Changeset 106362 in vbox

Timestamp:

Oct 16, 2024 1:08:09 PM (7 months ago)

Author:

vboxsync

svn:sync-xref-src-repo-rev:

165175

Message:

VMM/DBGF: Prepare DBGF to support ARMv8/A64 style breakpoints for the VMM debugger. This converts the x86 centric int3 naming to software breakpoint, bugref:10393

Location:

trunk

Files:

• include/VBox/vmm/dbgf.h (modified) (5 diffs)
• include/VBox/vmm/vm.h (modified) (1 diff)
• src/VBox/Debugger/DBGCEmulateCodeView.cpp (modified) (2 diffs)
• src/VBox/VMM/VMMAll/DBGFAll.cpp (modified) (1 diff)
• src/VBox/VMM/VMMAll/DBGFAllBp.cpp (modified) (8 diffs)
• src/VBox/VMM/VMMAll/IEMAllCImpl.cpp (modified) (1 diff)
• src/VBox/VMM/VMMAll/VMXAllTemplate.cpp.h (modified) (1 diff)
• src/VBox/VMM/VMMR0/HMSVMR0.cpp (modified) (3 diffs)
• src/VBox/VMM/VMMR0/HMVMXR0.cpp (modified) (1 diff)
• src/VBox/VMM/VMMR3/DBGFR3Bp.cpp (modified) (16 diffs)
• src/VBox/VMM/VMMR3/NEMR3Native-darwin.cpp (modified) (1 diff)
• src/VBox/VMM/include/DBGFInternal.h (modified) (1 diff)

trunk/include/VBox/vmm/dbgf.h

@@ -829 +829 @@
     /** Debug register. */
     DBGFBPTYPE_REG,
-    /** INT 3 instruction. */
-    DBGFBPTYPE_INT3,
+    /** Software breakpoint (INT 3 on x86, bkpt on AArch64). */
+    DBGFBPTYPE_SOFTWARE,
     /** Port I/O breakpoint. */
     DBGFBPTYPE_PORT_IO,
@@ -920 +920 @@
         } Reg;
 
-        /** INT3 breakpoint data. */
-        struct DBGFBPINT3
+        /** Software breakpoint data. */
+        struct DBGFBPSW
         {
             /** The flat GC address of the breakpoint. */
@@ -927 +927 @@
             /** The physical address of the breakpoint. */
             RTGCPHYS        PhysAddr;
-            /** The byte value we replaced by the INT 3 instruction. */
-            uint8_t         bOrg;
-        } Int3;
+
+            /** Architecture specific breakpoint data. */
+            union
+            {
+                /** BKPT breakpoint data. */
+                struct
+                {
+                    /** The original instruction being replaced by the breakpoint. */
+                    uint32_t        u32Org;
+                } armv8;
+                /** Int 3 data. */
+                struct
+                {
+                    /** The byte value we replaced by the INT 3 instruction. */
+                    uint8_t         bOrg;
+                } x86;
+            } Arch;
+        } Sw;
 
         /** I/O port breakpoint data.   */
@@ -959 +974 @@
 AssertCompileSize(DBGFBPPUB, 64 - 8);
 AssertCompileMembersAtSameOffset(DBGFBPPUB, u.GCPtr, DBGFBPPUB, u.Reg.GCPtr);
-AssertCompileMembersAtSameOffset(DBGFBPPUB, u.GCPtr, DBGFBPPUB, u.Int3.GCPtr);
+AssertCompileMembersAtSameOffset(DBGFBPPUB, u.GCPtr, DBGFBPPUB, u.Sw.GCPtr);
 
 /** Pointer to the visible breakpoint state. */
@@ -2047 +2062 @@
     DBGFREG_ARMV8_FIRST,
     /** General purpose registers. */
-    DBGFREG_ARMV8_GREG_X0,
+    DBGFREG_ARMV8_GREG_X0 = DBGFREG_ARMV8_FIRST,
     DBGFREG_ARMV8_GREG_W0 = DBGFREG_ARMV8_GREG_X0,
     DBGFREG_ARMV8_GREG_X1,

trunk/include/VBox/vmm/vm.h

@@ -1480 +1480 @@
             uint8_t                     cEnabledHwIoBreakpoints;
             uint8_t                     au8Alignment1[2]; /**< Alignment padding. */
-            /** The number of enabled INT3 breakpoints. */
-            uint32_t volatile           cEnabledInt3Breakpoints;
+            /** The number of enabled software breakpoints. */
+            uint32_t volatile           cEnabledSwBreakpoints;
         } const     ro;
 #endif

trunk/src/VBox/Debugger/DBGCEmulateCodeView.cpp

@@ -1019 +1019 @@
     switch (DBGF_BP_PUB_GET_TYPE(pBp))
     {
-        case DBGFBPTYPE_INT3:
-            DBGCCmdHlpPrintf(&pDbgc->CmdHlp, " p %RGv", pBp->u.Int3.GCPtr);
+        case DBGFBPTYPE_SOFTWARE:
+            DBGCCmdHlpPrintf(&pDbgc->CmdHlp, " p %RGv", pBp->u.Sw.GCPtr);
             fHasAddress = true;
             break;
@@ -1485 +1485 @@
             if (cTries-- > 0)
                 return DBGCCmdHlpFailRc(pCmdHlp, pCmd, rc, "Too many disassembly failures. Giving up");
+#if defined(VBOX_VMM_TARGET_ARMV8)
+            cbInstr = sizeof(uint32_t);
+#else
             cbInstr = 1;
+#endif
         }
 

trunk/src/VBox/VMM/VMMAll/DBGFAll.cpp

@@ -168 +168 @@
     /** @todo There was a todo here and returning false when I (bird) removed
      *        VBOX_WITH_LOTS_OF_DBGF_BPS, so this might not be correct. */
-    return pVM->dbgf.s.cEnabledInt3Breakpoints > 0;
+    return pVM->dbgf.s.cEnabledSwBreakpoints > 0;
 }
 

trunk/src/VBox/VMM/VMMAll/DBGFAllBp.cpp

@@ -168 +168 @@
 
     RT_NOREF(pCtx);
+#ifdef VBOX_VMM_TARGET_ARMV8
+    LogFlow(("dbgfBpHit: hit breakpoint %u at %RGv cHits=0x%RX64\n", hBp, pCtx->Pc.u64, cHits));
+#else
     LogFlow(("dbgfBpHit: hit breakpoint %u at %04x:%RGv cHits=0x%RX64\n", hBp, pCtx->cs.Sel, pCtx->rip, cHits));
+#endif
 
     int rc = VINF_EM_DBG_BREAKPOINT;
@@ -186 +190 @@
         if (rcStrict == VINF_SUCCESS)
         {
+# ifdef VBOX_VMM_TARGET_ARMV8
+            /** @todo Requires instruction interpreter. */
+            AssertFailed();
+# else
             uint8_t abInstr[DBGF_BP_INSN_MAX];
             RTGCPTR const GCPtrInstr = pVCpu->cpum.GstCtx.rip + pVCpu->cpum.GstCtx.cs.u64Base;
@@ -215 +223 @@
                 else
                     rc = VBOXSTRICTRC_VAL(rcStrict);
+#endif
             }
         }
@@ -365 +374 @@
 #endif
             if (   pBp
-                && DBGF_BP_PUB_GET_TYPE(&pBp->Pub) == DBGFBPTYPE_INT3)
+                && DBGF_BP_PUB_GET_TYPE(&pBp->Pub) == DBGFBPTYPE_SOFTWARE)
 #ifdef IN_RING3
                 return dbgfBpHit(pVM, pVCpu, pCtx, hBp, pBp);
@@ -472 +481 @@
 
 
+#ifndef VBOX_VMM_TARGET_ARMV8 /** @todo for hardware break-/watchpoints */
 /**
  * \#DB (Debug event) handler.
@@ -525 +535 @@
     return VINF_EM_RAW_GUEST_TRAP;
 }
+#endif
 
 
@@ -551 +562 @@
     {
         RTGCPTR GCPtrBp;
+#ifdef VBOX_VMM_TARGET_ARMV8
+        int rc = VINF_SUCCESS;
+        GCPtrBp = pCtx->Pc.u64;
+#else
         int rc = SELMValidateAndConvertCSAddr(pVCpu, pCtx->eflags.u, pCtx->ss.Sel, pCtx->cs.Sel, &pCtx->cs,
                                               pCtx->rip /* no -1 outside non-rawmode */, &GCPtrBp);
         AssertRCReturn(rc, rc);
+#endif
 
         const uint16_t idxL1      = DBGF_BP_INT3_L1_IDX_EXTRACT_FROM_ADDR(GCPtrBp);
@@ -574 +590 @@
 #endif
                 if (   pBp
-                    && DBGF_BP_PUB_GET_TYPE(&pBp->Pub) == DBGFBPTYPE_INT3)
+                    && DBGF_BP_PUB_GET_TYPE(&pBp->Pub) == DBGFBPTYPE_SOFTWARE)
                 {
-                    if (pBp->Pub.u.Int3.GCPtr == (RTGCUINTPTR)GCPtrBp)
+                    if (pBp->Pub.u.Sw.GCPtr == (RTGCUINTPTR)GCPtrBp)
 #ifdef IN_RING3
                         rc = dbgfBpHit(pVM, pVCpu, pCtx, hBp, pBp);

trunk/src/VBox/VMM/VMMAll/IEMAllCImpl.cpp

@@ -2777 +2777 @@
     {
         PVMCC pVM = pVCpu->CTX_SUFF(pVM);
-        if (pVM->dbgf.ro.cEnabledInt3Breakpoints == 0)
+        if (pVM->dbgf.ro.cEnabledSwBreakpoints == 0)
         { /* likely: No vbox debugger breakpoints */ }
         else

trunk/src/VBox/VMM/VMMAll/VMXAllTemplate.cpp.h

@@ -11375 +11375 @@
      * INT3 breakpoints - triggered by #BP exceptions.
      */
-    if (pVM->dbgf.ro.cEnabledInt3Breakpoints > 0)
+    if (pVM->dbgf.ro.cEnabledSwBreakpoints > 0)
         pDbgState->bmXcptExtra |= RT_BIT_32(X86_XCPT_BP);
 

trunk/src/VBox/VMM/VMMR0/HMSVMR0.cpp

@@ -2180 +2180 @@
 
         /* Trap #BP for INT3 debug breakpoints set by the VM debugger. */
-        if (pVCpu->CTX_SUFF(pVM)->dbgf.ro.cEnabledInt3Breakpoints)
+        if (pVCpu->CTX_SUFF(pVM)->dbgf.ro.cEnabledSwBreakpoints)
             hmR0SvmSetXcptIntercept(pVmcb, X86_XCPT_BP);
         else
@@ -4756 +4756 @@
                 && (!VBOXVMM_ANY_PROBES_ENABLED() || !hmR0SvmAnyExpensiveProbesEnabled())
                 && !DBGFIsStepping(pVCpu)
-                && !pVCpu->CTX_SUFF(pVM)->dbgf.ro.cEnabledInt3Breakpoints)
+                && !pVCpu->CTX_SUFF(pVM)->dbgf.ro.cEnabledSwBreakpoints)
                 rc = hmR0SvmRunGuestCodeNormal(pVCpu, &cLoops);
             else
@@ -5673 +5673 @@
      * INT3 breakpoints - triggered by #BP exceptions.
      */
-    if (pVM->dbgf.ro.cEnabledInt3Breakpoints > 0)
+    if (pVM->dbgf.ro.cEnabledSwBreakpoints > 0)
         pDbgState->bmXcptExtra |= RT_BIT_32(X86_XCPT_BP);
 

trunk/src/VBox/VMM/VMMR0/HMVMXR0.cpp

@@ -6996 +6996 @@
                 && (!VBOXVMM_ANY_PROBES_ENABLED() || !hmR0VmxAnyExpensiveProbesEnabled())
                 && !DBGFIsStepping(pVCpu)
-                && !pVCpu->CTX_SUFF(pVM)->dbgf.ro.cEnabledInt3Breakpoints)
+                && !pVCpu->CTX_SUFF(pVM)->dbgf.ro.cEnabledSwBreakpoints)
                 rcStrict = hmR0VmxRunGuestCodeNormal(pVCpu, &cLoops);
             else

trunk/src/VBox/VMM/VMMR3/DBGFR3Bp.cpp

@@ -177 +177 @@
 #include <iprt/assert.h>
 #include <iprt/mem.h>
+#if defined(VBOX_VMM_TARGET_ARMV8)
+# include <iprt/armv8.h>
+#endif
 
 #include "DBGFInline.h"
@@ -1235 +1238 @@
         AssertStmt(RT_VALID_PTR(pBp2), rc = VERR_DBGF_BP_IPE_7);
         if (RT_SUCCESS(rc))
-            rc = dbgfR3BpInt3L2BstCreate(pUVM, idxL1, u32Entry, hBp, GCPtr, hBp2, pBp2->Pub.u.Int3.GCPtr);
+            rc = dbgfR3BpInt3L2BstCreate(pUVM, idxL1, u32Entry, hBp, GCPtr, hBp2, pBp2->Pub.u.Sw.GCPtr);
     }
     else if (u8Type == DBGF_BP_INT3_L1_ENTRY_TYPE_L2_IDX)
@@ -1446 +1449 @@
 static int dbgfR3BpInt3Add(PUVM pUVM, DBGFBP hBp, PDBGFBPINT pBp)
 {
-    AssertReturn(DBGF_BP_PUB_GET_TYPE(&pBp->Pub) == DBGFBPTYPE_INT3, VERR_DBGF_BP_IPE_3);
+    AssertReturn(DBGF_BP_PUB_GET_TYPE(&pBp->Pub) == DBGFBPTYPE_SOFTWARE, VERR_DBGF_BP_IPE_3);
 
     int rc = VINF_SUCCESS;
-    uint16_t idxL1 = DBGF_BP_INT3_L1_IDX_EXTRACT_FROM_ADDR(pBp->Pub.u.Int3.GCPtr);
+    uint16_t idxL1 = DBGF_BP_INT3_L1_IDX_EXTRACT_FROM_ADDR(pBp->Pub.u.Sw.GCPtr);
     uint8_t  cTries = 16;
 
@@ -1467 +1470 @@
         else
         {
-            rc = dbgfR3BpInt3L2BstNodeAdd(pUVM, idxL1, hBp, pBp->Pub.u.Int3.GCPtr);
+            rc = dbgfR3BpInt3L2BstNodeAdd(pUVM, idxL1, hBp, pBp->Pub.u.Sw.GCPtr);
             if (rc != VINF_TRY_AGAIN)
                 break;
@@ -1551 +1554 @@
         }
 
-        case DBGFBPTYPE_INT3:
+        case DBGFBPTYPE_SOFTWARE:
         {
             const uint16_t idxL1      = DBGF_BP_INT3_L1_IDX_EXTRACT_FROM_ADDR(GCPtr);
@@ -1651 +1654 @@
     if (pVCpu->idCpu == 0)
     {
-        uint16_t idxL1 = DBGF_BP_INT3_L1_IDX_EXTRACT_FROM_ADDR(pBp->Pub.u.Int3.GCPtr);
+        uint16_t idxL1 = DBGF_BP_INT3_L1_IDX_EXTRACT_FROM_ADDR(pBp->Pub.u.Sw.GCPtr);
         uint32_t u32Entry = ASMAtomicReadU32(&pUVM->dbgf.s.paBpLocL1R3[idxL1]);
         AssertReturn(u32Entry != DBGF_BP_INT3_L1_ENTRY_TYPE_NULL, VERR_DBGF_BP_IPE_6);
@@ -1675 +1678 @@
 
                 rc = dbgfR3BpInt3L2BstRemove(pUVM, idxL1, DBGF_BP_INT3_L1_ENTRY_GET_L2_IDX(u32Entry),
-                                             hBp, pBp->Pub.u.Int3.GCPtr);
+                                             hBp, pBp->Pub.u.Sw.GCPtr);
             }
         }
         else if (u8Type == DBGF_BP_INT3_L1_ENTRY_TYPE_L2_IDX)
             rc = dbgfR3BpInt3L2BstRemove(pUVM, idxL1, DBGF_BP_INT3_L1_ENTRY_GET_L2_IDX(u32Entry),
-                                         hBp, pBp->Pub.u.Int3.GCPtr);
+                                         hBp, pBp->Pub.u.Sw.GCPtr);
     }
 
@@ -1697 +1700 @@
 static int dbgfR3BpInt3Remove(PUVM pUVM, DBGFBP hBp, PDBGFBPINT pBp)
 {
-    AssertReturn(DBGF_BP_PUB_GET_TYPE(&pBp->Pub) == DBGFBPTYPE_INT3, VERR_DBGF_BP_IPE_3);
+    AssertReturn(DBGF_BP_PUB_GET_TYPE(&pBp->Pub) == DBGFBPTYPE_SOFTWARE, VERR_DBGF_BP_IPE_3);
 
     /*
@@ -1835 +1838 @@
             break;
         }
-        case DBGFBPTYPE_INT3:
+        case DBGFBPTYPE_SOFTWARE:
         {
             dbgfR3BpSetEnabled(pBp, true /*fEnabled*/);
 
-            /** @todo When we enable the first int3 breakpoint we should do this in an EMT rendezvous
+            /** @todo When we enable the first software breakpoint we should do this in an EMT rendezvous
              * as the VMX code intercepts #BP only when at least one int3 breakpoint is enabled.
              * A racing vCPU might trigger it and forward it to the guest causing panics/crashes/havoc. */
+#ifdef VBOX_VMM_TARGET_ARMV8
+            /*
+             * Save original instruction and replace with brk
+             */
+            rc = PGMPhysSimpleReadGCPhys(pVM, &pBp->Pub.u.Sw.Arch.armv8.u32Org, pBp->Pub.u.Sw.PhysAddr, sizeof(pBp->Pub.u.Sw.Arch.armv8.u32Org));
+            if (RT_SUCCESS(rc))
+            {
+                static const uint32_t s_u32Brk = Armv8A64MkInstrBrk(0xc0de);
+                rc = PGMPhysSimpleWriteGCPhys(pVM, pBp->Pub.u.Sw.PhysAddr, &s_u32Brk, sizeof(s_u32Brk));
+            }
+#else
             /*
              * Save current byte and write the int3 instruction byte.
              */
-            rc = PGMPhysSimpleReadGCPhys(pVM, &pBp->Pub.u.Int3.bOrg, pBp->Pub.u.Int3.PhysAddr, sizeof(pBp->Pub.u.Int3.bOrg));
+            rc = PGMPhysSimpleReadGCPhys(pVM, &pBp->Pub.u.Sw.Arch.x86.bOrg, pBp->Pub.u.Sw.PhysAddr, sizeof(pBp->Pub.u.Sw.Arch.x86.bOrg));
             if (RT_SUCCESS(rc))
             {
                 static const uint8_t s_bInt3 = 0xcc;
-                rc = PGMPhysSimpleWriteGCPhys(pVM, pBp->Pub.u.Int3.PhysAddr, &s_bInt3, sizeof(s_bInt3));
-                if (RT_SUCCESS(rc))
-                {
-                    ASMAtomicIncU32(&pVM->dbgf.s.cEnabledInt3Breakpoints);
-                    Log(("DBGF: Set breakpoint at %RGv (Phys %RGp)\n", pBp->Pub.u.Int3.GCPtr, pBp->Pub.u.Int3.PhysAddr));
-                }
+                rc = PGMPhysSimpleWriteGCPhys(pVM, pBp->Pub.u.Sw.PhysAddr, &s_bInt3, sizeof(s_bInt3));
+            }
+#endif
+            if (RT_SUCCESS(rc))
+            {
+                ASMAtomicIncU32(&pVM->dbgf.s.cEnabledSwBreakpoints);
+                Log(("DBGF: Set breakpoint at %RGv (Phys %RGp)\n", pBp->Pub.u.Sw.GCPtr, pBp->Pub.u.Sw.PhysAddr));
             }
 
@@ -1916 +1931 @@
             break;
         }
-        case DBGFBPTYPE_INT3:
+        case DBGFBPTYPE_SOFTWARE:
         {
             /*
@@ -1922 +1937 @@
              * We currently ignore invalid bytes.
              */
+#ifdef VBOX_VMM_TARGET_ARMV8
+            uint32_t u32Current = 0;
+            rc = PGMPhysSimpleReadGCPhys(pVM, &u32Current, pBp->Pub.u.Sw.PhysAddr, sizeof(u32Current));
+            if (   RT_SUCCESS(rc)
+                && u32Current == Armv8A64MkInstrBrk(0xc0de))
+                rc = PGMPhysSimpleWriteGCPhys(pVM, pBp->Pub.u.Sw.PhysAddr, &pBp->Pub.u.Sw.Arch.armv8.u32Org, sizeof(pBp->Pub.u.Sw.Arch.armv8.u32Org));
+#else
             uint8_t bCurrent = 0;
-            rc = PGMPhysSimpleReadGCPhys(pVM, &bCurrent, pBp->Pub.u.Int3.PhysAddr, sizeof(bCurrent));
+            rc = PGMPhysSimpleReadGCPhys(pVM, &bCurrent, pBp->Pub.u.Sw.PhysAddr, sizeof(bCurrent));
             if (   RT_SUCCESS(rc)
                 && bCurrent == 0xcc)
-            {
-                rc = PGMPhysSimpleWriteGCPhys(pVM, pBp->Pub.u.Int3.PhysAddr, &pBp->Pub.u.Int3.bOrg, sizeof(pBp->Pub.u.Int3.bOrg));
-                if (RT_SUCCESS(rc))
-                {
-                    ASMAtomicDecU32(&pVM->dbgf.s.cEnabledInt3Breakpoints);
-                    dbgfR3BpSetEnabled(pBp, false /*fEnabled*/);
-                    Log(("DBGF: Removed breakpoint at %RGv (Phys %RGp)\n", pBp->Pub.u.Int3.GCPtr, pBp->Pub.u.Int3.PhysAddr));
-                }
+                rc = PGMPhysSimpleWriteGCPhys(pVM, pBp->Pub.u.Sw.PhysAddr, &pBp->Pub.u.Sw.Arch.x86.bOrg, sizeof(pBp->Pub.u.Sw.Arch.x86.bOrg));
+#endif
+
+            if (RT_SUCCESS(rc))
+            {
+                ASMAtomicDecU32(&pVM->dbgf.s.cEnabledSwBreakpoints);
+                dbgfR3BpSetEnabled(pBp, false /*fEnabled*/);
+                Log(("DBGF: Removed breakpoint at %RGv (Phys %RGp)\n", pBp->Pub.u.Sw.GCPtr, pBp->Pub.u.Sw.PhysAddr));
             }
             break;
@@ -1977 +1999 @@
     {
         case DBGFBPTYPE_REG:
-        case DBGFBPTYPE_INT3:
+        case DBGFBPTYPE_SOFTWARE:
         {
             if (DBGF_BP_PUB_IS_EXEC_BEFORE(&pBp->Pub))
@@ -1989 +2011 @@
                 if (RT_SUCCESS(rc))
                 {
+#ifdef VBOX_VMM_TARGET_ARMV8
+                    AssertFailed();
+                    rc = VERR_NOT_IMPLEMENTED;
+#else
                     /* Replace the int3 with the original instruction byte. */
-                    abInstr[0] = pBp->Pub.u.Int3.bOrg;
+                    abInstr[0] = pBp->Pub.u.Sw.Arch.x86.bOrg;
                     rcStrict = IEMExecOneWithPrefetchedByPC(pVCpu, GCPtrInstr, &abInstr[0], sizeof(abInstr));
+#endif
                     if (   rcStrict == VINF_SUCCESS
                         && DBGF_BP_PUB_IS_EXEC_AFTER(&pBp->Pub))
@@ -2197 +2224 @@
 
         PDBGFBPINT pBp = NULL;
-        DBGFBP hBp = dbgfR3BpGetByAddr(pUVM, DBGFBPTYPE_INT3, pAddress->FlatPtr, &pBp);
+        DBGFBP hBp = dbgfR3BpGetByAddr(pUVM, DBGFBPTYPE_SOFTWARE, pAddress->FlatPtr, &pBp);
         if (    hBp != NIL_DBGFBP
-            &&  pBp->Pub.u.Int3.PhysAddr == GCPhysBpAddr)
+            &&  pBp->Pub.u.Sw.PhysAddr == GCPhysBpAddr)
         {
             rc = VINF_SUCCESS;
@@ -2213 +2240 @@
         }
 
-        rc = dbgfR3BpAlloc(pUVM, hOwner, pvUser, DBGFBPTYPE_INT3, fFlags, iHitTrigger, iHitDisable, &hBp, &pBp);
+        rc = dbgfR3BpAlloc(pUVM, hOwner, pvUser, DBGFBPTYPE_SOFTWARE, fFlags, iHitTrigger, iHitDisable, &hBp, &pBp);
         if (RT_SUCCESS(rc))
         {
-            pBp->Pub.u.Int3.PhysAddr = GCPhysBpAddr;
-            pBp->Pub.u.Int3.GCPtr    = pAddress->FlatPtr;
+            pBp->Pub.u.Sw.PhysAddr = GCPhysBpAddr;
+            pBp->Pub.u.Sw.GCPtr    = pAddress->FlatPtr;
 
             /* Add the breakpoint to the lookup tables. */
@@ -2595 +2622 @@
             break;
         }
-        case DBGFBPTYPE_INT3:
+        case DBGFBPTYPE_SOFTWARE:
         {
             int rc = dbgfR3BpInt3Remove(pUVM, hBp, pBp);

trunk/src/VBox/VMM/VMMR3/NEMR3Native-darwin.cpp

@@ -4117 +4117 @@
         && !nemR3DarwinAnyExpensiveProbesEnabled()
         && !DBGFIsStepping(pVCpu)
-        && !pVCpu->CTX_SUFF(pVM)->dbgf.ro.cEnabledInt3Breakpoints)
+        && !pVCpu->CTX_SUFF(pVM)->dbgf.ro.cEnabledSwBreakpoints)
         rcStrict = nemR3DarwinRunGuestNormal(pVM, pVCpu);
     else

trunk/src/VBox/VMM/include/DBGFInternal.h

@@ -1116 +1116 @@
     uint8_t                     cEnabledHwIoBreakpoints;
     uint8_t                     au8Alignment1[2]; /**< Alignment padding. */
-    /** The number of enabled INT3 breakpoints. */
-    uint32_t volatile           cEnabledInt3Breakpoints;
+    /** The number of enabled software breakpoints. */
+    uint32_t volatile           cEnabledSwBreakpoints;
 
     /** Debugger Attached flag.