/export/starexec/sandbox/solver/bin/starexec_run_c /export/starexec/sandbox/benchmark/theBenchmark.c /export/starexec/sandbox/output/output_files -------------------------------------------------------------------------------- YES proof of /export/starexec/sandbox/benchmark/theBenchmark.c # AProVE Commit ID: 48fb2092695e11cc9f56e44b17a92a5f88ffb256 marcel 20180622 unpublished dirty Termination of the given C Problem could be proven: (0) C Problem (1) CToLLVMProof [EQUIVALENT, 179 ms] (2) LLVM problem (3) LLVMToTerminationGraphProof [EQUIVALENT, 1401 ms] (4) LLVM Symbolic Execution Graph (5) SymbolicExecutionGraphToSCCProof [SOUND, 0 ms] (6) AND (7) LLVM Symbolic Execution SCC (8) SCC2IRS [SOUND, 50 ms] (9) IntTRS (10) IRS2T2 [EQUIVALENT, 0 ms] (11) T2IntSys (12) T2 [EQUIVALENT, 614 ms] (13) YES (14) LLVM Symbolic Execution SCC (15) SCC2IRS [SOUND, 18 ms] (16) IntTRS (17) IRS2T2 [EQUIVALENT, 0 ms] (18) T2IntSys (19) T2 [EQUIVALENT, 574 ms] (20) YES (21) LLVM Symbolic Execution SCC (22) SCC2IRS [SOUND, 54 ms] (23) IntTRS (24) RankingReductionPairProof [EQUIVALENT, 0 ms] (25) YES ---------------------------------------- (0) Obligation: c file /export/starexec/sandbox/benchmark/theBenchmark.c ---------------------------------------- (1) CToLLVMProof (EQUIVALENT) Compiled c-file /export/starexec/sandbox/benchmark/theBenchmark.c to LLVM. ---------------------------------------- (2) Obligation: LLVM Problem Aliases: Data layout: "e-p:64:64:64-i1:8:8-i8:8:8-i16:16:16-i32:32:32-i64:64:64-f32:32:32-f64:64:64-v64:64:64-v128:128:128-a0:0:64-s0:64:64-f80:128:128-n8:16:32:64-S128" Machine: "x86_64-pc-linux-gnu" Type definitions: Global variables: Function declarations and definitions: *BasicFunctionTypename: "__VERIFIER_nondet_int" returnParam: i32 parameters: () variableLength: false visibilityType: DEFAULT callingConvention: ccc *BasicFunctionTypename: "main" linkageType: EXTERNALLY_VISIBLE returnParam: i32 parameters: () variableLength: false visibilityType: DEFAULT callingConvention: ccc 0: %1 = alloca i32, align 4 %i = alloca i32, align 4 store 0, %1 %2 = call i32 @__VERIFIER_nondet_int() store %2, %i br %3 3: %4 = load %i %5 = icmp slt %4 255 br %5, %6, %16 6: %7 = call i32 @__VERIFIER_nondet_int() %8 = icmp ne %7 0 br %8, %9, %12 9: %10 = load %i %11 = add %10 1 store %11, %i br %15 12: %13 = load %i %14 = add %13 2 store %14, %i br %15 15: br %3 16: ret 0 Analyze Termination of all function calls matching the pattern: main() ---------------------------------------- (3) LLVMToTerminationGraphProof (EQUIVALENT) Constructed symbolic execution graph for LLVM program and proved memory safety. ---------------------------------------- (4) Obligation: SE Graph ---------------------------------------- (5) SymbolicExecutionGraphToSCCProof (SOUND) Splitted symbolic execution graph to 3 SCCs. ---------------------------------------- (6) Complex Obligation (AND) ---------------------------------------- (7) Obligation: SCC ---------------------------------------- (8) SCC2IRS (SOUND) Transformed LLVM symbolic execution graph SCC into a rewrite problem. Log: Generated rules. Obtained 43 rulesP rules: f_274(v477, v478, v479, v480, 1, 0, v483, v484, v486, v487, v488, 3, 254, 253, 4) -> f_276(v477, v478, v479, v480, 1, 0, v483, v484, v490, v487, v488, 3, 2, 254, 253, 4, 256) :|: v490 = 2 + v480 && v490 <= 256 f_276(v477, v478, v479, v480, 1, 0, v483, v484, v490, v487, v488, 3, 2, 254, 253, 4, 256) -> f_278(v477, v478, v479, v480, 1, 0, v483, v484, v490, v487, v488, 3, 2, 254, 253, 4, 256) :|: TRUE f_278(v477, v478, v479, v480, 1, 0, v483, v484, v490, v487, v488, 3, 2, 254, 253, 4, 256) -> f_281(v477, v478, v479, v480, 1, 0, v483, v484, v490, v487, v488, 3, 2, 254, 253, 4, 256) :|: TRUE f_281(v477, v478, v479, v480, 1, 0, v483, v484, v490, v487, v488, 3, 2, 254, 253, 4, 256) -> f_283(v477, v478, v479, v480, 1, 0, v483, v484, v490, v487, v488, 3, 2, 254, 253, 4, 256) :|: TRUE f_283(v477, v478, v479, v480, 1, 0, v483, v484, v490, v487, v488, 3, 2, 254, 253, 4, 256) -> f_285(v477, v478, v479, v490, 1, 0, v483, v484, v480, v487, v488, 3, 2, 254, 253, 4, 256) :|: 0 = 0 f_285(v477, v478, v479, v490, 1, 0, v483, v484, v480, v487, v488, 3, 2, 254, 253, 4, 256) -> f_288(v477, v478, v479, v490, 1, 0, v483, v484, v480, v487, v488, 3, 2, 254, 252, 251, 4) :|: v490 < 255 && v480 <= 252 && v483 <= 251 && v484 <= 252 f_288(v477, v478, v479, v490, 1, 0, v483, v484, v480, v487, v488, 3, 2, 254, 252, 251, 4) -> f_292(v477, v478, v479, v490, 1, 0, v483, v484, v480, v487, v488, 3, 2, 254, 252, 251, 4) :|: 0 = 0 f_292(v477, v478, v479, v490, 1, 0, v483, v484, v480, v487, v488, 3, 2, 254, 252, 251, 4) -> f_296(v477, v478, v479, v490, 1, 0, v483, v484, v480, v487, v488, 3, 2, 254, 252, 251, 4) :|: TRUE f_296(v477, v478, v479, v490, 1, 0, v483, v484, v480, v487, v488, 3, 2, 254, 252, 251, 4) -> f_299(v477, v478, v479, v490, 1, v628, 0, v483, v484, v480, v487, v488, 3, 2, 254, 252, 251, 4) :|: TRUE f_299(v477, v478, v479, v490, 1, v628, 0, v483, v484, v480, v487, v488, 3, 2, 254, 252, 251, 4) -> f_302(v477, v478, v479, v490, 1, v628, 0, v483, v484, v480, v487, v488, 3, 2, 254, 252, 251, 4) :|: v628 != 0 f_299(v477, v478, v479, v490, 1, v628, 0, v483, v484, v480, v487, v488, 3, 2, 254, 252, 251, 4) -> f_303(v477, v478, v479, v490, 1, 0, v483, v484, v480, v487, v488, 3, 2, 254, 252, 251, 4) :|: v628 = 0 f_302(v477, v478, v479, v490, 1, v628, 0, v483, v484, v480, v487, v488, 3, 2, 254, 252, 251, 4) -> f_306(v477, v478, v479, v490, 1, v628, v483, v484, v480, v487, v488, 0, 3, 2, 254, 252, 251, 4) :|: 0 = 0 f_306(v477, v478, v479, v490, 1, v628, v483, v484, v480, v487, v488, 0, 3, 2, 254, 252, 251, 4) -> f_311(v477, v478, v479, v490, 1, v628, v483, v484, v480, v487, v488, 0, 3, 2, 254, 252, 251, 4) :|: TRUE f_311(v477, v478, v479, v490, 1, v628, v483, v484, v480, v487, v488, 0, 3, 2, 254, 252, 251, 4) -> f_309(v477, v478, v479, v490, 1, v628, v483, v484, v480, v490, v487, v488, 0, 3, 2, 254, 253, 252, 4) :|: TRUE f_309(v644, v645, v646, v647, 1, v649, v650, v651, v652, v653, v654, v655, 0, 3, 2, 254, 253, 252, 4) -> f_313(v644, v645, v646, v647, 1, v649, v651, v652, v653, v654, v655, 0, 3, 2, 254, 252, 4) :|: 0 = 0 f_313(v644, v645, v646, v647, 1, v649, v651, v652, v653, v654, v655, 0, 3, 2, 254, 252, 4) -> f_315(v644, v645, v646, v647, 1, v649, v734, v652, v653, v654, v655, 0, 3, 2, 254, 252, 4, 255) :|: v734 = 1 + v647 && v734 <= 255 f_315(v644, v645, v646, v647, 1, v649, v734, v652, v653, v654, v655, 0, 3, 2, 254, 252, 4, 255) -> f_317(v644, v645, v646, v647, 1, v649, v734, v652, v653, v654, v655, 0, 3, 2, 254, 252, 4, 255) :|: TRUE f_317(v644, v645, v646, v647, 1, v649, v734, v652, v653, v654, v655, 0, 3, 2, 254, 252, 4, 255) -> f_319(v644, v645, v646, v647, 1, v649, v734, v652, v653, v654, v655, 0, 3, 2, 254, 252, 4, 255) :|: TRUE f_319(v644, v645, v646, v647, 1, v649, v734, v652, v653, v654, v655, 0, 3, 2, 254, 252, 4, 255) -> f_280(v644, v645, v646, v647, 1, v649, v652, v653, v734, v654, v655, 0, 3, 2, 254, 252, 255, 4) :|: TRUE f_280(v512, v513, v514, v515, 1, v517, v518, v519, v520, v521, v522, 0, 3, 2, 254, 252, 255, 4) -> f_282(v512, v513, v514, v515, 1, v517, v518, v519, v520, v521, v522, 0, 3, 2, 254, 252, 255, 4) :|: TRUE f_282(v512, v513, v514, v515, 1, v517, v518, v519, v520, v521, v522, 0, 3, 2, 254, 252, 255, 4) -> f_284(v512, v513, v514, v520, 1, v517, v518, v519, v515, v521, v522, 0, 3, 2, 254, 252, 255, 4) :|: 0 = 0 f_284(v512, v513, v514, v520, 1, v517, v518, v519, v515, v521, v522, 0, 3, 2, 254, 252, 255, 4) -> f_286(v512, v513, v514, v520, 1, v517, v518, v519, v515, v521, v522, 0, 3, 2, 254, 253, 251, 4) :|: v520 < 255 && v515 <= 253 && v519 <= 253 && v518 <= 251 f_286(v512, v513, v514, v520, 1, v517, v518, v519, v515, v521, v522, 0, 3, 2, 254, 253, 251, 4) -> f_290(v512, v513, v514, v520, 1, v517, v518, v519, v515, v521, v522, 0, 3, 2, 254, 253, 251, 4) :|: 0 = 0 f_290(v512, v513, v514, v520, 1, v517, v518, v519, v515, v521, v522, 0, 3, 2, 254, 253, 251, 4) -> f_294(v512, v513, v514, v520, 1, v517, v518, v519, v515, v521, v522, 0, 3, 2, 254, 253, 251, 4) :|: TRUE f_294(v512, v513, v514, v520, 1, v517, v518, v519, v515, v521, v522, 0, 3, 2, 254, 253, 251, 4) -> f_298(v512, v513, v514, v520, 1, v627, v518, v519, v515, v521, v522, 0, 3, 2, 254, 253, 251, 4) :|: TRUE f_298(v512, v513, v514, v520, 1, v627, v518, v519, v515, v521, v522, 0, 3, 2, 254, 253, 251, 4) -> f_300(v512, v513, v514, v520, 1, v627, v518, v519, v515, v521, v522, 0, 3, 2, 254, 253, 251, 4) :|: v627 != 0 f_298(v512, v513, v514, v520, 1, v627, v518, v519, v515, v521, v522, 0, 3, 2, 254, 253, 251, 4) -> f_301(v512, v513, v514, v520, 1, 0, v518, v519, v515, v521, v522, 3, 2, 254, 253, 251, 4) :|: v627 = 0 f_300(v512, v513, v514, v520, 1, v627, v518, v519, v515, v521, v522, 0, 3, 2, 254, 253, 251, 4) -> f_304(v512, v513, v514, v520, 1, v627, v518, v519, v515, v521, v522, 0, 3, 2, 254, 253, 251, 4) :|: 0 = 0 f_304(v512, v513, v514, v520, 1, v627, v518, v519, v515, v521, v522, 0, 3, 2, 254, 253, 251, 4) -> f_308(v512, v513, v514, v520, 1, v627, v518, v519, v515, v521, v522, 0, 3, 2, 254, 253, 251, 4) :|: TRUE f_308(v512, v513, v514, v520, 1, v627, v518, v519, v515, v521, v522, 0, 3, 2, 254, 253, 251, 4) -> f_309(v512, v513, v514, v520, 1, v627, v515, v520, v518, v519, v521, v522, 0, 3, 2, 254, 253, 252, 4) :|: TRUE f_301(v512, v513, v514, v520, 1, 0, v518, v519, v515, v521, v522, 3, 2, 254, 253, 251, 4) -> f_305(v512, v513, v514, v520, 1, 0, v518, v519, v515, v521, v522, 3, 2, 254, 253, 251, 4) :|: 0 = 0 f_305(v512, v513, v514, v520, 1, 0, v518, v519, v515, v521, v522, 3, 2, 254, 253, 251, 4) -> f_310(v512, v513, v514, v520, 1, 0, v518, v519, v515, v521, v522, 3, 2, 254, 253, 251, 4) :|: TRUE f_310(v512, v513, v514, v520, 1, 0, v518, v519, v515, v521, v522, 3, 2, 254, 253, 251, 4) -> f_314(v512, v513, v514, v520, 1, 0, v519, v515, v521, v522, 3, 254, 253, 4) :|: 0 = 0 f_314(v512, v513, v514, v520, 1, 0, v519, v515, v521, v522, 3, 254, 253, 4) -> f_316(v512, v513, v514, v520, 1, 0, v735, v515, v521, v522, 3, 2, 254, 253, 4, 256) :|: v735 = 2 + v520 && v735 <= 256 f_316(v512, v513, v514, v520, 1, 0, v735, v515, v521, v522, 3, 2, 254, 253, 4, 256) -> f_318(v512, v513, v514, v520, 1, 0, v735, v515, v521, v522, 3, 2, 254, 253, 4, 256) :|: TRUE f_318(v512, v513, v514, v520, 1, 0, v735, v515, v521, v522, 3, 2, 254, 253, 4, 256) -> f_320(v512, v513, v514, v520, 1, 0, v735, v515, v521, v522, 3, 2, 254, 253, 4, 256) :|: TRUE f_320(v512, v513, v514, v520, 1, 0, v735, v515, v521, v522, 3, 2, 254, 253, 4, 256) -> f_321(v512, v513, v514, v520, 1, 0, v515, v735, v521, v522, 3, 2, 254, 253, 256, 4) :|: TRUE f_321(v787, v788, v789, v790, 1, 0, v793, v794, v795, v796, 3, 2, 254, 253, 256, 4) -> f_322(v787, v788, v789, v790, 1, 0, v793, v794, v795, v796, 3, 2, 254, 253, 256, 4) :|: TRUE f_322(v787, v788, v789, v790, 1, 0, v793, v794, v795, v796, 3, 2, 254, 253, 256, 4) -> f_283(v787, v788, v789, v790, 1, 0, v793, v790, v794, v795, v796, 3, 2, 254, 253, 4, 256) :|: TRUE f_303(v477, v478, v479, v490, 1, 0, v483, v484, v480, v487, v488, 3, 2, 254, 252, 251, 4) -> f_307(v477, v478, v479, v490, 1, 0, v483, v484, v480, v487, v488, 3, 2, 254, 252, 251, 4) :|: 0 = 0 f_307(v477, v478, v479, v490, 1, 0, v483, v484, v480, v487, v488, 3, 2, 254, 252, 251, 4) -> f_312(v477, v478, v479, v490, 1, 0, v483, v484, v480, v487, v488, 3, 2, 254, 252, 251, 4) :|: TRUE f_312(v477, v478, v479, v490, 1, 0, v483, v484, v480, v487, v488, 3, 2, 254, 252, 251, 4) -> f_272(v477, v478, v479, v490, 1, 0, v483, v484, v480, v490, v487, v488, 3, 2, 254, 253, 252, 4) :|: TRUE f_272(v477, v478, v479, v480, 1, 0, v483, v484, v485, v486, v487, v488, 3, 2, 254, 253, 252, 4) -> f_274(v477, v478, v479, v480, 1, 0, v483, v484, v486, v487, v488, 3, 254, 253, 4) :|: 0 = 0 Combined rules. Obtained 6 rulesP rules: f_298(v512:0, v513:0, v514:0, v520:0, 1, v627:0, v518:0, v519:0, v515:0, v521:0, v522:0, 0, 3, 2, 254, 253, 251, 4) -> f_298(v512:0, v513:0, v514:0, 1 + v520:0, 1, v627:1, v518:0, v519:0, v520:0, v521:0, v522:0, 0, 3, 2, 254, 253, 251, 4) :|: v520:0 < 255 && v520:0 < 254 && v519:0 < 254 && v627:0 < 0 && v518:0 < 252 f_298(v512:0, v513:0, v514:0, v520:0, 1, v627:0, v518:0, v519:0, v515:0, v521:0, v522:0, 0, 3, 2, 254, 253, 251, 4) -> f_298(v512:0, v513:0, v514:0, 1 + v520:0, 1, v627:1, v518:0, v519:0, v520:0, v521:0, v522:0, 0, 3, 2, 254, 253, 251, 4) :|: v520:0 < 255 && v520:0 < 254 && v519:0 < 254 && v627:0 > 0 && v518:0 < 252 f_299(v477:0, v478:0, v479:0, v490:0, 1, 0, 0, v483:0, v484:0, v480:0, v487:0, v488:0, 3, 2, 254, 252, 251, 4) -> f_299(v477:0, v478:0, v479:0, 2 + v490:0, 1, v628:1, 0, v483:0, v484:0, v490:0, v487:0, v488:0, 3, 2, 254, 252, 251, 4) :|: v490:0 < 255 && v490:0 < 253 && v484:0 < 253 && v483:0 < 252 f_299(v477:0, v478:0, v479:0, v490:0, 1, v628:0, 0, v483:0, v484:0, v480:0, v487:0, v488:0, 3, 2, 254, 252, 251, 4) -> f_298(v477:0, v478:0, v479:0, 1 + v490:0, 1, v627:0, v480:0, v490:0, v490:0, v487:0, v488:0, 0, 3, 2, 254, 253, 251, 4) :|: v628:0 < 0 && v490:0 < 255 && v490:0 < 254 && v480:0 < 252 f_299(v477:0, v478:0, v479:0, v490:0, 1, v628:0, 0, v483:0, v484:0, v480:0, v487:0, v488:0, 3, 2, 254, 252, 251, 4) -> f_298(v477:0, v478:0, v479:0, 1 + v490:0, 1, v627:0, v480:0, v490:0, v490:0, v487:0, v488:0, 0, 3, 2, 254, 253, 251, 4) :|: v628:0 > 0 && v490:0 < 255 && v490:0 < 254 && v480:0 < 252 f_298(v512:0, v513:0, v514:0, v520:0, 1, 0, v518:0, v519:0, v515:0, v521:0, v522:0, 0, 3, 2, 254, 253, 251, 4) -> f_299(v512:0, v513:0, v514:0, 2 + v520:0, 1, v628:0, 0, v515:0, v520:0, v520:0, v521:0, v522:0, 3, 2, 254, 252, 251, 4) :|: v520:0 < 253 && v515:0 < 252 && v520:0 < 255 Filtered unneeded arguments: f_298(x1, x2, x3, x4, x5, x6, x7, x8, x9, x10, x11, x12, x13, x14, x15, x16, x17, x18) -> f_298(x4, x6, x7, x8, x9) f_299(x1, x2, x3, x4, x5, x6, x7, x8, x9, x10, x11, x12, x13, x14, x15, x16, x17, x18) -> f_299(x4, x6, x8, x9, x10) Removed division, modulo operations, cleaned up constraints. Obtained 6 rules.P rules: f_298(v520:0, v627:0, v518:0, v519:0, v515:0) -> f_298(1 + v520:0, v627:1, v518:0, v519:0, v520:0) :|: v520:0 < 254 && v520:0 < 255 && v519:0 < 254 && v518:0 < 252 && v627:0 < 0 f_298(v520:0, v627:0, v518:0, v519:0, v515:0) -> f_298(1 + v520:0, v627:1, v518:0, v519:0, v520:0) :|: v520:0 < 254 && v520:0 < 255 && v519:0 < 254 && v518:0 < 252 && v627:0 > 0 f_299(v490:0, cons_0, v483:0, v484:0, v480:0) -> f_299(2 + v490:0, v628:1, v483:0, v484:0, v490:0) :|: v490:0 < 253 && v490:0 < 255 && v483:0 < 252 && v484:0 < 253 && cons_0 = 0 f_299(v490:0, v628:0, v483:0, v484:0, v480:0) -> f_298(1 + v490:0, v627:0, v480:0, v490:0, v490:0) :|: v490:0 < 255 && v628:0 < 0 && v480:0 < 252 && v490:0 < 254 f_299(v490:0, v628:0, v483:0, v484:0, v480:0) -> f_298(1 + v490:0, v627:0, v480:0, v490:0, v490:0) :|: v490:0 < 255 && v628:0 > 0 && v480:0 < 252 && v490:0 < 254 f_298(v520:0, cons_0, v518:0, v519:0, v515:0) -> f_299(2 + v520:0, v628:0, v515:0, v520:0, v520:0) :|: v515:0 < 252 && v520:0 < 255 && v520:0 < 253 && cons_0 = 0 ---------------------------------------- (9) Obligation: Rules: f_298(v520:0, v627:0, v518:0, v519:0, v515:0) -> f_298(1 + v520:0, v627:1, v518:0, v519:0, v520:0) :|: v520:0 < 254 && v520:0 < 255 && v519:0 < 254 && v518:0 < 252 && v627:0 < 0 f_298(x, x1, x2, x3, x4) -> f_298(1 + x, x5, x2, x3, x) :|: x < 254 && x < 255 && x3 < 254 && x2 < 252 && x1 > 0 f_299(v490:0, cons_0, v483:0, v484:0, v480:0) -> f_299(2 + v490:0, v628:1, v483:0, v484:0, v490:0) :|: v490:0 < 253 && v490:0 < 255 && v483:0 < 252 && v484:0 < 253 && cons_0 = 0 f_299(x6, x7, x8, x9, x10) -> f_298(1 + x6, x11, x10, x6, x6) :|: x6 < 255 && x7 < 0 && x10 < 252 && x6 < 254 f_299(x12, x13, x14, x15, x16) -> f_298(1 + x12, x17, x16, x12, x12) :|: x12 < 255 && x13 > 0 && x16 < 252 && x12 < 254 f_298(x18, x19, x20, x21, x22) -> f_299(2 + x18, x23, x22, x18, x18) :|: x22 < 252 && x18 < 255 && x18 < 253 && x19 = 0 ---------------------------------------- (10) IRS2T2 (EQUIVALENT) Transformed input IRS into an integer transition system.Used the following mapping from defined symbols to location IDs: (f_298_5,1) (f_299_5,2) ---------------------------------------- (11) Obligation: START: 0; FROM: 0; TO: 1; FROM: 0; TO: 2; FROM: 1; oldX0 := x0; oldX1 := x1; oldX2 := x2; oldX3 := x3; oldX4 := x4; oldX5 := nondet(); assume(oldX0 < 254 && oldX0 < 255 && oldX3 < 254 && oldX2 < 252 && oldX1 < 0); x0 := 1 + oldX0; x1 := oldX5; x2 := oldX2; x3 := oldX3; x4 := oldX0; TO: 1; FROM: 1; oldX0 := x0; oldX1 := x1; oldX2 := x2; oldX3 := x3; oldX4 := x4; oldX5 := nondet(); assume(oldX0 < 254 && oldX0 < 255 && oldX3 < 254 && oldX2 < 252 && oldX1 > 0); x0 := 1 + oldX0; x1 := oldX5; x2 := oldX2; x3 := oldX3; x4 := oldX0; TO: 1; FROM: 2; oldX0 := x0; oldX1 := x1; oldX2 := x2; oldX3 := x3; oldX4 := x4; oldX5 := nondet(); assume(oldX0 < 253 && oldX0 < 255 && oldX2 < 252 && oldX3 < 253 && oldX1 = 0); x0 := 2 + oldX0; x1 := oldX5; x2 := oldX2; x3 := oldX3; x4 := oldX0; TO: 2; FROM: 2; oldX0 := x0; oldX1 := x1; oldX2 := x2; oldX3 := x3; oldX4 := x4; oldX5 := nondet(); assume(oldX0 < 255 && oldX1 < 0 && oldX4 < 252 && oldX0 < 254); x0 := 1 + oldX0; x1 := oldX5; x2 := oldX4; x3 := oldX0; x4 := oldX0; TO: 1; FROM: 2; oldX0 := x0; oldX1 := x1; oldX2 := x2; oldX3 := x3; oldX4 := x4; oldX5 := nondet(); assume(oldX0 < 255 && oldX1 > 0 && oldX4 < 252 && oldX0 < 254); x0 := 1 + oldX0; x1 := oldX5; x2 := oldX4; x3 := oldX0; x4 := oldX0; TO: 1; FROM: 1; oldX0 := x0; oldX1 := x1; oldX2 := x2; oldX3 := x3; oldX4 := x4; oldX5 := nondet(); assume(oldX4 < 252 && oldX0 < 255 && oldX0 < 253 && oldX1 = 0); x0 := 2 + oldX0; x1 := oldX5; x2 := oldX4; x3 := oldX0; x4 := oldX0; TO: 2; ---------------------------------------- (12) T2 (EQUIVALENT) Initially, performed program simplifications using lexicographic rank functions: * Removed transitions 2, 5, 6, 7, 17, 20, 21, 22 using the following rank functions: - Rank function 1: RF for loc. 6: -2-3*x0 RF for loc. 7: 1-3*x0 RF for loc. 8: -3-3*x0 RF for loc. 12: -3*x0 Bound for (chained) transitions 5: -765 Bound for (chained) transitions 6: -765 Bound for (chained) transitions 7: -759 Bound for (chained) transitions 21: -759 Bound for (chained) transitions 22: -759 - Rank function 2: RF for loc. 6: 1 RF for loc. 7: -x0 RF for loc. 8: 0 RF for loc. 12: -1-x0 Bound for (chained) transitions 20: -255 - Rank function 3: RF for loc. 6: 1 RF for loc. 7: 1 RF for loc. 8: 0 RF for loc. 12: 0 Bound for (chained) transitions 2: 1 Bound for (chained) transitions 17: 1 ---------------------------------------- (13) YES ---------------------------------------- (14) Obligation: SCC ---------------------------------------- (15) SCC2IRS (SOUND) Transformed LLVM symbolic execution graph SCC into a rewrite problem. Log: Generated rules. Obtained 14 rulesP rules: f_196(v211, v212, v213, v217, 1, v216, v214, v218, v219, 0, 3, 254, 255, 4) -> f_198(v211, v212, v213, v217, 1, v216, v214, v218, v219, 0, 3, 253, 254, 4) :|: v217 < 255 && v214 <= 253 && v213 <= 253 f_198(v211, v212, v213, v217, 1, v216, v214, v218, v219, 0, 3, 253, 254, 4) -> f_202(v211, v212, v213, v217, 1, v216, v214, v218, v219, 0, 3, 253, 254, 4) :|: 0 = 0 f_202(v211, v212, v213, v217, 1, v216, v214, v218, v219, 0, 3, 253, 254, 4) -> f_206(v211, v212, v213, v217, 1, v216, v214, v218, v219, 0, 3, 253, 254, 4) :|: TRUE f_206(v211, v212, v213, v217, 1, v216, v214, v218, v219, 0, 3, 253, 254, 4) -> f_210(v211, v212, v213, v217, 1, v231, v214, v218, v219, 0, 3, 253, 254, 4) :|: TRUE f_210(v211, v212, v213, v217, 1, v231, v214, v218, v219, 0, 3, 253, 254, 4) -> f_212(v211, v212, v213, v217, 1, v231, v214, v218, v219, 0, 3, 253, 254, 4) :|: v231 != 0 f_212(v211, v212, v213, v217, 1, v231, v214, v218, v219, 0, 3, 253, 254, 4) -> f_216(v211, v212, v213, v217, 1, v231, v214, v218, v219, 0, 3, 253, 254, 4) :|: 0 = 0 f_216(v211, v212, v213, v217, 1, v231, v214, v218, v219, 0, 3, 253, 254, 4) -> f_220(v211, v212, v213, v217, 1, v231, v214, v218, v219, 0, 3, 253, 254, 4) :|: TRUE f_220(v211, v212, v213, v217, 1, v231, v214, v218, v219, 0, 3, 253, 254, 4) -> f_224(v211, v212, v213, v217, 1, v231, v218, v219, 0, 3, 253, 254, 4) :|: 0 = 0 f_224(v211, v212, v213, v217, 1, v231, v218, v219, 0, 3, 253, 254, 4) -> f_228(v211, v212, v213, v217, 1, v231, v237, v218, v219, 0, 3, 253, 254, 4, 255) :|: v237 = 1 + v217 && v237 <= 255 f_228(v211, v212, v213, v217, 1, v231, v237, v218, v219, 0, 3, 253, 254, 4, 255) -> f_232(v211, v212, v213, v217, 1, v231, v237, v218, v219, 0, 3, 253, 254, 4, 255) :|: TRUE f_232(v211, v212, v213, v217, 1, v231, v237, v218, v219, 0, 3, 253, 254, 4, 255) -> f_236(v211, v212, v213, v217, 1, v231, v237, v218, v219, 0, 3, 253, 254, 4, 255) :|: TRUE f_236(v211, v212, v213, v217, 1, v231, v237, v218, v219, 0, 3, 253, 254, 4, 255) -> f_240(v211, v212, v213, v217, 1, v231, v237, v218, v219, 0, 3, 253, 254, 4, 255) :|: TRUE f_240(v211, v212, v213, v217, 1, v231, v237, v218, v219, 0, 3, 253, 254, 4, 255) -> f_194(v211, v212, v213, v217, 1, v231, v237, v218, v219, 0, 3, 254, 255, 4) :|: TRUE f_194(v211, v212, v213, v214, 1, v216, v217, v218, v219, 0, 3, 254, 255, 4) -> f_196(v211, v212, v213, v217, 1, v216, v214, v218, v219, 0, 3, 254, 255, 4) :|: 0 = 0 Combined rules. Obtained 2 rulesP rules: f_196(v211:0, v212:0, v213:0, v217:0, 1, v216:0, v214:0, v218:0, v219:0, 0, 3, 254, 255, 4) -> f_196(v211:0, v212:0, v213:0, 1 + v217:0, 1, v231:0, v217:0, v218:0, v219:0, 0, 3, 254, 255, 4) :|: v214:0 < 254 && v217:0 < 255 && v213:0 < 254 && v231:0 < 0 f_196(v211:0, v212:0, v213:0, v217:0, 1, v216:0, v214:0, v218:0, v219:0, 0, 3, 254, 255, 4) -> f_196(v211:0, v212:0, v213:0, 1 + v217:0, 1, v231:0, v217:0, v218:0, v219:0, 0, 3, 254, 255, 4) :|: v214:0 < 254 && v217:0 < 255 && v213:0 < 254 && v231:0 > 0 Filtered unneeded arguments: f_196(x1, x2, x3, x4, x5, x6, x7, x8, x9, x10, x11, x12, x13, x14) -> f_196(x3, x4, x7) Removed division, modulo operations, cleaned up constraints. Obtained 1 rules.P rules: f_196(v213:0, v217:0, v214:0) -> f_196(v213:0, 1 + v217:0, v217:0) :|: v217:0 < 255 && v213:0 < 254 && v214:0 < 254 ---------------------------------------- (16) Obligation: Rules: f_196(v213:0, v217:0, v214:0) -> f_196(v213:0, 1 + v217:0, v217:0) :|: v217:0 < 255 && v213:0 < 254 && v214:0 < 254 ---------------------------------------- (17) IRS2T2 (EQUIVALENT) Transformed input IRS into an integer transition system.Used the following mapping from defined symbols to location IDs: (f_196_3,1) ---------------------------------------- (18) Obligation: START: 0; FROM: 0; TO: 1; FROM: 1; oldX0 := x0; oldX1 := x1; oldX2 := x2; assume(oldX1 < 255 && oldX0 < 254 && oldX2 < 254); x0 := oldX0; x1 := 1 + oldX1; x2 := oldX1; TO: 1; ---------------------------------------- (19) T2 (EQUIVALENT) Initially, performed program simplifications using lexicographic rank functions: * Removed transitions 1, 3, 4 using the following rank functions: - Rank function 1: RF for loc. 5: 1-2*x1 RF for loc. 6: -2*x1 Bound for (chained) transitions 3: -508 Bound for (chained) transitions 4: -508 - Rank function 2: RF for loc. 5: 0 RF for loc. 6: -1 Bound for (chained) transitions 1: 0 ---------------------------------------- (20) YES ---------------------------------------- (21) Obligation: SCC ---------------------------------------- (22) SCC2IRS (SOUND) Transformed LLVM symbolic execution graph SCC into a rewrite problem. Log: Generated rules. Obtained 14 rulesP rules: f_195(v184, v185, v186, v187, 1, 0, v190, v191, v192, 3, 2, 254, 256, 4) -> f_197(v184, v185, v186, v190, 1, 0, v187, v191, v192, 3, 2, 254, 256, 4) :|: 0 = 0 f_197(v184, v185, v186, v190, 1, 0, v187, v191, v192, 3, 2, 254, 256, 4) -> f_200(v184, v185, v186, v190, 1, 0, v187, v191, v192, 3, 2, 254, 252, 4) :|: v190 < 255 && v187 <= 252 f_200(v184, v185, v186, v190, 1, 0, v187, v191, v192, 3, 2, 254, 252, 4) -> f_204(v184, v185, v186, v190, 1, 0, v187, v191, v192, 3, 2, 254, 252, 4) :|: 0 = 0 f_204(v184, v185, v186, v190, 1, 0, v187, v191, v192, 3, 2, 254, 252, 4) -> f_208(v184, v185, v186, v190, 1, 0, v187, v191, v192, 3, 2, 254, 252, 4) :|: TRUE f_208(v184, v185, v186, v190, 1, 0, v187, v191, v192, 3, 2, 254, 252, 4) -> f_211(v184, v185, v186, v190, 1, v232, 0, v187, v191, v192, 3, 2, 254, 252, 4) :|: TRUE f_211(v184, v185, v186, v190, 1, v232, 0, v187, v191, v192, 3, 2, 254, 252, 4) -> f_215(v184, v185, v186, v190, 1, 0, v187, v191, v192, 3, 2, 254, 252, 4) :|: v232 = 0 f_215(v184, v185, v186, v190, 1, 0, v187, v191, v192, 3, 2, 254, 252, 4) -> f_219(v184, v185, v186, v190, 1, 0, v187, v191, v192, 3, 2, 254, 252, 4) :|: 0 = 0 f_219(v184, v185, v186, v190, 1, 0, v187, v191, v192, 3, 2, 254, 252, 4) -> f_223(v184, v185, v186, v190, 1, 0, v187, v191, v192, 3, 2, 254, 252, 4) :|: TRUE f_223(v184, v185, v186, v190, 1, 0, v187, v191, v192, 3, 2, 254, 252, 4) -> f_227(v184, v185, v186, v190, 1, 0, v191, v192, 3, 254, 4) :|: 0 = 0 f_227(v184, v185, v186, v190, 1, 0, v191, v192, 3, 254, 4) -> f_231(v184, v185, v186, v190, 1, 0, v240, v191, v192, 3, 2, 254, 4, 256) :|: v240 = 2 + v190 && v240 <= 256 f_231(v184, v185, v186, v190, 1, 0, v240, v191, v192, 3, 2, 254, 4, 256) -> f_235(v184, v185, v186, v190, 1, 0, v240, v191, v192, 3, 2, 254, 4, 256) :|: TRUE f_235(v184, v185, v186, v190, 1, 0, v240, v191, v192, 3, 2, 254, 4, 256) -> f_239(v184, v185, v186, v190, 1, 0, v240, v191, v192, 3, 2, 254, 4, 256) :|: TRUE f_239(v184, v185, v186, v190, 1, 0, v240, v191, v192, 3, 2, 254, 4, 256) -> f_192(v184, v185, v186, v190, 1, 0, v240, v191, v192, 3, 2, 254, 256, 4) :|: TRUE f_192(v184, v185, v186, v187, 1, 0, v190, v191, v192, 3, 2, 254, 256, 4) -> f_195(v184, v185, v186, v187, 1, 0, v190, v191, v192, 3, 2, 254, 256, 4) :|: TRUE Combined rules. Obtained 1 rulesP rules: f_195(v184:0, v185:0, v186:0, v187:0, 1, 0, v190:0, v191:0, v192:0, 3, 2, 254, 256, 4) -> f_195(v184:0, v185:0, v186:0, v190:0, 1, 0, 2 + v190:0, v191:0, v192:0, 3, 2, 254, 256, 4) :|: v187:0 < 253 && v190:0 < 255 Filtered unneeded arguments: f_195(x1, x2, x3, x4, x5, x6, x7, x8, x9, x10, x11, x12, x13, x14) -> f_195(x4, x7) Removed division, modulo operations, cleaned up constraints. Obtained 1 rules.P rules: f_195(v187:0, v190:0) -> f_195(v190:0, 2 + v190:0) :|: v187:0 < 253 && v190:0 < 255 ---------------------------------------- (23) Obligation: Rules: f_195(v187:0, v190:0) -> f_195(v190:0, 2 + v190:0) :|: v187:0 < 253 && v190:0 < 255 ---------------------------------------- (24) RankingReductionPairProof (EQUIVALENT) Interpretation: [ f_195 ] = -1/2*f_195_2 The following rules are decreasing: f_195(v187:0, v190:0) -> f_195(v190:0, 2 + v190:0) :|: v187:0 < 253 && v190:0 < 255 The following rules are bounded: f_195(v187:0, v190:0) -> f_195(v190:0, 2 + v190:0) :|: v187:0 < 253 && v190:0 < 255 ---------------------------------------- (25) YES