公开(公告)号：US10019583B2

公开(公告)日：2018-07-10

申请号：US15089376

申请日：2016-04-01

Applicant: Samsung Electronics Co., Ltd.

Inventor： Kirk R. Swidowski ,  Ahmed M. Azab

IPC: G06F21/60 ,  G06F12/10 ,  G06F9/455 ,  G06F12/1009 ,  G06F12/109

CPC classification number: G06F21/60 ,  G06F9/45558 ,  G06F12/1009 ,  G06F12/109 ,  G06F2009/45583 ,  G06F2212/1052 ,  G06F2212/151 ,  G06F2212/152 ,  G06F2212/651 ,  Y02D10/13

Abstract: A Protected Walk-based Shadow Paging (PWSP) method includes storing a multiple level first stage (S1) page tables structure in second stage (S2) page tables. The method includes: when an S1 page table in an S2 page table entry is marked with a writable attribute: (i) permitting an operating system (OS) to write to the S1 page table, (ii) blocking a memory management unit (MMU) from reading the S1 page table for translation, and (iii) in response, verifying the S1 page table for translation and changing the marking of the S1 page table in the S2 page table entry to a read-only attribute, enabling the MMU to subsequently read the S1 page table. The method further includes: when the S1 page table in the S2 page table entry is marked with the read-only attribute: (i) permitting the OS to read the S1 page table for translating from a virtual address to an intermediate physical address, (ii) blocking the OS from writing to the S1 page table, and (iii) in response to blocking the OS, updating the S1 page table and changing the marking of the S1 page table in the S2 page table entry to the device memory attribute, enabling the OS to write to the S1 page table. Blocking the MMU from reading the S1 page table for translation may include generating a device memory permissions fault, and blocking the OS from writing to the S1 page table may include generating a read-only prefetch permissions fault.

公开(公告)号：US20170286694A1

公开(公告)日：2017-10-05

申请号：US15089376

申请日：2016-04-01

Applicant: Samsung Electronics Co., Ltd.

Inventor： Kirk R. Swidowski ,  Ahmed M. Azab

IPC: G06F21/60 ,  G06F9/455 ,  G06F12/10

CPC classification number: G06F21/60 ,  G06F9/45558 ,  G06F12/1009 ,  G06F12/109 ,  G06F2009/45583 ,  G06F2212/1052 ,  G06F2212/151 ,  G06F2212/152 ,  G06F2212/651

Abstract: PWSP method includes storing a multiple level page tables structure in second stage page tables (S2). The method includes: when an S2 entry is marked with a writable attribute: (i) permitting an operating system (OS) to write to S1, (ii) blocking an MMU from reading the S1 for translation, and (iii) in response, verifying the S1 for translation and changing the marking of the S2 entry to read-only attribute, enabling the MMU to subsequently read the S1. The method includes: when the S2 entry is marked with the read-only attribute: (i) permitting the OS to read the S1 for translating from a virtual address to an intermediate physical address, (ii) blocking the OS from writing to the S1, and (iii) in response to blocking the OS, updating the S1 and changing the marking of the S2 entry to the device memory attribute, enabling the OS to write to the S1.