Protected configuration space in a protected environment
First Claim
1. An apparatus, comprising:
- an interface coupled to at least one processor, the interface external to the at least one processor and to communicate with the at least one processor;
a first set of registers coupled to the interface, the first set of registers external to the interface and accessible within a first predetermined range of memory addresses, the first set of registers to include control information and status information for a protected operating environment;
a logic circuit coupled to the first set of registers to determine a source of a protected command; and
a control logic coupled between the interface and the first set of registers, the control logic to perform a first operation specified by the protected command, the first operation includes writing to at least one register in the first set of registers if the source is a processor in the at least one processor.
0 Assignments
0 Petitions
Accused Products
Abstract
A protected configuration space is implemented as at least one range of memory addresses that are mapped to logic external to system memory. The memory addresses access logic that performs control and status operations pertaining to a protected operating environment. Some of the addresses may access protected configuration registers. Commands having destination addresses within the protected configuration space may not be completed if the commands are not issued by a processor, or if the commands are not part of a group of one or more designated protected commands. A separately addressable non-protected configuration space may also be implemented, accessible by processors, non-processors and/or non-protected commands.
125 Citations
17 Claims
-
1. An apparatus, comprising:
-
an interface coupled to at least one processor, the interface external to the at least one processor and to communicate with the at least one processor; a first set of registers coupled to the interface, the first set of registers external to the interface and accessible within a first predetermined range of memory addresses, the first set of registers to include control information and status information for a protected operating environment; a logic circuit coupled to the first set of registers to determine a source of a protected command; and a control logic coupled between the interface and the first set of registers, the control logic to perform a first operation specified by the protected command, the first operation includes writing to at least one register in the first set of registers if the source is a processor in the at least one processor. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A method, comprising:
-
issuing a protected command to a first memory address within a first range of memory addresses reserved for a protected configuration space; redirecting the protected command to a logic circuit external to the first memory; determining a source of the protected command; and performing a first operation specified by the protected command within the logic circuit including writing to a protected configuration register in response to detecting the source is a processor. - View Dependent Claims (13, 14, 15, 16, 17)
-
Specification