Processors, methods, systems, and instructions to support live migration of protected containers

US 9,710,401 B2
Filed: 06/26/2015
Issued: 07/18/2017
Est. Priority Date: 06/26/2015
Status: Active Grant

First Claim

Patent Images

1. A processor comprising:

a die;

a decode unit on the die to decode an instruction of an instruction set of the processor, the instruction to indicate a page of a protected container memory, and to indicate a storage location outside of the protected container memory; and

an execution unit on the die and including at least some hardware, the execution unit coupled with the decode unit, the execution unit, in response to the instruction of the instruction set of the processor, to;

ensure that no writable permissions for the page of the protected container memory are cached in the processor while the page of the protected container memory has a write protected state;

encrypt a copy of the page of the protected container memory;

store the encrypted copy of the page to the indicated storage location outside of the protected container memory, after it has been ensured that there are no writable references to the page of the protected container memory; and

leave the page of the protected container memory in the write protected state, which is also to be valid and readable, after the encrypted copy of the page has been stored to the indicated storage location outside of the protected container memory.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A processor includes a decode unit to decode an instruction that is to indicate a page of a protected container memory, and a storage location outside of the protected container memory. An execution unit, in response to the instruction, is to ensure that there are no writable references to the page of the protected container memory while it has a write protected state. The execution unit is to encrypt a copy of the page of the protected container memory. The execution unit is to store the encrypted copy of the page to the storage location outside of the protected container memory, after it has been ensured that there are no writable references. The execution unit is to leave the page of the protected container memory in the write protected state, which is also valid and readable, after the encrypted copy has been stored to the storage location.

46 Citations

View as Search Results

22 Claims

1. A processor comprising:
- a die;
  
  a decode unit on the die to decode an instruction of an instruction set of the processor, the instruction to indicate a page of a protected container memory, and to indicate a storage location outside of the protected container memory; and
  
  an execution unit on the die and including at least some hardware, the execution unit coupled with the decode unit, the execution unit, in response to the instruction of the instruction set of the processor, to;
  
  ensure that no writable permissions for the page of the protected container memory are cached in the processor while the page of the protected container memory has a write protected state;
  
  encrypt a copy of the page of the protected container memory;
  
  store the encrypted copy of the page to the indicated storage location outside of the protected container memory, after it has been ensured that there are no writable references to the page of the protected container memory; and
  
  leave the page of the protected container memory in the write protected state, which is also to be valid and readable, after the encrypted copy of the page has been stored to the indicated storage location outside of the protected container memory.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
- - 2. The processor of claim 1, wherein the decode unit is to decode the instruction which is to indicate the page of the protected container memory that is already to have the write protected state.
  - 3. The processor of claim 1, wherein the execution unit, in response to the instruction, is to write protect the indicated page of the protected container memory.
  - 4. The processor of claim 1, wherein the decode unit is to decode the instruction which is to indicate the page of the protected container memory, which is to be in a processor reserved memory, and the instruction is to indicate the storage location which is to be outside of the processor reserved memory.
  - 5. The processor of claim 1, wherein the execution unit, in response to the instruction, is to ensure that there are no writeable permissions for the page by ensuring that all translations for the page of the protected container memory have been flushed from all translation lookaside buffers of the processor.
  - 6. The processor of claim 1, wherein the execution unit, in response to the instruction, is to store a version of the page having the write protected state in the protected container memory.
  - 7. The processor of claim 1, wherein the execution unit, in response to the instruction, is to determine that a migration capable key structure, which is to have one or more migration capable cryptographic keys, has control over the page of the protected container memory prior to the encrypted copy of the page being stored to the indicated storage location.
  - 8. The processor of claim 1, wherein the decode unit is to decode the instruction which is to indicate a page metadata structure, and wherein the execution unit, in response to the instruction, is to store metadata corresponding to the indicated page in the page metadata structure, wherein the metadata is to include a plurality of a page type, a modification status, a read permission status, a write permission status, and an execution permission status, all corresponding to the indicated page.
  - 9. The processor of claim 1, wherein the decode unit is to decode the instruction which is to indicate the page of the protected container memory which is to be an enclave page in an enclave page cache.
  - 10. The processor of claim 1, wherein the decode unit is to decode the instruction which is to have an implicit general-purpose register that is to have an indication of the page of the protected container memory.
  - 11. The processor of claim 1, wherein the decode unit is to decode the instruction which is to be a privileged-level instruction.
  - 12. The processor of claim 1, further comprising:
    - a branch prediction unit to predict branches;
      
      an instruction prefetch unit coupled with the branch prediction unit, the instruction prefetch unit to prefetch instructions including the instruction;
      
      a level 1 (L1) instruction cache coupled with the instruction prefetch unit, the L1 instruction cache to store instructions;
      
      an L1 data cache to store data;
      
      a level 2 (L2) cache to store data and instructions;
      
      an instruction fetch unit coupled with the decode unit, the L1 instruction cache, and the L2 cache, to fetch the instruction from one of the L1 instruction cache and the L2 cache, and to provide the instruction to the decode unit;
      
      a register rename unit to rename registers;
      
      a scheduler to schedule one or more operations that have been decoded from the instruction for execution; and
      
      a commit unit to commit execution results of the instruction.

13. A method of performing from one to three machine instructions in a processor to perform operations comprising:
- write protecting a page of a protected container memory with an execution unit that is on a die of the processor and that includes at least some hardware, wherein the protected container memory is part of main memory and is in dynamic random access memory (DRAM);
  
  ensuring that no writable permissions for the page of the protected container memory are cached in the processor;
  
  encrypting a copy of the page of the protected container memory;
  
  storing the encrypted copy of the page of the protected container memory to a storage location that is outside of the protected container memory, wherein the storage location that is outside of the protected container memory is part of the main memory and is in the DRAM, after said ensuring that there are no writable references to the write protected page of the protected container memory; and
  
  leaving the write protected page of the protected container memory in a valid and readable state after said storing the encrypted copy of the page of the protected container memory to the storage location that is outside of the protected container memory.
- View Dependent Claims (14, 15, 16, 17, 18)
- - 14. The method of claim 13, further comprising reading the write protected page after said storing the encrypted copy of the page to the storage location.
  - 15. The method of claim 13, wherein said write protecting the page comprises configuring a write protection indication in a protected container page metadata structure to indicate that the page is write protected, wherein the protected container page metadata structure stores security metadata for the write protected page.
  - 16. The method of claim 15, wherein said configuring the write protection indication in the protected container page metadata structure comprises setting a write protect bit in an enclave page cache map.
  - 17. The method of claim 13, further comprising:
    - detecting an attempted write to the write protected page of the protected container memory;
      
      write unprotecting the page of the protected container memory; and
      
      invalidating the encrypted copy of the page stored in the storage location that is outside of the protected container memory.
  - 18. The method of claim 13, wherein said write protecting is performed in response to performing a first of the machine instructions, and wherein said encrypting, said ensuring, said storing, and said leaving are performed in response to performing a second of the machine instructions.

19. A system to process instructions comprising:
- an interconnect;
  
  a processor coupled with the interconnect, the processor to receive an instruction of an instruction set of the processor, the instruction to indicate a page of a protected container memory, and to indicate a storage location outside of the protected container memory, the processor, in response to the instruction of the instruction set of the processor, to;
  
  ensure that there are no writable references to the page of the protected container memory, while the page of the protected container memory has a write protected state;
  
  encrypt a copy of the page of the protected container memory;
  
  store the encrypted copy of the page to the indicated storage location outside of the protected container memory, after it has been ensured that there are no writable references to the page of the protected container memory; and
  
  leave the page of the protected container memory in the write protected state, which is also to be valid and readable, after the encrypted copy of the page has been stored to the indicated storage location outside of the protected container memory; and
  
  a dynamic random access memory (DRAM) coupled with the interconnect.
- View Dependent Claims (20)
- - 20. The system of claim 19, wherein the processor is to receive the instruction which is to indicate the page of the protected container memory that is already to have the write protected state.

21. An article of manufacture comprising a non-transitory machine-readable storage medium, the non-transitory machine-readable storage medium storing from one to three machine instructions that if executed by a machine are to cause the machine to perform operations comprising to:
- write protect a page of a protected container memory, wherein the protected container memory is to be part of main memory;
  
  ensure that there are no writable references to the write protected page of the protected container memory;
  
  encrypt a copy of the page of the protected container memory;
  
  store the encrypted copy of the page of the protected container memory to a storage location that is outside of the protected container memory, wherein the storage location that is outside of the protected container memory is to be part of the main memory, after it has been ensured that there are no writable references to the write protected page of the protected container memory; and
  
  leave the write protected page of the protected container memory in a valid and readable state after said storage the encrypted copy of the page of the protected container memory to the storage location that is outside of the protected container memory.
- View Dependent Claims (22)
- - 22. The article of manufacture of claim 21, wherein the non-transitory machine-readable storage medium further stores from one to two machine instructions that if executed by a machine are to cause the machine to perform operations comprising to:
    - write unprotect the page of the protected container memory after a detected attempted write to the write protected page of the protected container memory; and
      
      invalidate the encrypted copy of the page stored in the storage location that is outside of the protected container memory.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Intel Corporation
Original Assignee
Intel Corporation
Inventors
Vij, Mona, Zmudzinski, Krystof C., Rozas, Carlos V., Leslie-Hurd, Rebekah M., Chakrabarti, Somnath, McKeen, Francis X., Scarlata, Vincent R., Johnson, Simon P., Alexandrovich, Ilya, Neiger, Gilbert, Shanbhogue, Vedvyas, Anati, Ittai
Primary Examiner(s)
Reza, Mohammad W

Application Number

US14/752,227
Publication Number

US 20160378688A1
Time in Patent Office

753 Days
Field of Search

713190
US Class Current
CPC Class Codes

G06F 12/1408   by using cryptography for d...

G06F 12/1441   for a range

G06F 12/1483   using an access-table, e.g....

G06F 2009/4557   Distribution of virtual mac...

G06F 2009/45587   Isolation or security of vi...

G06F 21/53   by executing in a restricte...

G06F 21/602   Providing cryptographic fac...

G06F 2212/1052   Security improvement

G06F 8/41   Compilation

G06F 9/30145   Instruction analysis, e.g. ...

G06F 9/45558   Hypervisor-specific managem...

Processors, methods, systems, and instructions to support live migration of protected containers

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

46 Citations

22 Claims

Specification

Solutions

Use Cases

Quick Links

Processors, methods, systems, and instructions to support live migration of protected containers

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

46 Citations

22 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links