| CPC G06F 21/6209 (2013.01) [G06F 9/45558 (2013.01); G06F 2009/45583 (2013.01)] | 6 Claims |
|
1. A method, comprising:
storing a set of permission bits for a plurality of predefined domains and for a register of a processor in a set of permission registers, wherein each of the plurality of predefined domains has its own corresponding permission register in the set of permission registers, and wherein each corresponding permission register is accessible only to a predefined domain of the plurality of predefined domains to which the respective corresponding permission register is associated, wherein the plurality of predefined domains comprises at least one of each of a domain for hypervisor, a domain for operating system, and a domain for application;
receiving, in the processor, a first request to access the register during a first execution of a first set of instructions;
identifying, among the plurality of predefined domains, a first execution domain that contains the first execution of the first set of instructions;
retrieving, from a first permission register of the set of permission registers, a first permission bit corresponding to the first execution domain; and
controlling, by the processor and based on the first permission bit, the first request to access the register;
receiving, in the processor, a second request to access the register during a second execution of a second set of instructions;
identifying, among the plurality of predefined domains, a second execution domain that contains the second execution of the second set of instructions;
retrieving, from a second permission register of the set of permission registers, a second permission bit corresponding to the second execution domain; and
controlling, by the processor and based on the second permission bit, the second request to access the register.
|