公开(公告)号：US20130275682A1

公开(公告)日：2013-10-17

申请号：US13994729

申请日：2011-09-30

申请人： Raj K. Ramanujan ,  Dimitrios Ziakas ,  David J. Zimmerman ,  Mohan J. Kumar ,  Muthukumar P. Swaminathan ,  Bassam N Coury

发明人： Raj K. Ramanujan ,  Dimitrios Ziakas ,  David J. Zimmerman ,  Mohan J. Kumar ,  Muthukumar P. Swaminathan ,  Bassam N Coury

IPC分类号： G06F12/08

CPC分类号： G06F12/0811 ,  G06F12/0238 ,  G06F12/08 ,  G06F12/0802 ,  G06F12/0848 ,  G06F12/0866 ,  G06F12/0897 ,  G06F13/1684 ,  G06F2212/2024 ,  G06F2212/304

摘要： A system and method are described for integrating a memory and storage hierarchy including a non-volatile memory tier within a computer system. In one embodiment, PCMS memory devices are used as one tier in the hierarchy, sometimes referred to as “far memory.” Higher performance memory devices such as DRAM placed in front of the far memory and are used to mask some of the performance limitations of the far memory. These higher performance memory devices are referred to as “near memory.”

摘要翻译： 描述了用于集成包括计算机系统内的非易失性存储器层的存储器和存储层级的系统和方法。 在一个实施例中，PCMS存储器件被用作层次结构中的一个层，有时被称为“远存储器”。 更高性能的存储器件，例如放置在远存储器之前的DRAM，并用于掩盖远存储器的一些性能限制。 这些更高性能的存储器件被称为“接近存储器”。

公开(公告)号：US20120265998A1

公开(公告)日：2012-10-18

申请号：US13532334

申请日：2012-06-25

申请人： Mohan J. Kumar ,  Shay Gueron

发明人： Mohan J. Kumar ,  Shay Gueron

IPC分类号： G06F21/00

CPC分类号： G06F21/57 ,  G06F21/575 ,  G06F2221/2129

摘要： When a processing system boots, it may retrieve an encrypted version of a cryptographic key from nonvolatile memory to a processing unit, which may decrypt the cryptographic key. The processing system may also retrieve a predetermined authentication code for software of the processing system, and the processing system may use the cryptographic key to compute a current authentication code for the software. The processing system may then determine whether the software should be trusted, by comparing the predetermined authentication code with the current authentication code. In various embodiments, the processing unit may use a key stored in nonvolatile storage of the processing unit to decrypt the encrypted version of the cryptographic key, a hashed message authentication code (HMAC) may be used as the authentication code, and/or the software to be authenticated may be boot firmware, a virtual machine monitor (VMM), or other software. Other embodiments are described and claimed.

摘要翻译： 当处理系统引导时，它可以从非易失性存储器检索加密密钥的加密版本到处理单元，该处理单元可以解密密码密钥。 处理系统还可以检索用于处理系统的软件的预定认证码，并且处理系统可以使用密码密钥来计算软件的当前认证码。 然后，处理系统可以通过将预定认证码与当前认证码进行比较来确定软件是否应该被信任。 在各种实施例中，处理单元可以使用存储在处理单元的非易失性存储器中的密钥对加密密钥的加密版本进行解密，散列消息认证码（HMAC）可以用作认证码，和/或软件 被认证可以是启动固件，虚拟机监视器（VMM）或其他软件。 描述和要求保护其他实施例。

公开(公告)号：US08068614B2

公开(公告)日：2011-11-29

申请号：US11864887

申请日：2007-09-28

申请人： Mohan J. Kumar ,  Shay Gueron

发明人： Mohan J. Kumar ,  Shay Gueron

IPC分类号： H04L9/08 ,  G06F3/00 ,  H04L9/32

CPC分类号： G06F21/572 ,  G06F21/575

摘要： A processing system may include a processing unit and nonvolatile storage responsive to the processing unit. The nonvolatile storage may include a candidate boot code module and an authentication code module. The processing unit may be configured to execute code from the authentication code module before executing code from the candidate boot code module. The authentication code module may have instructions which, when executed by the processing unit, cause the processing unit to read a processor identifier from the processing unit and determine whether the processor belongs to a predetermined set of processors associated with a specific vendor, based at least in part on the identifier, before executing any instructions from the candidate boot code module. The processing system may also test authenticity of the candidate boot code module before executing any instructions from the candidate boot code module. Other embodiments are described and claimed.

摘要翻译： 处理系统可以包括响应于处理单元的处理单元和非易失性存储器。 非易失性存储器可以包括候选引导代码模块和认证代码模块。 处理单元可以被配置为在从候选引导代码模块执行代码之前从认证代码模块执行代码。 认证代码模块可以具有指令，当由处理单元执行时，处理单元至少从处理单元读取处理器标识符并且确定处理器是否属于与特定供应商相关联的预定处理器集合 部分地在标识符上，在执行来自候选引导代码模块的任何指令之前。 在执行来自候选引导代码模块的任何指令之前，处理系统还可以测试候选引导代码模块的真实性。 描述和要求保护其他实施例。

公开(公告)号：US07971048B2

公开(公告)日：2011-06-28

申请号：US12056452

申请日：2008-03-27

申请人： Sham M. Datta ,  Mohan J. Kumar ,  Ernest Brickell

发明人： Sham M. Datta ,  Mohan J. Kumar ,  Ernest Brickell

IPC分类号： G06F15/177

CPC分类号： G06F21/57

摘要： Embodiments of the invention provide systems and methods associated with a measurement engine in a server platform. In one such embodiment of the invention, the measurement engine hardware verifies/authenticates its own firmware and then system initialization firmware by measuring such firmware and storing measurement results in a register that is not spoofable by malicious code. In this instance, the measurement engine holds the host CPU complex in a reset state until the measurement engine has verified the system initialization firmware. In another such embodiment of the invention, the measurement engine hardware also measures firmware associated with one or more system service processors and stores such measurement results in a register. In this case, the measurement engine holds the system service processors and the host CPU complex in reset until the measurements are completed. Other embodiments are described.

摘要翻译： 本发明的实施例提供了与服务器平台中的测量引擎相关联的系统和方法。 在本发明的一个这样的实施例中，测量引擎硬件通过测量这样的固件来验证/认证其自己的固件，然后验证其自身的固件，并将测量结果存储在恶意代码不能欺骗的寄存器中。 在这种情况下，测量引擎将主机复合体保持在复位状态，直到测量引擎已经验证了系统初始化固件。 在本发明的另一个这样的实施例中，测量引擎硬件还测量与一个或多个系统服务处理器相关联的固件并将这样的测量结果存储在寄存器中。 在这种情况下，测量引擎将系统服务处理器和主机CPU复合体保持在复位状态，直到测量完成。 描述其他实施例。

公开(公告)号：US07546487B2

公开(公告)日：2009-06-09

申请号：US11227831

申请日：2005-09-15

申请人： Suresh Marisetty ,  Andrew J. Fish ,  Koichi Yamada ,  Scott D. Brenden ,  James B. Crossland ,  Shivnandan Kaushik ,  Mohan J. Kumar ,  Jose A. Vargas

发明人： Suresh Marisetty ,  Andrew J. Fish ,  Koichi Yamada ,  Scott D. Brenden ,  James B. Crossland ,  Shivnandan Kaushik ,  Mohan J. Kumar ,  Jose A. Vargas

IPC分类号： G06F11/00 ,  G06F11/07

CPC分类号： G06F11/0793 ,  G06F11/0706

摘要： Methods and architectures for performing hardware error handling using coordinated operating system (OS) and firmware services. In one aspect, a firmware interface is provided to enable an OS to access firmware error-handling services. Such services enable the OS to access error data concerning platform hardware errors that may not be directed accessed via a platform processor or through other conventional approaches. Techniques are also disclosed for intercepting the processing of hardware error events and directing control to firmware error-handling services prior to attempting to service the error using OS-based services. The firmware services may correct hardware errors and/or log error data that may be later accessed by the OS or provided to a remote management server using an out-of-band communication channel. In accordance with another aspect, the firmware intercept and services may be performed in a manner that is transparent to the OS.

摘要翻译： 使用协调操作系统（OS）和固件服务执行硬件错误处理的方法和架构。 在一个方面，提供固件接口以使OS能够访问固件错误处理服务。 这样的服务使得OS能够访问有关平台硬件错误的错误数据，这些错误数据可能不会通过平台处理器或其他常规方法被定向访问。 还公开了用于在使用基于OS的服务尝试服务错误之前拦截硬件错误事件的处理以及将控制引导到固件错误处理服务的技术。 固件服务可以纠正OS稍后访问或使用带外通信信道提供给远程管理服务器的硬件错误和/或日志错误数据。 根据另一方面，固件拦截和服务可以以对OS是透明的方式来执行。

公开(公告)号：US07437643B2

公开(公告)日：2008-10-14

申请号：US11157526

申请日：2005-06-21

申请人： Rahul Khanna ,  Mohan J. Kumar ,  Jay Nejedlo

发明人： Rahul Khanna ,  Mohan J. Kumar ,  Jay Nejedlo

IPC分类号： G01R31/28

CPC分类号： G06F11/27

摘要： Training of a link is performed, wherein the link is an interconnect between two devices of a computer system. A built-in self-test (BIST) of the link is performed. A result from the link training is compared to a result from the BIST. A link status of the link is posted, wherein the link status is based at least in part on the result from the link training and the result from the BIST.

摘要翻译： 执行链接的训练，其中链路是计算机系统的两个设备之间的互连。 链接的内置自检（BIST）被执行。 将链接训练的结果与BIST的结果进行比较。 张贴链接的链接状态，其中链接状态至少部分地基于链接训练的结果和来自BIST的结果。

公开(公告)号：US20080163331A1

公开(公告)日：2008-07-03

申请号：US11618649

申请日：2006-12-29

申请人： Sham M. Datta ,  Mohan J. Kumar ,  James A. Sutton ,  Ernie Brickell ,  Ioannis T. Schoinas

发明人： Sham M. Datta ,  Mohan J. Kumar ,  James A. Sutton ,  Ernie Brickell ,  Ioannis T. Schoinas

IPC分类号： G06F21/00 ,  G06F17/00

CPC分类号： G06F21/57

摘要： Apparatuses, methods, and systems for reconfiguring a secure system are disclosed. In one embodiment, an apparatus includes a configuration storage location, a lock, and lock override logic. The configuration storage location is to store information to configure the apparatus. The lock is to prevent writes to the configuration storage location. The lock override logic is to allow instructions executed from sub-operating mode code to override the lock.

摘要翻译： 公开了用于重新配置安全系统的装置，方法和系统。 在一个实施例中，装置包括配置存储位置，锁定和锁定超驰逻辑。 配置存储位置是存储信息以配置设备。 该锁是为了防止写入配置存储位置。 锁定覆盖逻辑是允许从子操作模式代码执行的指令覆盖锁定。

公开(公告)号：US6065123A

公开(公告)日：2000-05-16

申请号：US978545

申请日：1997-11-26

申请人： Stephen T. Chou ,  Russell J. Fenger ,  Mohan J. Kumar ,  Victor B. Lortz ,  Benjamin L. Manny ,  Mil Travnicek ,  Chih-Kan Wang

发明人： Stephen T. Chou ,  Russell J. Fenger ,  Mohan J. Kumar ,  Victor B. Lortz ,  Benjamin L. Manny ,  Mil Travnicek ,  Chih-Kan Wang

IPC分类号： G06F1/32 ,  G06F11/14 ,  G06F9/00

CPC分类号： G06F1/3265 ,  G06F1/3203 ,  G06F1/3209 ,  G06F11/1441 ,  Y02B60/1242

摘要： A computer system with unattended on-demand availability includes power-saving features which place the system into a Standby mode whenever the system is idle or is not being used. Prior to entering Standby mode, the system sets a hardware timer which indicates when the next scheduled event in the system should be performed. When either the timer expires or another event occurs which requires system operation, the system resumes to the On power state without user intervention. In one embodiment, the system of the present invention allows applications to periodically save their operational states. By saving their operational states, applications are able to guard against power failures and crashes. If a power failure or crash occurs, the system consults restart policies and, if appropriate, automatically re-starts applications to their most recently saved operational states once power is re-stored.

摘要翻译： 具有无人值守按需可用性的计算机系统包括省电功能，当系统空闲或未使用时，系统进入待机模式。 在进入待机模式之前，系统设置一个硬件定时器，指示系统中下次调度的事件何时执行。 当定时器超时或需要系统操作的另一个事件时，系统将恢复到On电源状态，无需用户干预。 在一个实施例中，本发明的系统允许应用程序周期性地保存其操作状态。 通过保存操作状态，应用程序能够防止电源故障和崩溃。 如果发生电源故障或发生故障，系统将重新启动策略，并在适当的情况下自动将应用程序重新启动到其最近保存的操作状态，一旦重新存储电源。

公开(公告)号：US5902352A

公开(公告)日：1999-05-11

申请号：US909384

申请日：1997-08-11

申请人： Stephen T. Chou ,  Russell J. Fenger ,  Mohan J. Kumar ,  Victor B. Lortz ,  Mil Travnicek ,  Chih-Kan Wang

发明人： Stephen T. Chou ,  Russell J. Fenger ,  Mohan J. Kumar ,  Victor B. Lortz ,  Mil Travnicek ,  Chih-Kan Wang

IPC分类号： G06F9/48 ,  G06F9/00

CPC分类号： G06F9/4881

摘要： A method and apparatus for task scheduling across multiple execution sessions allows each scheduled task to be scheduled to occur at a specific time(s), to occur periodically, or to occur in response to certain system events. A task can be scheduled which requires execution of an application even if the application is not running at the scheduled time or event, and even if the system is in a low-power standby mode at the scheduled time or event. In one embodiment, the present invention keeps track of specific time events by setting a timer(s) which indicates the time which should elapse until a scheduled event is to occur. When a timer expires, the system determines which task is scheduled to occur at the time the timer expires and executes that task. In one embodiment, the present invention checks a scheduling database to determine which task is scheduled to occur when a timer expires.

摘要翻译： 用于跨越多个执行会话的任务调度的方法和装置允许调度每个调度的任务在特定时间发生，周期性地发生，或者响应于某些系统事件而发生。 即使应用程序未在预定的时间或事件中运行，并且即使系统在预定时间或事件中处于低功耗待机模式，也可以调度任务，该任务需要执行应用程序。 在一个实施例中，本发明通过设置指示应该经过的时间的定时器来跟踪特定的时间事件，直到发生调度的事件。 当定时器到期时，系统确定在定时器到期时调度哪个任务发生，并执行该任务。 在一个实施例中，本发明检查调度数据库以确定当定时器到期时调度哪个任务发生。

公开(公告)号：US10791174B2

公开(公告)日：2020-09-29

申请号：US15221707

申请日：2016-07-28

申请人： Murugasamy K. Nachimuthu ,  Mohan J. Kumar

发明人： Murugasamy K. Nachimuthu ,  Mohan J. Kumar

IPC分类号： H04L29/08 ,  H04L12/24

摘要： Mechanisms for efficient discovery of storage resources in a Rack Scale Architecture (RSA) system and associated methods, apparatus, and systems. A rack is populated with pooled system drawers including pooled compute drawers and pooled storage drawers communicatively coupled via input-output (IO) cables. Compute nodes including one or more processors, memory resources, and optional local storage resources are installed in the pooled compute drawers, and are enabled to be selectively-coupled to storage resources in the pooled storage drawers over virtual attachment links. During a discovery process, a compute node determines storage resource characteristics of storage resources it may be selectively-coupled to and the attachment links used to access the storage resources. The storage resource characteristics are aggregated by a pod manager that uses corresponding configuration information to dynamically compose compute nodes for rack users based on user needs.