公开(公告)号：US20180173551A1

公开(公告)日：2018-06-21

申请号：US15383605

申请日：2016-12-19

Applicant: VMware, Inc.

Inventor： David DUNN ,  Doug COVELLI

IPC: G06F9/455 ,  G06F12/1009

Abstract: An example method of emulating nested page table (NPT) mode-based execute control in a virtualized computing system includes: providing NPT mode-based execute control from a hypervisor to a virtual machine (VM) executing in the virtualized computing system; generating a plurality of shadow NPT hierarchies at the hypervisor based on an NPT mode-based execute policy obtained from the VM; configuring a processor of the virtualized computing system to exit from the VM to the hypervisor in response to an escalation from a user privilege level to a supervisor privilege level caused by guest code of the VM; and exposing a first shadow NPT hierarchy of the plurality of shadow NPT hierarchies to the processor in response to an exit from the VM to the hypervisor due to the escalation from the user privilege level to the supervisor privilege level.

公开(公告)号：US20210026647A1

公开(公告)日：2021-01-28

申请号：US16519867

申请日：2019-07-23

Applicant: VMware, Inc.

Inventor： Andrei WARKENTIN ,  Timothy P. MANN ,  Doug COVELLI

IPC: G06F9/4401 ,  G06F9/30 ,  G06F12/1009

Abstract: A method of creating a new page table structure after first stage boot operations has completed but before handoff to a hypervisor occurs. Firmware page tables are reused and copied to a region of memory by a first-stage bootloader while the firmware is running, processed to have an expected multi-stage page table structure and desired access rights, and copied again to another region of memory by the first-stage bootloader after the first-stage bootloader has completed its booting operations and after the firmware has been quiesced.