-
公开(公告)号:EP3114562A1
公开(公告)日:2017-01-11
申请号:EP15758659.5
申请日:2015-03-04
申请人: Intel Corporation
发明人: NAKAJIMA, Jun
CPC分类号: G06F9/45533 , G06F9/441 , G06F9/4843
摘要: The present application is directed to dynamic reassignment for multi-OS devices. An example device may comprise equipment, at least two operating systems, a kernel for each OS to provide an interface between the OS and the equipment and a virtual machine manager (VMM). OS selection agents in each OS may interact with a kernel mode controller (KMC) in the VMM. For example, the OS selection agent may transmit a message instructing the KMC to transition the foreground OS to the background and transition a background OS to the foreground. The KMC may transmit signals to the kernels of the foreground and background operating systems causing at least one driver in the foreground OS kernel to save a current equipment state and release control over the equipment while also causing at least one driver in the background OS kernel to restore an equipment state and to take control over the equipment.
摘要翻译: 本申请涉及多OS设备的动态重新分配。 示例设备可以包括设备,至少两个操作系统,用于每个OS的内核以在OS和设备之间提供接口以及虚拟机管理器(VMM)。 每个OS中的OS选择代理可以与VMM中的内核模式控制器(KMC)进行交互。 例如,OS选择代理可以发送指示KMC的消息将前景OS转换到背景并将背景OS转换到前景。 KMC可以向前台和后台操作系统的内核传送信号,导致前台OS内核中的至少一个驱动程序保存当前的设备状态并释放对设备的控制,同时还使后台OS内核中的至少一个驱动程序 恢复设备状态并控制设备。
-
2.发明授权
公开(公告)号:EP2985718B1
公开(公告)日:2017-03-22
申请号:EP15176644.1
申请日:2015-07-14
申请人: Intel Corporation
发明人: NAKAJIMA, Jun , TSAI, Jr-Shian , SAHITA, Ravi L. , ERGIN, Mesut A. , VERPLANKE, Edwin , PATEL, Rashmin N. , MIN, Alexander W. , WANG, Ren , TAI, Tsung-Yuan C.
CPC分类号: G06F12/1475 , G06F9/455 , G06F9/45558 , G06F9/50 , G06F21/44 , G06F21/606 , G06F2009/45583 , G06F2009/45587 , G06F2212/1052 , H04L49/70
-
3.发明公开
公开(公告)号:EP2985718A1
公开(公告)日:2016-02-17
申请号:EP15176644.1
申请日:2015-07-14
申请人: Intel Corporation
发明人: NAKAJIMA, Jun , TSAI, Jr-Shian , SAHITA, Ravi L. , ERGIN, Mesut A. , VERPLANKE, Edwin , PATEL, Rashmin N. , MIN, Alexander W. , WANG, Ren , TAI, Tsung-Yuan C.
IPC分类号: G06F21/60 , G06F21/44 , G06F21/45 , G06F9/45 , H04L12/931
CPC分类号: G06F12/1475 , G06F9/455 , G06F9/45558 , G06F9/50 , G06F21/44 , G06F21/606 , G06F2009/45583 , G06F2009/45587 , G06F2212/1052 , H04L49/70
摘要: Technologies for secure inter-virtual-machine shared memory communication include a computing device with hardware virtualization support. A virtual machine monitor (VMM) authenticates a view switch component of a target virtual machine. The VMM adds configures a secure memory view to access a shared memory segment. The shared memory segment may include memory pages of a source virtual machine or the VMM. The view switch component switches to the secure memory view without generating a virtual machine exit event, using the hardware virtualization support. The view switch component may switch to the secure memory view by modifying an extended page table (EPT) pointer. The target virtual machine accesses the shared memory segment via the secure memory view. The target virtual machine and the source virtual machine may coordinate ownership of memory pages using a secure view control structure stored in the shared memory segment. Other embodiments are described and claimed.
摘要翻译: 用于安全间虚拟机共享存储器通信技术包括与硬件虚拟化支持的计算设备。 虚拟机监视器(VMM)认证目标虚拟机的视图开关组件。 在VMM将配置一个安全存储器以访问共享存储器段。 共享存储器段可以包括源虚拟机或VMM的存储器页。 视图开关元件切换到安全存储器视图,而不会产生一个虚拟机退出事件,使用硬件虚拟化支持。 视图开关元件可以通过在扩展页表(EPT)的指针修改切换到安全存储器视图。 目标虚拟机访问经由所述安全存储器视图共享存储器段。 目标虚拟机和源虚拟机可以协调的使用存储在共享存储器段安全视图控制结构的存储器页的所有权。 其他实施例中描述并要求保护。
-
公开(公告)号:EP3338413A1
公开(公告)日:2018-06-27
申请号:EP16837789.3
申请日:2016-08-17
申请人: Intel Corporation
发明人: ERGIN, Mesut , TSAI, Jr-Shian , TSENG, Janet , WANG, Ren , NAKAJIMA, Jun , TAI, Tsung-Yuan
IPC分类号: H04L12/713 , H04L12/947 , H04L12/801
CPC分类号: H04L67/1097 , H04L43/103 , H04L45/306 , H04L45/38 , H04L45/586 , H04L47/30
摘要: Various embodiments are generally directed to techniques for improving the efficiency of exchanging packets between pairs of VMs within a communications server. An apparatus may include a processor component; a network interface to couple the processor component to a network; a virtual switch to analyze contents of at least one packet of a set of packets to be exchanged between endpoint devices through the network and the communications server, and to route the set of packets through one or more virtual servers of multiple virtual servers based on the contents; and a transfer component of a first virtual server of the multiple virtual servers to determine whether to route the set of packets to the virtual switch or to transfer the set of packets to a second virtual server of the multiple virtual servers in a manner that bypasses the virtual switch based on a routing rule.
-
公开(公告)号:EP4020275A1
公开(公告)日:2022-06-29
申请号:EP21198666.6
申请日:2021-09-23
申请人: INTEL Corporation
发明人: SAHITA, Ravi , CASPI, Dror , SCARLATA, Vincent , YANIV, Sharon , CHAIKIN, Baruch , SHANBHOGUE, Vedvyas , NAKAJIMA, Jun , THIYAGARAJAH, Arumugam , CHRISTOPHERSON, Sean , XIA, Haidong , AWASTHI, Vinay , YAMAHATA, Isaku , WANG, Wei , ADELMEYER, Thomas
摘要: Techniques for migration of a source protected virtual machine from a source platform to a destination platform are descried. A method of an aspect includes enforcing that bundles of state, of a first protected virtual machine (VM), received at a second platform over a stream, during an in-order phase of a migration of the first protected VM from a first platform to the second platform, are imported to a second protected VM of the second platform, in a same order that they were exported from the first protected VM. Receiving a marker over the stream marking an end of the in-order phase. Determining that all bundles of state exported from the first protected VM prior to export of the marker have been imported to the second protected VM. Starting an out-of-order phase of the migration based on the determination that said all bundles of the state exported have been imported.
-
-
-
-
搜索结果
5 条记录 (耗时 0.009 秒)
