From ddbfcee98b4747a6c73b463fee85919498b01e8b Mon Sep 17 00:00:00 2001
From: Martin Cermak <mcermak@redhat.com>
Date: Tue, 1 Feb 2022 12:28:28 +0100
Subject: [PATCH] Fix  [ppc64le] Assertion `index >= 0' failed  (#2047256)

Resolves: #2047256
---
 rhbz2047256.patch                     | 179 ++++++++++++++++++++++++++
 systemtap.spec                        |   7 +-
 tests/Regression/bz2047256/fork.stp   |  30 +++++
 tests/Regression/bz2047256/main.fmf   |  14 ++
 tests/Regression/bz2047256/runtest.sh |  39 ++++++
 5 files changed, 268 insertions(+), 1 deletion(-)
 create mode 100644 rhbz2047256.patch
 create mode 100755 tests/Regression/bz2047256/fork.stp
 create mode 100644 tests/Regression/bz2047256/main.fmf
 create mode 100755 tests/Regression/bz2047256/runtest.sh

diff --git a/rhbz2047256.patch b/rhbz2047256.patch
new file mode 100644
index 0000000..08260cd
--- /dev/null
+++ b/rhbz2047256.patch
@@ -0,0 +1,179 @@
+diff --git a/analysis.cxx b/analysis.cxx
+index a7a579e..d0d6a4f 100644
+--- a/analysis.cxx
++++ b/analysis.cxx
+@@ -7,6 +7,7 @@
+ // later version.
+ 
+ #include "config.h"
++#include "session.h"
+ 
+ #ifdef HAVE_DYNINST
+ 
+@@ -46,6 +47,8 @@ analysis::analysis(string name)
+ 	char *name_str = strdup(name.c_str());
+ 	sts = NULL;
+ 	co = NULL;
++	SymtabAPI::Symtab *symTab;
++	bool isParsable;
+ 
+ 	// Use cached information if available
+ 	if (cached_info.find(name) != cached_info.end()) {
+@@ -56,6 +59,9 @@ analysis::analysis(string name)
+ 
+ 	// Not not seen before
+ 	// Create a new binary code object from the filename argument
++	isParsable = SymtabAPI::Symtab::openFile(symTab, name_str);
++	if(!isParsable) goto cleanup;
++
+ 	sts = new SymtabCodeSource(name_str);
+ 	if(!sts) goto cleanup;
+ 
+@@ -143,39 +149,40 @@ static const MachRegister dyninst_register_64[] = {
+ static const MachRegister dyninst_register_32[1]; // No 32-bit support
+ 
+ #elif defined(__powerpc__)
++/* For ppc64 still use the ppc32 register names */
+ static const MachRegister dyninst_register_64[] = {
+-    ppc64::r0,
+-    ppc64::r1,
+-    ppc64::r2,
+-    ppc64::r3,
+-    ppc64::r4,
+-    ppc64::r5,
+-    ppc64::r6,
+-    ppc64::r7,
+-    ppc64::r8,
+-    ppc64::r9,
+-    ppc64::r10,
+-    ppc64::r11,
+-    ppc64::r12,
+-    ppc64::r13,
+-    ppc64::r14,
+-    ppc64::r15,
+-    ppc64::r16,
+-    ppc64::r17,
+-    ppc64::r18,
+-    ppc64::r19,
+-    ppc64::r20,
+-    ppc64::r21,
+-    ppc64::r22,
+-    ppc64::r23,
+-    ppc64::r24,
+-    ppc64::r25,
+-    ppc64::r26,
+-    ppc64::r27,
+-    ppc64::r28,
+-    ppc64::r29,
+-    ppc64::r30,
+-    ppc64::r31
++    ppc32::r0,
++    ppc32::r1,
++    ppc32::r2,
++    ppc32::r3,
++    ppc32::r4,
++    ppc32::r5,
++    ppc32::r6,
++    ppc32::r7,
++    ppc32::r8,
++    ppc32::r9,
++    ppc32::r10,
++    ppc32::r11,
++    ppc32::r12,
++    ppc32::r13,
++    ppc32::r14,
++    ppc32::r15,
++    ppc32::r16,
++    ppc32::r17,
++    ppc32::r18,
++    ppc32::r19,
++    ppc32::r20,
++    ppc32::r21,
++    ppc32::r22,
++    ppc32::r23,
++    ppc32::r24,
++    ppc32::r25,
++    ppc32::r26,
++    ppc32::r27,
++    ppc32::r28,
++    ppc32::r29,
++    ppc32::r30,
++    ppc32::r31
+ };
+ 
+ static const MachRegister dyninst_register_32[] = {
+@@ -218,14 +225,26 @@ static const MachRegister dyninst_register_32[] = {
+ typedef map<string, LivenessAnalyzer*> precomputed_liveness;
+ static precomputed_liveness cached_liveness;
+ 
+-int liveness(string executable,
++int liveness(systemtap_session& s,
++	     target_symbol *e,
++	     string executable,
+ 	     Dwarf_Addr addr,
+ 	     location_context ctx)
+ {
++  try{
++	// Doing this inside a try/catch because dyninst may require
++	// too much memory to parse the binary.
+ 	// should cache the executable names like the other things
+ 	analysis func_to_analyze(executable);
+ 	MachRegister r;
+ 
++	// Punt if unsuccessful in parsing binary
++	if (!func_to_analyze.co){
++		s.print_warning(_F("liveness analysis unable to parse binary %s",
++				   executable.c_str()), e->tok);
++		return 0;
++	}
++
+ 	// Determine whether 32-bit or 64-bit code as the register names are different in dyninst
+ 	int reg_width = func_to_analyze.co->cs()->getAddressWidth();
+ 
+@@ -282,6 +301,11 @@ int liveness(string executable,
+ 	bool used;
+ 	la->query(iloc, LivenessAnalyzer::Before, r, used);
+ 	return (used ? 1 : -1);
++  } catch (std::bad_alloc & ex){
++    s.print_warning(_F("unable to allocate memory for liveness analysis of %s",
++				   executable.c_str()), e->tok);
++    return 0;
++  }
+ }
+ 
+ #endif // HAVE_DYNINST
+diff --git a/analysis.h b/analysis.h
+index 9b6d115..6bea675 100644
+--- a/analysis.h
++++ b/analysis.h
+@@ -17,13 +17,15 @@
+ 
+ #ifdef HAVE_DYNINST
+ 
+-extern int liveness(std::string executable,
++extern int liveness(systemtap_session& s,
++		    target_symbol *e,
++		    std::string executable,
+ 		    Dwarf_Addr location,
+ 		    location_context ctx);
+ 
+ #else
+ 
+-#define liveness(executable, location, var) (0)
++#define liveness(session, target, executable, location, var) (0)
+ 
+ #endif // HAVE_DYNINST
+ #endif // ANALYSIS_H
+diff --git a/tapsets.cxx b/tapsets.cxx
+index 60794bb..8fc5146 100644
+--- a/tapsets.cxx
++++ b/tapsets.cxx
+@@ -4732,7 +4732,7 @@ dwarf_var_expanding_visitor::visit_target_symbol (target_symbol *e)
+ 
+       // Now that have location information check if change to variable has any effect
+       if (lvalue) {
+-	      if (liveness(q.dw.mod_info->elf_path, addr, ctx) < 0) {
++	      if (liveness(q.sess, e, q.dw.mod_info->elf_path, addr, ctx) < 0) {
+ 		      q.sess.print_warning(_F("write at %p will have no effect",
+ 					      (void *)addr), e->tok);
+ 	      }
diff --git a/systemtap.spec b/systemtap.spec
index 324cbbe..c91c76f 100644
--- a/systemtap.spec
+++ b/systemtap.spec
@@ -118,7 +118,7 @@ m     stapdev  stapdev
 
 Name: systemtap
 Version: 4.6
-Release: 9%{?release_override}%{?dist}
+Release: 10%{?release_override}%{?dist}
 # for version, see also configure.ac
 
 
@@ -159,6 +159,7 @@ Patch2: rhbz1972798.patch
 Patch3: sdt-asm-glibc.patch
 Patch4: rhbz2041526.patch
 Patch5: rhbz2027683.patch
+Patch6: rhbz2047256.patch
 
 # Build*
 BuildRequires: make
@@ -585,6 +586,7 @@ systemtap-runtime-virthost machine to execute systemtap scripts.
 %patch3 -p1
 %patch4 -p1
 %patch5 -p1
+%patch6 -p1
 
 %build
 
@@ -1281,6 +1283,9 @@ exit 0
 
 # PRERELEASE
 %changelog
+* Tue Feb 1 2022 Martin Cermak <mcermak@redhat.com> - 4.6-10
+- rhbz2047256: [ppc64le] Assertion `index >= 0' failed
+
 * Fri Jan 21 2022 Martin Cermak <mcermak@redhat.com> - 4.6-9
 - rhbz2027683: python tapset regression
 - rhbz2027683: systemtap.examples/io/iostat-scsi.stp PR28633
diff --git a/tests/Regression/bz2047256/fork.stp b/tests/Regression/bz2047256/fork.stp
new file mode 100755
index 0000000..9d62151
--- /dev/null
+++ b/tests/Regression/bz2047256/fork.stp
@@ -0,0 +1,30 @@
+#!/usr/bin/stap -g
+
+global sshd_fork_count
+global fork_to_fail=1
+
+probe begin {
+    printf("Started\n\n")
+}
+
+probe kernel.function("*kernel_clone").call {
+    if (execname() == "sshd") {
+        sshd_fork_count++
+        printf(">>>%s[%5d] %s\n", execname(), pid(), $$parms)
+        printf("  PPID=%d\n",ppid())
+        printf("  sshd_fork_count=%d\n",sshd_fork_count)
+    }
+}
+
+probe kernel.function("*kernel_clone").return {
+    if (execname() == "sshd") {
+        printf("<<<%s[%5d] %s\n", execname(), pid(), $$return)
+        printf("  PPID=%d\n",ppid())
+        printf("  RETURN:%d\n\n",$return)
+        if (sshd_fork_count == fork_to_fail) {
+            printf("!!! fork() will return -1\n")
+            $return = -1
+        }
+    }
+}
+
diff --git a/tests/Regression/bz2047256/main.fmf b/tests/Regression/bz2047256/main.fmf
new file mode 100644
index 0000000..b3714d9
--- /dev/null
+++ b/tests/Regression/bz2047256/main.fmf
@@ -0,0 +1,14 @@
+summary: Test for BZ#2047256
+description: Test for BZ#2047256
+contact: Martin Cermak <mcermak@redhat.com>
+component:
+  - systemtap
+test: ./runtest.sh
+framework: beakerlib
+recommend:
+  - systemtap
+duration: 10m
+enabled: true
+extra-nitrate: TC#0387246
+extra-summary: /tools/systemtap/Regression/bz2047256
+extra-task: /tools/systemtap/Regression/bz2047256
diff --git a/tests/Regression/bz2047256/runtest.sh b/tests/Regression/bz2047256/runtest.sh
new file mode 100755
index 0000000..a70d36d
--- /dev/null
+++ b/tests/Regression/bz2047256/runtest.sh
@@ -0,0 +1,39 @@
+#!/bin/bash
+# vim: dict+=/usr/share/beakerlib/dictionary.vim cpt=.,w,b,u,t,i,k
+# ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+#
+#   runtest.sh of /tools/systemtap/Regression/bz2047256
+#   Author: Martin Cermak <mcermak@redhat.com>
+#
+# ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+#
+#   Copyright (c) 2014 Red Hat, Inc.
+#
+#   This copyrighted material is made available to anyone wishing
+#   to use, modify, copy, or redistribute it subject to the terms
+#   and conditions of the GNU General Public License version 2.
+#
+#   This program is distributed in the hope that it will be
+#   useful, but WITHOUT ANY WARRANTY; without even the implied
+#   warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR
+#   PURPOSE. See the GNU General Public License for more details.
+#
+#   You should have received a copy of the GNU General Public
+#   License along with this program; if not, write to the Free
+#   Software Foundation, Inc., 51 Franklin Street, Fifth Floor,
+#   Boston, MA 02110-1301, USA.
+#
+# ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+
+# Include Beaker environment
+. /usr/share/beakerlib/beakerlib.sh || exit 1
+
+rlJournalStart
+    rlPhaseStartTest
+        # Exit code 137 is expected with the fixed package
+        # on systems with low memory.  On systems with enough
+        # memory, this should just pass.
+        rlRun "stap -vp2 -g fork.stp" 0,137
+    rlPhaseEnd
+rlJournalPrintText
+rlJournalEnd