C library: add __builtin_unreachable to functions that do not return

tautschnig · tautschnig · commit 28ae1a4ffe02 · 2021-12-05T19:33:12.000Z
These calls are wrapped in #ifdef LIBRARY_CHECK and exist for the sole
purpose of making library_check.sh not warn about `noreturn` functions
seemingly returning.
diff --git a/src/ansi-c/library/pthread_lib.c b/src/ansi-c/library/pthread_lib.c
@@ -314,6 +314,9 @@ inline void pthread_exit(void *value_ptr)
 #endif
   __CPROVER_threads_exited[__CPROVER_thread_id]=1;
   __CPROVER_assume(0);
+#ifdef LIBRARY_CHECK
+  __builtin_unreachable();
+#endif
 }
 
 /* FUNCTION: pthread_join */
diff --git a/src/ansi-c/library/setjmp.c b/src/ansi-c/library/setjmp.c
@@ -13,6 +13,9 @@ inline void longjmp(jmp_buf env, int val)
   (void)val;
   __CPROVER_assert(0, "longjmp requires instrumentation");
   __CPROVER_assume(0);
+#ifdef LIBRARY_CHECK
+  __builtin_unreachable();
+#endif
 }
 
 /* FUNCTION: _longjmp */
@@ -29,6 +32,9 @@ inline void _longjmp(jmp_buf env, int val)
   (void)val;
   __CPROVER_assert(0, "_longjmp requires instrumentation");
   __CPROVER_assume(0);
+#ifdef LIBRARY_CHECK
+  __builtin_unreachable();
+#endif
 }
 
 /* FUNCTION: siglongjmp */
@@ -47,6 +53,9 @@ inline void siglongjmp(sigjmp_buf env, int val)
   (void)val;
   __CPROVER_assert(0, "siglongjmp requires instrumentation");
   __CPROVER_assume(0);
+#ifdef LIBRARY_CHECK
+  __builtin_unreachable();
+#endif
 }
 
 #endif
diff --git a/src/ansi-c/library/stdlib.c b/src/ansi-c/library/stdlib.c
@@ -36,6 +36,9 @@ inline void exit(int status)
 {
   (void)status;
   __CPROVER_assume(0);
+#ifdef LIBRARY_CHECK
+  __builtin_unreachable();
+#endif
 }
 
 /* FUNCTION: _Exit */
@@ -46,6 +49,9 @@ inline void _Exit(int status)
 {
   (void)status;
   __CPROVER_assume(0);
+#ifdef LIBRARY_CHECK
+  __builtin_unreachable();
+#endif
 }
 
 /* FUNCTION: abort */
@@ -55,6 +61,9 @@ inline void _Exit(int status)
 inline void abort(void)
 {
   __CPROVER_assume(0);
+#ifdef LIBRARY_CHECK
+  __builtin_unreachable();
+#endif
 }
 
 /* FUNCTION: calloc */
diff --git a/src/ansi-c/library_check.sh b/src/ansi-c/library_check.sh
@@ -7,6 +7,7 @@ for f in "$@"; do
     echo "Checking ${f}"
     cp "${f}" __libcheck.c
     perl -p -i -e 's/(__builtin_[^v])/s$1/' __libcheck.c
+    perl -p -i -e 's/s(__builtin_unreachable)/$1/' __libcheck.c
     perl -p -i -e 's/(_mm_.fence)/s$1/' __libcheck.c
     perl -p -i -e 's/(__sync_)/s$1/' __libcheck.c
     perl -p -i -e 's/(__atomic_)/s$1/' __libcheck.c

Original file line number	Diff line number	Diff line change
`@@ -314,6 +314,9 @@ inline void pthread_exit(void *value_ptr)`
`314`	`314`	`#endif`
`315`	`315`	`__CPROVER_threads_exited[__CPROVER_thread_id]=1;`
`316`	`316`	`__CPROVER_assume(0);`
	`317`	`+#ifdef LIBRARY_CHECK`
	`318`	`+ __builtin_unreachable();`
	`319`	`+#endif`
`317`	`320`	`}`
`318`	`321`
`319`	`322`	`/* FUNCTION: pthread_join */`
Original file line number	Diff line number	Diff line change
`@@ -36,6 +36,9 @@ inline void exit(int status)`
`36`	`36`	`{`
`37`	`37`	`(void)status;`
`38`	`38`	`__CPROVER_assume(0);`
	`39`	`+#ifdef LIBRARY_CHECK`
	`40`	`+ __builtin_unreachable();`
	`41`	`+#endif`
`39`	`42`	`}`
`40`	`43`
`41`	`44`	`/* FUNCTION: _Exit */`
`@@ -46,6 +49,9 @@ inline void _Exit(int status)`
`46`	`49`	`{`
`47`	`50`	`(void)status;`
`48`	`51`	`__CPROVER_assume(0);`
	`52`	`+#ifdef LIBRARY_CHECK`
	`53`	`+ __builtin_unreachable();`
	`54`	`+#endif`
`49`	`55`	`}`
`50`	`56`
`51`	`57`	`/* FUNCTION: abort */`
`@@ -55,6 +61,9 @@ inline void _Exit(int status)`
`55`	`61`	`inline void abort(void)`
`56`	`62`	`{`
`57`	`63`	`__CPROVER_assume(0);`
	`64`	`+#ifdef LIBRARY_CHECK`
	`65`	`+ __builtin_unreachable();`
	`66`	`+#endif`
`58`	`67`	`}`
`59`	`68`
`60`	`69`	`/* FUNCTION: calloc */`