公开(公告)号：US11113071B1

公开(公告)日：2021-09-07

申请号：US16935903

申请日：2020-07-22

Applicant: VMware, Inc.

Inventor： Cyprien Laplace ,  Andrei Warkentin ,  Shruthi Muralidhara Hiriyuru ,  Ye Li ,  Alexander Fainkichen ,  Regis Duchesne ,  Sunil Kumar Kotian ,  Renaud Benjamin Voltz

IPC: G06F9/44 ,  G06F9/4401 ,  G06F8/61

Abstract: A method for booting a computer system includes: loading a first stage bootloader of a plurality of first stage bootloaders from a boot image based on a known configuration of the computer system; executing the first stage bootloader to identify a selected bootbank of a plurality of bootbanks in the boot image based on the known configuration of the computer system; executing, by the first stage bootloader, a second stage bootloader from the boot image with an instruction to boot from the selected bootbank; and executing, by the second stage bootloader, a binary file in the selected bootbank.

公开(公告)号：US10922253B1

公开(公告)日：2021-02-16

申请号：US16660337

申请日：2019-10-22

Applicant: VMware, Inc.

Inventor： Regis Duchesne ,  Alexander Fainkichen ,  Cyprien Laplace ,  Ye Li ,  Andrei Warkentin

IPC: G06F13/24 ,  G06F13/16 ,  G06F13/10

Abstract: Disclosed are various embodiments for software-based interrupt remapping. A memory address for a respective interrupt request of the peripheral device is allocated. The peripheral device is then configured to write to the memory address to raise an interrupt with the processor. Later, it can be determined that the peripheral device has attempted to write to the memory address. In response, an interrupt can be raised for the respective interrupt request with the processor of the computing device on behalf of the peripheral device.

公开(公告)号：US10853284B1

公开(公告)日：2020-12-01

申请号：US16518818

申请日：2019-07-22

Applicant: VMware, Inc.

Inventor： Andrei Warkentin ,  Ye Li ,  Alexander Fainkichen ,  Cyprien Laplace

IPC: G06F13/26 ,  G06F13/42

Abstract: A method of handling message signaled interrupts in a computer system that uses an internal bus for communication between peripheral devices, using shared peripheral interrupt (SPI) vectors. The method includes determining whether a message signaled interrupt (MSI) needs to be allocated for a PCI-e device for an interrupt to be sent to a host. If it is determined that MSI needs to be allocated for the PCI-e device, a determination is made as to whether a Locality Specific Interrupt (LPI) register or an Interrupt Translation Service (ITS) is available to process the interrupt. If it is determined that neither the LPI register nor the Interrupt Translation Service (ITS) is available to process the interrupt, the PCI-e device is configured for SPI-based MSI generation to route the interrupt by determining an available SPI vector and assigning the available SPI vector to the PCI-e device.

公开(公告)号：US10776287B2

公开(公告)日：2020-09-15

申请号：US15898714

申请日：2018-02-19

Applicant: VMware, Inc.

Inventor： Andrei Warkentin ,  Cyprien Laplace ,  Ye Li ,  Alexander Fainkichen ,  Regis Duchesne

IPC: G06F13/10 ,  G06F9/455 ,  G06T11/00

Abstract: An example method of accessing a computing system includes: providing serial terminal driver configured to interface a serial port in a hardware platform of the computer system; providing a console object configured to communicate with an operating system (OS) in a software platform of the computer system and the serial terminal driver; connecting to the console object through the serial port via a computer terminal; sending text and commands from the console object to the computer terminal; and rendering, by the computer terminal, a console for presentation on a display of the computer terminal.

公开(公告)号：US10564983B2

公开(公告)日：2020-02-18

申请号：US15183192

申请日：2016-06-15

Applicant: VMware, Inc.

Inventor： Andrei Warkentin ,  Harvey Tuch ,  Cyprien Laplace ,  Alexander Fainkichen

IPC: G06F9/4401 ,  G01D11/30 ,  G06F12/0842 ,  H04N5/225

Abstract: An example method of initializing a plurality of processors in a hardware platform of computing device for use by system software executing on the hardware platform includes: parsing a descriptor table that has been loaded into memory from firmware to identify an original boot protocol for initializing at least one secondary processor of the plurality of processors; creating at least one mailbox structure in the memory associated with the at least one secondary processor; causing the at least one secondary processor to execute secondary processor initialization code stored in the memory, the secondary processor initialization code implementing a mailbox-based boot protocol that uses the at least one mailbox structure to initialize the at least one secondary processor; and modifying the descriptor table to identify the mailbox-based boot protocol for initializing the at least one secondary processor in place of the original boot protocol.

公开(公告)号：US09952990B2

公开(公告)日：2018-04-24

申请号：US14876845

申请日：2015-10-07

Applicant: VMWARE, INC.

Inventor： Andrei Warkentin ,  Irfan Ulla Khan ,  Cyprien Laplace ,  Harvey Tuch ,  Alexander Fainkichen

IPC: G06F13/24 ,  G06F13/00 ,  G06F13/26

CPC classification number: G06F13/26

Abstract: A method is provided for handling interrupts in a processor, the interrupts including regular interrupts having a range of priorities and a pseudo non-maskable interrupt (PNMI) that is of a higher priority than any of the regular interrupts. The method includes obtaining an interrupt vector corresponding to a received interrupt, and if the received interrupt is a PNMI, executing a PNMI interrupt handler. If the received interrupt is a regular interrupt, the method further comprises reading a mask flag that indicates whether regular interrupts are enabled in an interrupt controller and further: if the mask flag indicates that regular interrupts are enabled, enabling interrupts in the processor so that a PNMI can be received while handling the regular interrupt, executing, a regular interrupt handler, and disabling interrupts in the processor; and if the mask flag indicates that regular interrupts are disabled, saving the interrupt vector for subsequent handling.

公开(公告)号：US09253309B2

公开(公告)日：2016-02-02

申请号：US14513783

申请日：2014-10-14

Applicant: VMware, Inc.

Inventor： Alexander Fainkichen ,  Craig Newell

IPC: G06F21/00 ,  H04M1/725 ,  C09J7/04 ,  B32B37/16 ,  H04W12/06 ,  H04W12/08 ,  H04W4/00 ,  H04L29/06 ,  G06F9/445 ,  G06F9/455 ,  G06F3/0482 ,  G06F3/0484

CPC classification number: H04L63/108 ,  B32B5/024 ,  B32B27/12 ,  B32B27/38 ,  B32B37/025 ,  B32B37/12 ,  B32B37/16 ,  B32B2037/1253 ,  C08J5/128 ,  C08J5/24 ,  C08J2363/04 ,  C08J2367/00 ,  C09J7/21 ,  C09J7/30 ,  C09J163/04 ,  C09J2463/00 ,  C09J2467/006 ,  G06F3/0482 ,  G06F3/04842 ,  G06F9/445 ,  G06F9/455 ,  G06F9/45529 ,  G06F9/45558 ,  G06F21/6245 ,  G06F21/629 ,  G06F2009/45587 ,  G06F2009/45595 ,  H04L41/0853 ,  H04L63/0272 ,  H04L63/102 ,  H04L63/105 ,  H04L63/20 ,  H04L67/34 ,  H04M1/72522 ,  H04M1/72583 ,  H04W4/50 ,  H04W4/60 ,  H04W8/22 ,  H04W12/06 ,  H04W12/08 ,  H04W68/12 ,  H04W76/10 ,  Y10T428/14

Abstract: One embodiment of the present invention provides a system for providing exclusive access to a virtual private network (VPN) connection to an authorized application. During operation, the system creates a unique network namespace that is different from a default network namespace of a host system. The system then places a pseudo network interface associated with the VPN connection into the unique network namespace. Furthermore, the system places at least one socket for an authorized application into the unique network namespace. The system also precludes unauthorized applications on the host from accessing the unique network namespace, thereby facilitating exclusive access to the VPN connection by the authorized application.

Abstract translation: 本发明的一个实施例提供了一种用于提供对授权应用的虚拟专用网（VPN）连接的独占访问的系统。 在操作期间，系统创建一个不同于主机系统的默认网络命名空间的唯一网络命名空间。 然后，系统将与VPN连接相关联的伪网络接口放置到唯一的网络命名空间中。 此外，系统将至少一个用于授权应用程序的套接字放置到唯一网络命名空间中。 该系统还防止主机上的未经授权的应用程序访问唯一的网络命名空间，从而有助于授权应用程序对VPN连接的独占访问。

公开(公告)号：US11803445B2

公开(公告)日：2023-10-31

申请号：US17577714

申请日：2022-01-18

Applicant: VMware, Inc.

Inventor： Andrei Warkentin ,  Jared McNeill ,  Sunil Kotian ,  Alexander Fainkichen ,  Shruthi Hiriyuru

IPC: G06F11/14 ,  G06F9/455 ,  G06F11/07

CPC classification number: G06F11/1417 ,  G06F9/45541 ,  G06F11/0757 ,  G06F11/1441 ,  G06F11/1484

Abstract: Boot failure protection on smartNICs and other computing devices is described. During a power-on stage of a booting process for a computing device, a boot loading environment is directed to install an application programming interface (API) able to be invoked to control operation of a hardware-implemented watchdog. During an operating system loading stage of the booting process, the application programming interface is invoked to enable the hardware-implemented watchdog. During an operating system hand-off stage of the booting process, a last watchdog refresh of the hardware-implemented watchdog is performed, and execution of the boot loading environment is handed off to a kernel boot loader of an operating system. The application programming interface may not be accessible after the hand off to the kernel boot loader.

公开(公告)号：US20230325220A1

公开(公告)日：2023-10-12

申请号：US17715283

申请日：2022-04-07

Applicant: VMware, Inc.

Inventor： Andrei Warkentin ,  Sunil Kotian ,  Cyprien Laplace ,  Shruthi Hiriyuru ,  Regis Duchesne ,  Ye Li ,  Alexander Fainkichen

IPC: G06F9/455

CPC classification number: G06F9/45537

Abstract: Disclosed are various examples of hosting a data processing unit (DPU) management operating system using an operating system software stack of a preinstalled DPU operating system. The preinstalled DPU operating system of the DPU is leveraged to provide a virtual machine environment. A DPU management operating system is executed within the virtual machine environment of the preinstalled DPU operating system. A third-party DPU function or a management service function is provided using the DPU hardware resources accessed through the DPU management operating system and the virtual machine environment.

公开(公告)号：US20230229538A1

公开(公告)日：2023-07-20

申请号：US17577627

申请日：2022-01-18

Applicant: VMware, Inc.

Inventor： Andrei Warkentin ,  Sunil Kotian ,  Jared McNeill ,  Shruthi Hiriyuru ,  Alexander Fainkichen

IPC: G06F11/07 ,  G06F11/14 ,  G06F9/455

CPC classification number: G06F11/0757 ,  G06F11/0772 ,  G06F11/1417 ,  G06F11/1484 ,  G06F9/45541

Abstract: A hardware-assisted paravirtualized hardware watchdog is described that is used to detect and recover from computer malfunctions. A computing device determines that a hardware-implemented watchdog of the computing device does not comply with predetermined watchdog criteria, where the hardware-implemented watchdog is configured to send a reset signal when a first predetermined amount of time elapses without receipt of a first refresh signal. If the hardware-implemented watchdog does not comply with the predetermined watchdog criteria, a runtime watchdog service is initialized using a second predetermined amount of time. The runtime watchdog service is directed to periodically send the refresh signal to the hardware-implemented watchdog before an expiration of the first predetermined amount of time that causes the hardware-implemented watchdog to expire. The hardware-implemented watchdog is directed to send the reset signal when the second predetermined amount of time elapses without receipt of a second refresh signal.