公开(公告)号：US07546487B2

公开(公告)日：2009-06-09

申请号：US11227831

申请日：2005-09-15

申请人： Suresh Marisetty ,  Andrew J. Fish ,  Koichi Yamada ,  Scott D. Brenden ,  James B. Crossland ,  Shivnandan Kaushik ,  Mohan J. Kumar ,  Jose A. Vargas

发明人： Suresh Marisetty ,  Andrew J. Fish ,  Koichi Yamada ,  Scott D. Brenden ,  James B. Crossland ,  Shivnandan Kaushik ,  Mohan J. Kumar ,  Jose A. Vargas

IPC分类号： G06F11/00 ,  G06F11/07

CPC分类号： G06F11/0793 ,  G06F11/0706

摘要： Methods and architectures for performing hardware error handling using coordinated operating system (OS) and firmware services. In one aspect, a firmware interface is provided to enable an OS to access firmware error-handling services. Such services enable the OS to access error data concerning platform hardware errors that may not be directed accessed via a platform processor or through other conventional approaches. Techniques are also disclosed for intercepting the processing of hardware error events and directing control to firmware error-handling services prior to attempting to service the error using OS-based services. The firmware services may correct hardware errors and/or log error data that may be later accessed by the OS or provided to a remote management server using an out-of-band communication channel. In accordance with another aspect, the firmware intercept and services may be performed in a manner that is transparent to the OS.

摘要翻译： 使用协调操作系统（OS）和固件服务执行硬件错误处理的方法和架构。 在一个方面，提供固件接口以使OS能够访问固件错误处理服务。 这样的服务使得OS能够访问有关平台硬件错误的错误数据，这些错误数据可能不会通过平台处理器或其他常规方法被定向访问。 还公开了用于在使用基于OS的服务尝试服务错误之前拦截硬件错误事件的处理以及将控制引导到固件错误处理服务的技术。 固件服务可以纠正OS稍后访问或使用带外通信信道提供给远程管理服务器的硬件错误和/或日志错误数据。 根据另一方面，固件拦截和服务可以以对OS是透明的方式来执行。

公开(公告)号：US07587639B2

公开(公告)日：2009-09-08

申请号：US10985502

申请日：2004-11-09

申请人： Suresh K. Marisetty ,  Rajendra Kuramkote ,  Koichi Yamada ,  Scott D. Brenden ,  Kushagra V. Vaid

发明人： Suresh K. Marisetty ,  Rajendra Kuramkote ,  Koichi Yamada ,  Scott D. Brenden ,  Kushagra V. Vaid

IPC分类号： G06F11/00

CPC分类号： G06F11/3672

摘要： A system and method for injecting hardware errors into a microprocessor system is described. In one embodiment, a software interface between system software and system firmware is established. Software test and debug for software error handlers may thus be supported. The software interface may support both a query mode call and a seed mode call. When a query mode call is issued, it may request whether or not the system firmware and hardware support the injection of a specified kind of error. A return from this call may be used to make a list of supported errors for injection. When a seed mode call is issued, the corresponding error may be injected into the hardware.

摘要翻译： 描述了将硬件错误注入微处理器系统的系统和方法。 在一个实施例中，建立了系统软件和系统固件之间的软件接口。 因此可以支持软件错误处理程序的软件测试和调试。 软件界面可以支持查询模式呼叫和种子模式呼叫。 发出查询模式呼叫时，可以请求系统固件和硬件是否支持注入指定类型的错误。 此呼叫的返回可用于列出支持的注入错误。 当发出种子模式呼叫时，相应的错误可能会被注入到硬件中。

公开(公告)号：US09858412B2

公开(公告)日：2018-01-02

申请号：US14749856

申请日：2015-06-25

申请人： Karunakara Kotary ,  Rajesh Poornachandran ,  Scott D. Brenden ,  Vincent J. Zimmer

发明人： Karunakara Kotary ,  Rajesh Poornachandran ,  Scott D. Brenden ,  Vincent J. Zimmer

IPC分类号： G06F21/53 ,  G06F21/57 ,  G06F12/14 ,  G06F3/06

CPC分类号： G06F21/53 ,  G06F3/0623 ,  G06F3/0655 ,  G06F3/0679 ,  G06F12/1408 ,  G06F21/572 ,  G06F2212/1052 ,  G06F2221/2111

摘要： Systems, apparatuses and methods may provide for receiving, from a host driver, factory data including one or more of calibration data, platform identifier data, manufacturer data or wireless carrier data, and verifying integrity of the factory data. Additionally, the factory data may be provisioned into non-volatile memory (NVM) in accordance with an operating system independent format managed by a platform root-of-trust such as a Trusted Execution Environment (TEE). In one example, provisioning the factory data includes defining one or more partitions in the NVM, initiating storage of the factory data to the NVM along the one or more partitions, and specifying a restriction profile for the one or more partitions, wherein the restriction profile includes one or more of read restrictions, write restrictions, time bound restrictions or location bound restrictions.

公开(公告)号：US20160275290A1

公开(公告)日：2016-09-22

申请号：US14662415

申请日：2015-03-19

申请人： Karunakara Kotary ,  Vincent J. Zimmer ,  Scott D. Brenden ,  Jose Benchimol ,  Panner Kumar ,  Rajesh Poornachandran

发明人： Karunakara Kotary ,  Vincent J. Zimmer ,  Scott D. Brenden ,  Jose Benchimol ,  Panner Kumar ,  Rajesh Poornachandran

IPC分类号： G06F21/57

摘要： A dynamic firmware module loader loads one of a plurality of a firmware contexts or modules as needed in a containerized environment for secure isolated execution. The modules, called applets, may be loaded and unloaded in a firmware context. The loader may use a hardware inter process communication channel (IPC) to communicate with the secure engine. The modules may be designed to implement specific features desired by basic input/output system vendors, without the use of a system management mode. Designed modules may provide necessary storage and I/O access driver capabilities to be run in trusted execution environment containers.

摘要翻译： 动态固件模块加载器根据需要在容器化环境中加载多个固件上下文中的一个，以进行安全的隔离执行。 称为小程序的模块可以在固件上下文中加载和卸载。 加载器可以使用硬件进程间通信信道（IPC）来与安全引擎进行通信。 模块可以被设计为实现基本输入/输出系统供应商所需的特定特征，而不使用系统管理模式。 设计的模块可以提供必要的存储和I / O访问驱动程序功能，以在受信任的执行环境容器中运行。