Methods for safe and efficient implementations of virtual machines

US 5,761,477 A
Filed: 12/04/1995
Issued: 06/02/1998
Est. Priority Date: 12/04/1995
Status: Expired due to Term

First Claim

Patent Images

1. A computer implemented method for preventing transfer of control to illegal memory addresses during execution of a sequence of virtual machine instructions, operating in a computer system having memory, the method comprising the steps:

generating a sequence of machine executable instructions to carry out the operations defined by the sequence of virtual machine instructions;

providing, in a computer storage medium, status information, said status information indicating the illegal memory addresses which the sequence of virtual machine instructions is not allowed to transfer control to, and legal memory addresses which the sequence of virtual machine instructions is allowed to transfer control to;

analyzing the sequence of virtual machine instructions and generating a sequence of machine executable instructions to carry out operations defined by the sequence of virtual machine instructions; and

encapsulating a machine executable instruction that can cause transfer of control to the illegal memory addresses with a predetermined sequence of machine executable checking instructions so that said predetermined sequence of machine executable checking instructions is executed in conjunction with said machine executable instruction that can cause transfer of control to said illegal memory addresses, the predetermined sequence of machine executable checking instructions signaling an error if said machine executable instruction that can cause transfer of control to the illegal memory addresses does attempt to transfer control to one of said illegal memory addresses.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An efficient method for implementing a safe virtual machine, in software, that embodies a general purpose memory protection model. The present invention runs on any general purpose computer architecture and will run an executable that has been developed for the virtual machine. The present invention compiles the executable into the native instructions of the hardware. During the compilation, specialized code sequences are added to the code using a technique called software fault isolation. A set of allowed behaviors and a set of responses to the undesirable actions will be created and written to memory. A series of optimizations are applied so that the translated code executes at nearly the native speed of the architecture, but the fault isolation sequences prevent it from engaging in undesirable actions. In particular, the memory protection model is enforced, providing the same level of protection that customarily requires hardware support to enforce efficiently.

Citations

12 Claims

1. A computer implemented method for preventing transfer of control to illegal memory addresses during execution of a sequence of virtual machine instructions, operating in a computer system having memory, the method comprising the steps:
- generating a sequence of machine executable instructions to carry out the operations defined by the sequence of virtual machine instructions;
  
  providing, in a computer storage medium, status information, said status information indicating the illegal memory addresses which the sequence of virtual machine instructions is not allowed to transfer control to, and legal memory addresses which the sequence of virtual machine instructions is allowed to transfer control to;
  
  analyzing the sequence of virtual machine instructions and generating a sequence of machine executable instructions to carry out operations defined by the sequence of virtual machine instructions; and
  
  encapsulating a machine executable instruction that can cause transfer of control to the illegal memory addresses with a predetermined sequence of machine executable checking instructions so that said predetermined sequence of machine executable checking instructions is executed in conjunction with said machine executable instruction that can cause transfer of control to said illegal memory addresses, the predetermined sequence of machine executable checking instructions signaling an error if said machine executable instruction that can cause transfer of control to the illegal memory addresses does attempt to transfer control to one of said illegal memory addresses.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The computer implemented method of claim 1 wherein said virtual machine instructions contain memory access instructions whose memory address operands can contain arbitrarily computed values, said arbitrarily computed values computed by said sequence of virtual machine instructions.
  - 3. The computer implemented method of claim 2 wherein said memory address operands computed by the sequence of virtual machine instructions are the same addresses used by said sequence of machine executable instructions.
  - 4. The computer implemented method of claim 2 wherein said virtual machine instructions can be executed with substantially similar behavior on computers with different central processing units.
  - 5. The computer implemented method of claim 2 wherein said predetermined sequence of machine executable checking instructions prevents attempts to transfer control to said illegal memory addresses by transforming the illegal memory addresses based upon said status information.
  - 6. The computer implemented method of claim 2 wherein said predetermined sequence of machine executable checking instructions prevents attempts to transfer control to said illegal memory addresses by transforming the illegal memory addresses into a value that will cause the computer system to signal an error.

7. A computer implemented method for preventing modification of illegal memory addresses during execution of a sequence of virtual machine instructions, operating in a computer system having memory, the method comprising the steps:
- generating a sequence of machine executable instructions to carry out the operations defined by the sequence of virtual machine instructions;
  
  providing, in a computer storage medium, status information, said status information indicating the illegal memory addresses which the sequence of virtual machine instructions is not allowed to modify and legal memory addresses which the sequence of virtual machine instructions is allowed to modify;
  
  analyzing the sequence of virtual machine instructions and generating a sequence of machine executable instructions to carry out operations defined by the sequence of virtual machine instructions; and
  
  encapsulating a machine executable instruction that can cause modification of the illegal memory addresses with a predetermined sequence of machine executable checking instructions so that said predetermined sequence of machine executable checking instructions is executed in conjunction with said machine executable instruction that can cause modification of said illegal memory addresses, the predetermined sequence of machine executable checking instructions signaling an error if said machine executable instruction that can modify the illegal memory addresses does attempt to modify one of said illegal memory addresses.
- View Dependent Claims (8, 9, 10, 11, 12)
- - 8. The computer implemented method of claim 7 wherein said virtual machine instructions contain memory access instructions whose memory address operands can contain arbitrarily computed values, said arbitrarily computed values computed by said sequence of virtual machine instructions.
  - 9. The computer implemented method of claim 8 wherein said memory address operands computed by the sequence of virtual machine instructions are the same addresses used by said sequence of machine executable instructions.
  - 10. The computer implemented method of claim 8 wherein said virtual machine instructions can be executed with substantially similar behavior on computers with different central processing units.
  - 11. The computer implemented method of claim 8 wherein said predetermined sequence of machine executable checking instructions prevents attempts to modify said illegal memory addresses by transforming the illegal memory addresses based upon said status information.
  - 12. The computer implemented method of claim 8 wherein said predetermined sequence of machine executable checking instructions prevents attempts to modify said illegal memory addresses by transforming the illegal memory addresses into a value that will cause the computer system to signal an error.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Microsoft Technology Licensing LLC (Microsoft Corporation)
Original Assignee
Microsoft Corporation
Inventors
Wahbe, Robert S., Lucco, Steven E.
Primary Examiner(s)
Oberley, Alvin F.
Assistant Examiner(s)
LAO, SUE X

Application Number

US08/566,613
Time in Patent Office

911 Days
Field of Search

395/705, 395/670, 395/406, 395/704
US Class Current

718/1
CPC Class Codes

G06F 11/3624 by performing operations on...

Methods for safe and efficient implementations of virtual machines

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

12 Claims

Specification

Solutions

Use Cases

Quick Links

Methods for safe and efficient implementations of virtual machines

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

12 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links