-
1.发明授权Minimizing bandwidth to track return targets by an instruction tracing system 有权最小化带宽以通过指令跟踪系统跟踪返回目标公开(公告)号:US09442729B2
公开(公告)日:2016-09-13
申请号:US13890654
申请日:2013-05-09
申请人: Beeman C. Strong , Matthew C. Merten , Tong Li
发明人: Beeman C. Strong , Matthew C. Merten , Tong Li
CPC分类号: G06F9/30145 , G06F9/3806 , G06F9/3857 , G06F11/3476 , G06F11/3636
摘要: A processing device implementing minimizing bandwidth to track return targets by an instruction tracing system is disclosed. A processing device of the disclosure an instruction fetch unit comprising a return stack buffer (RSB) to predict a target address of a return (RET) instruction corresponding to a call (CALL) instruction. The processing device further includes a retirement unit comprising an instruction tracing module to initiate instruction tracing for instructions executed by the processing device, determine whether the target address of the RET instruction was mispredicted, determine a value of call depth counter (CDC) maintained by the instruction tracing module, and when the target address of the RET instruction was not mispredicted and when the value of the CDC is greater than zero, generate an indication that the RET instruction branches to a next linear instruction after the corresponding CALL instruction.
摘要翻译: 公开了一种通过指令跟踪系统实现最小化带宽以跟踪返回目标的处理设备。 本公开的处理装置包括一个指令提取单元,该单元包括用于预测与一个调用(CALL)指令相对应的返回(RET)指令的目标地址的返回栈缓冲器(RSB)。 所述处理装置还包括退出单元,所述退出单元包括指令跟踪模块,用于启动由所述处理设备执行的指令的指令跟踪,确定所述RET指令的目标地址是否被错误预测,确定由所述处理设备维护的所述呼叫深度计数器 指令跟踪模块,并且当RET指令的目标地址未被错误预测时,并且当CDC的值大于零时,生成指令在相应的CALL指令之后分支到下一个线性指令。
-
2.发明申请MINIMIZING BANDWIDTH TO TRACK RETURN TARGETS BY AN INSTRUCTION TRACING SYSTEM 有权通过指令跟踪系统最小化带宽跟踪返回目标公开(公告)号:US20140337604A1
公开(公告)日:2014-11-13
申请号:US13890654
申请日:2013-05-09
申请人: Beeman C. Strong , Matthew C. Merten , Tong Li
发明人: Beeman C. Strong , Matthew C. Merten , Tong Li
IPC分类号: G06F9/30
CPC分类号: G06F9/30145 , G06F9/3806 , G06F9/3857 , G06F11/3476 , G06F11/3636
摘要: A processing device implementing minimizing bandwidth to track return targets by an instruction tracing system is disclosed. A processing device of the disclosure an instruction fetch unit comprising a return stack buffer (RSB) to predict a target address of a return (RET) instruction corresponding to a call (CALL) instruction. The processing device further includes a retirement unit comprising an instruction tracing module to initiate instruction tracing for instructions executed by the processing device, determine whether the target address of the RET instruction was mispredicted, determine a value of call depth counter (CDC) maintained by the instruction tracing module, and when the target address of the RET instruction was not mispredicted and when the value of the CDC is greater than zero, generate an indication that the RET instruction branches to a next linear instruction after the corresponding CALL instruction.
摘要翻译: 公开了一种通过指令跟踪系统实现最小化带宽以跟踪返回目标的处理设备。 本公开的处理装置包括一个指令提取单元,该单元包括用于预测与一个调用(CALL)指令相对应的返回(RET)指令的目标地址的返回栈缓冲器(RSB)。 所述处理装置还包括退出单元,所述退出单元包括指令跟踪模块,用于启动由所述处理设备执行的指令的指令跟踪,确定所述RET指令的目标地址是否被错误预测,确定由所述处理设备维护的所述呼叫深度计数器 指令跟踪模块,并且当RET指令的目标地址未被错误预测时,并且当CDC的值大于零时,生成指令在相应的CALL指令之后分支到下一个线性指令。
-
3.发明申请PROVIDING STATUS OF A PROCESSING DEVICE WITH PERIODIC SYNCHRONIZATION POINT IN INSTRUCTION TRACING SYSTEM 有权在指令跟踪系统中提供具有定期同步点的处理设备的状态公开(公告)号:US20140344552A1
公开(公告)日:2014-11-20
申请号:US13895595
申请日:2013-05-16
申请人: Frank Binns , Matthew C. Merten , Mayank Bomb , Beeman C. Strong , Peter Lachner , Jason W. Brandt , Itamar Kazachinsky , Ofer Levy , MD A. Rahman
发明人: Frank Binns , Matthew C. Merten , Mayank Bomb , Beeman C. Strong , Peter Lachner , Jason W. Brandt , Itamar Kazachinsky , Ofer Levy , MD A. Rahman
IPC分类号: G06F9/30
CPC分类号: G06F11/3636 , G06F11/3024 , G06F11/3055 , G06F11/3476 , G06F11/348 , G06F2201/865
摘要: In accordance with embodiments disclosed herein, there is provided systems and methods for providing status of a processing device with a periodic synchronization point in an instruction tracing system. For example, the method may include generating a boundary packet based on a unique byte pattern in a packet log. The boundary packet provides a starting point for packet decode. The method may also include generating a plurality of state packets based on status information of the processor. The plurality of state packets follows the boundary packet when outputted into the packet log.
摘要翻译: 根据本文公开的实施例,提供了用于在指令跟踪系统中提供具有周期性同步点的处理设备的状态的系统和方法。 例如,该方法可以包括基于分组日志中的唯一字节模式生成边界分组。 边界包提供了分组解码的起始点。 该方法还可以包括基于处理器的状态信息生成多个状态分组。 当输出到分组日志中时,多个状态分组遵循边界分组。
-
4.发明申请公开(公告)号:US20140372987A1
公开(公告)日:2014-12-18
申请号:US13918940
申请日:2013-06-15
申请人: Beeman C. Strong , Jason W. Brandt , Tsvika Kurts , Peter Lachner , Itamar Kazachinsky , Stephen J. Robinson , Peggy J. Irelan
发明人: Beeman C. Strong , Jason W. Brandt , Tsvika Kurts , Peter Lachner , Itamar Kazachinsky , Stephen J. Robinson , Peggy J. Irelan
IPC分类号: G06F11/34
CPC分类号: G06F11/34 , G06F9/30 , G06F11/323 , G06F11/3466 , G06F11/3476 , G06F11/3636 , G06F11/3664 , G06F11/3668 , G06F12/023 , G06F12/06
摘要: A method is described that involves referring to first information from a directory table in system memory. The first information includes location information and size information of a first slice of system memory where first tracing data is to be stored. The method also includes tracking the amount of tracing data stored in the first slice of system memory and comparing the amount against the size information. The method also includes, before the first slice of system memory is filled, referring to second information from the directory table in system memory, where, the second information includes location information and size information of a second slice of system memory where second tracing data is to be stored. The first slice is not contiguous with the second slice of system memory.
摘要翻译: 描述了涉及从系统存储器中的目录表引用第一信息的方法。 第一信息包括要存储第一跟踪数据的系统存储器的第一片段的位置信息和大小信息。 该方法还包括跟踪存储在系统存储器的第一片中的跟踪数据量,并将该量与尺寸信息进行比较。 该方法还包括在系统存储器的第一片填充之前,参考来自系统存储器中的目录表的第二信息,其中第二信息包括系统存储器的第二片的位置信息和大小信息,其中第二追踪数据是 被存储。 第一个片段与系统内存的第二个片段不连续。
-
公开(公告)号:US20170090925A1
公开(公告)日:2017-03-30
申请号:US14865715
申请日:2015-09-25
摘要: A processor includes a processor trace logical unit to produce branch execution records from execution of instructions. The processor further includes logic to determine that a condition has occurred on the processor during execution of the instructions. The condition is to include an asynchronous event or a return from a software handler for an asynchronous event. The processor further includes logic to determine whether event tracing is enabled for the processor. The processor also includes logic to generate a control flow event (CFE) packet. The CFE packet is to indicate a type of the condition. The processor further includes logic to generate an indicator of an instruction address that generated the condition.
-
公开(公告)号:US09329884B2
公开(公告)日:2016-05-03
申请号:US14329192
申请日:2014-07-11
IPC分类号: G06F9/455
CPC分类号: G06F9/45533 , G06F9/45558 , G06F11/3636 , G06F2009/45583 , G06F2009/45591
摘要: A processing device with tracing functionality for a virtual machine is described. The processing device includes a tracing register to store a value indicative of whether tracing is enabled or disabled, a tracing module to generate trace data while tracing is enabled, and an internal buffer to store the trace data. When tracing is disabled, the processing device removes the trace data from the buffer. Mechanisms are described to ensure that the trace data is not corrupted during this process, despite the presence of page faults that may result from trace output writes.
摘要翻译: 描述了具有用于虚拟机的跟踪功能的处理设备。 处理装置包括跟踪寄存器,用于存储指示跟踪是启用还是禁用的值,跟踪模块用于在跟踪被启用时生成跟踪数据,以及内部缓冲器来存储跟踪数据。 当禁用跟踪时,处理设备将从缓冲区中删除跟踪数据。 描述了机制,以确保在此过程中跟踪数据不会损坏,尽管存在可能由跟踪输出写入引起的页面错误。
-
公开(公告)号:US10248424B2
公开(公告)日:2019-04-02
申请号:US15283370
申请日:2016-10-01
摘要: One embodiment provides an apparatus. The apparatus includes collector circuitry to capture processor trace (PT) data from a PT driver. The PT data includes a first target instruction pointer (TIP) packet including a first runtime target address of an indirect branch instruction of an executing target application. The apparatus further includes decoder circuitry to extract the first TIP packet from the PT data and to decode the first TIP packet to yield the first runtime target address. The apparatus further includes control flow validator circuitry to determine whether a control flow transfer to the first runtime target address corresponds to a control flow violation based, at least in part, on a control flow graph (CFG). The CFG including a plurality of nodes, each node including a start address of a first basic block, an end address of the first basic block and a next possible address of a second basic block or a not found tag.
-
8.发明申请公开(公告)号:US20160283714A1
公开(公告)日:2016-09-29
申请号:US14670988
申请日:2015-03-27
申请人: Michael LeMay , Ravi L. Sahita , Beeman C. Strong , Thilo Schmitt , Yuriy Bulygin , Markus T. Metzger
发明人: Michael LeMay , Ravi L. Sahita , Beeman C. Strong , Thilo Schmitt , Yuriy Bulygin , Markus T. Metzger
摘要: Technologies for control flow exploit mitigation include a computing device having a processor with real-time instruction tracing support. During execution of a process, the processor generates trace data indicative of control flow of the process. The computing device analyzes the trace data to identify suspected control flow exploits. The computing device may use heuristic algorithms to identify return-oriented programming exploits. The computing device may maintain a shadow stack based on the trace data. The computing device may identify indirect branches to unauthorized addresses based on the trace data to identify jump-oriented programming exploits. The computing device may check the trace data whenever the process is preempted. The processor may detect mispredicted return instructions in real time and invoke a software handler in the process space of the process to verify and maintain the shadow stack. Other embodiments are described and claimed.
摘要翻译: 用于控制流利用减轻的技术包括具有具有实时指令跟踪支持的处理器的计算设备。 在处理过程中,处理器产生指示过程控制流的跟踪数据。 计算设备分析跟踪数据以识别可疑的控制流攻击。 计算设备可以使用启发式算法来识别返回导向的编程漏洞。 计算设备可以基于跟踪数据来维护阴影栈。 计算设备可以基于跟踪数据来识别对未授权地址的间接分支,以识别面向跳跃的编程漏洞。 每当进程被抢占时,计算设备可以检查跟踪数据。 处理器可以实时地检测错误的返回指令,并且在该过程的过程空间中调用软件处理程序以验证和维护该影子栈。 描述和要求保护其他实施例。
-
9.发明授权公开(公告)号:US09189360B2
公开(公告)日:2015-11-17
申请号:US13918940
申请日:2013-06-15
申请人: Beeman C. Strong , Jason W. Brandt , Tsvika Kurts , Peter Lachner , Itamar Kazachinsky , Stephen J. Robinson , Peggy J. Irelan
发明人: Beeman C. Strong , Jason W. Brandt , Tsvika Kurts , Peter Lachner , Itamar Kazachinsky , Stephen J. Robinson , Peggy J. Irelan
CPC分类号: G06F11/34 , G06F9/30 , G06F11/323 , G06F11/3466 , G06F11/3476 , G06F11/3636 , G06F11/3664 , G06F11/3668 , G06F12/023 , G06F12/06
摘要: A method is described that involves referring to first information from a directory table in system memory. The first information includes location information and size information of a first slice of system memory where first tracing data is to be stored. The method also includes tracking the amount of tracing data stored in the first slice of system memory and comparing the amount against the size information. The method also includes, before the first slice of system memory is filled, referring to second information from the directory table in system memory, where, the second information includes location information and size information of a second slice of system memory where second tracing data is to be stored. The first slice is not contiguous with the second slice of system memory.
摘要翻译: 描述了涉及从系统存储器中的目录表引用第一信息的方法。 第一信息包括要存储第一跟踪数据的系统存储器的第一片段的位置信息和大小信息。 该方法还包括跟踪存储在系统存储器的第一片中的跟踪数据量,并将该量与尺寸信息进行比较。 该方法还包括在系统存储器的第一片填充之前,参考来自系统存储器中的目录表的第二信息,其中第二信息包括系统存储器的第二片的位置信息和大小信息,其中第二追踪数据是 被存储。 第一个片段与系统内存的第二个片段不连续。
-
-
-
-
-
-
-
-
搜索结果
9 条记录 (耗时 0.028 秒)
