celinval
diff --git a/‎src/kani-compiler/rustc_codegen_kani/src/codegen/intrinsic.rs
Lines changed: 51 additions & 22 deletions b/‎src/kani-compiler/rustc_codegen_kani/src/codegen/intrinsic.rs
Lines changed: 51 additions & 22 deletions
diff --git a/‎src/test/kani/Assert/UninitValid/fixme_main.rs
Lines changed: 0 additions & 19 deletions b/‎src/test/kani/Assert/UninitValid/fixme_main.rs
Lines changed: 0 additions & 19 deletions
diff --git a/‎src/test/kani/Assert/ZeroValid/fixme_main.rs
Lines changed: 0 additions & 14 deletions b/‎src/test/kani/Assert/ZeroValid/fixme_main.rs
Lines changed: 0 additions & 14 deletions
diff --git a/‎src/test/kani/Assert/MultipleAsserts/main.rs renamed to ‎src/test/kani/Assert/multiple_asserts.rs b/‎src/test/kani/Assert/MultipleAsserts/main.rs renamed to ‎src/test/kani/Assert/multiple_asserts.rs
diff --git a/‎src/test/kani/Intrinsics/Assert/inhabited_panic.rs
Lines changed: 16 additions & 0 deletions b/‎src/test/kani/Intrinsics/Assert/inhabited_panic.rs
Lines changed: 16 additions & 0 deletions
diff --git a/‎src/test/kani/Intrinsics/Assert/uninit_valid_panic.rs
Lines changed: 14 additions & 0 deletions b/‎src/test/kani/Intrinsics/Assert/uninit_valid_panic.rs
Lines changed: 14 additions & 0 deletions
diff --git a/‎src/test/kani/Assert/ZeroValid/main.rs renamed to ‎src/test/kani/Intrinsics/Assert/zero_valid.rs b/‎src/test/kani/Assert/ZeroValid/main.rs renamed to ‎src/test/kani/Intrinsics/Assert/zero_valid.rs
diff --git a/‎src/test/kani/Intrinsics/Assert/zero_valid_panic.rs
Lines changed: 14 additions & 0 deletions b/‎src/test/kani/Intrinsics/Assert/zero_valid_panic.rs
Lines changed: 14 additions & 0 deletions
@@ -301,28 +301,9 @@ impl<'tcx> GotocCtx<'tcx> {
         match intrinsic {
             "add_with_overflow" => codegen_op_with_overflow!(add_overflow),
             "arith_offset" => codegen_wrapping_op!(plus),
-            "assert_inhabited" => {
-                let ty = instance.substs.type_at(0);
-                let layout = self.layout_of(ty);
-                if layout.abi.is_uninhabited() {
-                    let loc = self.codegen_span_option(span);
-                    Stmt::assert_false(&format!("type is uninhabited: {:?}", ty), loc)
-                } else {
-                    Stmt::skip(loc)
-                }
-            }
-            // https://doc.rust-lang.org/std/intrinsics/fn.assert_uninit_valid.html
-            // assert_uninit_valid is guard for unsafe functions that cannot ever be executed if T
-            // has invalid bit patterns: This will statically either panic, or do nothing. For now
-            // we map this into a no-op.
-            // TODO: https://github.com/model-checking/rmc/issues/6
-            "assert_uninit_valid" => Stmt::skip(loc),
-            // https://doc.rust-lang.org/std/intrinsics/fn.assert_zero_valid.html
-            // assert_zero_valid is a guard for unsafe functions that cannot ever be executed if T
-            // does not permit zero-initialization: This will statically either panic, or do
-            // nothing. For now we map this into a no-op.
-            // TODO: https://github.com/model-checking/rmc/issues/7
-            "assert_zero_valid" => Stmt::skip(loc),
+            "assert_inhabited" => self.codegen_assert_intrinsic(instance, intrinsic, span),
+            "assert_uninit_valid" => self.codegen_assert_intrinsic(instance, intrinsic, span),
+            "assert_zero_valid" => self.codegen_assert_intrinsic(instance, intrinsic, span),
             // https://doc.rust-lang.org/core/intrinsics/fn.assume.html
             // Informs the optimizer that a condition is always true.
             // If the condition is false, the behavior is undefined.
@@ -567,6 +548,54 @@ impl<'tcx> GotocCtx<'tcx> {
         )
     }
 
+    /// Generates either a panic or no-op for `assert_*` intrinsics.
+    /// These are intrinsics that statically compile to panics if the type
+    /// layout is invalid so we get a message that mentions the offending type.
+    ///
+    /// https://doc.rust-lang.org/std/intrinsics/fn.assert_inhabited.html
+    /// https://doc.rust-lang.org/std/intrinsics/fn.assert_uninit_valid.html
+    /// https://doc.rust-lang.org/std/intrinsics/fn.assert_zero_valid.html
+    fn codegen_assert_intrinsic(
+        &mut self,
+        instance: Instance<'tcx>,
+        intrinsic: &str,
+        span: Option<Span>,
+    ) -> Stmt {
+        let ty = instance.substs.type_at(0);
+        let layout = self.layout_of(ty);
+        // Note: We follow the pattern seen in `codegen_panic_intrinsic` from `rustc_codegen_ssa`
+        // https://github.com/rust-lang/rust/blob/master/compiler/rustc_codegen_ssa/src/mir/block.rs
+
+        // For all intrinsics we first check `is_uninhabited` to give a more
+        // precise error message
+        if layout.abi.is_uninhabited() {
+            return self.codegen_fatal_error(
+                &format!("attempted to instantiate uninhabited type `{}`", ty),
+                span,
+            );
+        }
+
+        // Then we check if the type allows "raw" initialization for the cases
+        // where memory is zero-initialized or entirely uninitialized
+        if intrinsic == "assert_zero_valid" && !layout.might_permit_raw_init(self, true) {
+            return self.codegen_fatal_error(
+                &format!("attempted to zero-initialize type `{}`, which is invalid", ty),
+                span,
+            );
+        }
+
+        if intrinsic == "assert_uninit_valid" && !layout.might_permit_raw_init(self, false) {
+            return self.codegen_fatal_error(
+                &format!("attempted to leave type `{}` uninitialized, which is invalid", ty),
+                span,
+            );
+        }
+
+        // Otherwise we generate a no-op statement
+        let loc = self.codegen_span_option(span);
+        return Stmt::skip(loc);
+    }
+
     /// An atomic load simply returns the value referenced
     /// in its argument (as in other atomic operations)
     /// -------------------------
 
@@ -0,0 +1,16 @@
+// Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.
+// SPDX-License-Identifier: Apache-2.0 OR MIT
+// kani-verify-fail
+
+#![feature(never_type)]
+use std::mem::MaybeUninit;
+
+// The code below attempts to instantiate uninhabited type `!`.
+// This should cause the intrinsic `assert_inhabited` to generate a panic during
+// compilation, but at present it triggers the `Nevers` hook instead.
+// See https://github.com/model-checking/rmc/issues/751
+fn main() {
+    let _uninit_never: () = unsafe {
+        MaybeUninit::<!>::uninit().assume_init();
+    };
+}
@@ -0,0 +1,14 @@
+// Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.
+// SPDX-License-Identifier: Apache-2.0 OR MIT
+// kani-verify-fail
+
+#![feature(core_intrinsics)]
+use std::intrinsics;
+
+// The code below attempts to leave type `bool` uninitialized, causing the
+// intrinsic `assert_uninit_valid` to generate a panic during compilation.
+fn main() {
+    let _var: () = unsafe {
+        intrinsics::assert_uninit_valid::<bool>();
+    };
+}
@@ -0,0 +1,14 @@
+// Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.
+// SPDX-License-Identifier: Apache-2.0 OR MIT
+// kani-verify-fail
+
+#![feature(core_intrinsics)]
+use std::intrinsics;
+
+// The code below attempts to zero-initialize type `&i32`, causing the intrinsic
+// `assert_zero_valid` to generate a panic during compilation.
+fn main() {
+    let _var: () = unsafe {
+        intrinsics::assert_zero_valid::<&i32>();
+    };
+}