extern void abort(void); #include void reach_error() { assert(0); } #include #include static void *calloc_model(size_t nmemb, size_t size) { void *ptr = malloc(nmemb * size); return memset(ptr, 0, nmemb * size); } extern int __VERIFIER_nondet_int(void); struct L2 { void *proto; struct L2 *next; }; struct L1 { struct L1 *next; struct L2 *l2; }; static void l2_insert(struct L2 **list) { struct L2 *item = calloc_model(1U, sizeof *item); if (!item) abort(); item->proto = malloc(119U); if (!item->proto) abort(); item->next = *list; *list = item; } static void l2_destroy(struct L2 *list) { // this is not enough to avoid leaking! free(list->proto); do { struct L2 *next = list->next; free(list); list = next; } while (list); } static void l1_insert(struct L1 **list) { struct L1 *item = calloc_model(1U, sizeof *item); if (!item) abort(); do l2_insert(&item->l2); while (__VERIFIER_nondet_int()); item->next = *list; *list = item; } int main() { static struct L1 *list; do l1_insert(&list); while (__VERIFIER_nondet_int()); do { struct L1 *next = list->next; l2_destroy(list->l2); free(list); list = next; } while (list); }