Virtual Machine Task Or Process Management Patents (Class 718/1)
  • Patent number: 10073713
    Abstract: A source virtual machine (VM) hosted on a source server is migrated to a destination VM on a destination server without first powering down the source VM. After optional pre-copying of the source VM's memory to the destination VM, the source VM is suspended and its non-memory state is transferred to the destination VM; the destination VM is then resumed from the transferred state. In one embodiment, the source VM memory is either paged into the destination VM on demand, or is transferred asynchronously by pre-copying and write-protecting the source VM memory, and then later transferring only the modified pages after the destination VM is resumed. In one embodiment, the source and destination servers share common storage, in which the source VM's virtual disk is stored; this avoids the need to transfer the virtual disk contents.
    Type: Grant
    Filed: May 27, 2016
    Date of Patent: September 11, 2018
    Assignee: VMware, Inc.
    Inventor: Michael Nelson
  • Patent number: 10067778
    Abstract: An information processing system includes circuitry configured to identify a plurality of systems that each access at least one of a plurality of virtual machines executed by a server, generate, for each system, a value indicating whether performance of the system satisfies an agreement for the system if a virtual machine accessed by the system is stopped, determine a virtual machine to be stopped among the plurality of virtual machines based on the values.
    Type: Grant
    Filed: December 9, 2013
    Date of Patent: September 4, 2018
    Assignee: FUJITSU LIMITED
    Inventors: Tomonori Ishikawa, Hidenori Ishikawa, Shingo Kato
  • Patent number: 10067801
    Abstract: A system for providing low-latency computational capacity from a virtual compute fleet is provided. The system may be configured to maintain a plurality of virtual machine instances on one or more physical computing devices, wherein the plurality of virtual machine instances comprises a first pool comprising a first sub-pool of virtual machine instances and a second sub-pool of virtual machine instances, and a second pool comprising virtual machine instances used for executing one or more program codes thereon. The first sub-pool and/or the second sub-pool may be associated with one or more users of the system. The system may be further configured to process code execution requests and execute program codes on the virtual machine instances of the first or second sub-pool.
    Type: Grant
    Filed: December 21, 2015
    Date of Patent: September 4, 2018
    Assignee: Amazon Technologies, Inc.
    Inventor: Timothy Allen Wagner
  • Patent number: 10067900
    Abstract: A system that includes a switched fabric hierarchy (e.g., a PCIe hierarchy) may realize efficient utilization of a shared I/O device (e.g., a network or storage switch) across multiple physically separate processing nodes (endpoints). For example, each processing node (endpoint) in a distributed processing system may be allocated a portion of the address map of a shared I/O device and may host a device driver for one of multiple virtual functions implemented on the shared device. Following enumeration and initialization of the hierarchy by the root complex, the endpoints may access the virtual functions directly (without intervention by the root complex). Data and interrupt traffic between endpoints and virtual functions may take place over peer-to-peer connections. Interrupt reception logic in each endpoint may receive and handle interrupts generated by the virtual functions. The root complex may host a device driver for a physical function on the shared device.
    Type: Grant
    Filed: August 25, 2015
    Date of Patent: September 4, 2018
    Assignee: Oracle International Corporation
    Inventors: John E. Watkins, Aron J. Silverton, Lance G. Hartmann, Kenneth S Goss
  • Patent number: 10069743
    Abstract: Capacity enhancement of a direct communication link using a variable redundancy delivery network. An estimated information rate between a source node and a terminal node may be partitioned into a first information rate provided via the direct communication link and a second information rate to be provided via the variable redundancy delivery network. One or more parameters of the variable redundancy delivery network may be calculated to provide the second information rate based on a non-uniform probability density of messages requested by the terminal node. Capacity and reliability of storage media devices in the variable redundancy delivery network may be traded off to provide the second information rate. The variable redundancy delivery network may implement various coding schemes and per-message coding rates that may be determined based on the non-uniform probability distribution of the source message library.
    Type: Grant
    Filed: July 24, 2017
    Date of Patent: September 4, 2018
    Assignee: ViaSat, Inc.
    Inventor: Nirmalkumar Velayudhan
  • Patent number: 10070316
    Abstract: A mobile device includes a memory having at least one delegated administrator stored thereon, the delegated administrator is configured to apply a policy to the mobile device based on at least one permission a delegated administrator configured to apply a policy to the mobile device based on the at least one permission. The mobile device also includes at least one processor having a mobile device management (MDM) framework. The MDM framework receives the at least one permission from the device administrator, delegates the at least one permission to the delegated administrator, and enforces the policy on the mobile device.
    Type: Grant
    Filed: August 5, 2016
    Date of Patent: September 4, 2018
    Assignee: SAMSUNG ELECTRONICS CO., LTD.
    Inventors: Sanjay Patil, Karthik Balakrishnan, Dushyant Vipradas
  • Patent number: 10069681
    Abstract: A resource manager of a virtualized computing service indicates to a client that FPGA-enabled compute instances are supported at the service. From a set of virtualization hosts of the service, a particular host from which an FPGA is accessible is selected for the client based on an indication of computation objectives of the client. Configuration operations are performed to prepare the host for the application, and an FPGA-enabled compute instance is launched at the host for the client.
    Type: Grant
    Filed: December 31, 2015
    Date of Patent: September 4, 2018
    Assignee: Amazon Technologies, Inc.
    Inventors: Erez Izenberg, Nafea Bshara, Christopher Pettey, Curtis Karl Ohrt
  • Patent number: 10069808
    Abstract: A computer implemented method and apparatus is disclosed that includes programming to generate, spawn, or invoke a mother script in a virtual computing environment residing on a physical server. The methods and systems dynamically generate, spawn, or invoke at least one virtual machine embedded with one or more daughter scripts or virtual scripts containing adaptive instruction sets based on a first request, in the form of one or more virtual atoms, where each virtual atom has at least one assigned task and is allowed to connect to other virtual atoms to create one or more virtual computing systems or networks, in the form of one or more virtual molecules.
    Type: Grant
    Filed: March 8, 2016
    Date of Patent: September 4, 2018
    Inventor: Eileen Chu Hing
  • Patent number: 10061603
    Abstract: In one example, a method and apparatus for dynamic routing of user contexts are disclosed. In one example, a method for supporting a context associated with a connection between a user and a first virtual machine of a virtual function includes receiving a notification of a change in a behavior of the user that affects the context, wherein the context is supported by the first virtual machine of the virtual function, and reassigning the context to a second virtual machine of the virtual function, different from the first virtual machine, based at least in part on the change in the behavior.
    Type: Grant
    Filed: December 9, 2015
    Date of Patent: August 28, 2018
    Assignee: AT&T Intellectual Property I, L.P.
    Inventors: Gaurav Gupta, Vivek Mhatre
  • Patent number: 10063666
    Abstract: A telecommunications edge cloud (TEC) element deployed between a client and a packet network includes a TEC hardware layer including storage resources, networking resources, and computing resources, wherein the computing resources include a plurality of processors. A TEC operating system (TECOS) is coupled to the TEC hardware layer and configured to control and manage the storage resources, the networking resources, and the computing resources, wherein the TECOS is executed by one of the processors, a TEC application layer coupled to the TECOS, wherein the TEC application layer is configured to process a request from the client using the TECOS, wherein the computing resources are configured to provide a service to the client when the request is a service request, and wherein at least one of the networking resources and the storage resources is configured to provide data to the client when the request comprises a data request.
    Type: Grant
    Filed: June 14, 2016
    Date of Patent: August 28, 2018
    Assignee: Futurewei Technologies, Inc.
    Inventors: Wei Wei, Jingjing Zhang, Konstantinos Kanonakis
  • Patent number: 10063429
    Abstract: Disclosed herein are systems and methods to integrate and manage a computer network operations (CNO) infrastructure. A framework may include CNO applications that are used to find a target computer system, breach the target, extract data therefrom and analyze the data. A CNO organization in a secure network can use the framework to maintain, manage and monitor CNO applications in an unsecured network without compromising security from counter-attacks. The framework remains engaged with targeted computer systems during routine maintenance, management and monitoring processes to mitigate loss of mission opportunities. The framework utilizes virtual instances to provision CNO capabilities for missions operations that couple the secure and unsecured networks in an asynchronous manner while allowing bidirectional communications between the framework and computers on their respective network.
    Type: Grant
    Filed: April 9, 2014
    Date of Patent: August 28, 2018
    Assignee: THE KEYW CORPORATION
    Inventors: Chad Caison, Carol O. Lloyd, Eamon Walsh, Tejas Hemant Patel, Chris Fanning
  • Patent number: 10061602
    Abstract: A system and method for providing a virtual assembly builder for use with a cloud computing environment. In accordance with an embodiment, the system can include a virtual assembly builder component which maintains a repository of virtual assembly archives, wherein each virtual assembly can include a metadata and one or more virtual machine templates that can be used to instantiate an instance of the assembly; and a virtual assembly builder deployer provided as a web service or other interface, which enables operations for uploading virtual assemblies to the repository, registering virtual assemblies with cloud components, and/or managing deployment instances defined by an assembly.
    Type: Grant
    Filed: September 6, 2013
    Date of Patent: August 28, 2018
    Assignee: ORACLE INTERNATIONAL CORPORATION
    Inventor: Richard P. Mousseau
  • Patent number: 10057139
    Abstract: Maintaining a service on a cloud network may include receiving a set of status data associated with the service and performing a scale action on the cloud network based on a scale rule applied to the set of status data. The set of status data may be related to a set of resources utilized by the service, a performance level of the service, and a workload volume of the service. The scale rule may include a utilization condition, a quality condition, a workload condition, and a budget condition.
    Type: Grant
    Filed: August 30, 2013
    Date of Patent: August 21, 2018
    Assignee: Hewlett Packard Enterprise Development LP
    Inventors: Jing Dong, John M Green, Phyllis Gallagher, Aswini Kumar, Anupriya Ramraj, Burton Akira Hipp
  • Patent number: 10055361
    Abstract: A computer system includes at least one processor, a first mass memory and a second mass memory. The computer system implements a master operating system core, a first operating system core and at least one second operating system core on the processor under control of the master operating system core. The memory controller provides the master operating system core with defined areas of a mass storage medium as a first mass memory and at least one second mass memory, each independent of one another, and controls mapping of the first mass memory and of the at least one second mass memory to the defined areas of the mass storage medium. The master operating system core allows the first operating system core and the at least one second operating system core to have exclusive access to at least one of the mass memories.
    Type: Grant
    Filed: January 25, 2013
    Date of Patent: August 21, 2018
    Assignee: Continental Automotive GmbH
    Inventors: Bernd Becker, Thorsten Finke
  • Patent number: 10057069
    Abstract: Methods, systems, and computer program products are included for loading a code module. A method includes verifying, by a guest, a digital signature of a code module stored in an initial guest memory buffer. The guest copies the verified code module stored at the initial guest memory buffer into a target guest memory buffer and applies, using one or more symbol entries, one or more relocations to the verified code module stored at the target guest memory buffer. The guest sends a request to a hypervisor to set the target guest memory buffer to a write-protect mode. In response to a determination that first content stored in the initial guest memory buffer corresponds to second content stored in the target guest memory buffer, the guest sends a request to the hypervisor to set the target guest memory buffer to an executable mode.
    Type: Grant
    Filed: February 29, 2016
    Date of Patent: August 21, 2018
    Assignee: Red Hat Israel, Ltd.
    Inventors: Paolo Bonzini, Michael Tsirkin
  • Patent number: 10055258
    Abstract: Optimized placement of virtual machines in a cloud environment is based on factors that include processor-memory affinity. A smart migration mechanism (SMM) predicts an optimization score for multiple permutations of placing virtual machines on a target system to create an optimal move list. The optimization score is a theoretical score calculated using dynamic platform optimization (DPO). The SMM may allow the user to set initial parameters and change the parameters to create potential changes lists. The move lists are ranked to allow the user to select the optimal change list to provide the best affinity, quickest fulfillment of requirements and least disruption for a given set of parameters.
    Type: Grant
    Filed: January 11, 2017
    Date of Patent: August 21, 2018
    Assignee: International Business Machines Corporation
    Inventors: Daniel C. Birkestrand, Peter J. Heyrman, Edward C. Prosser
  • Patent number: 10055257
    Abstract: Optimized placement of virtual machines in a cloud environment is based on factors that include processor-memory affinity. A smart migration mechanism (SMM) predicts an optimization score for multiple permutations of placing virtual machines on a target system to create an optimal move list. The optimization score is a theoretical score calculated using dynamic platform optimization (DPO). The SMM may allow the user to set initial parameters and change the parameters to create potential changes lists. The move lists are ranked to allow the user to select the optimal change list to provide the best affinity, quickest fulfillment of requirements and least disruption for a given set of parameters.
    Type: Grant
    Filed: January 10, 2017
    Date of Patent: August 21, 2018
    Assignee: International Business Machines Corporation
    Inventors: Daniel C. Birkestrand, Peter J. Heyrman, Edward C. Prosser
  • Patent number: 10048976
    Abstract: Technologies are generally described to allocation of virtual machines to physical machines through dominant resource assisted heuristics. According to some examples, multiple virtual machines (VMs) may be clustered to two or more unallocated VM clusters according to a dominant resource requirement associated with each of the VMs. The VMs may be sorted according to a size attribute associated with the dominant resource requirement. Multiple physical machines (PMs) may be sorted according to a power efficiency attribute associated with each of the PMs. One of the PMs may be selected from an ordered list of PMs based on the power efficiency attribute. One of the VMs may be selected from another ordered list of PMs based on the size attribute. The selected VM may then be allocated to the selected PM.
    Type: Grant
    Filed: November 29, 2013
    Date of Patent: August 14, 2018
    Assignee: NEW JERSEY INSTITUTE OF TECHNOLOGY
    Inventors: Nirwan Ansari, Yan Zhang
  • Patent number: 10048881
    Abstract: An apparatus includes an extended capability register and an input/output (I/O) memory management circuitry. The I/O memory management circuitry is to receive, from an I/O device, an address translation request referencing a guest virtual address associated with a guest virtual address space of a virtual machine. The I/O memory management circuitry may translate the guest virtual address to a guest physical address associated with a guest physical address space of the virtual machine, and, responsive to determining that a value stored by the extended capability register indicates a restrict-translation-request-response (RTRR) mode, transmit, to the I/O device, a translation response having the guest physical address.
    Type: Grant
    Filed: July 11, 2016
    Date of Patent: August 14, 2018
    Assignee: Intel Corporation
    Inventors: Rajesh M. Sankaran, Prashant Sethi, Asit K. Mallick, David Woodhouse, Rupin H. Vakharwala
  • Patent number: 10051054
    Abstract: Systems and methods for supporting efficient virtualization in a lossless interconnection network. An exemplary method can provide, one or more switches, including at least a leaf switch, a plurality of host channel adapters, wherein each of the host channel adapters comprise at least one virtual function, at least one virtual switch, and at least one physical function, a plurality of hypervisors, and a plurality of virtual machines, wherein each of the plurality of virtual machines are associated with at least one virtual function. The method can arrange the plurality of host channel adapters with one or more of a virtual switch with prepopulated local identifiers (LIDs) architecture or a virtual switch with dynamic LID assignment architecture. The method can assign each virtual switch with a LID. The method can calculate one or more linear forwarding tables based at least upon the LIDs assigned to each of the virtual switches.
    Type: Grant
    Filed: July 14, 2016
    Date of Patent: August 14, 2018
    Assignee: ORACLE INTERNATIONAL CORPORATION
    Inventors: Evangelos Tasoulas, Feroz Zahid, Bjørn Dag Johnsen, Ernst Gunnar Gran
  • Patent number: 10042657
    Abstract: A method for provisioning a virtual datacenter application is discussed. A request may be received from a tenant for a virtual datacenter application. An application template may be identified and associated with the virtual datacenter application, wherein the application template can comprise a role, a service account, a script, and a workload. The role and the service account can be added to an active directory organization associated with the tenant. The workload can be cloned into a virtual datacenter, wherein the virtual datacenter belongs to the tenant. A script can be executed on the workload according to an execution order organized over multiple additional workloads, wherein a first script can be executed on a first workload before a second script is executed on a second workload, wherein the first script can be different from the second script, wherein the first workload can be different from the second workload.
    Type: Grant
    Filed: September 30, 2013
    Date of Patent: August 7, 2018
    Assignee: EMC Corporation
    Inventors: Todd Michael Lauinger, Shuping Jia
  • Patent number: 10044631
    Abstract: A software defined infrastructure (SDI) makes available a subset of a computer server's resources to a cloud solution or workload. Multiple subsets of resources can be combined in a SDI to provide a logical resource pool. This allows cloud administrators to create software defined infrastructures derived from the partial capacity of a collection of systems. The resources defined across the physical boundaries of a computer server can then be made available to host deployment of cloud workloads. The infrastructure resource pool can be selected upon deployment of a cloud workload.
    Type: Grant
    Filed: June 30, 2016
    Date of Patent: August 7, 2018
    Assignee: International Business Machines Corporation
    Inventors: James J. Fall, Tammy L. Van Hove
  • Patent number: 10044525
    Abstract: Template-driven locally calculated policy updates for virtualized machines in a datacenter environment are described. A central control and monitoring node calculates and pushes down policy templates to local control and monitoring nodes. The templates provide boundaries and/or a pool of networking resources, from which the local control and monitoring node is enabled to calculate policy updates for locally instantiated virtual machines and containers.
    Type: Grant
    Filed: December 29, 2017
    Date of Patent: August 7, 2018
    Assignee: Microsoft Technology Licensing, LLC
    Inventors: Poornananda R. Gaddehosur, Benjamin M. Schultz
  • Patent number: 10042666
    Abstract: Certain aspects direct to systems and methods for platform simulation on virtual machine for development projects of a management controller on virtual machines. At least one virtual machine (VM) is provided to simulate a management controller and a host computing device for the management controller. The at least one VM includes: a firmware module for the management controller, configured to receive at least one output signal from the host computing device or from at least one device connected to the host computing device; and a simulator module configured to simulate the host computing device or the at least one device connected to the host computing device. In operation, the simulator module generates the at least one output signal based on configuration data of the host computing device or the device connected to the host computing device, and sends the at least one output signal to the firmware module.
    Type: Grant
    Filed: August 10, 2016
    Date of Patent: August 7, 2018
    Assignee: AMERICAN MEGATRENDS, INC.
    Inventors: Sanjoy Maity, Samvinesh Christopher, Satheesh Thomas
  • Patent number: 10042656
    Abstract: A virtualization environment provides a virtual console server that communicates with other virtual servers/machines utilizing virtual hardware connections such that the virtual remote console server can monitor and/or control the virtual servers/machines in the environment as if the virtual remote console server and the other virtual servers/machines were connected, even if the virtual console server and/or the other virtual servers are moved between processors in the virtualization environment.
    Type: Grant
    Filed: July 31, 2012
    Date of Patent: August 7, 2018
    Assignee: Avocent Corporation
    Inventors: Arnaldo Zimmermann, Edson Seabra
  • Patent number: 10038558
    Abstract: A virtualized system that is capable of executing a computation that has been identified as a repeatable computation and recording various representations of the state of the computing environment throughout the execution of the repeatable computation, where the state of the computing environment can be cryptographically signed and/or verified using a trusted platform module (TPM), or other cryptographic module. For example, a TPM embedded in the host computing device may generate a hash measurement that captures the state of the repeatable computation at the time of the computation. This measurement can be digitally signed using one or more cryptographic keys of the TPM and recorded for future use. The recorded state can subsequently be used to repeat the computation and/or determine whether the computation was repeated successfully according to certain defined criteria.
    Type: Grant
    Filed: February 17, 2016
    Date of Patent: July 31, 2018
    Assignee: Amazon Technologies, Inc.
    Inventors: Nachiketh Rao Potlapally, Eric Jason Brandwine, Deepak Singh
  • Patent number: 10038694
    Abstract: According to one embodiment, a request is received from a remote device of a user for performing a data management operation from source data represented by a source data management object (DMO) to destination data represented by a destination DMO. A first security mode associated with a source tenant-unit corresponding to the source DMO and a second security mode associated with a destination tenant-unit corresponding to the destination DMO are determined. It is determined whether the user is a system administrator for a storage system corresponding to the source data or the destination data, and whether the user is a tenant administrator for a tenant associated with the source data or the destination data. It is determined whether the data management operation should be allowed based on the first and second security modes.
    Type: Grant
    Filed: March 30, 2016
    Date of Patent: July 31, 2018
    Assignee: EMC IP HOLDING COMPANY LLC
    Inventors: Subhasish Chakraborty, Hongyu Zhang
  • Patent number: 10031767
    Abstract: A system and method for providing dynamic information virtualization (DIV) is disclosed. According to one embodiment, a device includes a dynamic optimization manager (DOM), a process and memory manager (PMM), a memory, and a host device driver. The device starts virtual functions after booting to allow a virtual machine (VM) running a guest operating system to identify the virtual functions and load virtual drivers of the virtual functions. The PMM allocates a unified cache from the memory to facilitate coherent access to information from storage and network resources by the VM. The host device driver enables a guess process in the VM to access the information stored in the unified cache in a secure and isolated manner.
    Type: Grant
    Filed: February 25, 2015
    Date of Patent: July 24, 2018
    Assignee: Dynavisor, Inc.
    Inventor: Sreekumar Nair
  • Patent number: 10033659
    Abstract: Control planes of virtual resource providers may be customized in a secure, stable and efficient manner with virtual control planes. Control planes may be modularized. Control plane modules may be supplied with data from standardized sensors, and required to generate standardized resource configuration requests responsive to solicitations with specified response latencies. Custom control plane modules may be selected to replace or complement default control plane modules. Financial and computational costs associated with control plane modules may be tracked. Competing resource configurations may be mediated by a control plane supervisor. Such mediation may be based on control plane module reputation scores. Reputation scores may be based on customer feedback ratings and/or measured performance with respect to module goals. Mediated configuration parameter values may be based on a combination of competing configuration parameter values weighted according to reputation.
    Type: Grant
    Filed: February 9, 2015
    Date of Patent: July 24, 2018
    Assignee: Amazon Technologies, Inc.
    Inventors: Eric Jason Brandwine, Marvin M. Theimer
  • Patent number: 10031783
    Abstract: A deployment system orchestrates execution of deployment plan in coordination with nodes participating in deployment of a multi-tier application in a cloud infrastructure. The deployment system distributes local deployment plans to each node and maintains a centralized state of deployment time dependencies between tasks in different local deployment plans. Prior to execution of each task, deployment agents executing on each node communicates with the centralized deployment system to check whether any deployment time dependencies need to be resolved. Additionally, the deployment system utilizes a node task timer that triggers a heartbeat mechanism for monitoring failure of deployment agents.
    Type: Grant
    Filed: March 2, 2012
    Date of Patent: July 24, 2018
    Assignee: VMware, Inc.
    Inventors: Sesh Jalagam, Komal Mangtani, Vishwas Nagaraja, David Winterfeldt
  • Patent number: 10032041
    Abstract: Techniques for restricting access to a storage volume attached to a data processing system are described. In one embodiment, a storage management and access control logic in the data processing system can receive a message indicating the attachment of a storage volume. The logic can apply access restrictions to the storage volume by creating an association between a restricted resource class and the storage volume to limit programmatic access to the storage volume. An evaluation of the storage volume can be requested and based on the result of the evaluation the access restrictions can be removed or retained on the storage volume.
    Type: Grant
    Filed: October 2, 2015
    Date of Patent: July 24, 2018
    Assignee: Apple Inc.
    Inventors: Pierre-Olivier Martel, Austin G. Jennings
  • Patent number: 10027540
    Abstract: Systems and methods are provided for provisioning a hosted computing environment in accordance with customer requirements relating to a service. In some embodiments, a computer-implemented method is provided. The method includes generating a graphical interface on a computing device and receiving input corresponding to an indication of one or more requirements, wherein the input is received using the graphical interface, and wherein the one or more requirements correspond to a hosted computing environment. The method further comprises converting each indication of the one or more requirements into one or more entries of a provisioning template, wherein the provisioning template includes multiple entries, and wherein the provisioning template is associated with the hosted computing environment. The method further comprises providing the provisioning template to a provisioning program to provision the hosted computing environment.
    Type: Grant
    Filed: June 30, 2017
    Date of Patent: July 17, 2018
    Assignee: Splunk Inc.
    Inventors: Dejan Deklich, Ledio Ago, Richard Braun
  • Patent number: 10027675
    Abstract: A control component of a computing environment initiates sending of request(s) over a network of the computing environment by an activated virtual adapter. The activated virtual adapter is hosted on a physical adapter of a host system coupled to the network, and is for use by a guest, hosted by the host system, in performing data input and output. The request(s) retrieve access control information from the network indicative of access control(s) enforced in controlling access by the activated virtual adapter to network component(s). The initiating provides indication(s) to the physical adapter, absent involvement of the guest, that the request(s) be sent by the virtual adapter. Based on the initiating, the control component obtains the access control information from the physical adapter, and determines, based on that information, the access control(s) being enforced by the network in controlling access by the activated virtual adapter to the network component(s).
    Type: Grant
    Filed: December 14, 2017
    Date of Patent: July 17, 2018
    Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
    Inventors: Ralph Friedrich, Raymond M. Higgs, George P. Kuch, Elizabeth A. Moore, Johnathon R. Pandich, Richard M. Sczepczenski
  • Patent number: 10027674
    Abstract: A control component of a computing environment initiates sending of request(s) over a network of the computing environment by an activated virtual adapter. The activated virtual adapter is hosted on a physical adapter of a host system coupled to the network, and is for use by a guest, hosted by the host system, in performing data input and output. The request(s) retrieve access control information from the network indicative of access control(s) enforced in controlling access by the activated virtual adapter to network component(s). The initiating provides indication(s) to the physical adapter, absent involvement of the guest, that the request(s) be sent by the virtual adapter. Based on the initiating, the control component obtains the access control information from the physical adapter, and determines, based on that information, the access control(s) being enforced by the network in controlling access by the activated virtual adapter to the network component(s).
    Type: Grant
    Filed: December 14, 2017
    Date of Patent: July 17, 2018
    Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
    Inventors: Ralph Friedrich, Raymond M. Higgs, George P. Kuch, Elizabeth A. Moore, Johnathon R. Pandich, Richard M. Sczepczenski
  • Patent number: 10025612
    Abstract: A system can include a host device that includes a virtual machine execution environment that includes a hypervisor and a virtual machine. The virtual machine can execute a guest management component. The virtual machine can also determine whether at least one of the hypervisor or the host device violates at least one compliance rule. The virtual machine can cause the guest management component to perform an action in response to determining that at least one of the hypervisor or the host device violates the at least one compliance rule.
    Type: Grant
    Filed: March 18, 2016
    Date of Patent: July 17, 2018
    Assignee: AirWatch LLC
    Inventor: Adam Michael Hardy
  • Patent number: 10028258
    Abstract: A resource controller for managing resources in a network and arranged at a site of a first network entity is provided, wherein the resource controller comprises: a database, adapted to store resource managing related information; an interface adapted to receive a resource managing message from a second network entity at the first network entity; and a resource managing unit, wherein the resource managing unit is adapted to grant access to the stored resource managing related information on the database based on the received resource managing message.
    Type: Grant
    Filed: November 14, 2013
    Date of Patent: July 17, 2018
    Assignee: NOKIA SOLUTIONS AND NETWORKS GMBH & CO. KG
    Inventors: Hans-Jochen Morper, Christian Markwart
  • Patent number: 10025614
    Abstract: A method of setting retransmission time of an application client during virtual machine migration includes predicting migration memory size required by a virtual machine to be migrated based on historical access log of at least one application and memory log of the virtual machine to be migrated; computing available migration bandwidth of a host of the virtual machine to be migrated; computing virtual machine migration time based on the predicted migration memory size required by the virtual machine to be migrated and the available migration bandwidth of the host; and setting retransmission time of the application client based on the virtual machine migration time.
    Type: Grant
    Filed: June 17, 2016
    Date of Patent: July 17, 2018
    Assignee: INTERNATIONAL BUSINESS MACHINES CORPORATION
    Inventors: Li Li, Liang Liu, Jun Mei Qu, Qi Yu
  • Patent number: 10025721
    Abstract: The present invention provides for page table access and dirty bit management in hardware via a new atomic test[0] and OR and Mask. The present invention also provides for a gasket that enables ACE to CCI translations. This gasket further provides request translation between ACE and CCI, deadlock avoidance for victim and probe collision, ARM barrier handling, and power management interactions. The present invention also provides a solution for ARM victim/probe collision handling which deadlocks the unified northbridge. These solutions includes a dedicated writeback virtual channel, probes for IO requests using 4-hop protocol, and a WrBack Reorder Ability in MCT where victims update older requests with data as they pass the requests.
    Type: Grant
    Filed: October 24, 2014
    Date of Patent: July 17, 2018
    Assignees: Advanced Micro Devices, Inc., ATI Technologies ULC
    Inventors: Vydhyanathan Kalyanasundharam, Philip Ng, Maggie Chan, Vincent Cueva, Anthony Asaro, Jimshed Mirza, Greggory D. Donley, Bryan Broussard, Benjamin Tsien, Yaniv Adiri
  • Patent number: 10027543
    Abstract: The present invention extends to methods, systems, and computer program products for reconfiguring an acceleration component among interconnected acceleration components. Aspects of the invention facilitate reconfiguring an acceleration component among interconnected acceleration components using a higher-level software service. A manager or controller isolates an acceleration component by sending a message to one or more neighbor acceleration components instructing the one or more neighbor acceleration components to stop accepting communication from the acceleration component. The manager or controller can then shut down an application layer at the acceleration component for at least partial reconfiguration and closes input/output (I/O) portions. After reconfiguration completes, communication between the acceleration component and the one or more neighbor acceleration components can resume.
    Type: Grant
    Filed: June 26, 2015
    Date of Patent: July 17, 2018
    Assignee: Microsoft Technology Licensing, LLC
    Inventors: Sitaram V. Lanka, Adrian M. Caulfield, Eric S. Chung, Andrew R. Putnam, Douglas C. Burger, Derek T. Chiou
  • Patent number: 10019325
    Abstract: Methods, systems, and computer program products for restoring a backend after a backend disconnect. The method includes detecting a disconnect of a backend. The method further includes setting a flag and notifying a guest regarding the disconnect. The method further includes resetting a data structure accessed by the backend. The method further includes detecting (or initiating) or a reconnect of the backend. The method further includes sending the backend a state of the data structure.
    Type: Grant
    Filed: November 28, 2016
    Date of Patent: July 10, 2018
    Assignee: Red Hat Israel, LTD.
    Inventor: Michael Tsirkin
  • Patent number: 10021144
    Abstract: Techniques for establishing a trusted cloud service are provided. Packages are created for services that include certificates, configuration information, trust information, and images for deploying instances of the services. The packages can be used to deploy the services in trusted environments and authenticated to deploy in sub environments of un-trusted environments. The sub environments are trusted by the trusted environments. Also, clouds are prospected for purposes of identifying desirable clouds and creating the packages for deployment.
    Type: Grant
    Filed: June 13, 2016
    Date of Patent: July 10, 2018
    Assignee: Micro Focus Software Inc.
    Inventors: Bruce L. Bergeson, Carl Tietjen, Carolyn B. McClain, Larry Hal Henderson, Stephen R Carter
  • Patent number: 10019568
    Abstract: Systems and methods for detecting the generation of authentication credentials for virtual machine instances are described. In various embodiments, an intermediary system may detect or determine, for a virtual machine instance, one or more states associated with a credential (e.g., a password) generation process and/or a get password request from a requesting user. Based on detected or determined virtual machine states, the intermediary system may provide useful and/or timely status indicators or notifications to the requesting user. In various embodiments multiple states may be determined sequentially or in parallel in order to provide more detailed information regarding whether and why a credential is or is not available, contributing to an improved user experience. For example, timely indication that a password may not be available may be useful to the requesting user who can take immediate steps to remedy the situation, such as by contacting customer service.
    Type: Grant
    Filed: November 7, 2016
    Date of Patent: July 10, 2018
    Assignee: Amazon Technologies, Inc.
    Inventors: Jonathan N. Scott, Andrew Richard Butchart, Gaurang Pankaj Mehta
  • Patent number: 10021033
    Abstract: A computer system provides a method for context-based packet scanning in a computing environment. The method includes the steps of receiving a packet from a virtual machine, determining if a network flow associated with the packet exists in a context data structure, and upon determining that a context entry associated with the network flow exists in the context data structure, tagging the packet with context information included in the context entry, comparing the context information and network flow information to context and network flow criteria in one or more packet capture policies, and recording contents of the packet when the context information and network flow information match one of the one or more packet capture policies.
    Type: Grant
    Filed: December 7, 2016
    Date of Patent: July 10, 2018
    Assignee: Nicira, Inc.
    Inventors: Rahul Madan, Farzad Ghannadian, Hamza Aharchaou, Aditi Vutukuri
  • Patent number: 10019575
    Abstract: Evaluating a potentially malicious sample using a copy-on-write overlay is disclosed. A first virtual machine instance is initialized as a copy-on-write overlay associated with an original virtual machine image. The first virtual machine image is started and a first sample is executed. A second virtual machine instance is initialized as a copy-on-write overlay associated with a second original virtual machine image. The second virtual machine image is started and a second sample is executed. The first and second samples are executed at an overlapping time.
    Type: Grant
    Filed: July 30, 2013
    Date of Patent: July 10, 2018
    Assignee: Palo Alto Networks, Inc.
    Inventors: Xinran Wang, Huagang Xie
  • Patent number: 10021172
    Abstract: Systems and methods for managing network resources, including managing a generated virtualized data plane network using a central controller. Virtual machine (VM) resources are assigned to two or more different network functions at a local data center. Traffic is dynamically optimized based on at least one of aggregate traffic demands and quality of service (QoS) goals, and resource allocations and inter-data center (DC) bandwidth resources are determined for VMs for a plurality of services. VMs for each middlebox function and a routing plane for each service are configured based on the determined resource allocation, and flows are routed based on the resource allocation and one or more configured network paths using an overlay-routing framework.
    Type: Grant
    Filed: September 23, 2016
    Date of Patent: July 10, 2018
    Assignee: NEC Corporation
    Inventors: Rajesh Mahindra, Karthikeyan Sundaresan, Arijit Banerjee, Sampath Rangarajan
  • Patent number: 10013491
    Abstract: In one aspect, a computerized method of workload mobility across divergent cloud-computing platforms includes the step of with an agentless process, utilizing at least one computer process to discover an entity. The method discovers a configuration of the entity. The method persistently stores the configuration of the entity in a configuration management database (CMDB). The method migrates, with at least one replication processes, the entity from a user-side platform to a cloud-computing platform. The method transforms a workload data of the entity to a container workload data to enable implementation of the workload data in the cloud-computing platform.
    Type: Grant
    Filed: August 29, 2015
    Date of Patent: July 3, 2018
    Inventors: Aditya Vasudevan, Venkatraman Lakshminarayanan, Sajith Kumar
  • Patent number: 10015241
    Abstract: Operating profiles for consumers of computing resources may be automatically determined based on an analysis of actual resource usage measurements and other operating metrics. Measurements may be taken while a consumer, such as a virtual machine instance, uses computing resources, such as those provided by a host. A profile may be dynamically determined based on those measurements. Profiles may be generalized such that groups of consumers with similar usage profiles are associated with a single profile. Assignment decisions may be made based on the profiles, and computing resources may be reallocated or oversubscribed if the profiles indicate that the consumers are unlikely to fully utilize the resources reserved for them. Oversubscribed resources may be monitored, and consumers may be transferred to different resource providers if contention for resources is too high.
    Type: Grant
    Filed: April 25, 2016
    Date of Patent: July 3, 2018
    Assignee: Amazon Technologies, Inc.
    Inventors: Michael David Marr, Matthew D. Klein
  • Patent number: 10015172
    Abstract: Techniques for improving logon time for remote desktops a user has not logged onto before. In general, these techniques involve utilizing a pre-logon script to create a profile-specifying registry entry that links to an already created persistent or “mandatory” profile. Linking to a mandatory profile, rather than creating a new profile from whole cloth (which is automatically done by operating systems such as Microsoft Windows upon detecting a log on from a user that has not logged on before), reduces the amount of time associated with logging on.
    Type: Grant
    Filed: June 24, 2015
    Date of Patent: July 3, 2018
    Assignee: VMware, Inc.
    Inventors: Jack McMichael, IV, Justin Venezia
  • Patent number: 10007462
    Abstract: A method for data migration in solid state memory. The method includes making a first determination that a write limit of a first memory region of the solid state memory has been reached, and based on the first determination: allocating a second memory region in the solid state memory. The method further includes, based on making the first determination: migrating a first data fragment from a first memory location in the first memory region to a corresponding second memory location in the second memory region, updating a migration progress index to include the second memory location, directing future read and write requests that target memory locations included in the migration progress index to the second memory region, and directing future read and write requests that target memory locations not included in the migration progress index to the first memory region.
    Type: Grant
    Filed: March 31, 2016
    Date of Patent: June 26, 2018
    Assignee: EMC IP Holding Company LLC
    Inventors: Richard H. Van Gaasbeck, Michael W. Shapiro
  • Patent number: 10007533
    Abstract: Migration of a virtual machine from a source host computing system to a target host computing system in a context in which a centralized portion of virtual machine state is maintained in a storage that is accessible to both the source host computing system and the target host computing system, and a localized portion of the virtual machine state is maintained in local storage of the source host computing system. For instance, the centralized portion of the virtual machine state might be user data, and the localized portion might be backing files for the virtual machine. In order to support the potential migration, at least a portion of the localized portion of the virtual machine state are backed up to a storage that is accessible to both the source and target host computing systems.
    Type: Grant
    Filed: August 22, 2012
    Date of Patent: June 26, 2018
    Assignee: V3 Systems Holdings, Inc.
    Inventors: Harold C. Simonsen, Ashton R. Snelgrove, Thomas S. McCullagh, Chris R. Featherstone