[ 0:00] | load /home/xrockai/src/divine/nightly/test/refine/pointers/relations-a.c relations-a.c [ 0:00] | expect --result error --location relations-a.c:20 [ 0:00] | expect --trace FAULT: --trace-count 1 [ 0:00] | cc -o testcase.bc relations-a.c [ 0:00] | refine -o nofail:malloc --refinement pointers --output testcase.bc testcase.bc [ 0:00] | verify --max-memory 4GiB --max-time 600 --threads 2 --report-filename verify.out --solver smtlib:z3 -o nofail:malloc --lamp pointers --symbolic testcase.bc [ 0:00] compiling relations-a.c [ 0:00] loading bitcode … DiOS … LART … RR … constants … done [ 0:54] booting … done [ 0:54] states per second: 1.29618 [ 0:57] state count: 4 [ 0:57] mips: 0.15 [ 0:57] symbolic: 1 [ 1:00] [ 1:00] error found: yes [ 1:00] error trace: | [ 1:00] ASSUME (not (= var_1 #x0000000000000000)) [ 1:00] ASSUME (not (= var_2 #x0000000000000000)) [ 1:00] ASSUME (and (not (= var_2 #x0000000000000000)) (bvult var_2 (bvsub #xffffffffffffffff #x0000000000000001))) [ 1:00] ASSUME (and (not (= var_1 #x0000000000000000)) (bvult var_1 (bvsub #xffffffffffffffff #x0000000000000001))) [ 1:00] ASSUME (and (and (and (not (= var_2 #x0000000000000000)) (bvult var_2 (bvsub #xffffffffffffffff #x0000000000000001))) (or (bvule (bvadd var_2 #x0000000000000001) var_1) (bvule (bvadd var_1 #x0000000000000001) var_2))) (and (not (= var_1 #x0000000000000000)) (bvult var_1 (bvsub #xffffffffffffffff #x0000000000000001)))) [ 1:00] ASSUME (not (= var_3 #x0000000000000000)) [ 1:00] ASSUME (and (not (= var_3 #x0000000000000000)) (bvult var_3 (bvsub #xffffffffffffffff #x0000000000000001))) [ 1:00] ASSUME (and (and (and (and (not (= var_2 #x0000000000000000)) (bvult var_2 (bvsub #xffffffffffffffff #x0000000000000001))) (or (bvule (bvadd var_2 #x0000000000000001) var_1) (bvule (bvadd var_1 #x0000000000000001) var_2))) (and (not (= var_1 #x0000000000000000)) (bvult var_1 (bvsub #xffffffffffffffff #x0000000000000001)))) (bvult var_2 (bvsub #xffffffffffffffff #x0000000000000001))) [ 1:00] ASSUME (and (and (and (not (= var_3 #x0000000000000000)) (bvult var_3 (bvsub #xffffffffffffffff #x0000000000000001))) (or (bvule (bvadd var_3 #x0000000000000001) var_2) (bvule (bvadd var_2 #x0000000000000001) var_3))) (and (and (and (and (not (= var_2 #x0000000000000000)) (bvult var_2 (bvsub #xffffffffffffffff #x0000000000000001))) (or (bvule (bvadd var_2 #x0000000000000001) var_1) (bvule (bvadd var_1 #x0000000000000001) var_2))) (and (not (= var_1 #x0000000000000000)) (bvult var_1 (bvsub #xffffffffffffffff #x0000000000000001)))) (bvult var_2 (bvsub #xffffffffffffffff #x0000000000000001)))) [ 1:00] ASSUME (and (and (and (and (not (= var_3 #x0000000000000000)) (bvult var_3 (bvsub #xffffffffffffffff #x0000000000000001))) (or (bvule (bvadd var_3 #x0000000000000001) var_2) (bvule (bvadd var_2 #x0000000000000001) var_3))) (and (and (and (and (not (= var_2 #x0000000000000000)) (bvult var_2 (bvsub #xffffffffffffffff #x0000000000000001))) (or (bvule (bvadd var_2 #x0000000000000001) var_1) (bvule (bvadd var_1 #x0000000000000001) var_2))) (and (not (= var_1 #x0000000000000000)) (bvult var_1 (bvsub #xffffffffffffffff #x0000000000000001)))) (bvult var_2 (bvsub #xffffffffffffffff #x0000000000000001)))) (bvult var_3 (bvsub #xffffffffffffffff #x0000000000000001))) [ 1:00] ASSUME (and (and (and (and (and (not (= var_3 #x0000000000000000)) (bvult var_3 (bvsub #xffffffffffffffff #x0000000000000001))) (or (bvule (bvadd var_3 #x0000000000000001) var_2) (bvule (bvadd var_2 #x0000000000000001) var_3))) (and (and (and (and (not (= var_2 #x0000000000000000)) (bvult var_2 (bvsub #xffffffffffffffff #x0000000000000001))) (or (bvule (bvadd var_2 #x0000000000000001) var_1) (bvule (bvadd var_1 #x0000000000000001) var_2))) (and (not (= var_1 #x0000000000000000)) (bvult var_1 (bvsub #xffffffffffffffff #x0000000000000001)))) (bvult var_2 (bvsub #xffffffffffffffff #x0000000000000001)))) (bvult var_3 (bvsub #xffffffffffffffff #x0000000000000001))) (bvult var_1 (bvsub #xffffffffffffffff #x0000000000000001))) [ 1:00] ASSUME (and (and (and (and (and (and (not (= var_3 #x0000000000000000)) (bvult var_3 (bvsub #xffffffffffffffff #x0000000000000001))) (or (bvule (bvadd var_3 #x0000000000000001) var_2) (bvule (bvadd var_2 #x0000000000000001) var_3))) (and (and (and (and (not (= var_2 #x0000000000000000)) (bvult var_2 (bvsub #xffffffffffffffff #x0000000000000001))) (or (bvule (bvadd var_2 #x0000000000000001) var_1) (bvule (bvadd var_1 #x0000000000000001) var_2))) (and (not (= var_1 #x0000000000000000)) (bvult var_1 (bvsub #xffffffffffffffff #x0000000000000001)))) (bvult var_2 (bvsub #xffffffffffffffff #x0000000000000001)))) (bvult var_3 (bvsub #xffffffffffffffff #x0000000000000001))) (bvult var_1 (bvsub #xffffffffffffffff #x0000000000000001))) (or (bvule (bvadd var_3 #x0000000000000001) var_1) (bvule (bvadd var_1 #x0000000000000001) var_3))) [ 1:00] ASSUME (and (and (and (and (and (and (and (not (= var_3 #x0000000000000000)) (bvult var_3 (bvsub #xffffffffffffffff #x0000000000000001))) (or (bvule (bvadd var_3 #x0000000000000001) var_2) (bvule (bvadd var_2 #x0000000000000001) var_3))) (and (and (and (and (not (= var_2 #x0000000000000000)) (bvult var_2 (bvsub #xffffffffffffffff #x0000000000000001))) (or (bvule (bvadd var_2 #x0000000000000001) var_1) (bvule (bvadd var_1 #x0000000000000001) var_2))) (and (not (= var_1 #x0000000000000000)) (bvult var_1 (bvsub #xffffffffffffffff #x0000000000000001)))) (bvult var_2 (bvsub #xffffffffffffffff #x0000000000000001)))) (bvult var_3 (bvsub #xffffffffffffffff #x0000000000000001))) (bvult var_1 (bvsub #xffffffffffffffff #x0000000000000001))) (or (bvule (bvadd var_3 #x0000000000000001) var_1) (bvule (bvadd var_1 #x0000000000000001) var_3))) (bvult var_1 var_2)) [ 1:00] ASSUME (and (and (and (and (and (and (and (and (not (= var_3 #x0000000000000000)) (bvult var_3 (bvsub #xffffffffffffffff #x0000000000000001))) (or (bvule (bvadd var_3 #x0000000000000001) var_2) (bvule (bvadd var_2 #x0000000000000001) var_3))) (and (and (and (and (not (= var_2 #x0000000000000000)) (bvult var_2 (bvsub #xffffffffffffffff #x0000000000000001))) (or (bvule (bvadd var_2 #x0000000000000001) var_1) (bvule (bvadd var_1 #x0000000000000001) var_2))) (and (not (= var_1 #x0000000000000000)) (bvult var_1 (bvsub #xffffffffffffffff #x0000000000000001)))) (bvult var_2 (bvsub #xffffffffffffffff #x0000000000000001)))) (bvult var_3 (bvsub #xffffffffffffffff #x0000000000000001))) (bvult var_1 (bvsub #xffffffffffffffff #x0000000000000001))) (or (bvule (bvadd var_3 #x0000000000000001) var_1) (bvule (bvadd var_1 #x0000000000000001) var_3))) (bvult var_1 var_2)) (bvult var_2 var_3)) [ 1:00] ASSUME (and (and (and (and (and (and (and (and (and (not (= var_3 #x0000000000000000)) (bvult var_3 (bvsub #xffffffffffffffff #x0000000000000001))) (or (bvule (bvadd var_3 #x0000000000000001) var_2) (bvule (bvadd var_2 #x0000000000000001) var_3))) (and (and (and (and (not (= var_2 #x0000000000000000)) (bvult var_2 (bvsub #xffffffffffffffff #x0000000000000001))) (or (bvule (bvadd var_2 #x0000000000000001) var_1) (bvule (bvadd var_1 #x0000000000000001) var_2))) (and (not (= var_1 #x0000000000000000)) (bvult var_1 (bvsub #xffffffffffffffff #x0000000000000001)))) (bvult var_2 (bvsub #xffffffffffffffff #x0000000000000001)))) (bvult var_3 (bvsub #xffffffffffffffff #x0000000000000001))) (bvult var_1 (bvsub #xffffffffffffffff #x0000000000000001))) (or (bvule (bvadd var_3 #x0000000000000001) var_1) (bvule (bvadd var_1 #x0000000000000001) var_3))) (bvult var_1 var_2)) (bvult var_2 var_3)) (not (bvugt var_1 var_3))) [ 1:00] FAULT: relations-a.c:20: int main(): assertion 'ai > ci' failed [ 1:00] [0] FATAL: assertion failure in userspace [ 1:00] [ 1:00] active stack: [ 1:01] - symbol: void __dios::FaultBase::handler<__dios::Context>(_VM_Fault, _VM_Frame*, void (*)()) [ 1:02] location: /dios/sys/fault.hpp:118 [ 1:02] - symbol: __dios_fault [ 1:02] location: /dios/arch/divm/fault.c:12 [ 1:02] - symbol: lart.__assert_fail [ 1:02] location: /dios/libc/_PDCLIB/assert.c:24 [ 1:02] - symbol: main [ 1:02] location: relations-a.c:20 [ 1:02] - symbol: __dios_start [ 1:02] location: /dios/libc/sys/start.cpp:94 [ 1:02] + divine sim --batch --skip-init --load-report verify.out [ 1:02] [ 1:10] ^ —————. —.— . . —.— . . .————— . . [ 1:10] ——— | | | | | | |\ | | | | [ 1:10] —(o)— | | | | | | | \ | |———— '————| [ 1:10] ——————— | | | \ / | | \| | | [ 1:10] ————————— —————' —'— ' —'— ' ' '————— ' [ 1:10] [ 1:10] Welcome to 'divine sim', an interactive debugger. Type 'help' to get started. [ 1:10] traced states: [ 1:11] ▶ state #1 [new] -- active threads: [0:0] -- [ 1:11] T: FAULT: relations-a.c:20: int main(): assertion 'ai > ci' failed [ 1:12] # executing void __dios::FaultBase::handler<{Context}>(_VM_Fault, _VM_Frame*, void (*)()) at /dios/sys/fault.hpp:118 [ 1:12] # NOTE: $frame in __dios_fault [ 1:12] > backtrace [ 1:12] void __dios::FaultBase::handler<{Context}>(_VM_Fault, _VM_Frame*, void (*)()) at /dios/sys/fault.hpp:118 [ 1:12] __dios_fault at /dios/arch/divm/fault.c:12 [ 1:12] lart.__assert_fail at /dios/libc/_PDCLIB/assert.c:24 [ 1:12] main at relations-a.c:20 [ 1:12] __dios_start at /dios/libc/sys/start.cpp:94 [ 1:12] # executing void __dios::FaultBase::handler<{Context}>(_VM_Fault, _VM_Frame*, void (*)()) at /dios/sys/fault.hpp:118 [ 1:12] # NOTE: $frame in __dios_fault