公开(公告)号：WO2017172190A1

公开(公告)日：2017-10-05

申请号：PCT/US2017/020017

申请日：2017-02-28

Applicant: INTEL CORPORATION

Inventor： THOMAS, Ramesh ,  CASTELINO, Manohar R.

IPC: G06F21/54 ,  G06F21/53 ,  G06F9/455

CPC classification number: G06F21/52 ,  G06F8/70 ,  G06F9/45558 ,  G06F2009/45587 ,  G06F2221/033

Abstract: A copy is made of at least a part a stack. A caller return address of a calling function in the stack is verified as trusted. A caller return address of a called function in the stack is verified as matching a source address of the calling function in the copy of the stack. If verification is affirmative, then the called function may be executed in a trusted domain.

Abstract translation:

副本至少由堆栈的一部分组成。 验证堆栈中调用函数的调用方返回地址为可信。 验证堆栈中被调用函数的调用者返回地址是否与堆栈副本中调用函数的源地址相匹配。 如果验证是肯定的，那么被调用函数可以在可信域中执行。

公开(公告)号：WO2013103341A1

公开(公告)日：2013-07-11

申请号：PCT/US2012/020231

申请日：2012-01-04

Applicant: Intel Corporation ,  THOMAS, Ramesh ,  TSENG, Kuo-Lang ,  SAHITA, Ravi L. ,  DURHAM, David M. ,  TALLAM, Madhukar

Inventor： THOMAS, Ramesh ,  TSENG, Kuo-Lang ,  SAHITA, Ravi L. ,  DURHAM, David M. ,  TALLAM, Madhukar

IPC: G06F9/30 ,  G06F9/46 ,  G06F12/08 ,  G06F15/80

CPC classification number: G06F12/145 ,  G06F9/468 ,  G06F12/1425 ,  G06F2009/45583 ,  G06F2009/45587

Abstract: Embodiments of techniques and systems for increasing efficiencies in computing systems using virtual memory are described. In embodiments, instructions which are located in two memory pages in a virtual memory system, such that one of the pages does not permit execution of the instructions located therein, are identified and then executed under temporary permissions that permit execution of the identified instructions. In various embodiments, the temporary permissions may come from modified virtual memory page tables, temporary virtual memory page tables which allow for execution, and/or emulators which have root access. In embodiments, per-core virtual memory page tables may be provided to allow two cores of a computer processor to operate in accordance with different memory access permissions. In embodiments, a physical page permission table may be utilized to provide for maintenance and tracking of per-physical-page memory access permissions. Other embodiments may be described and claimed.

Abstract translation: 描述了使用虚拟存储器提高计算系统效率的技术和系统的实施例。 在实施例中，位于虚拟存储器系统中的两个存储器页面中的指令，使得页面中的一个不允许执行位于其中的指令，然后在允许执行所识别的指令的临时许可下执行。 在各种实施例中，临时许可可来自修改的虚拟内存页表，允许执行的临时虚拟内存页表，和/或具有根访问的仿真器。 在实施例中，可以提供每核心虚拟内存页表以允许计算机处理器的两个核心根据不同的存储器访问许可来操作。 在实施例中，物理页面许可表可以用于提供对每个物理页面存储器访问许可的维护和跟踪。 可以描述和要求保护其他实施例。