DATA CACHE SEGREGATION FOR SPECTRE MITIGATION
First Claim
Patent Images
1. A device comprising:
- at least one central processing unit (CPU) core comprising;
at least a first CPU thread;
at least a first L1 cache accessible to the first CPU thread;
plural signal lines for communicating data between the first CPU thread and the first L1 cache, the CPU thread being configured to expose a binary value on at least a mode signal line of the plural signal lines, a first binary value on the mode signal line indicating a memory address associated only with kernel mode cache, a second binary value on the mode signal line indicating a memory address associated only with user mode cache, wherein data associated with a user mode application can be written to and read from only user mode cache such that no user mode application can detect operations of the kernel mode cache.
1 Assignment
0 Petitions
Accused Products
Abstract
The data cache of a processor is segregated by execution mode, eliminating the danger of certain malware by no longer sharing the resource. Kernel-mode software can adjust the relative size of the two portions of the data cache, to dynamically accommodate the data-cache needs of varying workloads.
0 Citations
20 Claims
-
1. A device comprising:
-
at least one central processing unit (CPU) core comprising; at least a first CPU thread; at least a first L1 cache accessible to the first CPU thread; plural signal lines for communicating data between the first CPU thread and the first L1 cache, the CPU thread being configured to expose a binary value on at least a mode signal line of the plural signal lines, a first binary value on the mode signal line indicating a memory address associated only with kernel mode cache, a second binary value on the mode signal line indicating a memory address associated only with user mode cache, wherein data associated with a user mode application can be written to and read from only user mode cache such that no user mode application can detect operations of the kernel mode cache. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. An apparatus comprising:
-
at least one central processing unit (CPU) core comprising; at least a first CPU thread; and an L1 cache assembly accessible to the first CPU thread; the L1 cache assembly being partitioned into user mode cache and kernel mode cache. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18)
-
-
19. A method, comprising:
-
segregating data cache of a processor according to execution mode, execution mode comprising kernel mode and user mode; and writing user mode application data only to user mode cache, eliminating possibility of malware discerning operation in kernel mode cache by not sharing kernel mode cache with user mode software. - View Dependent Claims (20)
-
Specification