10, NotChecked=0, Total=5112 [2024-11-14 04:27:09,758 INFO L87 Difference]: Start difference. First operand 246 states and 314 transitions. Second operand has 47 states, 42 states have (on average 2.119047619047619) internal successors, (89), 45 states have internal predecessors, (89), 2 states have call successors, (9), 2 states have call predecessors, (9), 6 states have return successors, (11), 5 states have call predecessors, (11), 2 states have call successors, (11) [2024-11-14 04:27:12,383 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [] [2024-11-14 04:27:34,031 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 04:27:34,031 INFO L93 Difference]: Finished difference Result 318 states and 426 transitions. [2024-11-14 04:27:34,031 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 47 states. [2024-11-14 04:27:34,031 INFO L78 Accepts]: Start accepts. Automaton has has 47 states, 42 states have (on average 2.119047619047619) internal successors, (89), 45 states have internal predecessors, (89), 2 states have call successors, (9), 2 states have call predecessors, (9), 6 states have return successors, (11), 5 states have call predecessors, (11), 2 states have call successors, (11) Word has length 98 [2024-11-14 04:27:34,032 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 04:27:34,034 INFO L225 Difference]: With dead ends: 318 [2024-11-14 04:27:34,034 INFO L226 Difference]: Without dead ends: 299 [2024-11-14 04:27:34,037 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 361 GetRequests, 244 SyntacticMatches, 6 SemanticMatches, 111 ConstructedPredicates, 0 IntricatePredicates, 0 DeprecatedPredicates, 3116 ImplicationChecksByTransitivity, 64.7s TimeCoverageRelationStatistics Valid=1601, Invalid=11045, Unknown=10, NotChecked=0, Total=12656 [2024-11-14 04:27:34,038 INFO L432 NwaCegarLoop]: 119 mSDtfsCounter, 117 mSDsluCounter, 2163 mSDsCounter, 0 mSdLazyCounter, 2007 mSolverCounterSat, 100 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 5.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 117 SdHoareTripleChecker+Valid, 2282 SdHoareTripleChecker+Invalid, 2108 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 100 IncrementalHoareTripleChecker+Valid, 2007 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 0 IncrementalHoareTripleChecker+Unchecked, 5.9s IncrementalHoareTripleChecker+Time [2024-11-14 04:27:34,038 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [117 Valid, 2282 Invalid, 2108 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [100 Valid, 2007 Invalid, 1 Unknown, 0 Unchecked, 5.9s Time] [2024-11-14 04:27:34,039 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 299 states. [2024-11-14 04:27:34,051 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 299 to 272. [2024-11-14 04:27:34,052 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 272 states, 190 states have (on average 1.4894736842105263) internal successors, (283), 250 states have internal predecessors, (283), 16 states have call successors, (16), 4 states have call predecessors, (16), 8 states have return successors, (35), 17 states have call predecessors, (35), 15 states have call successors, (35) [2024-11-14 04:27:34,054 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 272 states to 272 states and 334 transitions. [2024-11-14 04:27:34,054 INFO L78 Accepts]: Start accepts. Automaton has 272 states and 334 transitions. Word has length 98 [2024-11-14 04:27:34,055 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 04:27:34,055 INFO L471 AbstractCegarLoop]: Abstraction has 272 states and 334 transitions. [2024-11-14 04:27:34,055 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 47 states, 42 states have (on average 2.119047619047619) internal successors, (89), 45 states have internal predecessors, (89), 2 states have call successors, (9), 2 states have call predecessors, (9), 6 states have return successors, (11), 5 states have call predecessors, (11), 2 states have call successors, (11) [2024-11-14 04:27:34,055 INFO L276 IsEmpty]: Start isEmpty. Operand 272 states and 334 transitions. [2024-11-14 04:27:34,056 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 112 [2024-11-14 04:27:34,057 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 04:27:34,057 INFO L215 NwaCegarLoop]: trace histogram [54, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 04:27:34,094 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (19)] Ended with exit code 0 [2024-11-14 04:27:34,257 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: SelfDestructingSolverStorable19,19 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 04:27:34,258 INFO L396 AbstractCegarLoop]: === Iteration 21 === Targeting ULTIMATE.startErr15REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2024-11-14 04:27:34,258 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 04:27:34,258 INFO L85 PathProgramCache]: Analyzing trace with hash 1457987821, now seen corresponding path program 3 times [2024-11-14 04:27:34,258 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 04:27:34,258 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1856072915] [2024-11-14 04:27:34,258 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:27:34,259 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 04:27:34,607 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:27:38,602 INFO L134 CoverageAnalysis]: Checked inductivity of 1830 backedges. 609 proven. 755 refuted. 0 times theorem prover too weak. 466 trivial. 0 not checked. [2024-11-14 04:27:38,602 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 04:27:38,602 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1856072915] [2024-11-14 04:27:38,603 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1856072915] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 04:27:38,603 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1311989072] [2024-11-14 04:27:38,603 INFO L93 rtionOrderModulation]: Changing assertion order to TERMS_WITH_SMALL_CONSTANTS_FIRST [2024-11-14 04:27:38,603 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 04:27:38,603 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 04:27:38,605 INFO L229 MonitoredProcess]: Starting monitored process 20 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-14 04:27:38,606 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (20)] Waiting until timeout for monitored process [2024-11-14 04:27:43,075 INFO L227 tOrderPrioritization]: Assert order TERMS_WITH_SMALL_CONSTANTS_FIRST issued 0 check-sat command(s) [2024-11-14 04:27:43,075 INFO L228 tOrderPrioritization]: Conjunction of SSA is unsat [2024-11-14 04:27:43,088 INFO L255 TraceCheckSpWp]: Trace formula consists of 1389 conjuncts, 129 conjuncts are in the unsatisfiable core [2024-11-14 04:27:43,096 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-14 04:27:43,405 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2024-11-14 04:27:43,420 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 6 treesize of output 5 [2024-11-14 04:27:46,320 WARN L873 $PredicateComparison]: unable to prove that (exists ((|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (and (= (store |c_old(#length)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| (select |c_#length| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|)) |c_#length|) (= |c_#valid| (store |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| (select |c_#valid| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|))) (= (select |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 0))) is different from true [2024-11-14 04:27:46,487 INFO L349 Elim1Store]: treesize reduction 20, result has 33.3 percent of original size [2024-11-14 04:27:46,488 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 19 treesize of output 16 [2024-11-14 04:27:46,493 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 9 [2024-11-14 04:27:46,836 INFO L349 Elim1Store]: treesize reduction 13, result has 40.9 percent of original size [2024-11-14 04:27:46,837 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 14 treesize of output 13 [2024-11-14 04:27:46,879 INFO L349 Elim1Store]: treesize reduction 20, result has 33.3 percent of original size [2024-11-14 04:27:46,879 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 19 treesize of output 16 [2024-11-14 04:27:48,152 INFO L349 Elim1Store]: treesize reduction 13, result has 40.9 percent of original size [2024-11-14 04:27:48,152 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 14 treesize of output 13 [2024-11-14 04:27:48,196 INFO L349 Elim1Store]: treesize reduction 15, result has 25.0 percent of original size [2024-11-14 04:27:48,196 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 1 case distinctions, treesize of input 12 treesize of output 14 [2024-11-14 04:27:48,562 WARN L873 $PredicateComparison]: unable to prove that (exists ((|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (and (= (store |c_old(#length)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| (select |c_#length| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|)) |c_#length|) (= (select |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 0))) is different from true [2024-11-14 04:27:48,825 INFO L190 IndexEqualityManager]: detected not equals via solver [2024-11-14 04:27:48,826 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 18 treesize of output 13 [2024-11-14 04:27:48,858 INFO L349 Elim1Store]: treesize reduction 16, result has 36.0 percent of original size [2024-11-14 04:27:48,858 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 3 select indices, 3 select index equivalence classes, 0 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 3 case distinctions, treesize of input 16 treesize of output 18 [2024-11-14 04:27:49,346 INFO L134 CoverageAnalysis]: Checked inductivity of 1830 backedges. 86 proven. 345 refuted. 0 times theorem prover too weak. 326 trivial. 1073 not checked. [2024-11-14 04:27:49,346 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-14 04:27:50,123 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [1311989072] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 04:27:50,123 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1955942922] [2024-11-14 04:27:50,124 INFO L159 IcfgInterpreter]: Started Sifa with 33 locations of interest [2024-11-14 04:27:50,124 INFO L166 IcfgInterpreter]: Building call graph [2024-11-14 04:27:50,125 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2024-11-14 04:27:50,125 INFO L176 IcfgInterpreter]: Starting interpretation [2024-11-14 04:27:50,125 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2024-11-14 04:27:51,137 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 65 for LOIs [2024-11-14 04:27:51,264 INFO L180 IcfgInterpreter]: Interpretation finished [2024-11-14 04:28:48,789 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '15544#(and (<= 1 |#StackHeapBarrier|) (= |~#list~0.offset| 0) (= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= 3 |~#list~0.base|) (= |ULTIMATE.start_l0_insert_~list#1.offset| 0) (exists ((|v_#memory_$Pointer$.offset_555| (Array Int (Array Int Int))) (|v_#memory_$Pointer$.offset_556| (Array Int (Array Int Int))) (|v_#memory_$Pointer$.offset_558| (Array Int (Array Int Int))) (|v_#memory_int_522| (Array Int (Array Int Int))) (|v_#memory_int_521| (Array Int (Array Int Int))) (|v_#memory_$Pointer$.base_558| (Array Int (Array Int Int))) (|v_#memory_int_523| (Array Int (Array Int Int))) (|v_ULTIMATE.start_l4_insert_~list#1.base_27| Int) (|v_ULTIMATE.start_l4_insert_~list#1.offset_24| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_625| Int) (|v_#memory_int_519| (Array Int (Array Int Int))) (|v_zalloc_or_die_#Ultimate.C_memset_#amount#1_253| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#res#1.offset_228| Int) (|v_ULTIMATE.start_l3_insert_~list#1.offset_15| Int) (|v_#memory_$Pointer$.base_556| (Array Int (Array Int Int))) (|v_#memory_$Pointer$.base_555| (Array Int (Array Int Int))) (|v_ULTIMATE.start_l3_insert_~list#1.base_18| Int) (|v_#memory_int_520| (Array Int (Array Int Int))) (|v_zalloc_or_die_#Ultimate.C_memset_#value#1_271| Int)) (and (= (store (store |v_#memory_$Pointer$.base_556| (select (select |v_#memory_$Pointer$.base_558| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|) (store (select |v_#memory_$Pointer$.base_556| (select (select |v_#memory_$Pointer$.base_558| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|)) (select (select |v_#memory_$Pointer$.offset_558| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|) (select (select |v_#memory_$Pointer$.base_556| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|))) |v_ULTIMATE.start_l4_insert_~list#1.base_27| (store (select (store |v_#memory_$Pointer$.base_556| (select (select |v_#memory_$Pointer$.base_558| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|) (store (select |v_#memory_$Pointer$.base_556| (select (select |v_#memory_$Pointer$.base_558| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|)) (select (select |v_#memory_$Pointer$.offset_558| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|) (select (select |v_#memory_$Pointer$.base_556| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|))) |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24| (select (select |v_#memory_$Pointer$.base_558| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|))) |v_#memory_$Pointer$.base_558|) (= (select |#valid| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) 1) (= (store |v_#memory_int_520| (select (select |v_#memory_$Pointer$.base_558| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|) (store (select |v_#memory_int_520| (select (select |v_#memory_$Pointer$.base_558| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|)) (select (select |v_#memory_$Pointer$.offset_558| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|) (select (select |v_#memory_int_521| (select (select |v_#memory_$Pointer$.base_558| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|)) (select (select |v_#memory_$Pointer$.offset_558| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|)))) |v_#memory_int_521|) (not (= (select (select |v_#memory_$Pointer$.base_556| (select (select |v_#memory_$Pointer$.base_558| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|)) (+ (select (select |v_#memory_$Pointer$.offset_558| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|) 4)) 0)) (= (select |#valid| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_18|) |v_ULTIMATE.start_l3_insert_~list#1.offset_15|)) 1) (<= 0 (+ (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l3_insert_~list#1.base_18|) |v_ULTIMATE.start_l3_insert_~list#1.offset_15|) 4)) (= (store (store |v_#memory_$Pointer$.offset_556| (select (select |v_#memory_$Pointer$.base_558| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|) (store (select |v_#memory_$Pointer$.offset_556| (select (select |v_#memory_$Pointer$.base_558| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|)) (select (select |v_#memory_$Pointer$.offset_558| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|) (select (select |v_#memory_$Pointer$.offset_556| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|))) |v_ULTIMATE.start_l4_insert_~list#1.base_27| (store (select (store |v_#memory_$Pointer$.offset_556| (select (select |v_#memory_$Pointer$.base_558| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|) (store (select |v_#memory_$Pointer$.offset_556| (select (select |v_#memory_$Pointer$.base_558| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|)) (select (select |v_#memory_$Pointer$.offset_558| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|) (select (select |v_#memory_$Pointer$.offset_556| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|))) |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24| (select (select |v_#memory_$Pointer$.offset_558| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|))) |v_#memory_$Pointer$.offset_558|) (= |v_zalloc_or_die_#Ultimate.C_memset_#res#1.offset_228| 0) (= (select |#valid| |v_ULTIMATE.start_l3_insert_~list#1.base_18|) 1) (= |#memory_$Pointer$.offset| (store (store |v_#memory_$Pointer$.offset_558| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_18|) |v_ULTIMATE.start_l3_insert_~list#1.offset_15|) (store (select |v_#memory_$Pointer$.offset_558| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_18|) |v_ULTIMATE.start_l3_insert_~list#1.offset_15|)) (+ (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l3_insert_~list#1.base_18|) |v_ULTIMATE.start_l3_insert_~list#1.offset_15|) 4) (select (select |v_#memory_$Pointer$.offset_558| |v_ULTIMATE.start_l3_insert_~list#1.base_18|) |v_ULTIMATE.start_l3_insert_~list#1.offset_15|))) |v_ULTIMATE.start_l3_insert_~list#1.base_18| (store (select (store |v_#memory_$Pointer$.offset_558| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_18|) |v_ULTIMATE.start_l3_insert_~list#1.offset_15|) (store (select |v_#memory_$Pointer$.offset_558| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_18|) |v_ULTIMATE.start_l3_insert_~list#1.offset_15|)) (+ (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l3_insert_~list#1.base_18|) |v_ULTIMATE.start_l3_insert_~list#1.offset_15|) 4) (select (select |v_#memory_$Pointer$.offset_558| |v_ULTIMATE.start_l3_insert_~list#1.base_18|) |v_ULTIMATE.start_l3_insert_~list#1.offset_15|))) |v_ULTIMATE.start_l3_insert_~list#1.base_18|) |v_ULTIMATE.start_l3_insert_~list#1.offset_15| (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l3_insert_~list#1.base_18|) |v_ULTIMATE.start_l3_insert_~list#1.offset_15|)))) (<= (+ 4 |v_ULTIMATE.start_l4_insert_~list#1.offset_24|) (select |#length| |v_ULTIMATE.start_l4_insert_~list#1.base_27|)) (= |v_zalloc_or_die_#Ultimate.C_memset_#value#1_271| 0) (= |v_#memory_int_523| (store |v_#memory_int_522| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_18|) |v_ULTIMATE.start_l3_insert_~list#1.offset_15|) (store (select |v_#memory_int_522| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_18|) |v_ULTIMATE.start_l3_insert_~list#1.offset_15|)) (+ (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l3_insert_~list#1.base_18|) |v_ULTIMATE.start_l3_insert_~list#1.offset_15|) 4) (select (select |v_#memory_int_523| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_18|) |v_ULTIMATE.start_l3_insert_~list#1.offset_15|)) (+ (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l3_insert_~list#1.base_18|) |v_ULTIMATE.start_l3_insert_~list#1.offset_15|) 4))))) (<= 0 |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_625|) (= (select |#valid| (select (select |v_#memory_$Pointer$.base_558| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|)) 1) (= |v_#memory_$Pointer$.base_556| (store |v_#memory_$Pointer$.base_555| (select (select |v_#memory_$Pointer$.base_558| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|) (store (select |v_#memory_$Pointer$.base_555| (select (select |v_#memory_$Pointer$.base_558| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|)) (+ (select (select |v_#memory_$Pointer$.offset_558| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|) 4) (select (select |v_#memory_$Pointer$.base_556| (select (select |v_#memory_$Pointer$.base_558| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|)) (+ (select (select |v_#memory_$Pointer$.offset_558| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|) 4))))) (<= 0 |v_ULTIMATE.start_l4_insert_~list#1.offset_24|) (<= (+ (select (select |v_#memory_$Pointer$.offset_558| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|) 8) (select |#length| (select (select |v_#memory_$Pointer$.base_558| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|))) (= (store |v_#memory_int_519| (select (select |v_#memory_$Pointer$.base_558| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|) (store (select |v_#memory_int_519| (select (select |v_#memory_$Pointer$.base_558| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|)) (+ (select (select |v_#memory_$Pointer$.offset_558| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|) 4) (select (select |v_#memory_int_520| (select (select |v_#memory_$Pointer$.base_558| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|)) (+ (select (select |v_#memory_$Pointer$.offset_558| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|) 4)))) |v_#memory_int_520|) (<= (mod |v_zalloc_or_die_#Ultimate.C_memset_#amount#1_253| 4294967296) (mod |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_625| 4294967296)) (<= (+ (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l3_insert_~list#1.base_18|) |v_ULTIMATE.start_l3_insert_~list#1.offset_15|) 8) (select |#length| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_18|) |v_ULTIMATE.start_l3_insert_~list#1.offset_15|))) (= |#memory_$Pointer$.base| (store (store |v_#memory_$Pointer$.base_558| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_18|) |v_ULTIMATE.start_l3_insert_~list#1.offset_15|) (store (select |v_#memory_$Pointer$.base_558| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_18|) |v_ULTIMATE.start_l3_insert_~list#1.offset_15|)) (+ (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l3_insert_~list#1.base_18|) |v_ULTIMATE.start_l3_insert_~list#1.offset_15|) 4) (select (select |v_#memory_$Pointer$.base_558| |v_ULTIMATE.start_l3_insert_~list#1.base_18|) |v_ULTIMATE.start_l3_insert_~list#1.offset_15|))) |v_ULTIMATE.start_l3_insert_~list#1.base_18| (store (select (store |v_#memory_$Pointer$.base_558| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_18|) |v_ULTIMATE.start_l3_insert_~list#1.offset_15|) (store (select |v_#memory_$Pointer$.base_558| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_18|) |v_ULTIMATE.start_l3_insert_~list#1.offset_15|)) (+ (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l3_insert_~list#1.base_18|) |v_ULTIMATE.start_l3_insert_~list#1.offset_15|) 4) (select (select |v_#memory_$Pointer$.base_558| |v_ULTIMATE.start_l3_insert_~list#1.base_18|) |v_ULTIMATE.start_l3_insert_~list#1.offset_15|))) |v_ULTIMATE.start_l3_insert_~list#1.base_18|) |v_ULTIMATE.start_l3_insert_~list#1.offset_15| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_18|) |v_ULTIMATE.start_l3_insert_~list#1.offset_15|)))) (<= 0 |v_ULTIMATE.start_l3_insert_~list#1.offset_15|) (<= 0 (select (select |v_#memory_$Pointer$.offset_558| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|)) (= (store |v_#memory_$Pointer$.offset_555| (select (select |v_#memory_$Pointer$.base_558| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|) (store (select |v_#memory_$Pointer$.offset_555| (select (select |v_#memory_$Pointer$.base_558| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|)) (+ (select (select |v_#memory_$Pointer$.offset_558| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|) 4) 0)) |v_#memory_$Pointer$.offset_556|) (<= (+ 4 |v_ULTIMATE.start_l3_insert_~list#1.offset_15|) (select |#length| |v_ULTIMATE.start_l3_insert_~list#1.base_18|)) (= (store |v_#memory_int_521| |v_ULTIMATE.start_l4_insert_~list#1.base_27| (store (select |v_#memory_int_521| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24| (select (select |v_#memory_int_522| |v_ULTIMATE.start_l4_insert_~list#1.base_27|) |v_ULTIMATE.start_l4_insert_~list#1.offset_24|))) |v_#memory_int_522|) (= |#memory_int| (store |v_#memory_int_523| |v_ULTIMATE.start_l3_insert_~list#1.base_18| (store (select |v_#memory_int_523| |v_ULTIMATE.start_l3_insert_~list#1.base_18|) |v_ULTIMATE.start_l3_insert_~list#1.offset_15| (select (select |#memory_int| |v_ULTIMATE.start_l3_insert_~list#1.base_18|) |v_ULTIMATE.start_l3_insert_~list#1.offset_15|)))))))' at error location [2024-11-14 04:28:48,789 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2024-11-14 04:28:48,789 INFO L185 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2024-11-14 04:28:48,789 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [22, 34] total 53 [2024-11-14 04:28:48,789 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [1965798117] [2024-11-14 04:28:48,789 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2024-11-14 04:28:48,790 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 53 states [2024-11-14 04:28:48,790 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 04:28:48,791 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 53 interpolants. [2024-11-14 04:28:48,792 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=257, Invalid=5902, Unknown=11, NotChecked=310, Total=6480 [2024-11-14 04:28:48,792 INFO L87 Difference]: Start difference. First operand 272 states and 334 transitions. Second operand has 53 states, 45 states have (on average 2.2222222222222223) internal successors, (100), 47 states have internal predecessors, (100), 4 states have call successors, (10), 2 states have call predecessors, (10), 10 states have return successors, (11), 9 states have call predecessors, (11), 4 states have call successors, (11) [2024-11-14 04:28:56,127 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [0] [2024-11-14 04:28:58,936 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [0] [2024-11-14 04:29:07,685 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [0] [2024-11-14 04:29:10,009 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [0] [2024-11-14 04:29:12,067 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [0] [2024-11-14 04:29:14,130 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [0] [2024-11-14 04:29:16,320 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [0] [2024-11-14 04:29:18,402 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.01s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=false, quantifiers [0] [2024-11-14 04:29:18,546 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 04:29:18,546 INFO L93 Difference]: Finished difference Result 439 states and 604 transitions. [2024-11-14 04:29:18,546 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 38 states. [2024-11-14 04:29:18,547 INFO L78 Accepts]: Start accepts. Automaton has has 53 states, 45 states have (on average 2.2222222222222223) internal successors, (100), 47 states have internal predecessors, (100), 4 states have call successors, (10), 2 states have call predecessors, (10), 10 states have return successors, (11), 9 states have call predecessors, (11), 4 states have call successors, (11) Word has length 111 [2024-11-14 04:29:18,547 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 04:29:18,551 INFO L225 Difference]: With dead ends: 439 [2024-11-14 04:29:18,551 INFO L226 Difference]: Without dead ends: 407 [2024-11-14 04:29:18,552 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 292 GetRequests, 176 SyntacticMatches, 6 SemanticMatches, 110 ConstructedPredicates, 2 IntricatePredicates, 0 DeprecatedPredicates, 3368 ImplicationChecksByTransitivity, 70.0s TimeCoverageRelationStatistics Valid=663, Invalid=11324, Unknown=11, NotChecked=434, Total=12432 [2024-11-14 04:29:18,553 INFO L432 NwaCegarLoop]: 114 mSDtfsCounter, 129 mSDsluCounter, 2114 mSDsCounter, 0 mSdLazyCounter, 3472 mSolverCounterSat, 39 mSolverCounterUnsat, 8 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 22.7s Time, 0 mProtectedPredicate, 0 mProtectedAction, 129 SdHoareTripleChecker+Valid, 2228 SdHoareTripleChecker+Invalid, 4037 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.1s SdHoareTripleChecker+Time, 39 IncrementalHoareTripleChecker+Valid, 3472 IncrementalHoareTripleChecker+Invalid, 8 IncrementalHoareTripleChecker+Unknown, 518 IncrementalHoareTripleChecker+Unchecked, 23.3s IncrementalHoareTripleChecker+Time [2024-11-14 04:29:18,553 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [129 Valid, 2228 Invalid, 4037 Unknown, 0 Unchecked, 0.1s Time], IncrementalHoareTripleChecker [39 Valid, 3472 Invalid, 8 Unknown, 518 Unchecked, 23.3s Time] [2024-11-14 04:29:18,554 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 407 states. [2024-11-14 04:29:18,577 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 407 to 324. [2024-11-14 04:29:18,578 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 324 states, 232 states have (on average 1.4353448275862069) internal successors, (333), 292 states have internal predecessors, (333), 24 states have call successors, (24), 4 states have call predecessors, (24), 10 states have return successors, (61), 27 states have call predecessors, (61), 23 states have call successors, (61) [2024-11-14 04:29:18,580 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 324 states to 324 states and 418 transitions. [2024-11-14 04:29:18,580 INFO L78 Accepts]: Start accepts. Automaton has 324 states and 418 transitions. Word has length 111 [2024-11-14 04:29:18,581 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 04:29:18,581 INFO L471 AbstractCegarLoop]: Abstraction has 324 states and 418 transitions. [2024-11-14 04:29:18,581 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 53 states, 45 states have (on average 2.2222222222222223) internal successors, (100), 47 states have internal predecessors, (100), 4 states have call successors, (10), 2 states have call predecessors, (10), 10 states have return successors, (11), 9 states have call predecessors, (11), 4 states have call successors, (11) [2024-11-14 04:29:18,581 INFO L276 IsEmpty]: Start isEmpty. Operand 324 states and 418 transitions. [2024-11-14 04:29:18,583 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 114 [2024-11-14 04:29:18,583 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 04:29:18,583 INFO L215 NwaCegarLoop]: trace histogram [56, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 04:29:18,662 INFO L540 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (20)] Forceful destruction successful, exit code 0 [2024-11-14 04:29:18,784 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 20 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable20 [2024-11-14 04:29:18,784 INFO L396 AbstractCegarLoop]: === Iteration 22 === Targeting ULTIMATE.startErr15REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2024-11-14 04:29:18,785 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 04:29:18,785 INFO L85 PathProgramCache]: Analyzing trace with hash 1122169505, now seen corresponding path program 4 times [2024-11-14 04:29:18,785 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 04:29:18,785 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [539135827] [2024-11-14 04:29:18,786 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:29:18,786 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 04:29:19,125 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:29:22,735 INFO L134 CoverageAnalysis]: Checked inductivity of 1951 backedges. 744 proven. 790 refuted. 0 times theorem prover too weak. 417 trivial. 0 not checked. [2024-11-14 04:29:22,735 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 04:29:22,735 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [539135827] [2024-11-14 04:29:22,735 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [539135827] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 04:29:22,735 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [106467032] [2024-11-14 04:29:22,735 INFO L93 rtionOrderModulation]: Changing assertion order to NOT_INCREMENTALLY [2024-11-14 04:29:22,736 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 04:29:22,736 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 04:29:22,738 INFO L229 MonitoredProcess]: Starting monitored process 21 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-14 04:29:22,739 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (21)] Waiting until timeout for monitored process [2024-11-14 04:29:27,586 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:29:27,602 INFO L255 TraceCheckSpWp]: Trace formula consists of 1419 conjuncts, 119 conjuncts are in the unsatisfiable core [2024-11-14 04:29:27,609 INFO L278 TraceCheckSpWp]: Computing forward predicates... [2024-11-14 04:29:28,393 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 0 select indices, 0 select index equivalence classes, 0 disjoint index pairs (out of 0 index pairs), introduced 0 new quantified variables, introduced 0 case distinctions, treesize of input 10 treesize of output 9 [2024-11-14 04:29:41,529 INFO L349 Elim1Store]: treesize reduction 18, result has 35.7 percent of original size [2024-11-14 04:29:41,529 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 2 select indices, 2 select index equivalence classes, 0 disjoint index pairs (out of 1 index pairs), introduced 2 new quantified variables, introduced 2 case distinctions, treesize of input 17 treesize of output 21 [2024-11-14 04:29:41,547 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 1 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 9 [2024-11-14 04:29:41,903 WARN L873 $PredicateComparison]: unable to prove that (exists ((|zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| Int)) (and (= (store |c_old(#length)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base| (select |c_#length| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|)) |c_#length|) (= (select |c_old(#valid)| |zalloc_or_die_#Ultimate.C_memset_#ptr#1.base|) 0))) is different from true [2024-11-14 04:29:42,156 INFO L190 IndexEqualityManager]: detected not equals via solver [2024-11-14 04:29:42,157 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 1 stores, 1 select indices, 1 select index equivalence classes, 2 disjoint index pairs (out of 0 index pairs), introduced 1 new quantified variables, introduced 0 case distinctions, treesize of input 14 treesize of output 9 [2024-11-14 04:29:42,190 INFO L349 Elim1Store]: treesize reduction 8, result has 52.9 percent of original size [2024-11-14 04:29:42,191 INFO L378 Elim1Store]: Elim1 eliminated variable of array dimension 1, 0 stores, 3 select indices, 3 select index equivalence classes, 1 disjoint index pairs (out of 3 index pairs), introduced 3 new quantified variables, introduced 2 case distinctions, treesize of input 16 treesize of output 18 [2024-11-14 04:29:42,349 INFO L134 CoverageAnalysis]: Checked inductivity of 1951 backedges. 132 proven. 642 refuted. 0 times theorem prover too weak. 320 trivial. 857 not checked. [2024-11-14 04:29:42,349 INFO L311 TraceCheckSpWp]: Computing backward predicates... [2024-11-14 04:29:42,701 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleZ3 [106467032] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 04:29:42,701 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSifa [1616754119] [2024-11-14 04:29:42,702 INFO L159 IcfgInterpreter]: Started Sifa with 33 locations of interest [2024-11-14 04:29:42,702 INFO L166 IcfgInterpreter]: Building call graph [2024-11-14 04:29:42,702 INFO L171 IcfgInterpreter]: Initial procedures are [ULTIMATE.start] [2024-11-14 04:29:42,702 INFO L176 IcfgInterpreter]: Starting interpretation [2024-11-14 04:29:42,703 INFO L197 IcfgInterpreter]: Interpreting procedure ULTIMATE.start with input of size 1 for LOIs [2024-11-14 04:29:43,848 INFO L197 IcfgInterpreter]: Interpreting procedure zalloc_or_die with input of size 65 for LOIs [2024-11-14 04:29:44,016 INFO L180 IcfgInterpreter]: Interpretation finished [2024-11-14 04:30:53,614 INFO L133 SifaRunner]: Sifa could not show that error location is unreachable, found '16819#(and (<= 1 |#StackHeapBarrier|) (= |~#list~0.offset| 0) (= |ULTIMATE.start_l0_insert_~list#1.base| 3) (= 3 |~#list~0.base|) (exists ((|v_#memory_int_559| (Array Int (Array Int Int))) (|v_ULTIMATE.start_l4_insert_~list#1.offset_25| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_689| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#amount#1_265| Int) (|v_zalloc_or_die_#Ultimate.C_memset_#res#1.offset_237| Int) (|v_ULTIMATE.start_l4_insert_~list#1.base_28| Int) (|v_ULTIMATE.start_l3_insert_~list#1.offset_16| Int) (|v_#memory_int_562| (Array Int (Array Int Int))) (|v_#memory_int_561| (Array Int (Array Int Int))) (|v_#memory_$Pointer$.base_598| (Array Int (Array Int Int))) (|v_ULTIMATE.start_l3_insert_~list#1.base_19| Int) (|v_#memory_int_563| (Array Int (Array Int Int))) (|v_zalloc_or_die_#Ultimate.C_memset_#value#1_281| Int) (|v_#memory_$Pointer$.base_596| (Array Int (Array Int Int))) (|v_#memory_$Pointer$.offset_595| (Array Int (Array Int Int))) (|v_#memory_$Pointer$.offset_596| (Array Int (Array Int Int))) (|v_#memory_$Pointer$.base_595| (Array Int (Array Int Int))) (|v_#memory_int_560| (Array Int (Array Int Int))) (|v_#memory_$Pointer$.offset_598| (Array Int (Array Int Int)))) (and (= (store |v_#memory_int_560| (select (select |v_#memory_$Pointer$.base_598| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|) (store (select |v_#memory_int_560| (select (select |v_#memory_$Pointer$.base_598| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|)) (select (select |v_#memory_$Pointer$.offset_598| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|) (select (select |v_#memory_int_561| (select (select |v_#memory_$Pointer$.base_598| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|)) (select (select |v_#memory_$Pointer$.offset_598| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|)))) |v_#memory_int_561|) (= (select |#valid| (select (select |v_#memory_$Pointer$.base_598| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|)) 1) (= (store |v_#memory_int_559| (select (select |v_#memory_$Pointer$.base_598| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|) (store (select |v_#memory_int_559| (select (select |v_#memory_$Pointer$.base_598| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|)) (+ (select (select |v_#memory_$Pointer$.offset_598| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|) 4) (select (select |v_#memory_int_560| (select (select |v_#memory_$Pointer$.base_598| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|)) (+ (select (select |v_#memory_$Pointer$.offset_598| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|) 4)))) |v_#memory_int_560|) (= (store |v_#memory_int_561| |v_ULTIMATE.start_l4_insert_~list#1.base_28| (store (select |v_#memory_int_561| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25| (select (select |v_#memory_int_562| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|))) |v_#memory_int_562|) (<= (mod |v_zalloc_or_die_#Ultimate.C_memset_#amount#1_265| 4294967296) (mod |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_689| 4294967296)) (<= (+ 4 |v_ULTIMATE.start_l4_insert_~list#1.offset_25|) (select |#length| |v_ULTIMATE.start_l4_insert_~list#1.base_28|)) (= (store (store |v_#memory_$Pointer$.base_596| (select (select |v_#memory_$Pointer$.base_598| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|) (store (select |v_#memory_$Pointer$.base_596| (select (select |v_#memory_$Pointer$.base_598| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|)) (select (select |v_#memory_$Pointer$.offset_598| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|) (select (select |v_#memory_$Pointer$.base_596| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|))) |v_ULTIMATE.start_l4_insert_~list#1.base_28| (store (select (store |v_#memory_$Pointer$.base_596| (select (select |v_#memory_$Pointer$.base_598| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|) (store (select |v_#memory_$Pointer$.base_596| (select (select |v_#memory_$Pointer$.base_598| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|)) (select (select |v_#memory_$Pointer$.offset_598| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|) (select (select |v_#memory_$Pointer$.base_596| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|))) |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25| (select (select |v_#memory_$Pointer$.base_598| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|))) |v_#memory_$Pointer$.base_598|) (not (= (select (select |v_#memory_$Pointer$.base_596| (select (select |v_#memory_$Pointer$.base_598| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|)) (+ (select (select |v_#memory_$Pointer$.offset_598| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|) 4)) 0)) (<= 0 (select (select |v_#memory_$Pointer$.offset_598| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|)) (= (select |#valid| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_19|) |v_ULTIMATE.start_l3_insert_~list#1.offset_16|)) 1) (= |#memory_$Pointer$.base| (store (store |v_#memory_$Pointer$.base_598| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_19|) |v_ULTIMATE.start_l3_insert_~list#1.offset_16|) (store (select |v_#memory_$Pointer$.base_598| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_19|) |v_ULTIMATE.start_l3_insert_~list#1.offset_16|)) (+ (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l3_insert_~list#1.base_19|) |v_ULTIMATE.start_l3_insert_~list#1.offset_16|) 4) (select (select |v_#memory_$Pointer$.base_598| |v_ULTIMATE.start_l3_insert_~list#1.base_19|) |v_ULTIMATE.start_l3_insert_~list#1.offset_16|))) |v_ULTIMATE.start_l3_insert_~list#1.base_19| (store (select (store |v_#memory_$Pointer$.base_598| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_19|) |v_ULTIMATE.start_l3_insert_~list#1.offset_16|) (store (select |v_#memory_$Pointer$.base_598| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_19|) |v_ULTIMATE.start_l3_insert_~list#1.offset_16|)) (+ (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l3_insert_~list#1.base_19|) |v_ULTIMATE.start_l3_insert_~list#1.offset_16|) 4) (select (select |v_#memory_$Pointer$.base_598| |v_ULTIMATE.start_l3_insert_~list#1.base_19|) |v_ULTIMATE.start_l3_insert_~list#1.offset_16|))) |v_ULTIMATE.start_l3_insert_~list#1.base_19|) |v_ULTIMATE.start_l3_insert_~list#1.offset_16| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_19|) |v_ULTIMATE.start_l3_insert_~list#1.offset_16|)))) (<= (+ 4 |v_ULTIMATE.start_l3_insert_~list#1.offset_16|) (select |#length| |v_ULTIMATE.start_l3_insert_~list#1.base_19|)) (= (store |v_#memory_$Pointer$.base_595| (select (select |v_#memory_$Pointer$.base_598| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|) (store (select |v_#memory_$Pointer$.base_595| (select (select |v_#memory_$Pointer$.base_598| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|)) (+ (select (select |v_#memory_$Pointer$.offset_598| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|) 4) (select (select |v_#memory_$Pointer$.base_596| (select (select |v_#memory_$Pointer$.base_598| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|)) (+ (select (select |v_#memory_$Pointer$.offset_598| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|) 4)))) |v_#memory_$Pointer$.base_596|) (= 1 (select |#valid| |v_ULTIMATE.start_l4_insert_~list#1.base_28|)) (= |#memory_int| (store |v_#memory_int_563| |v_ULTIMATE.start_l3_insert_~list#1.base_19| (store (select |v_#memory_int_563| |v_ULTIMATE.start_l3_insert_~list#1.base_19|) |v_ULTIMATE.start_l3_insert_~list#1.offset_16| (select (select |#memory_int| |v_ULTIMATE.start_l3_insert_~list#1.base_19|) |v_ULTIMATE.start_l3_insert_~list#1.offset_16|)))) (<= 0 |v_zalloc_or_die_#Ultimate.C_memset_#t~loopctr34#1_689|) (= (select |#valid| |v_ULTIMATE.start_l3_insert_~list#1.base_19|) 1) (= |#memory_$Pointer$.offset| (store (store |v_#memory_$Pointer$.offset_598| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_19|) |v_ULTIMATE.start_l3_insert_~list#1.offset_16|) (store (select |v_#memory_$Pointer$.offset_598| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_19|) |v_ULTIMATE.start_l3_insert_~list#1.offset_16|)) (+ (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l3_insert_~list#1.base_19|) |v_ULTIMATE.start_l3_insert_~list#1.offset_16|) 4) (select (select |v_#memory_$Pointer$.offset_598| |v_ULTIMATE.start_l3_insert_~list#1.base_19|) |v_ULTIMATE.start_l3_insert_~list#1.offset_16|))) |v_ULTIMATE.start_l3_insert_~list#1.base_19| (store (select (store |v_#memory_$Pointer$.offset_598| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_19|) |v_ULTIMATE.start_l3_insert_~list#1.offset_16|) (store (select |v_#memory_$Pointer$.offset_598| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_19|) |v_ULTIMATE.start_l3_insert_~list#1.offset_16|)) (+ (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l3_insert_~list#1.base_19|) |v_ULTIMATE.start_l3_insert_~list#1.offset_16|) 4) (select (select |v_#memory_$Pointer$.offset_598| |v_ULTIMATE.start_l3_insert_~list#1.base_19|) |v_ULTIMATE.start_l3_insert_~list#1.offset_16|))) |v_ULTIMATE.start_l3_insert_~list#1.base_19|) |v_ULTIMATE.start_l3_insert_~list#1.offset_16| (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l3_insert_~list#1.base_19|) |v_ULTIMATE.start_l3_insert_~list#1.offset_16|)))) (<= 0 |v_ULTIMATE.start_l4_insert_~list#1.offset_25|) (= (store |v_#memory_$Pointer$.offset_595| (select (select |v_#memory_$Pointer$.base_598| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|) (store (select |v_#memory_$Pointer$.offset_595| (select (select |v_#memory_$Pointer$.base_598| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|)) (+ (select (select |v_#memory_$Pointer$.offset_598| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|) 4) 0)) |v_#memory_$Pointer$.offset_596|) (= |v_#memory_$Pointer$.offset_598| (store (store |v_#memory_$Pointer$.offset_596| (select (select |v_#memory_$Pointer$.base_598| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|) (store (select |v_#memory_$Pointer$.offset_596| (select (select |v_#memory_$Pointer$.base_598| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|)) (select (select |v_#memory_$Pointer$.offset_598| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|) (select (select |v_#memory_$Pointer$.offset_596| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|))) |v_ULTIMATE.start_l4_insert_~list#1.base_28| (store (select (store |v_#memory_$Pointer$.offset_596| (select (select |v_#memory_$Pointer$.base_598| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|) (store (select |v_#memory_$Pointer$.offset_596| (select (select |v_#memory_$Pointer$.base_598| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|)) (select (select |v_#memory_$Pointer$.offset_598| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|) (select (select |v_#memory_$Pointer$.offset_596| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|))) |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25| (select (select |v_#memory_$Pointer$.offset_598| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|)))) (<= 0 |v_ULTIMATE.start_l3_insert_~list#1.offset_16|) (<= (+ 8 (select (select |v_#memory_$Pointer$.offset_598| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|)) (select |#length| (select (select |v_#memory_$Pointer$.base_598| |v_ULTIMATE.start_l4_insert_~list#1.base_28|) |v_ULTIMATE.start_l4_insert_~list#1.offset_25|))) (<= 0 (+ (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l3_insert_~list#1.base_19|) |v_ULTIMATE.start_l3_insert_~list#1.offset_16|) 4)) (= |v_zalloc_or_die_#Ultimate.C_memset_#res#1.offset_237| 0) (= (store |v_#memory_int_562| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_19|) |v_ULTIMATE.start_l3_insert_~list#1.offset_16|) (store (select |v_#memory_int_562| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_19|) |v_ULTIMATE.start_l3_insert_~list#1.offset_16|)) (+ (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l3_insert_~list#1.base_19|) |v_ULTIMATE.start_l3_insert_~list#1.offset_16|) 4) (select (select |v_#memory_int_563| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_19|) |v_ULTIMATE.start_l3_insert_~list#1.offset_16|)) (+ (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l3_insert_~list#1.base_19|) |v_ULTIMATE.start_l3_insert_~list#1.offset_16|) 4)))) |v_#memory_int_563|) (= |v_zalloc_or_die_#Ultimate.C_memset_#value#1_281| 0) (<= (+ (select (select |#memory_$Pointer$.offset| |v_ULTIMATE.start_l3_insert_~list#1.base_19|) |v_ULTIMATE.start_l3_insert_~list#1.offset_16|) 8) (select |#length| (select (select |#memory_$Pointer$.base| |v_ULTIMATE.start_l3_insert_~list#1.base_19|) |v_ULTIMATE.start_l3_insert_~list#1.offset_16|))))) (= |ULTIMATE.start_l0_insert_~list#1.offset| 0))' at error location [2024-11-14 04:30:53,615 WARN L311 FreeRefinementEngine]: Interpolation failed due to KNOWN_IGNORE: ALGORITHM_FAILED [2024-11-14 04:30:53,615 INFO L185 FreeRefinementEngine]: Found 0 perfect and 2 imperfect interpolant sequences. [2024-11-14 04:30:53,615 INFO L198 FreeRefinementEngine]: Number of different interpolants: perfect sequences [] imperfect sequences [23, 33] total 53 [2024-11-14 04:30:53,615 INFO L121 tionRefinementEngine]: Using interpolant automaton builder IpAbStrategyModuleStraightlineAll [993738575] [2024-11-14 04:30:53,615 INFO L85 oduleStraightlineAll]: Using 2 imperfect interpolants to construct interpolant automaton [2024-11-14 04:30:53,616 INFO L548 AbstractCegarLoop]: INTERPOLANT automaton has 53 states [2024-11-14 04:30:53,616 INFO L100 FreeRefinementEngine]: Using predicate unifier PredicateUnifier provided by strategy SIFA_TAIPAN [2024-11-14 04:30:53,616 INFO L143 InterpolantAutomaton]: Constructing interpolant automaton starting with 53 interpolants. [2024-11-14 04:30:53,617 INFO L145 InterpolantAutomaton]: CoverageRelationStatistics Valid=280, Invalid=5869, Unknown=17, NotChecked=154, Total=6320 [2024-11-14 04:30:53,617 INFO L87 Difference]: Start difference. First operand 324 states and 418 transitions. Second operand has 53 states, 47 states have (on average 2.021276595744681) internal successors, (95), 49 states have internal predecessors, (95), 4 states have call successors, (8), 2 states have call predecessors, (8), 7 states have return successors, (9), 7 states have call predecessors, (9), 4 states have call successors, (9) [2024-11-14 04:30:55,689 WARN L539 Checker$ProtectedHtc]: IncrementalHoareTripleChecker took 2.00s for a HTC check with result UNKNOWN. Formula has sorts [Array, Bool, Int], hasArrays=true, hasNonlinArith=true, quantifiers [0] [2024-11-14 04:31:02,063 INFO L144 Difference]: Subtrahend was deterministic. Have not used determinization. [2024-11-14 04:31:02,063 INFO L93 Difference]: Finished difference Result 406 states and 538 transitions. [2024-11-14 04:31:02,064 INFO L141 InterpolantAutomaton]: Switched to read-only mode: deterministic interpolant automaton has 25 states. [2024-11-14 04:31:02,064 INFO L78 Accepts]: Start accepts. Automaton has has 53 states, 47 states have (on average 2.021276595744681) internal successors, (95), 49 states have internal predecessors, (95), 4 states have call successors, (8), 2 states have call predecessors, (8), 7 states have return successors, (9), 7 states have call predecessors, (9), 4 states have call successors, (9) Word has length 113 [2024-11-14 04:31:02,065 INFO L84 Accepts]: Finished accepts. some prefix is accepted. [2024-11-14 04:31:02,067 INFO L225 Difference]: With dead ends: 406 [2024-11-14 04:31:02,067 INFO L226 Difference]: Without dead ends: 374 [2024-11-14 04:31:02,068 INFO L431 NwaCegarLoop]: 0 DeclaredPredicates, 279 GetRequests, 180 SyntacticMatches, 7 SemanticMatches, 92 ConstructedPredicates, 1 IntricatePredicates, 0 DeprecatedPredicates, 2880 ImplicationChecksByTransitivity, 87.0s TimeCoverageRelationStatistics Valid=479, Invalid=8064, Unknown=17, NotChecked=182, Total=8742 [2024-11-14 04:31:02,071 INFO L432 NwaCegarLoop]: 129 mSDtfsCounter, 49 mSDsluCounter, 2234 mSDsCounter, 0 mSdLazyCounter, 2214 mSolverCounterSat, 23 mSolverCounterUnsat, 1 mSolverCounterUnknown, 0 mSolverCounterNotChecked, 5.5s Time, 0 mProtectedPredicate, 0 mProtectedAction, 49 SdHoareTripleChecker+Valid, 2363 SdHoareTripleChecker+Invalid, 2434 SdHoareTripleChecker+Unknown, 0 SdHoareTripleChecker+Unchecked, 0.0s SdHoareTripleChecker+Time, 23 IncrementalHoareTripleChecker+Valid, 2214 IncrementalHoareTripleChecker+Invalid, 1 IncrementalHoareTripleChecker+Unknown, 196 IncrementalHoareTripleChecker+Unchecked, 5.8s IncrementalHoareTripleChecker+Time [2024-11-14 04:31:02,071 INFO L433 NwaCegarLoop]: SdHoareTripleChecker [49 Valid, 2363 Invalid, 2434 Unknown, 0 Unchecked, 0.0s Time], IncrementalHoareTripleChecker [23 Valid, 2214 Invalid, 1 Unknown, 196 Unchecked, 5.8s Time] [2024-11-14 04:31:02,072 INFO L82 GeneralOperation]: Start minimizeSevpa. Operand 374 states. [2024-11-14 04:31:02,084 INFO L88 GeneralOperation]: Finished minimizeSevpa. Reduced states from 374 to 322. [2024-11-14 04:31:02,085 INFO L82 GeneralOperation]: Start removeUnreachable. Operand has 322 states, 232 states have (on average 1.4353448275862069) internal successors, (333), 290 states have internal predecessors, (333), 24 states have call successors, (24), 4 states have call predecessors, (24), 8 states have return successors, (47), 27 states have call predecessors, (47), 23 states have call successors, (47) [2024-11-14 04:31:02,086 INFO L88 GeneralOperation]: Finished removeUnreachable. Reduced from 322 states to 322 states and 404 transitions. [2024-11-14 04:31:02,087 INFO L78 Accepts]: Start accepts. Automaton has 322 states and 404 transitions. Word has length 113 [2024-11-14 04:31:02,087 INFO L84 Accepts]: Finished accepts. word is rejected. [2024-11-14 04:31:02,087 INFO L471 AbstractCegarLoop]: Abstraction has 322 states and 404 transitions. [2024-11-14 04:31:02,087 INFO L472 AbstractCegarLoop]: INTERPOLANT automaton has has 53 states, 47 states have (on average 2.021276595744681) internal successors, (95), 49 states have internal predecessors, (95), 4 states have call successors, (8), 2 states have call predecessors, (8), 7 states have return successors, (9), 7 states have call predecessors, (9), 4 states have call successors, (9) [2024-11-14 04:31:02,088 INFO L276 IsEmpty]: Start isEmpty. Operand 322 states and 404 transitions. [2024-11-14 04:31:02,089 INFO L282 IsEmpty]: Finished isEmpty. Found accepting run of length 115 [2024-11-14 04:31:02,089 INFO L207 NwaCegarLoop]: Found error trace [2024-11-14 04:31:02,090 INFO L215 NwaCegarLoop]: trace histogram [57, 6, 6, 6, 6, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1] [2024-11-14 04:31:02,154 INFO L552 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (21)] Ended with exit code 0 [2024-11-14 04:31:02,290 WARN L453 AbstractCegarLoop]: Destroyed unattended storables created during the last iteration: 21 /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true,SelfDestructingSolverStorable21 [2024-11-14 04:31:02,291 INFO L396 AbstractCegarLoop]: === Iteration 23 === Targeting ULTIMATE.startErr15REQUIRES_VIOLATIONMEMORY_DEREFERENCE === [ULTIMATE.startErr0REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr1REQUIRES_VIOLATIONMEMORY_DEREFERENCE, ULTIMATE.startErr2REQUIRES_VIOLATIONMEMORY_DEREFERENCE (and 72 more)] === [2024-11-14 04:31:02,291 INFO L157 PredicateUnifier]: Initialized classic predicate unifier [2024-11-14 04:31:02,291 INFO L85 PathProgramCache]: Analyzing trace with hash 1771208700, now seen corresponding path program 5 times [2024-11-14 04:31:02,291 INFO L118 FreeRefinementEngine]: Executing refinement strategy SIFA_TAIPAN [2024-11-14 04:31:02,291 INFO L334 FreeRefinementEngine]: Using trace check IpTcStrategyModuleSmtInterpolCraig [1150680941] [2024-11-14 04:31:02,291 INFO L95 rtionOrderModulation]: Keeping assertion order NOT_INCREMENTALLY [2024-11-14 04:31:02,291 INFO L127 SolverBuilder]: Constructing new instance of SMTInterpol with explicit timeout -1 ms and remaining time -1 ms [2024-11-14 04:31:02,703 INFO L136 AnnotateAndAsserter]: Conjunction of SSA is unsat [2024-11-14 04:31:08,243 INFO L134 CoverageAnalysis]: Checked inductivity of 2013 backedges. 365 proven. 1181 refuted. 0 times theorem prover too weak. 467 trivial. 0 not checked. [2024-11-14 04:31:08,243 INFO L136 FreeRefinementEngine]: Strategy SIFA_TAIPAN found an infeasible trace [2024-11-14 04:31:08,243 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleSmtInterpolCraig [1150680941] [2024-11-14 04:31:08,244 INFO L158 FreeRefinementEngine]: IpTcStrategyModuleSmtInterpolCraig [1150680941] provided 0 perfect and 1 imperfect interpolant sequences [2024-11-14 04:31:08,244 INFO L334 FreeRefinementEngine]: Using interpolant generator IpTcStrategyModuleZ3 [1183351354] [2024-11-14 04:31:08,244 INFO L93 rtionOrderModulation]: Changing assertion order to OUTSIDE_LOOP_FIRST2 [2024-11-14 04:31:08,244 INFO L173 SolverBuilder]: Constructing external solver with command: z3 -smt2 -in SMTLIB2_COMPLIANT=true [2024-11-14 04:31:08,244 INFO L189 MonitoredProcess]: No working directory specified, using /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 [2024-11-14 04:31:08,246 INFO L229 MonitoredProcess]: Starting monitored process 22 with /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (exit command is (exit), workingDir is null) [2024-11-14 04:31:08,247 INFO L327 MonitoredProcess]: [MP /tmp/vcloud_worker_vcloud-master_on_vcloud-master/run_dir_af5a8a9e-8dc6-4f06-8eca-af15b8f1eef5/bin/utaipan-verify-sOmjnqqW8E/z3 -smt2 -in SMTLIB2_COMPLIANT=true (22)] Waiting until timeout for monitored process