Hardware-assisted guest address space scanning in a virtualized computing system

US 10,642,751 B2
Filed: 07/20/2017
Issued: 05/05/2020
Est. Priority Date: 07/20/2017
Status: Active Grant

First Claim

Patent Images

1. A method of scanning a guest virtual address (GVA) space generated by a guest operating system executing in a virtual machine of a virtualized computing system, the method comprising:

setting, in a scan of the GVA space by a hypervisor that manages the virtual machine, a current GVA to a first GVA in the GVA space;

executing, by the hypervisor on a processor allocated to the virtual machine, an address translation instruction, which is included in an instruction set architecture (ISA) of each core of the processor having one or more cores, to perform a first address translation of the current GVA;

reading a register of the processor to determine a first error resulting from the first address translation;

determining, in response to the first error, a level of a faulting page table in a first page table hierarchy generated by the guest operating system; and

setting the current GVA to a second GVA based on the level of the faulting page table.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An example method of scanning a guest virtual address (GVA) space generated by a guest operating system executing in a virtual machine of a virtualized computing system includes setting, in a scan of the GVA space by a hypervisor that manages the virtual machine, a current GVA to a first GVA in the GVA space; executing, on a processor allocated to the virtual machine, an address translation instruction, which is in an instruction set of the processor, to perform a first address translation of the current GVA; reading a register of the processor to determine a first error resulting from the first address translation; determining, in response to the first error, a level of a faulting page table in a first page table hierarchy generated by the guest operating system; and setting the current GVA to a second GVA based on the level of the faulting page table.

Citations

20 Claims

1. A method of scanning a guest virtual address (GVA) space generated by a guest operating system executing in a virtual machine of a virtualized computing system, the method comprising:
- setting, in a scan of the GVA space by a hypervisor that manages the virtual machine, a current GVA to a first GVA in the GVA space;
  
  executing, by the hypervisor on a processor allocated to the virtual machine, an address translation instruction, which is included in an instruction set architecture (ISA) of each core of the processor having one or more cores, to perform a first address translation of the current GVA;
  
  reading a register of the processor to determine a first error resulting from the first address translation;
  
  determining, in response to the first error, a level of a faulting page table in a first page table hierarchy generated by the guest operating system; and
  
  setting the current GVA to a second GVA based on the level of the faulting page table.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method of claim 1, further comprising:
    - executing, on the processor, after setting the current GVA as the second GVA, the address translation instruction to perform a second address translation of the current GVA;
      
      reading the register to obtain a guest physical address (GPA) resulting from the second address translation; and
      
      setting the current GVA to a third GVA in the GVA space.
  - 3. The method of claim 2, wherein the third GVA is the second GVA offset by a page size.
  - 4. The method of claim 2, further comprising:
    - determining that the GPA is mapped to a block in a host physical address (HPA) space of the virtualized computing system, the block defined in a level of the second page table hierarchy;
      
      wherein the third GVA is based on the level of the second page table hierarchy that defines the block.
  - 5. The method of claim 2, further comprising:
    - optimizing a second page table hierarchy generated by the hypervisor in response to the GPA.
  - 6. The method of claim 1, further comprising:
    - executing, on the processor, after setting the current GVA as the second GVA, the address translation instruction to perform a second address translation of the current GVA;
      
      reading the register to determine a second error resulting from the second address translation; and
      
      aborting the scan of the GVA space in response to the second error.
  - 7. The method of claim 1, wherein the address translation instruction is configured to perform a first stage address translation in a two-stage address translation scheme of the processor.

8. A non-transitory computer readable medium having instructions stored thereon that when executed by a processor cause the processor to perform setting, in a scan of the GVA space by a hypervisor that manages the virtual machine, a current GVA to a first GVA in the GVA space;
- executing, by the hypervisor on a processor allocated to the virtual machine, an address translation instruction, which is included in an instruction set architecture (ISA) of each core of the processor having one or more cores, to perform a first address translation of the current GVA;
  
  reading a register of the processor to determine a first error resulting from the first address translation;
  
  determining, in response to the first error, a level of a faulting page table in a first page table hierarchy generated by the guest operating system; and
  
  setting the current GVA to a second GVA based on the level of the faulting page table.
- View Dependent Claims (9, 10, 11, 12, 13, 14)
- - 9. The non-transitory computer readable medium of claim 8, further comprising:
    - executing, on the processor, after setting the current GVA as the second GVA, the address translation instruction to perform a second address translation of the current GVA;
      
      reading the register to obtain a guest physical address (GPA) resulting from the second address translation; and
      
      setting the current GVA to a third GVA in the GVA space.
  - 10. The non-transitory computer readable medium of claim 9, wherein the third GVA is the second GVA offset by a page size.
  - 11. The non-transitory computer readable medium of claim 9, further comprising:
    - determining that the GPA is mapped to a block in a host physical address (HPA) space of the virtualized computing system, the block defined in a level of the second page table hierarchy;
      
      wherein the third GVA is based on the level of the second page table hierarchy that defines the block.
  - 12. The non-transitory computer readable medium of claim 9, further comprising:
    - optimizing a second page table hierarchy generated by the hypervisor in response to the GPA.
  - 13. The non-transitory computer readable medium of claim 8, further comprising:
    - executing, on the processor, after setting the current GVA as the second GVA, the address translation instruction to perform a second address translation of the current GVA;
      
      reading the register to determine a second error resulting from the second address translation; and
      
      aborting the scan of the GVA space in response to the second error.
  - 14. The non-transitory computer readable medium of claim 8, wherein the address translation instruction is configured to perform a first stage address translation in a two-stage address translation scheme of the processor.

15. A virtualized computing system, comprising:
- a hardware platform including a processor and memory; and
  
  a software platform executing on the hardware platform, the software platform including a hypervisor managing a virtual machine having a guest operating system executing therein, the guest operating system generating a guest virtual address (GVA) space, the hypervisor executable by the processor to;
  
  set, in a scan of the GVA space, a current GVA to a first GVA in the GVA space;
  
  execute, by the hypervisor on the processor, an address translation instruction, which is included in an instruction set architecture (ISA) of each core of the processor having one or more cores, to perform a first address translation of the current GVA;
  
  read a register of the processor to determine a first error resulting from the first address translation;
  
  determine, in response to the first error, a level of a faulting page table in a first page table hierarchy generated by the guest operating system; and
  
  set the current GVA to a second GVA based on the level of the faulting page table.
- View Dependent Claims (16, 17, 18, 19, 20)
- - 16. The virtualized computing system of claim 15, wherein the hypervisor is further executable by the processor to:
    - execute, on the processor, after setting the current GVA as the second GVA, the address translation instruction to perform a second address translation of the current GVA;
      
      read the register to obtain a guest physical address (GPA) resulting from the second address translation; and
      
      set the current GVA to a third GVA in the GVA space.
  - 17. The virtualized computing system of claim 16, wherein the third GVA is the second GVA offset by a page size.
  - 18. The virtualized computing system of claim 16, wherein the hypervisor is further executable by the processor to:
    - determine that the GPA is mapped to a block in a host physical address (HPA) space of the virtualized computing system, the block defined in a level of the second page table hierarchy;
      
      wherein the third GVA is based on the level of the second page table hierarchy that defines the block.
  - 19. The virtualized computing system of claim 16, wherein the hypervisor is further executable by the processor to:
    - execute, on the processor, after setting the current GVA as the second GVA, the address translation instruction to perform a second address translation of the current GVA;
      
      read the register to determine a second error resulting from the second address translation; and
      
      abort the scan of the GVA space in response to the second error.
  - 20. The virtualized computing system of claim 15, wherein the address translation instruction is configured to perform a first stage address translation in a two-stage address translation scheme of the processor.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Vmware LLC (Broadcom, Inc.)
Original Assignee
VMware, Inc. (Broadcom, Inc.)
Inventors
Warkentin, Andrei, Fainkichen, Alexander, Laplace, Cyprien, Li, Ye, Duchesne, Regis
Primary Examiner(s)
Matin, Tasnima

Application Number

US15/655,182
Publication Number

US 20190026232A1
Time in Patent Office

1,020 Days
Field of Search
US Class Current
CPC Class Codes

G06F 11/00   Error detection; Error corr...

G06F 12/1036   for multiple virtual addres...

G06F 2009/45583   Memory management, e.g. acc...

G06F 2009/45595   Network integration; Enabli...

G06F 9/3004   to perform operations on me...

G06F 9/45558   Hypervisor-specific managem...

H04L 12/4641   Virtual LANs, VLANs, e.g. v...

H04L 41/0654   using network fault recover...

H04L 45/021   Ensuring consistency of rou...

H04L 47/193   at the transport layer, e.g...

Hardware-assisted guest address space scanning in a virtualized computing system

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Hardware-assisted guest address space scanning in a virtualized computing system

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links