split1 transforms JUMP_INSN with the asm into a plain INSN, after which the cfg becomes corrupted in various ways.

By the way, it can also be reproduced by replacing the "jmp" instruction within the inline asm by a ".long":

# 1 "test-asm-goto-data.c"
# 1 "<built-in>"
# 1 "<command-line>"
# 31 "<command-line>"
# 1 "/usr/include/stdc-predef.h" 1 3 4
# 32 "<command-line>" 2
# 1 "test-asm-goto-data.c"
__thread int var;

static int fct(void)
{
 asm goto ( ".long %l[testlabel]\n\t"
   : : [var] "m" (var) : : testlabel);
 return 0;
testlabel:
 return 1;
}

int main()
{
 return fct();
}

This is a target issue ...

I think is the insn and split which causes the problem:
(define_insn_and_split "*add_tp_<mode>"
  [(set (match_operand:PTR 0 "register_operand" "=r")
        (plus:PTR
          (unspec:PTR [(const_int 0)] UNSPEC_TP)
          (match_operand:PTR 1 "register_operand" "0")))
   (clobber (reg:CC FLAGS_REG))]
  ""
  "#"
  ""
  [(parallel
     [(set (match_dup 0)
           (plus:PTR (match_dup 1) (match_dup 2)))
      (clobber (reg:CC FLAGS_REG))])]
{
  addr_space_t as = DEFAULT_TLS_SEG_REG;

  operands[2] = gen_const_mem (<MODE>mode, const0_rtx);
  set_mem_addr_space (operands[2], as);
})

Which was introduced/changed in r251075.

It actually ICEs if you have checking enabled.

(In reply to Segher Boessenkool from comment #4)
> It actually ICEs if you have checking enabled.

Didn't for me with:
GNU C17 (GCC) version 9.0.1 20190401 (experimental) [master revision 449a19898aa:0239598e3c8:8fe074cf790f632b22e59c24f102e528407bb04e] (x86_64-pc-linux-gnu)
        compiled by GNU C version 9.0.1 20190401 (experimental) [master revision 449a19898aa:0239598e3c8:8fe074cf790f632b22e59c24f102e528407bb04e], GMP version 6.1.2, MPFR version 4.0.1, MPC version 1.1.0, isl version none

It emits an insn instead if a jump_insn in the asm, during split1, in

(define_split
  [(match_operand 0 "tls_address_pattern")]
  "TARGET_TLS_DIRECT_SEG_REFS"
  [(match_dup 0)]
  "operands[0] = ix86_rewrite_tls_address (operands[0]);")

The same splitter is what causes the bb of the asm to be marked as
always falling through, which is why that non-fallthrough label is
eventually deleted.

(As Alexander said in comment 1...  I need to learn how to read some day).

Looks like missing asm goto support in classify_insn to me.

Created attachment 46222 [details]
gcc9-pr90193.patch

Untested fix.

The proposed fix "gcc9-pr90193.patch" applied on top of gcc-8.3.0 fixes the issue for both x86-64 and for x86-32 (-m32) from a 64-bit x86 gcc.

Author: jakub
Date: Wed Apr 24 15:49:36 2019
New Revision: 270550

URL: https://gcc.gnu.org/viewcvs?rev=270550&root=gcc&view=rev
Log:
	PR target/90193
	* rtl.c (classify_insn): Return JUMP_INSN for asm goto.
	* emit-rtl.c (try_split): Copy over REG_LABEL_TARGET.

	* gcc.target/i386/pr90193.c: New test.

Added:
    trunk/gcc/testsuite/gcc.target/i386/pr90193.c
Modified:
    trunk/gcc/ChangeLog
    trunk/gcc/emit-rtl.c
    trunk/gcc/rtl.c
    trunk/gcc/testsuite/ChangeLog

Fixed on the trunk so far.

Author: jakub
Date: Tue Apr 30 21:11:06 2019
New Revision: 270757

URL: https://gcc.gnu.org/viewcvs?rev=270757&root=gcc&view=rev
Log:
	Backported from mainline
	2019-04-24  Jakub Jelinek  <jakub@redhat.com>

	PR target/90193
	* rtl.c (classify_insn): Return JUMP_INSN for asm goto.
	* emit-rtl.c (try_split): Copy over REG_LABEL_TARGET.

	* gcc.target/i386/pr90193.c: New test.

Added:
    branches/gcc-8-branch/gcc/testsuite/gcc.target/i386/pr90193.c
Modified:
    branches/gcc-8-branch/gcc/ChangeLog
    branches/gcc-8-branch/gcc/emit-rtl.c
    branches/gcc-8-branch/gcc/rtl.c
    branches/gcc-8-branch/gcc/testsuite/ChangeLog

Fixed for 8.4+ too.