专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US08826278B2 Controlling memory conditions in a virtual machine 有权
标题翻译：控制虚拟机中的内存条件
公开(公告)号：US08826278B2
公开(公告)日：2014-09-02
申请号：US13346433
申请日：2012-01-09
申请人： Xiaoxin Chen , Carl A. Waldspurger , Anil Rao
发明人： Xiaoxin Chen , Carl A. Waldspurger , Anil Rao
IPC分类号： G06F9/455
CPC分类号： G06F9/45545 , G06F9/45533 , G06F9/45558 , G06F9/5016 , G06F9/5077 , G06F12/023 , G06F12/08 , G06F12/109 , G06F2009/45583 , G06F2209/508 , G06F2212/151
摘要： A method of managing host physical memory using a balloon application executing within a guest virtual machine (GVM) running on a host platform is described. The balloon application receives allocation parameters from an entity outside the GVM, the allocation parameters identifying an amount of memory for the balloon application to allocate. The balloon application adjusts the allocated amount of memory according to the allocated amount. Physical memory backing up the allocated memory can then be assigned by virtualization software for use by another virtual machine running on the host platform.
摘要翻译：描述使用在主机平台上运行的来宾虚拟机（GVM）内执行的气球应用来管理主机物理存储器的方法。气球应用程序从GVM外部的实体接收分配参数，分配参数标识气球应用程序分配的内存量。气球应用程序根据分配的数量调整分配的内存量。备份分配的内存的物理内存可以由虚拟化软件分配，供主机平台上运行的另一个虚拟机使用。

2. 发明授权

US08607013B2 Providing VMM access to guest virtual memory 有权
标题翻译：提供访问虚拟内存的VMM访问
公开(公告)号：US08607013B2
公开(公告)日：2013-12-10
申请号：US12261147
申请日：2008-10-30
申请人： Xiaoxin Chen , Carl A. Waldspurger , Pratap Subrahmanyam
发明人： Xiaoxin Chen , Carl A. Waldspurger , Pratap Subrahmanyam
IPC分类号： G06F12/00 , G06F13/00 , G06F13/28
CPC分类号： G06F9/461 , G06F9/4486 , G06F9/45533 , G06F9/45558 , G06F9/4881 , G06F11/1451 , G06F11/1484 , G06F2009/45562 , G06F2009/45583 , G06F2201/815 , G06F2201/84
摘要： A virtual-machine-based system provides a mechanism for a virtual machine monitor (VMM) to process a hypercall received from an application running in the virtual machine (VM). A hypercall interface causes the virtual memory pages, needed by the VMM to process the hypercall, to be available to the VMM. In one embodiment, when virtual memory pages needed by the VMM to process the hypercall are not available to the VMM, the application is caused to access the needed pages, in response to which the required virtual memory becomes available to the VMM.
摘要翻译：基于虚拟机的系统为虚拟机监视器（VMM）提供了一种机制，用于处理从虚拟机（VM）中运行的应用程序接收到的超级呼叫。一个超级呼叫界面使VMM所需的虚拟内存页面可以处理该超级调用，以供VMM使用。在一个实施例中，当VMM处理该超级呼叫所需的虚拟存储器页面对VMM不可用时，使应用程序访问所需的页面，响应于所需的虚拟存储器对VMM可用。

3. 发明授权

US08271450B2 Monitoring a data structure in a virtual machine and determining if memory pages containing the data structure are swapped into or out of guest physical memory 有权
标题翻译：监视虚拟机中的数据结构，并确定包含数据结构的内存页是否与客户物理内存进行交换
公开(公告)号：US08271450B2
公开(公告)日：2012-09-18
申请号：US12572158
申请日：2009-10-01
申请人： Oded Horovitz , Ophir Rachman , Wei Xu , Adrian Drzewiecki , Xiaoxin Chen
发明人： Oded Horovitz , Ophir Rachman , Wei Xu , Adrian Drzewiecki , Xiaoxin Chen
IPC分类号： G06F7/00 , G06F17/00
CPC分类号： G06F11/301 , G06F11/3089 , G06F12/10 , G06F21/53 , G06F21/566 , G06F2009/45583 , G06F2009/45587 , G06F2221/2101
摘要： A method for monitoring a data structure maintained by guest software within a virtual machine is disclosed. Changes to the contents of the data structure are determined, such as by placing write traces on the memory pages containing the data structure. Also, the method involves determining when memory pages containing the data structure are swapped into and/or out of guest physical memory by the guest software, such as by placing write traces on the memory pages containing the guest page table and detecting changes to the present bit of page table entries involved in mapping virtual addresses for the data structure. Information about the contents of the data structure is retained while memory pages containing the data structure are swapped out of guest physical memory.
摘要翻译：公开了一种用于监视由虚拟机内的客户软件维护的数据结构的方法。确定对数据结构内容的更改，例如通过在包含数据结构的内存页上放置写入轨迹。此外，该方法包括确定包含数据结构的存储器页面何时由客户软件交换到和/或离开客户机物理存储器，例如通过在包含访客页面表的存储器页面上放置写入跟踪并检测对当前的变化参与映射数据结构的虚拟地址的页表项的位。关于数据结构的内容的信息被保留，而包含数据结构的存储器页面被从客体物理存储器换出。

4. 发明授权

US08261265B2 Transparent VMM-assisted user-mode execution control transfer 有权
标题翻译：透明VMM辅助用户模式执行控制传输
公开(公告)号：US08261265B2
公开(公告)日：2012-09-04
申请号：US12261623
申请日：2008-10-30
申请人： Xiaoxin Chen , Carl A. Waldspurger , Pratap Subrahmanyam , Tal Garfinkel , Daniel R. K. Ports
发明人： Xiaoxin Chen , Carl A. Waldspurger , Pratap Subrahmanyam , Tal Garfinkel , Daniel R. K. Ports
IPC分类号： G06F9/455
CPC分类号： G06F9/461 , G06F9/4486 , G06F9/45533 , G06F9/45558 , G06F9/4881 , G06F11/1451 , G06F11/1484 , G06F2009/45562 , G06F2009/45583 , G06F2201/815 , G06F2201/84
摘要： A virtual-machine-based system provides a control-transfer mechanism to invoke a user-mode application handler from existing virtual hardware directly, without going through an operating system kernel running in the virtual machine. A virtual machine monitor calls directly to the guest user-mode handler and the handler transfers control back to the virtual machine monitor, without involving the guest operating system.
摘要翻译：基于虚拟机的系统提供了一种控制传递机制，可以直接从现有的虚拟硬件调用用户模式应用程序处理程序，而无需通过在虚拟机中运行的操作系统内核。虚拟机监视器直接调用访客用户模式处理程序，处理程序将控制器传送回虚拟机监视器，而不涉及客户机操作系统。

5. 发明授权

US08166253B2 Memory management system in a computer system with shared memory mappings 有权
标题翻译：具有共享内存映射的计算机系统中的内存管理系统
公开(公告)号：US08166253B2
公开(公告)日：2012-04-24
申请号：US13209261
申请日：2011-08-12
申请人： Anil Rao , Carl A. Waldspurger , Xiaoxin Chen
发明人： Anil Rao , Carl A. Waldspurger , Xiaoxin Chen
IPC分类号： G06F12/00 , G06F13/00 , G06F13/28
CPC分类号： G06F12/121 , G06F12/109 , G06F2212/656
摘要： A memory management sub-system includes code executable by a processor fir performing selecting a plurality of contexts, and selecting a sample of the separately allocable portions of an address space for each of the contexts. For each of the selected allocable portions, a corresponding portion of the host memory to which the selected allocable portion is mapped is determined, and a count corresponding to a number of separately allocable portions of any context that are commonly mapped to the corresponding portion of the host memory. For each context, a metric is computed that is a function of the counts for that context. Host memory is allocated among the contexts at least in part based on their respective metrics.
摘要翻译：存储器管理子系统包括可由执行选择多个上下文的处理器执行的代码，以及为每个上下文选择地址空间的可单独分配的部分的样本。对于每个所选择的可分配部分，确定所选择的可分配部分映射到的主机存储器的相应部分，并且对应于通常映射到所述可分配部分的相应部分的任何上下文的可分配部分的数量的计数主机内存对于每个上下文，计算度量是该上下文计数的函数。主机内存至少部分地基于它们各自的度量被分配在上下文之中。

6. 发明授权

US07702843B1 Determining memory conditions in a virtual machine 有权
标题翻译：确定虚拟机中的内存条件
公开(公告)号：US07702843B1
公开(公告)日：2010-04-20
申请号：US11525561
申请日：2006-09-21
申请人： Xiaoxin Chen , Carl Waldspurger , Anil Rao
发明人： Xiaoxin Chen , Carl Waldspurger , Anil Rao
IPC分类号： G06F21/00 , G06F12/00 , G06F9/455
CPC分类号： G06F9/45545 , G06F9/45533 , G06F9/45558 , G06F9/5016 , G06F9/5077 , G06F12/023 , G06F12/08 , G06F12/109 , G06F2009/45583 , G06F2209/508 , G06F2212/151
摘要： Memory assigned to a virtual machine is reclaimed. A resource reservation application running as a guest application on the virtual machine reserves a location in guest virtual memory. The corresponding physical memory can be reclaimed and allocated to another virtual machine. The resource reservation application allows detection of guest virtual memory page-out by the guest operating system. Measuring guest virtual memory page-out is useful for determining memory conditions inside the guest operating system. Given determined memory conditions, memory allocation and reclaiming can be used control memory conditions. Memory conditions in the virtual machine can be controlled with the objective of achieving some target memory conditions.
摘要翻译：回收分配给虚拟机的内存。在虚拟机上作为访客应用程序运行的资源预留应用程序在guest虚拟机中保留位置。相应的物理内存可以被回收并分配给另一个虚拟机。资源预留应用程序允许由客户操作系统检测访客虚拟存储器页面输出。测量访客虚拟内存页面输出对于确定客户机操作系统中的内存条件非常有用。给定确定的内存条件，内存分配和回收可以用于控制内存条件。可以通过实现一些目标内存条件来控制虚拟机中的内存条件。

7. 发明申请

US20090113111A1 SECURE IDENTIFICATION OF EXECUTION CONTEXTS 审中-公开
标题翻译：安全执行执行标识
公开(公告)号：US20090113111A1
公开(公告)日：2009-04-30
申请号：US12261159
申请日：2008-10-30
申请人： Xiaoxin Chen , Carl A. Waldspurger , Pratap Subrahmanyam
发明人： Xiaoxin Chen , Carl A. Waldspurger , Pratap Subrahmanyam
IPC分类号： G06F12/08
CPC分类号： G06F9/461 , G06F9/4486 , G06F9/45533 , G06F9/45558 , G06F9/4881 , G06F11/1451 , G06F11/1484 , G06F2009/45562 , G06F2009/45583 , G06F2201/815 , G06F2201/84
摘要： A virtual-machine-based system that identifies an application or process in a virtual machine in order to locate resources associated with the identified application. Access to the located resources is then controlled based on a context of the identified application. Those applications without the necessary context will have a different view of the resource.
摘要翻译：基于虚拟机的系统，其识别虚拟机中的应用或进程，以便定位与所识别的应用相关联的资源。然后基于所识别的应用的上下文来控制对所定位的资源的访问。那些没有必要上下文的应用程序将具有不同的资源视图。

8. 发明授权

US07409487B1 Virtualization system for computers that use address space indentifiers 有权
标题翻译：使用地址空间标识符的计算机的虚拟化系统
公开(公告)号：US07409487B1
公开(公告)日：2008-08-05
申请号：US10609877
申请日：2003-06-30
申请人： Xiaoxin Chen , Alberto J. Munoz , Sahil Rihan
发明人： Xiaoxin Chen , Alberto J. Munoz , Sahil Rihan
IPC分类号： G06F12/00 , G06F9/26 , G06F21/00
CPC分类号： G06F12/1036 , G06F12/109 , G06F2009/45583
摘要： A virtual computer system including multiple virtual machines (VMs) is implemented in a physical computer system that uses address space identifiers (ASIDs). Each VM includes a virtual translation look-aside buffer (TLB), in which guest software, executing on the VM, may insert address translations, with each translation including an ASID. For each ASID used by guest software, a virtual machine monitor (VMM), or other software unit, assigns a unique shadow ASID for use in corresponding address translations in a hardware TLB. If a unique shadow ASID is not available for a newly used guest ASID, the VMM reassigns a shadow ASID from a prior guest ASID to the new guest ASID, purging any entries in the hardware TLB corresponding to the prior guest ASID. Assigning unique shadow ASIDs limits the need for TLB purges upon switching between the multiple VMs, reducing the number of TLB miss faults, and consequently improving overall processing efficiency.
摘要翻译：在使用地址空间标识符（ASID）的物理计算机系统中实现包括多个虚拟机（VM）的虚拟计算机系统。每个虚拟机包括虚拟翻译后备缓冲器（TLB），其中在VM上执行的客户机软件可以插入地址转换，每个转换包括ASID。对于访客软件使用的每个ASID，虚拟机监视器（VMM）或其他软件单元分配一个唯一的影子ASID，用于硬件TLB中相应的地址转换。如果唯一的影子ASID不适用于新使用的客户机ASID，则VMM将从先前客户机ASID的影子ASID重新分配给新的客户机ASID，清除与先前客户机ASID相对应的硬件TLB中的任何条目。分配唯一的影子ASID限制了在多个VM之间切换时对TLB清除的需求，减少了TLB未命中故障的数量，从而提高了整体处理效率。

9. 发明授权

US07278030B1 Virtualization system for computers having multiple protection mechanisms 有权
标题翻译：具有多重保护机制的计算机的虚拟化系统
公开(公告)号：US07278030B1
公开(公告)日：2007-10-02
申请号：US10378126
申请日：2003-03-03
申请人： Xiaoxin Chen , Alberto J. Munoz , Jeffrey W. Sheldon
发明人： Xiaoxin Chen , Alberto J. Munoz , Jeffrey W. Sheldon
IPC分类号： G06F11/30 , G06F12/14
CPC分类号： G06F12/1466 , G06F9/45537
摘要： In a virtual computer system, the invention virtualizes a primary protection mechanism, which restricts memory accesses based on the type of access attempted and a current hardware privilege level, using a secondary protection mechanism, which is independent of the hardware privilege level. The invention may be used to virtualize the protection mechanisms of the Intel IA-64 architecture. In this embodiment, virtual access rights settings in a virtual TLB are translated into shadow access rights settings in a hardware TLB, while virtual protection key settings in a virtual PKR cache are translated into shadow protection key settings in a hardware PKR cache, based in part on the virtual access rights settings. The shadow protection key settings are dependent on the guest privilege level, but the shadow access rights settings are not.
摘要翻译：在虚拟计算机系统中，本发明使用独立于硬件特权级别的次级保护机制来虚拟化主保护机制，其基于尝试的访问类型和当前硬件特权级别来限制存储器访问。本发明可以用于虚拟化Intel IA-64架构的保护机制。在该实施例中，虚拟TLB中的虚拟访问权限设置被转换为硬件TLB中的影子访问权限设置，而虚拟PKR高速缓存中的虚拟保护密钥设置被部分地转换为硬件PKR高速缓存中的影子保护密钥设置对虚拟访问权限设置。影子保护键设置取决于访客权限级别，但影子访问权限设置不是。

10. 发明授权

US09274974B1 Isolating data within a computer system using private shadow mappings 有权
标题翻译：使用私有阴影映射隔离计算机系统内的数据
公开(公告)号：US09274974B1
公开(公告)日：2016-03-01
申请号：US11584178
申请日：2006-10-20
申请人： Xiaoxin Chen , Carl A. Waldspurger , Pratap Subrahmanyam
发明人： Xiaoxin Chen , Carl A. Waldspurger , Pratap Subrahmanyam
IPC分类号： G06F12/10
CPC分类号： G06F9/45558 , G06F12/109 , G06F12/1491 , G06F2009/45583 , G06F2212/1052 , G06F2212/151 , G06F2212/657
摘要： Virtualization software establishes multiple execution environments within a virtual machine, wherein software modules executing in one environment cannot access private memory of another environment. A separate set of shadow memory address mappings is maintained for each execution environment. For example, a separate shadow page table may be maintained for each execution environment. The virtualization software ensures that the shadow address mappings for one execution environment do not map to the physical memory pages that contain the private code or data of another execution environment. When execution switches from one execution environment to another, the virtualization software activates the shadow address mappings for the new execution environment. A similar approach, using separate mappings, may also be used to prevent software modules in one execution environment from accessing the private disk space or other secondary storage of another execution environment.
摘要翻译：虚拟化软件在虚拟机内建立多个执行环境，其中在一个环境中执行的软件模块不能访问另一环境的专用内存。为每个执行环境维护一组单独的影子内存地址映射。例如，可以为每个执行环境维护单独的影子页表。虚拟化软件确保一个执行环境的影子地址映射不映射到包含其他执行环境的私有代码或数据的物理内存页面。当执行从一个执行环境切换到另一个执行环境时，虚拟化软件会激活新执行环境的影子地址映射。使用单独映射的类似方法也可用于防止一个执行环境中的软件模块访问另一个执行环境的专用磁盘空间或其他辅助存储。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式