Fix reverse-singlestepping through ARM instructions that trigger data watchpoints.

rocallahan · rocallahan · commit baf698993ec5 · 2025-03-22T19:38:40.000-07:00
diff --git a/CMakeLists.txt b/CMakeLists.txt
@@ -1801,6 +1801,7 @@ set(TESTS_WITHOUT_PROGRAM
   vsyscall_singlestep
   watch_code
   watchpoint_cond
+  watchpoint_step
   watchpoint_unaligned2
   when
 )
diff --git a/src/ReplayTimeline.cc b/src/ReplayTimeline.cc
@@ -1300,10 +1300,13 @@ ReplayResult ReplayTimeline::reverse_singlestep(
               RUN_SINGLESTEP_FAST_FORWARD);
           constraints.stop_before_states.push_back(&end.ptr->proto.regs);
           result = current->replay_step(constraints);
+          ReplayResult result_with_breakpoints_and_watchpoints = result;
           update_observable_break_status(now, result);
+          bool stopped_before_watchpoint =
+            !result.break_status.data_watchpoints_hit().empty() &&
+            arch_watch_fires_before_instr(current->arch());
           if (result.break_status.hardware_or_software_breakpoint_hit() ||
-              (!result.break_status.data_watchpoints_hit().empty() &&
-               arch_watch_fires_before_instr(current->arch()))) {
+              stopped_before_watchpoint) {
             // If we hit a breakpoint while singlestepping, we didn't
             // make any progress.
             unapply_breakpoints_and_watchpoints();
@@ -1325,10 +1328,18 @@ ReplayResult ReplayTimeline::reverse_singlestep(
                          << " pretending we stopped earlier.";
               break;
             }
-            destination_candidate = step_start;
+            if (stopped_before_watchpoint) {
+              // On ARM, watchpoints fire before the instruction executes.
+              // This instruction triggered the watchpoint so we need to
+              // stop before the instruction is reverse-executed, i.e. after
+              // it actually executed.
+              destination_candidate = now;
+            } else {
+              destination_candidate = step_start;
+            }
             LOG(debug) << "Setting candidate after step: "
                        << destination_candidate;
-            destination_candidate_result = result;
+            destination_candidate_result = result_with_breakpoints_and_watchpoints;
             destination_candidate_tuid = result.break_status.task()->tuid();
             destination_candidate_saw_other_task_break = seen_other_task_break;
             seen_other_task_break = false;
diff --git a/src/test/watchpoint_step.py b/src/test/watchpoint_step.py
@@ -0,0 +1,26 @@
+from util import *
+
+send_gdb('break main')
+expect_gdb('Breakpoint 1')
+send_gdb('c')
+expect_gdb('Breakpoint 1')
+
+send_gdb('p &var')
+expect_gdb(r'\$1 = \(volatile int \*\) ')
+
+send_gdb('watch *$1')
+expect_gdb('Hardware[()/a-z ]+watchpoint 2')
+
+send_gdb('c')
+expect_gdb('Old value = 0')
+expect_gdb('New value = 42')
+
+send_gdb('reverse-stepi')
+expect_gdb('Old value = 42')
+expect_gdb('New value = 0')
+
+send_gdb('stepi')
+expect_gdb('Old value = 0')
+expect_gdb('New value = 42')
+
+ok()
diff --git a/src/test/watchpoint_step.run b/src/test/watchpoint_step.run
@@ -0,0 +1,3 @@
+source `dirname $0`/util.sh
+record watchpoint$bitness
+debug_gdb_only watchpoint_step

Original file line number	Diff line number	Diff line change
`@@ -1801,6 +1801,7 @@ set(TESTS_WITHOUT_PROGRAM`
`1801`	`1801`	`vsyscall_singlestep`
`1802`	`1802`	`watch_code`
`1803`	`1803`	`watchpoint_cond`
	`1804`	`+ watchpoint_step`
`1804`	`1805`	`watchpoint_unaligned2`
`1805`	`1806`	`when`
`1806`	`1807`	`)`
Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,3 @@`
	`1`	+source `dirname $0`/util.sh
	`2`	`+record watchpoint$bitness`
	`3`	`+debug_gdb_only watchpoint_step`