MANAGING ENCLAVE MEMORY PAGES

US 20180060237A1
Filed: 08/31/2016
Published: 03/01/2018
Est. Priority Date: 08/31/2016
Status: Active Grant

First Claim

Patent Images

1. A processing device comprising:

a first counter having a first count value of a number of child pages among a plurality of child pages present in an enclave memory of a first virtual machine (VM), wherein the plurality of child pages are associated with a parent page in the enclave memory; and

a second counter having a second count value of a number of child pages among the plurality of child pages not present in the enclave memory and being shared by a second VM, wherein the second VM is different from the first VM, wherein a non-zero value of at least one of the first counter or the second counter prevents eviction of the parent page from the enclave memory.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A processing device includes a first counter having a first count value of a number of child pages among a plurality of child pages present in an enclave memory of a first virtual machine (VM). The plurality of child pages are associated with a parent page in the enclave memory. The processing device includes a second counter having a second count value of a number of child pages among the plurality of child pages not present in the enclave memory and being shared by a second VM, wherein the second VM is different from the first VM. A non-zero value of at least one of the first counter or the second counter prevents eviction of the parent page from the enclave memory.

Citations

25 Claims

1. A processing device comprising:
- a first counter having a first count value of a number of child pages among a plurality of child pages present in an enclave memory of a first virtual machine (VM), wherein the plurality of child pages are associated with a parent page in the enclave memory; and
  
  a second counter having a second count value of a number of child pages among the plurality of child pages not present in the enclave memory and being shared by a second VM, wherein the second VM is different from the first VM, wherein a non-zero value of at least one of the first counter or the second counter prevents eviction of the parent page from the enclave memory.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. The processing device of claim 1 wherein the processing device to execute a virtual machine monitor (VMM) to:
    - responsive to a removal of one of the plurality of child pages from the enclave memory;
      
      decrement the first count value of the first counter; and
      
      increment the second count value of the second counter; and
  - 3. The processing device of claim 2 wherein the processing device to execute the VMM to:
    - responsive to a load of one of the plurality of child pages from the enclave memory;
      
      increment the first count value of the first counter; and
      
      decrement the second count value of the second counter.
  - 4. The processing device of claim 3 wherein the VMM to, in response to a request to evict the parent page, determine the first count value of the first counter.
  - 5. The processing device of claim 4 wherein the VMM to generate a first error code upon determining that the first count value of the first counter is not 0, wherein the first error code indicates that one or more child pages are present in the enclave memory.
  - 6. The processing device of claim 4 wherein the VMM to determine whether second count value of the second counter is 0 upon determining that the first count value of the first counter is 0.
  - 7. The processing device of claim 6 wherein the VMM to generate a second error code upon determining that the second count value of the second counter is not 0, wherein the second error code indicates that one or more child pages are currently being shared by the second VM.
  - 8. The processing device of claim 6 wherein the VMM to evict the parent page from the enclave memory upon determining that the second count value of the second counter is 0.

9. A system-on-a chip (SoC) comprising:
- a memory; and
  
  a processing device communicably coupled to the memory, wherein the processing device comprises;
  
  a first counter having a first count value of a number of child pages among a plurality of child pages present in an enclave memory of a first virtual machine (VM), wherein the plurality of child pages are associated with a parent page in the enclave memory; and
  
  a second counter having a second count value of a number of child pages among the plurality of child pages not present in the enclave memory and being shared by a second VM, wherein the second VM is different from the first VM, wherein a non-zero value of at least one of the first counter or the second counter prevents eviction of the parent page from the enclave memory.
- View Dependent Claims (10, 11, 12, 13, 14, 15)
- - 10. The SoC of claim 9 wherein the processing device to execute a virtual machine monitor (VMM) to:
    - responsive to a removal of one of the plurality of child pages from the enclave memory;
      
      decrement the first count value of the first counter; and
      
      increment the second count value of the second counter; and
  - 11. The SoC of claim 10 wherein the processing device to execute the VMM to:
    - responsive to a load of one of the plurality of child pages from the enclave memory;
      
      increment the first count value of the first counter; and
      
      decrement the second count value of the second counter.
  - 12. The SoC of claim 11 wherein the VMM to, in response to a request to evict the parent page, determine the first count value of the first counter.
  - 13. The SoC of claim 11 wherein the VMM to:
    - generate a first error code upon determining that the first count value of the first counter is not 0, wherein the first error code indicates that one or more child pages are present in the enclave memory; and
      
      to determine whether second count value of the second counter is 0 upon determining that the first count value of the first counter is 0.
  - 14. The SoC of claim 13 wherein the VMM to generate a second error code upon determining that the second count value of the second counter is not 0, wherein the second error code indicates that one or more child pages are currently being shared by the second VM.
  - 15. The SoC of claim 13 wherein the VMM component to evict the parent page from the enclave memory upon determining that the second count value of the second counter is 0.

16. A method comprising:
- determining a first count value of a number of child pages among a plurality of child pages present in an enclave memory of a first virtual machine (VM), wherein the plurality of child pages are associated with a parent page in the enclave memory; and
  
  determining a second count value of a number of child pages among the plurality of child pages not present in the enclave memory and being shared by a second VM, wherein the second VM is different from the first VM, wherein a non-zero value of at least one of the first counter or the second counter prevents eviction of the parent page from the enclave memory.
- View Dependent Claims (17, 18, 19, 20)
- - 17. The method of claim 16 further comprising:
    - responsive to a removal of one of the plurality of child pages from the enclave memory, decrementing the first count value of the first counter and incrementing the second count value of the second counter; and
      
      responsive to a load of one of the plurality of child pages from the enclave memory, incrementing the first count value of the first counter and decrementing the second count value of the second counter.
  - 18. The method of claim 17 further comprising:
    - generating a first error code upon determining that the first count value of the first counter is not 0, wherein the first error code indicates that one or more child pages are present in the enclave memory.
  - 19. The method of claim 18 further comprising:
    - determining whether second count value of the second counter is 0 upon determining that the first count value of the first counter is 0; and
      
      generating a second error code upon determining that the second count value of the second counter is not 0, wherein the second error code indicates that one or more child pages are currently being shared by the second VM.
  - 20. The method of claim 19 further comprising:
    - evicting the parent page from the enclave memory upon determining that the second count value of the second counter is 0.

21. A non-transitory machine-readable storage medium including instructions that, when accessed by a processing device, cause the processing device to perform operations comprising:
- determining a first count value of a number of child pages among a plurality of child pages present in an enclave memory of a first virtual machine (VM), wherein the plurality of child pages are associated with a parent page in the enclave memory; and
  
  determining a second count value of a number of child pages among the plurality of child pages not present in the enclave memory and being shared by a second VM, wherein the second VM is different from the first VM, wherein a non-zero value of at least one of the first counter or the second counter prevents eviction of the parent page from the enclave memory.
- View Dependent Claims (22, 23, 24, 25)
- - 22. The non-transitory machine-readable storage medium of claim 21 wherein the operations further comprising:
    - responsive to a removal of one of the plurality of child pages from the enclave memory, decrementing the first count value of the first counter and incrementing the second count value of the second counter; and
      
      responsive to a load of one of the plurality of child pages from the enclave memory, incrementing the first count value of the first counter and decrementing the second count value of the second counter.
  - 23. The non-transitory machine-readable storage medium of claim 22 wherein the operations further comprising:
    - generating a first error code upon determining that the first count value of the first counter is not 0, wherein the first error code indicates that one or more child pages are present in the enclave memory.
  - 24. The non-transitory machine-readable storage medium of claim 23 wherein the operations further comprising:
    - determining whether second count value of the second counter is 0 upon determining that the first count value of the first counter is 0; and
      
      generating a second error code upon determining that the second count value of the second counter is not 0, wherein the second error code indicates that one or more child pages are currently being shared by the second VM.
  - 25. The non-transitory machine-readable storage medium of claim 24 wherein the operations further comprising:
    - evicting the parent page from the enclave memory upon determining that the second count value of the second counter is 0.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Intel Corporation
Original Assignee
Intel Corporation
Inventors
Leslie-Hurd, Rebekah M., McKeen, Francis X., Rozas, Carlos V., Chakrabarti, Somnath, Mallick, Asit

Granted Patent

US 9,977,743 B2
Time in Patent Office

Days
Field of Search
US Class Current
CPC Class Codes

G06F 12/0808   with cache invalidating mea...

G06F 12/0811   with multilevel cache hiera...

G06F 12/0824   Distributed directories, e....

G06F 12/084   with a shared cache

G06F 21/53   by executing in a restricte...

G06F 21/572   Secure firmware programming...

G06F 2212/1008   Correctness of operation, e...

G06F 2212/1052   Security improvement

G06F 2212/152   Virtualized environment, e....

G06F 2212/60   Details of cache memory

G06F 2212/62   Details of cache specific t...

G06F 2221/032   Protect output to user by s...

MANAGING ENCLAVE MEMORY PAGES

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

25 Claims

Specification

Solutions

Use Cases

Quick Links

MANAGING ENCLAVE MEMORY PAGES

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

25 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links