Ensure the flow through switch statements is clear Ensure case clauses: * Terminate with an unconditional break, return or goto statement. * Use conditional break, return or goto statements as long as the end of the case clause is unreachable; such case clauses must terminate with assert(0) /* Unreachable */ or an unconditional __dead2 function call * Only fallthough when doing otherwise would result in less readable/maintainable code; such case clauses must terminate with a /* Fallthrough */ comment to make it clear this is the case and indicate that a fallthrough is intended. This reduces the chance of bugs appearing due to unintended flow through a switch statement Change-Id: I70fc2d1f4fd679042397dec12fd1982976646168 Signed-off-by: Daniel Boulby <daniel.boulby@arm.com>

commit: 8942a1b5d99e77af3c0cd37034953ffbd2726e44 [log] [tgz]
author: Daniel Boulby <daniel.boulby@arm.com> Fri Jun 22 14:16:03 2018 +0100
committer: Daniel Boulby <daniel.boulby@arm.com> Fri Sep 21 13:14:13 2018 +0100
tree: ab016b027c303ccbe8001764f824f8980b233f54
parent: bb5b9fa914485ffba74480e911c98829b8bd6c99 [diff] [blame]
diff --git a/lib/libc/snprintf.c b/lib/libc/snprintf.c
index 9bc07b2..66a2fa2 100644
--- a/lib/libc/snprintf.c
+++ b/lib/libc/snprintf.c

@@ -4,6 +4,7 @@
  * SPDX-License-Identifier: BSD-3-Clause
  */
 
+#include <assert.h>
 #include <debug.h>
 #include <platform.h>
 #include <stdarg.h>
@@ -117,6 +118,7 @@
 				ERROR("snprintf: specifier with ASCII code '%d' not supported.",
 				      *fmt);
 				plat_panic_handler();
+				assert(0); /* Unreachable */
 			}
 			fmt++;
 			continue;
commit	8942a1b5d99e77af3c0cd37034953ffbd2726e44	[log] [tgz]
author	Daniel Boulby <daniel.boulby@arm.com>	Fri Jun 22 14:16:03 2018 +0100
committer	Daniel Boulby <daniel.boulby@arm.com>	Fri Sep 21 13:14:13 2018 +0100
tree	ab016b027c303ccbe8001764f824f8980b233f54
parent	bb5b9fa914485ffba74480e911c98829b8bd6c99 [diff] [blame]