Information scheduling method from secure container operating system to virtual machine monitor

A technology of virtual machine monitor and security container, applied in the direction of instrument, program control design, program control device, etc., can solve the problems of poor performance and high cost, and achieve the effect of improving execution efficiency

Pending Publication Date: 2020-07-28
孙宇霖
View PDF0 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

The performance of "KVM Hyper Call" is relatively poor. This is because a "KVM Hyper Call" requires two context switches: a. Secure container to host operating system switching; b. Host operating system to virtual machine monitor process switching; these up and down The cost of switching is very high. In the scenario of high throughput (Request Per Second, RPS), "KVM Hyper Call" becomes the bottleneck of the system

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Information scheduling method from secure container operating system to virtual machine monitor
  • Information scheduling method from secure container operating system to virtual machine monitor

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0024] The technical solutions in the embodiments of the present invention will be clearly and completely described below in conjunction with the accompanying drawings in the embodiments of the present invention. Obviously, the described embodiments are only some of the embodiments of the present invention, not all of them. Based on The embodiments of the present invention, and all other embodiments obtained by those skilled in the art without creative efforts, all belong to the protection scope of the present invention.

[0025] The terms "comprising" and "having" and any variations thereof in the present invention are intended to cover a non-exclusive inclusion, for example, a process, method, system, product or device comprising a series of steps or modules need not be limited to the expressly listed Instead, it may include other steps or modules that are not clearly listed or inherent to these processes, methods, products or equipment. The division of modules presented here...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses an information scheduling method from a secure container operating system to a virtual machine monitor. The invention provides a scheduling method from a security container toa virtual machine monitor. The scheduling method comprises the steps: providing the virtual machine monitor and a security container kernel share a memory space; constructing a shared memory-based message queue between the two security container kernels and the virtual machine monitor, wherein a memory pointer of the Hyper Call of the security container kernel is placed in the message queue; enabling the virtual machine monitor to process the Hyper Call in the shared memory; and putting the processed Hyper Call thread ID into a message queue, and obtaining the processed Hyper Call thread ID bythe scheduler. Through the information exchange mode of the queue, when the virtual CPU (vCPU) of the security container needs to call the Hyper Call, the context switching between the kernel of thesecurity container and the monitor of the virtual machine is not needed, so that the execution efficiency of the super call can be greatly improved.

Description

technical field [0001] The invention relates to the computer field, to a virtual machine, and in particular to a method for dispatching a message queue-based safe container operating system to a virtual machine monitor. Background technique [0002] Host OS is an operating system installed on a physical host, and then virtual machine monitor software is run on the Host OS operating system, so that several partitions can be virtualized on the physical host, and different operating systems can be installed separately. The corresponding operating system installed on the virtual partition is called Guest OS. [0003] Virtual machine monitor (English: virtual machine monitor, abbreviated as VMM), VMM provides a virtual operating environment for the Guest OS by invoking HostOS resources. VMM needs to communicate with GuestOS through a system software called Hypervisor. [0004] Virtual machine (KVM, Kernel-based Virtual Machine) is a virtual machine software widely used in the m...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): G06F9/455G06F9/54
CPCG06F9/45558G06F9/544G06F9/546G06F2009/45587G06F2009/45583G06F2209/548G06F2209/5018Y02D10/00
Inventor 孙宇红孙宇霖
Owner 孙宇霖
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap