Virtual Machine Task Or Process Management Patents (Class 718/1)
  • Patent number: 10180953
    Abstract: Methods and apparatus for receiving uploaded data from a sender at a receiver. A data deduplication technique is described that may reduce the bandwidth used in uploading data from the sender to the receiver. In the technique, the receiver, rather than the sender, maintains a fingerprint dictionary for previously uploaded data. When a sender has additional data to be uploaded, the sender extracts fingerprints for units of the data and sends the fingerprints to the receiver. The receiver checks its fingerprint dictionary to determine the data units to be uploaded and notifies the sender of the identified units, which then sends the identified units of data to the receiver. The technique may, for example, be applied in virtualized data store systems to reduce bandwidth usage in uploading data.
    Type: Grant
    Filed: January 26, 2015
    Date of Patent: January 15, 2019
    Assignee: Amazon Technologies Inc.
    Inventor: James Christopher Sorenson, III
  • Patent number: 10180855
    Abstract: A system and method is provided for controlling an operating state of a virtual processor. An exemplary method includes determining a blocked state of a guest operating system, and, upon detecting the blocked state, determining a number of interrupt events during a first time period. If the number of interrupts is less than a first threshold or even zero during a first time period, the method includes protecting memory pages from execution by the virtual processor. Moreover, the method includes detecting, during a second time period, when the processor attempts to execute protected memory pages and unprotecting these protected memory page. Then, during a third time period, the method includes monitoring execution by the processor of the unprotected memory pages and maintaining the processor in an idle state based on the number of executed unprotected memory pages during the third time period.
    Type: Grant
    Filed: June 13, 2017
    Date of Patent: January 15, 2019
    Assignee: Parallels International GmbH
    Inventors: Alexey Koryakin, Nikolay Dobrovolskiy, Serguei M. Beloussov
  • Patent number: 10181993
    Abstract: Some embodiments provide a method for a first network controller that manages a set of logical forwarding elements implemented in several managed forwarding elements. The method receives a request to trace a specified packet having a particular source on a logical forwarding element. The method generates the packet according to the packet specification. The generated packet includes an indicator that the packet is for a trace operation. The method sends the packet to a second network controller that manages a managed forwarding element associated with the particular source. The method receives a first set of messages regarding operations performed on the packet from a set of network controllers that receives a second set of messages regarding operations performed on the packet from a set of managed forwarding elements that process the packet.
    Type: Grant
    Filed: December 11, 2017
    Date of Patent: January 15, 2019
    Assignee: NICIRA, INC.
    Inventors: Igor Ganichev, Pankaj Thakkar, Teemu Koponen, Mo Dong
  • Patent number: 10176007
    Abstract: Systems and methods are provided for emulating guest code by a virtual machine function. An example method includes detecting, by a hypervisor, a request by a guest to access a resource. The guest includes a virtual machine function and kernel code, and runs on a virtual machine. The virtual machine and the hypervisor run on a host machine, which includes virtual machine function memory. The method also includes in response to detecting the request to access the resource, transferring, by the hypervisor, control of a virtual central processing unit (CPU) allocated to the guest to the virtual machine function. The method further includes receiving an indication that the virtual machine function has completed the access request on behalf of the guest. The virtual machine function may modify a state of the virtual CPU in virtual machine function memory. The method also includes synchronizing, by the hypervisor, a virtual machine function memory with the virtual CPU state.
    Type: Grant
    Filed: August 30, 2016
    Date of Patent: January 8, 2019
    Assignee: Red Hat Israel, Ltd.
    Inventor: Michael Tsirkin
  • Patent number: 10176092
    Abstract: A system and method of providing enhanced data processing and analysis in an infrastructure for distributed computing and large-scale data processing. This infrastructure uses the Apache Spark framework to divide an application into a large number of small fragments of work, each of which may be performed on one of a large number of compute nodes. The work may involve Spark transformations, operations, and actions, which may be used to categorize and analyze large amounts of data in distributed systems. This infrastructure includes a cluster with a driver node and a plurality of worker nodes. The worker nodes may be, or may include, intelligent solid state drives capable of executing data processing functions under the Apache Spark framework. The use of intelligent solid state drives reduces the need to exchange data with a central processing unit (CPU) in a server.
    Type: Grant
    Filed: September 20, 2017
    Date of Patent: January 8, 2019
    Assignee: NGD Systems, Inc.
    Inventors: Joao Alcantara, Vladimir Alves, Ricardo Cassia, Vincent Lazo
  • Patent number: 10176550
    Abstract: An architecture for implementing a mechanism for displaying GPU resource usage and dynamically allocating GPU resources in a networked virtualization system is provided. The mechanism compares an initial allocation of GPU resources to virtual machines supported by one or more nodes of the networked virtualization system to a current GPU resource usage by the virtual machines. Based at least in part on the comparison and workloads processed by the virtual machines, the mechanism may reallocate GPU resources to one or more of the virtual machines. A virtual machine is reassigned to a different vGPU profile if reassignment is likely to achieve a more efficient allocation of GPU resources to the virtual machine. A user interface indicating GPU resource usage relative to GPU resource allocation may also be generated and displayed.
    Type: Grant
    Filed: March 20, 2017
    Date of Patent: January 8, 2019
    Assignee: Nutanix, Inc.
    Inventor: Cornelis Hendrikus Baggerman
  • Patent number: 10176115
    Abstract: A server LPAR operating in a virtualized computer shares pages with client LPARs using a shared memory region (SMR). A virtualization function of the computer receives a get-page-ID request associated with a client LPAR to identify a physical page corresponding to a shared page included in the SMR. The virtualization function requests the server LPAR to provide an identity of the physical page. The virtualization function receives a page-ID response comprising the identity of a server LPAR logical page that corresponds to the physical page. The virtualization element determines a physical page identity and communicates the physical page identity to the client LPAR. The virtualization element receives a page ID enter request and enters an identity of the physical page into a translation element of the computer to associate a client LPAR logical page with the physical page.
    Type: Grant
    Filed: July 14, 2016
    Date of Patent: January 8, 2019
    Assignee: International Business Machines Corporation
    Inventors: Ramanjaneya S. Burugula, Niteesh K. Dubey, Joefon Jann, Pratap C. Pattnaik, Hao Yu
  • Patent number: 10176008
    Abstract: Systems herein allow a user to load a virtual work environment on a terminal, such as a workstation, based on authentication mechanisms built into a user device, such as a cell phone. The user device can authenticate with a management server using an SAML token. The management server can track which virtual machines and configurations make up the user's work environment, and can send that information to the user device for loading the virtual machines. When the user wishes to load the virtual machines at a terminal, the user device can send the SAML token to the terminal for use in authenticating with the management server. The management server can then provide the configurations for the virtual machines that the user selects to load at the terminal.
    Type: Grant
    Filed: September 14, 2016
    Date of Patent: January 8, 2019
    Assignee: AIRWATCH, LLC
    Inventors: Suman Aluvala, Arvind Maan, Swarnadeep Banerjee
  • Patent number: 10169065
    Abstract: Live migration of a hardware accelerated application may be orchestrated by cloud services to transfer the application from a source server to a destination server. The live migration may be triggered by probe circuitry that monitors quality of service metrics for migration conditions at the source server. When live migration is initiated by the cloud services, a snapshot of all state information relevant to the application at the source server may be saved to network attached storage accessible by the destination server. Changes to said state information at the source server may be mirrored onto the network attached storage. The destination server may copy the snapshot and subsequent changes and run the application in parallel before taking complete control of the application. After a handshake operation between the source and destination servers, the application may be shut down at the source server.
    Type: Grant
    Filed: June 29, 2016
    Date of Patent: January 1, 2019
    Assignee: Altera Corporation
    Inventors: Jeffrey L. Nye, Shiva Rao
  • Patent number: 10169088
    Abstract: An example method for managing memory includes receiving an inflate notification including a first identifier corresponding to a first time. The inflate notification indicates that a set of guest memory pages is unused by the guest at the first time. The method also includes determining whether the first identifier precedes a last identifier corresponding to a second time and included in a previously sent inflate request to the guest. If the first identifier does not precede the last identifier, the method also includes (i) for a first subset of the set modified since the first time, determining to not reclaim a first set of host memory pages corresponding to the first subset of guest memory pages, and (ii) for a second subset not modified since the first time, reclaiming a second set of host memory pages corresponding to the second subset of guest memory pages.
    Type: Grant
    Filed: November 29, 2016
    Date of Patent: January 1, 2019
    Assignee: Red Hat Israel, Ltd.
    Inventor: Michael Tsirkin
  • Patent number: 10171292
    Abstract: A method for deploying a cloud infrastructure includes obtaining a specification of one or more network resources in a new region of a service provider. A virtual private cloud (VPC) within an existing region of the service provider may be configured based on the specification, with a plurality of core configuration services. A connection is established between the VPC and the new region. The one or more network resources in the new region are established as a network infrastructure, and are configured over the established connection to run compute services, using at least one of the core configuration services. The plurality of core configuration services are transferred to the one or more network resources in the new region, and the new region is disconnected from the VPC.
    Type: Grant
    Filed: September 29, 2015
    Date of Patent: January 1, 2019
    Assignee: Amazon Technologies, Inc.
    Inventors: Niall Dolan, Gebran Krikor, Brendan Michael Connell, Tobin Coziahr, Peter Eseosa Ehiwe, Abhishek Patidar, Peter Gerard O'Connor, Ahmed Ezzat AbouRaya, Jerry Collier Lane, III
  • Patent number: 10169059
    Abstract: An analysis support method includes: searching for a second physical machine that has a configuration similar to a first physical machine on which a first virtual machine to be analyzed is executed, the second physical machine having configurations similar to the first physical machine before and after a change of a state of a virtual machine executed on the second physical machine; and searching for a second virtual machine that is executed on the second physical machine and similar to the first virtual machine before and after the change of the state of the virtual machine.
    Type: Grant
    Filed: June 2, 2014
    Date of Patent: January 1, 2019
    Assignee: FUJITSU LIMITED
    Inventors: Ichiro Kotani, Yasuhide Tobo, Takaaki Nakazawa, Yukihisa Miyagawa, Yoshikazu Oda, Kenichi Mori, Naoki Tateishi, Kenichi Shimazaki, Kiyoshi Kouge
  • Patent number: 10171291
    Abstract: A method, system, and/or computer program product establishes and utilizes a tenant-specific log for events related to a cloud-based service. A metamodel is created for a cloud-based service provided to a specific tenant of a cloud. The metamodel describes types of resources that are providing the cloud-based service that the specific tenant desires to monitor. In response to the cloud-based service being executed, the metamodel is used to identify a set of resources that are actually providing the cloud-based service for the specific tenant. A tenant-specific log is established to tracks events that occur on each actual resource from the set of resources, and records access to the specific unit of hardware by an authorized user of the specific unit of hardware. Operations related to the cloud-based service are transferred from the specific unit of hardware to a local device that is available only to the specific tenant.
    Type: Grant
    Filed: November 20, 2017
    Date of Patent: January 1, 2019
    Assignee: International Business Machines Corporation
    Inventors: Raman Harishankar, Cong-Tam Nguyen, Gandhi Sivakumar, Vijayaganesh Subramanian
  • Patent number: 10171373
    Abstract: A virtual machine deployment and management engine deploys virtual machines to physical host computers based on a deployment time matrix. The deployment time matrix specifies approximate amounts of time used to clone or deploy a virtual machine from every host computer to every other host computer. The virtual machine deployment and management engine selects a deployment path based on the deployment times and executes the clone or deploy operations.
    Type: Grant
    Filed: May 12, 2017
    Date of Patent: January 1, 2019
    Assignee: VMWARE INC.
    Inventors: Gururaja Hegdal, Kiran Kasala, Marichetty M. S
  • Patent number: 10169027
    Abstract: A method, and associated computer system and computer program product. One or more processors of a computer system receive an upgrade request to upgrade a base operating system (OS) of a virtual machine (VM). In response to receiving the upgrade request, the one or more processors store metadata of the VM into a resource registry. The one or more processors load a new version of the base OS onto the VM. The one or more processors retrieve, from the resource registry, the stored metadata for configuring the VM.
    Type: Grant
    Filed: May 5, 2016
    Date of Patent: January 1, 2019
    Assignee: International Business Machines Corporation
    Inventors: Chuan Ran, Jian Qiu Wang, Yang Yang
  • Patent number: 10169174
    Abstract: Embodiments of the invention relate to recovering from a disaster associated with an information technology environment. An information technology environment is replicated to a service provider. A recovery plan is generated for the environment. The recovery plan includes two processes. In response to the service provider receiving a disaster recovery request associated with the environment, the service provider executes a disaster recovery protocol. The protocol includes simultaneously executes the first and second processes. The first process operates a workload in the form of one or more containers, and the second process is a background process that creates a replica of the environment. After completion of the replica creation, the workload is migrated to the replica.
    Type: Grant
    Filed: February 29, 2016
    Date of Patent: January 1, 2019
    Assignee: International Business Machines Corporation
    Inventors: Rakesh Jain, Ramani R. Routray, Yang Song, Mu Qiao
  • Patent number: 10162670
    Abstract: Composite virtual machine templates may be used in the deployment of virtual machines into virtualized computing environments. A composite virtual machine template may define a plurality of deployment attributes for use in a virtual machine deployment, and at least some of these deployment attributes may be determined through references to other virtual machine templates and included in the composite virtual machine template.
    Type: Grant
    Filed: November 27, 2017
    Date of Patent: December 25, 2018
    Assignee: International Business Machines Corporation
    Inventors: Joseph W. Cropper, Jeffrey W. Tenner
  • Patent number: 10162669
    Abstract: Software that performs the following steps is provided: (i) running an application on a first virtual machine on a first physical server, with the application including a first plurality of independently migratable elements, including a first independently migratable element that utilizes a first resource on the first virtual machine and a second independently migratable element that utilizes a second resource on the first virtual machine; and (ii) on condition that a first migration condition exists, migrating the first independently migratable element to a second virtual machine on a second physical server, such that the first independently migratable element is able to utilize a resource that is similar to the first resource on the second virtual machine on the second physical server while the second independently migratable element remains able to utilize the second resource on the first virtual machine on the first physical server.
    Type: Grant
    Filed: October 31, 2017
    Date of Patent: December 25, 2018
    Assignee: International Business Machines Corporation
    Inventors: Pankaj S. Bavishi, Ramani R. Routray, Esha Seth, Riyazahamad M. Shiraguppi
  • Patent number: 10165392
    Abstract: Aspects of the subject disclosure may include, for example, a network device that performs operations include determining a context of a communication device operable within a mobility network, wherein the communication device interacts with a virtual resource manager to allow a user of the communication device to access a virtual resource by way of a user interface at the communication device. The virtual resource is hosted by another system remotely accessible to the communication device by way of the mobility network. An access parameter is determined based on the context of the communication device and forwarded to the communication device by way of the mobility network. The communication device is enabled to access the virtual resource based on the access parameter. Other embodiments are disclosed.
    Type: Grant
    Filed: September 25, 2014
    Date of Patent: December 25, 2018
    Assignee: AT&T MOBILITY II LLC
    Inventor: Arturo Maria
  • Patent number: 10162662
    Abstract: A manageable external wake of virtual machines. A processor of a computing system determines whether to wake a virtual machine in view of one or more parameters.
    Type: Grant
    Filed: January 25, 2016
    Date of Patent: December 25, 2018
    Assignee: Red Hat Israel, Ltd.
    Inventors: Michael Tsirkin, Dor Laor
  • Patent number: 10162688
    Abstract: A service manages a plurality of virtual machine instances for low latency execution of user codes. The service can provide the capability to execute user code in response to events triggered on an auxillary service to provide implicit and automatic rate matching and scaling between events being triggered on the auxiliary service and the corresponding execution of user code on various virtual machine instances. An auxiliary service may be configured as an event triggering service to detect events and generate event messages for execution of the user codes. The service can request, receive, or poll for event messages directly from the auxiliary service or via an intermediary message service. Event messages can be rapidly converted to requests to execute user code on the service. The time from processing the event message to initiating a request to begin code execution is less than a predetermined duration, for example, 100 ms.
    Type: Grant
    Filed: November 1, 2016
    Date of Patent: December 25, 2018
    Assignee: Amazon Technologies, Inc.
    Inventor: Timothy Allen Wagner
  • Patent number: 10162664
    Abstract: Composite virtual machine templates may be used in the deployment of virtual machines into virtualized computing environments. A composite virtual machine template may define a plurality of deployment attributes for use in a virtual machine deployment, and at least some of these deployment attributes may be determined through references to other virtual machine templates and included in the composite virtual machine template.
    Type: Grant
    Filed: March 10, 2016
    Date of Patent: December 25, 2018
    Assignee: International Business Machines Corporation
    Inventors: Joseph W. Cropper, Jeffrey W. Tenner
  • Patent number: 10162708
    Abstract: A method for enabling a distributed computing system to tolerate system faults during the execution of a client process. The method includes instantiating an execution environment relating to the client process; executing instructions within the execution environment, the instructions causing the execution environment to issue further instructions to the distributing computing system, the further instructions relating to actions to be performed with respect to data stored on the distributed computing system. An object interface proxy receives the further instructions and monitors the received to determine if the execution environment is in a desired save-state condition; and, if so, save a current state of the execution environment in a data store.
    Type: Grant
    Filed: July 21, 2015
    Date of Patent: December 25, 2018
    Assignee: NETSUITE INC.
    Inventors: Ivan Omar Parra, Douglas H. Williams
  • Patent number: 10162658
    Abstract: One or more virtual processors can be added or removed from a virtual machine based on CPU pressure measured within the virtual machine. In addition to the foregoing, CPU pressure can also be used to determine whether to remove a virtual processor from a virtual machine, which may cause the computer system to consume less power. In the alternative, virtual processors can be parked and/or unparked in order to reduce the amount of power consumed by the virtual machine. In addition, virtual processors can be forcibly parked during a migration operation.
    Type: Grant
    Filed: October 19, 2015
    Date of Patent: December 25, 2018
    Assignee: Microsoft Technology Licensing, LLC
    Inventors: Andrew Nicholas, Rene Antonio Vega, Shuvabrata Ganguly, Ellsworth Davis Walker, Manish Chablani
  • Patent number: 10162661
    Abstract: Exemplary methods, apparatuses, and systems determine a list of virtual machines to be subject to a corrective action. When one or more of the listed virtual machines have dependencies upon other virtual machines, network connections, or storage devices, the determination of the list includes determining that the dependencies of the one or more virtual machines have been met. An attempt to restart or take another corrective action for the first virtual machine within the list is made. A second virtual machine that is currently deployed and running or powered off or paused in response to the corrective action for the first virtual machine is determined to be dependent upon the first virtual machine. In response to the second virtual machine's dependencies having been met by the attempt to restart or take corrective action for the first virtual machine, the second virtual machine is added to the list of virtual machines.
    Type: Grant
    Filed: December 3, 2015
    Date of Patent: December 25, 2018
    Assignee: VMware, Inc.
    Inventors: Keith Farkas, Elisha Ziskind, Joanne Ren
  • Patent number: 10157163
    Abstract: This computer system improves the ease with which a guest OS and remote device can be connected in a configuration combining pass-through technology and bus extension technology. The computer system is provided with a bus extending means for constructing a virtual bus to one or more remote devices connected via a network, and an executing means for configuring a virtual hardware environment and executing a host operating system for causing a guest operating system to control the remote device(s). The bus extending means comprises a communication controlling means for consulting a management table for managing relationships of correspondence between the guest operating system and the remote device(s) by using identification information that does not change depending on the startup state of the remote device(s), and controlling communication between the guest operating system and the remote device(s).
    Type: Grant
    Filed: June 5, 2015
    Date of Patent: December 18, 2018
    Assignee: NEC CORPORATION
    Inventor: Masahiko Takahashi
  • Patent number: 10157073
    Abstract: A virtual machine control device includes: a generating unit configured to generate an operability constraint for a virtual machine is to be arranged, based on a virtual machine name list of the virtual machine and a host machine name list of a host machine capable to arrange the virtual machine; and a determining unit configured to determine an arrangement of the virtual machine is to be arranged, based on a constraint including the generated operability constraint, the host machine name includes location information of the host machine, and the virtual machine name includes information of component that composes an application service.
    Type: Grant
    Filed: May 21, 2014
    Date of Patent: December 18, 2018
    Assignee: NEC CORPORATION
    Inventor: Fumio Machida
  • Patent number: 10158672
    Abstract: Context aware microservice networks and contextual security policies for microservice networks are provided herein. In some embodiments, a system includes a plurality of microservices, each of the plurality of microservices having a plurality of distributed microservice components. At least a portion of the distributed microservice components execute on different physical or virtual servers in a data center or a cloud. The system also includes a plurality of logical security boundaries, with each of the plurality of logical security boundaries being created by a plurality of enforcement points positioned in association with the plurality of distributed microservice components. Each of plurality of microservices is bounded by one of the plurality of logical security boundaries.
    Type: Grant
    Filed: September 1, 2016
    Date of Patent: December 18, 2018
    Assignee: vArmour Networks, Inc.
    Inventors: Choung-Yaw Shieh, Jia-Jyi Lian, Yi Sun, Meng Xu
  • Patent number: 10158653
    Abstract: A cyber security system that uses artificial intelligence, such neural networks, to monitor the security of a computer network and take automated remedial action based on the monitoring. The security system autonomically learns behavior profiles, attack profiles and circumvention techniques used to target the network. The remedial action taken by the system includes isolating any misuse that has been identified, surveilling the misuse in the isolated environment, analyzing its behavior profile and reconfiguring the network to enhance security.
    Type: Grant
    Filed: December 4, 2015
    Date of Patent: December 18, 2018
    Assignee: Nautilus Data Technologies, Inc.
    Inventors: Arnold Magcale, Daniel Kekai
  • Patent number: 10156999
    Abstract: An apparatus includes a memory and a controller. The memory may be configured to store data. The controller may have a plurality of tables. The controller is generally configured to process a plurality of input/output requests to read/write to/from the memory, track a plurality of statistics of the memory, index the plurality of tables with the plurality of statistics of the memory to determine a plurality of parameters, compute based on the plurality of parameters a first bandwidth consumed by the controller while servicing the memory with one or more tasks hidden from a host, and report to the host a second bandwidth of the memory that is available to the host based on the first bandwidth consumed by the controller.
    Type: Grant
    Filed: March 28, 2016
    Date of Patent: December 18, 2018
    Assignee: SEAGATE TECHNOLOGY LLC
    Inventors: Timothy L. Canepa, Ramdas P. Kachare
  • Patent number: 10158705
    Abstract: When monitoring that a host migrated, a software defined network (SDN) controller may actively detect a port located by the host. Besides, when detecting the port located by the host, the SDN controller may bind the host to the port where the host is located, so as to limit migration of the host. When not detecting a port located by the host, the SDN controller may also block packets from the host.
    Type: Grant
    Filed: August 14, 2015
    Date of Patent: December 18, 2018
    Assignee: HEWLETT PACKARD ENTERPRISE DEVELOPMENT LP
    Inventors: Bihui Yang, Hai Wang, Wei Wang
  • Patent number: 10154091
    Abstract: A distributed system may deploy infrastructure units according to resource hosting constraints. Additional infrastructure units, or infrastructure units to be redeployed, may be identified for deployment. State information describing the deployment of infrastructure units currently deployed amongst different infrastructure localities of a distributed system may be evaluated for different possible deployments according to resource hosting constraints. Possible deployments that optimize or increase resource hosting capacity in the distributed system within the resource hosting constraints may be determined. Deployment at those infrastructure localities of the determined possible deployments may be directed.
    Type: Grant
    Filed: December 28, 2015
    Date of Patent: December 11, 2018
    Assignee: Amazon Technologies, Inc.
    Inventors: Mitchell Gannon Flaherty, Christopher Magee Greenwood, Surya Prakash Dhoolam, Gary Michael Herndon, Jr.
  • Patent number: 10154300
    Abstract: Apparatus and methods for obtaining a content item in a mobile environment include receiving a content item of a first type and content management information that corresponds to the content item. The content management information specifies a destination storage location for content items of the first type, and the destination storage location is different from a default storage location for the content items of the first type. Further, these aspects include storing the content item on the communication device at the destination storage location based on the content management information, and executing an application on a computing platform of the communication device. The application interacts with the content item at the destination storage location based on the content management information. Additional apparatus and methods relating to distributing content are also disclosed.
    Type: Grant
    Filed: October 11, 2011
    Date of Patent: December 11, 2018
    Assignee: QUALCOMM Incorporated
    Inventor: Andrew P. Kemal
  • Patent number: 10152344
    Abstract: A mechanism for managing virtual machines in a virtualization system is disclosed. A method of implementation of the disclosure includes receiving a request from a client system to route network traffic from a first network interface card (NIC) of a first host system to a virtual machine. A determination may be made as to whether network traffic to another virtual machine is routed through the first NIC of the first host system. A notification may be sent to the client system indicating that the network traffic to the other virtual machine is routed through the first NIC and identifying a second NIC of a second host system that is available. The second NIC may be associated with the virtual machine to route network traffic from the second NIC to the virtual machine.
    Type: Grant
    Filed: August 18, 2016
    Date of Patent: December 11, 2018
    Assignee: Red Hat Israel, Ltd.
    Inventors: Alona Kaplan, Michael Kolesnik
  • Patent number: 10152341
    Abstract: A system and method for hyper-threading based host-guest communication includes storing, by a guest, at least one request on a shared memory. A physical processor, in communication with the shared memory, includes a first hyper-thread and a second hyper-thread. The method also includes starting, by a hypervisor, execution of a VCPU on the first hyper-thread and sending a first interrupt to the second hyper-thread to signal a request to execute a slave task on the second hyper-thread. The slave task includes an instruction to poll the shared memory. The method further includes executing, by the second hyper-thread, the slave task on the second hyper-thread and executing the at least one request stored on the shared memory.
    Type: Grant
    Filed: August 30, 2016
    Date of Patent: December 11, 2018
    Assignee: Red Hat Israel, Ltd.
    Inventor: Michael Tsirkin
  • Patent number: 10146563
    Abstract: Using a metadata of a layer, a prediction factor including a level of participation of the layer in a set of container images is computed. Each container image includes a corresponding set of layers and is usable to configure a container in a container-based virtualized data processing environment. Using a set of levels of participation corresponding to a set of layers, and using a condition in a prediction algorithm, a subset of layers that have to be pre-provisioned at a node is predicted. The subset of layers is adjusted, to form an adjusted subset of layers, by looking ahead at a container requirement of a workload that is planned for processing at a future time. The adjusted subset of layers is caused to be provisioned on the node prior to the future time.
    Type: Grant
    Filed: August 3, 2016
    Date of Patent: December 4, 2018
    Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
    Inventors: Paolo Dettori, Andrew R. Low, Aaron J. Quirk, Seetharami R. Seelam, Michael J. Spreitzer, Malgorzata Steinder, Lin Sun
  • Patent number: 10146962
    Abstract: A technique allows for protecting a PCI device controller from a PCI BDF masquerade attack from Ring-0 and Ring-3 malware. The technique may use Virtualization technologies to create guest virtual machines that can use a hypervisor to allocate ACPI information from ACPI tables to a secure VM and using extended page tables (EPT) and VT-d policies to protect the MMIO memory range during illegal runtime events.
    Type: Grant
    Filed: December 17, 2015
    Date of Patent: December 4, 2018
    Assignee: McAfee, LLC
    Inventors: Nitin Sarangdhar, Jonathan Edwards, Scott Robinson, Karanvir Grewal
  • Patent number: 10146586
    Abstract: Disclosed aspects manage a shared pool of configurable computing resources associated with a shared pool manager. The shared pool manager receives a set of scaling factors. The set of scaling factors corresponds to a workload. Using the set of scaling factor values and a set of workload resource data, a configuration is determined. The configuration is established to process the workload. Disclosed aspects manage a shared pool of configurable computing resources associated with a registry. The registry is structured to have a set of workload resource data and associated scaling factors. A set of scaling factor values is detected. The set of scaling factors corresponds to a workload. Based on both the set of workload resource data and the set of scaling factor values, a set of resource attributes is determined to configure the shared pool of configurable computing resources for the workload. The set of resource attributes is communicated.
    Type: Grant
    Filed: May 18, 2017
    Date of Patent: December 4, 2018
    Assignee: International Business Machines Corporation
    Inventors: Joseph W. Cropper, Jeffrey W. Tenner
  • Patent number: 10146570
    Abstract: Memory security technologies are described. An example processing device includes a processor core and a memory controller coupled to the processor core and a memory. The processor core can determine that an exit condition to transfer control of a resource for a processor core from a first virtual machine monitor (VMM) to a second VMM has occurred. The processor core can also determine whether a control virtual machine control structure (VMCS) link pointer is valid. The processor core can also determine whether a reason value corresponding to the control VMCS link pointer is set. The processor core can also determine whether the reason value is set to zero. The processor core can also determining whether an exception bit corresponding to a specific exception type of a reason value is set. The processor core can also transfer a control of the resource from the first VMM to the second VMM.
    Type: Grant
    Filed: September 25, 2015
    Date of Patent: December 4, 2018
    Assignee: Intel Corporation
    Inventors: Kai Wang, Bing Zhu, Peng Zou, Manohar Castelino
  • Patent number: 10146809
    Abstract: A method and system determines discrete policy target groups for information objects stored in an enterprise IT system. The method and system provide cleansed information about information objects stored on the enterprise IT system. Criteria for sorting the information objects is determined. Initial sorting of the information objects is carried out, resulting in an initial set of clusters. The information objects are clustered into discrete policy target groups based on the information about the information objects and the initial set of clusters, and human-understandable names and definite descriptions for policy target groups are computed.
    Type: Grant
    Filed: June 23, 2015
    Date of Patent: December 4, 2018
    Assignee: International Business Machines Corporation
    Inventor: Sebastian Goeser
  • Patent number: 10146591
    Abstract: Systems and methods described herein facilitate provisioning virtual machines (VMs) in a virtual desktop infrastructure (VDI). The VDI includes a virtual desktop management server (VDMS), a VM, and a plurality of datastores. The VDMS includes a management module that is configured to determine a plurality of usage values that are associated with the datastores. The management module is also configured to determine one or more selection penalty values that are associated with one or more thin-provisioned VMs assigned to one or more of the datastores. Further, the management module calculates a plurality of capacity values for the datastores based at least in part on the determined usage values and the determined penalty values such that each of the capacity values corresponds to a separate datastore. Based at least in part on the capacity values, the management module is configured to assign the VM to one of the datastores.
    Type: Grant
    Filed: March 1, 2013
    Date of Patent: December 4, 2018
    Assignee: VMware, Inc.
    Inventors: Dhiraj Parashar, Kenny To
  • Patent number: 10146592
    Abstract: The technology disclosed relates to managing resource allocation to task sequences in a stream processing framework. In particular, it relates to operating a computing grid that includes machine resources, with heterogeneous containers defined over whole machines and some containers including multiple machines. It also includes initially allocating multiple machines to a first container, initially allocating first set of stateful task sequences to the first container, running the first set of stateful task sequences as multiplexed units of work under control of a container-scheduler, where each unit of work for a first task sequence runs to completion on first machine resources in the first container, unless it overruns a time-out, before a next unit of work for a second task sequence runs multiplexed on the first machine resources. It further includes automatically modifying a number of machine resources and/or a number assigned task sequences to a container.
    Type: Grant
    Filed: January 12, 2016
    Date of Patent: December 4, 2018
    Assignee: salesforce.com, inc.
    Inventors: Elden Gregory Bishop, Jeffrey Chao
  • Patent number: 10146639
    Abstract: Disclosed are systems and methods for recovering a virtual machine (VM) using cloud computing services. Backed up data associated with a first virtual machine (VM) is stored in a cloud-based storage associated with a cloud computing service. A first instance of a recovery VM service is activated and configured to execute using the cloud computing service. Metadata associated with the first VM is sent to the first instance of the recovery VM service from a primary site based on receiving a certificate authorization. A notification from the first instance of the recovery VM service is received to notify that the recovery of the first VM is completed. The first VM is configured to execute using the cloud computing service.
    Type: Grant
    Filed: July 1, 2016
    Date of Patent: December 4, 2018
    Assignee: EMC IP HOLDING COMPANY LLC
    Inventors: Assaf Natanzon, Kalyan C Gunda
  • Patent number: 10147038
    Abstract: A Mechanical Turk-Integrated Development Environment system is disclosed. An integrated development environment (IDE) can include one or more interfaces capable of communicating with a mechanical turk engine. As a developer creates applications within the IDE, the developer can use the IDE to submit one or more requests to the mechanical turk engine. The engine constructs a mechanical turk project based on the requests and provides project tasks to workers. The results of the tasks can then be compiled and integrated back into the developer's application via the IDE. An example use includes constructing large domain specific data sets that can be applied to spoken dialog interfaces.
    Type: Grant
    Filed: August 5, 2016
    Date of Patent: December 4, 2018
    Assignee: NANT HOLDINGS IP, LLC
    Inventors: Farzad Ehsani, Silke Maren Witt-Ehsani, Demitrios Leo Master
  • Patent number: 10146642
    Abstract: Methods and apparatus are provided for fault resilient distributed computing using a continuous data protection feature of virtual machines. An exemplary method by a compute node for executing a process of a distributed application comprises providing a virtual machine having continuous data protection to store a copy of a state of the process in a performance storage tier; and providing a virtual machine to intercept messages of the process and to store a copy of the intercepted messages in a message log, wherein the process communicates with a plurality of other processes executing on other compute nodes, and wherein the plurality of processes employ asynchronous checkpointing. The process optionally communicates with the other processes in the distributed application using one or more virtual networks. The state is optionally moved from the performance storage tier to a capacity storage tier when a new state is stored.
    Type: Grant
    Filed: March 24, 2016
    Date of Patent: December 4, 2018
    Assignee: EMC IP Holding Company LLC
    Inventors: John M. Bent, Sorin Faibish, Patrick S. Combes, Eriks S. Paegle, Joshua Emerson Simons
  • Patent number: 10140162
    Abstract: Disclosed aspects manage a shared pool of configurable computing resources associated with a shared pool manager. The shared pool manager receives a set of scaling factors. The set of scaling factors corresponds to a workload. Using the set of scaling factor values and a set of workload resource data, a configuration is determined. The configuration is established to process the workload. Disclosed aspects manage a shared pool of configurable computing resources associated with a registry. The registry is structured to have a set of workload resource data and associated scaling factors. A set of scaling factor values is detected. The set of scaling factors corresponds to a workload. Based on both the set of workload resource data and the set of scaling factor values, a set of resource attributes is determined to configure the shared pool of configurable computing resources for the workload. The set of resource attributes is communicated.
    Type: Grant
    Filed: May 18, 2017
    Date of Patent: November 27, 2018
    Assignee: International Business Machines Corporation
    Inventors: Joseph W. Cropper, Jeffrey W. Tenner
  • Patent number: 10140141
    Abstract: A computer includes: a host VM monitor configured to operate on a physical processor and generate a logical processor that operates a first-level VM; and a guest VM monitor configured to operate on the logical processor and generate a plurality of virtual processors that operates a plurality of second-level VMs generated on the first-level VM. The host VM monitor includes management information that correlates control information which is unique to each of the second-level VMs and which the host VM monitor can acquire in a period from the start to the end of execution of the second-level VM with a second-level VM identifier for specifying the second-level VM. The host VM monitor specifies a second-level VM, based on a second-level VM identifier corresponding to the control information of the second-level VM, which has been acquired, in the management information and acquires information on a load of the second-level VM.
    Type: Grant
    Filed: December 6, 2013
    Date of Patent: November 27, 2018
    Assignee: Hitachi, Ltd.
    Inventor: Yoshifumi Nakamura
  • Patent number: 10140148
    Abstract: A system and method for copy based IOMMU emulation for out-of-process emulated device includes a memory, one or more physical processors, a virtual machine having a guest and a guest memory, and a hypervisor executing on the physical processors. In an example, the hypervisor receives a request from the guest to grant access of a virtual device to a guest memory page when the guest memory is mapped to a private memory. The virtual device is mapped to a shared memory. The virtual device has access to the guest memory while the guest memory is mapped to the shared memory. The hypervisor copies data in a private memory page to a shared memory page in response to receiving the request. Then, the hypervisor maps the guest memory page to the shared memory page, which grants the virtual device access to the guest memory page.
    Type: Grant
    Filed: August 30, 2017
    Date of Patent: November 27, 2018
    Assignee: Red Hat Israel, Ltd.
    Inventors: Victor Kaplansky, Michael Tsirkin
  • Patent number: 10142192
    Abstract: Embodiments of the present disclosure call for a method, a system, and a computer program product for managing virtual resources for a virtual machine of interest on a physical server. The method includes monitoring a plurality of physical servers, on a computing system. Each physical server provides an initial level of virtual resources to a plurality of virtual machines. The method also includes receiving a requested level of virtual resources for a virtual machine of interest hosted by a first physical server from the plurality of physical servers. The method also includes determining whether the first physical server is able to host the requested level of virtual resources for the virtual machine of interest. The method also includes determining, in response to the first physical server not being able to host the requested level of resources for the virtual machine of interest, a path.
    Type: Grant
    Filed: April 9, 2014
    Date of Patent: November 27, 2018
    Assignee: International Business Machines Corporation
    Inventors: Joseph W. Cropper, Susan F. Crowell, Jason A. Nikolai, Andrew T. Thorstensen
  • Patent number: 10142352
    Abstract: A computer-implemented method for controlling a connection between a virtual machine and a physical device comprises receiving a connection request for connecting the physical device to the virtual machine and determining whether the virtual machine satisfies a first connection permission condition and whether the physical device satisfies a second connection permission condition. In response to a determination that the virtual machine does not satisfy the first connection permission condition, a configuration of the virtual machine is changed to satisfy the first connection permission condition. In response to a determination that the physical device does not satisfy the second connection permission condition, a configuration of the physical device is changed to satisfy the second connection permission condition.
    Type: Grant
    Filed: July 19, 2017
    Date of Patent: November 27, 2018
    Assignee: International Business Machines Corporation
    Inventors: Sanehiro Furuichi, Takahito Tashiro