Invoke goto_functions.update() after inlining

[tautschnig]

Inlining will alter location (instruction) numbers, which need to be
updated to once again be globally unique.

This is a follow-up to #6473.

• Each commit message has a non-empty body, explaining why the change was made.
• n/a Methods or procedures I have added are documented, following the guidelines provided in CODING_STANDARD.md.
• n/a The feature or user visible behaviour I have added or modified has been documented in the User Guide in doc/cprover-manual/
• Regression or unit tests are included, or existing tests cover the modified code (in this case I have detailed which ones those are in the commit message).
• n/a My commit message includes data points confirming performance improvements (if claimed).
• My PR is restricted to a single feature or bugfix.
• n/a White-space or formatting changes outside the feature-related changed lines are in commits of their own.

[martin-cs]

Backedges are a necessary but not sufficient test for loops so may_have_loops is good.

I have a vague recollection of a previous "Call update() after inline" issue / PR.

[feliperodri]

If one should always call them together, wouldn't be safer to add a proper API with both calls? It'd certainly help us to avoid these mistakes.

[tautschnig]

Maybe. The problem is the cost of these calls. If you're making multiple modifications to goto programs and don't depend on unique instruction numbers, loop numbering in between, then you should not need to invoke it. There are, in fact, a lot more places in the contracts instrumentation code where such updates need to be considered.

[remi-delmas-3000]

Could we at least mention in the goto_inline.h doc that it breaks the internal consistency of the goto model / function and that a call to goto_functionst::update is needed to restore it? Or maybe in the preconditions of natural_loops ?

What type of modifications require calls to update ?

[tautschnig]

Hmm, I am wondering where to best document (or implement!) this. Any operations that add or remove instructions for a goto program require calls to update. I realise that goto_programt::validate does not actually check for these properties (as documented with the location_number and loop_number members of goto_programt::instructiont).

[codecov]

Codecov Report

Merging #6493 (3af4718) into develop (f245b3a) will decrease coverage by 0.00%.
The diff coverage is 81.74%.

@@             Coverage Diff             @@
##           develop    #6493      +/-   ##
===========================================
- Coverage    76.06%   76.06%   -0.01%     
===========================================
  Files         1546     1546              
  Lines       165584   165618      +34     
===========================================
+ Hits        125951   125975      +24     
- Misses       39633    39643      +10     

Impacted Files	Coverage Δ
...java_bytecode/java_bytecode_internal_additions.cpp	100.00% <ø> (ø)
src/analyses/escape_analysis.cpp	63.83% <ø> (ø)
src/ansi-c/ansi_c_internal_additions.cpp	90.36% <ø> (ø)
src/ansi-c/c_typecheck_base.h	100.00% <ø> (ø)
src/crangler/ctokenit.cpp	0.00% <0.00%> (ø)
src/crangler/ctokenit.h	0.00% <0.00%> (ø)
src/goto-instrument/contracts/assigns.h	100.00% <ø> (ø)
src/goto-instrument/contracts/contracts.h	100.00% <ø> (ø)
src/goto-instrument/contracts/utils.h	100.00% <ø> (ø)
src/goto-programs/goto_convert_class.h	87.30% <ø> (ø)
... and 124 more

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 7eceeb5...3af4718. Read the comment docs.