Virtualization based power and function isolating method for loading module of monolithic kernel operation system

Abstract

The invention discloses a virtualization based power and function isolating method for a loading module of a monolithic kernel operation system. The virtualization based power and function isolating method includes steps that a page table for the loading module and a page table for a monolithic kernel are generated in a kernel space of a virtual memory when the system is initialized; the operation system falling into a monitor of a virtual machine sets attributes of the two page tables and returns in the process of loading the loading module; when the loading module applies for a dynamic memory, the operation system falling into the monitor of the virtual machine updates the two page tables and returns; when the loading module directly calls and skips to code pages of the kernel module or directly rectifies data pages of the kernel module, the operation system falling into the monitor of the virtual machine switches the page tables and returns after checking and processing the page tables. By the aid of the monitoring mechanism of the monitor of the virtual machine, an executive body of the system is marked by page directory address register, and power and function of the kernel are isolated. Frequent interference during switching of a kernel mode and a user mode is avoided, and integral performance of system is improved.

Description

technical field [0001] The invention relates to an operating system capability isolation method, in particular to a virtualization-based macrokernel operating system loading module capability isolation method, which belongs to the technical field of computer security. Background technique [0002] The macrokernel operating system provides support for loading modules (including third-party modules and driver modules), and allows the loading modules to run at the kernel mode privilege level. Because it runs at the highest privilege level, the access of the loaded module to the key objects of the core services of the kernel is difficult to be effectively controlled by the system, and malicious third-party modules or infected driver modules can easily destroy the system call table and page table. , interrupt descriptor tables, system registers, and network ports and other system-critical objects, thus undermining the integrity of the entire system. [0003] With the development...

AI Technical Summary

Problems solved by technology

However, there are two main problems in this method: 1) Monitoring granularity: how to determine the monitoring granularity is a dilemma. The larger the monitoring granularity, the smaller the performance loss of the client system, but the accuracy of monitoring is not high. , the smaller the monitoring granularity, the greater the accuracy of monitoring, but the greater the loss to the customer system; 2) subject marking: in the process of monitoring, it is first necessary to mark each execution subject (object) in the customer system, but Since both the macro kernel and the load module run at the kernel state privilege level and are located in the same memory address space, it is difficult for the virtual machine monitor monitoring the kernel to specifically identify whether the current execution subject is the kernel or the load module

Images