Two-level service model in operating system partitions
First Claim
1. A machine-implemented method, comprising:
- establishing, within a global operating system environment provided by an operating system (OS) kernel, a first non-global zone which serves as a first virtual platform for supporting and isolating user processes, wherein the first non-global zone is a separate and distinct OS partition of the global operating system environment having a first zone identifier associated therewith, and wherein the first non-global zone is established and exists without requiring any user processes to be running therein;
establishing, within the global operating system environment, a second non-global zone which serves as a second virtual platform for supporting and isolating user processes, wherein the second non-global zone is a separate and distinct OS partition of the global operating system environment having a second zone identifier associated therewith, and wherein the second non-global zone is established and exists without requiring any user processes to be running therein;
executing a first set of one or more user processes within the first non-global zone;
executing a second set of one or more user processes within the second non-global zone; and
isolating the first set of one or more user processes within the first non-global zone and the second set of one or more user processes within the second non-global zone such that the first set of one or more user processes cannot access processes in the second non-global zone and the second set of one or more user processes cannot access processes in the first non-global zone;
wherein the first and second non-global zones are established by the OS kernel, and wherein the OS kernel enforces zone boundaries to isolate the first set of one or more user processes within the first non-global zone and the second set of one or more user processes within the second non-global zone.
2 Assignments
0 Petitions
Accused Products
Abstract
The present invention provides, in one embodiment, a multi-level service model operating system environment that may be partitioned into a global zone and one or more non-global zones to isolate processes from processes executing in association with other non-global zones under control of a single kernel instance. In one embodiment, the multi-level service model includes a virtual platform layer and an application layer. The virtual platform layer may include services and resources for supporting the zones, which can be made accessible to the zones in the form of a virtual platform. The application layer may comprise the non-global zones, including an application environment for maintaining a runtime state for the zone'"'"'s processes and any zone-constructed objects, such as network connections and shared memory segments. In one embodiment, control and management of non-global zones can be provided by a system of states and transitions.
120 Citations
27 Claims
-
1. A machine-implemented method, comprising:
-
establishing, within a global operating system environment provided by an operating system (OS) kernel, a first non-global zone which serves as a first virtual platform for supporting and isolating user processes, wherein the first non-global zone is a separate and distinct OS partition of the global operating system environment having a first zone identifier associated therewith, and wherein the first non-global zone is established and exists without requiring any user processes to be running therein; establishing, within the global operating system environment, a second non-global zone which serves as a second virtual platform for supporting and isolating user processes, wherein the second non-global zone is a separate and distinct OS partition of the global operating system environment having a second zone identifier associated therewith, and wherein the second non-global zone is established and exists without requiring any user processes to be running therein; executing a first set of one or more user processes within the first non-global zone; executing a second set of one or more user processes within the second non-global zone; and isolating the first set of one or more user processes within the first non-global zone and the second set of one or more user processes within the second non-global zone such that the first set of one or more user processes cannot access processes in the second non-global zone and the second set of one or more user processes cannot access processes in the first non-global zone; wherein the first and second non-global zones are established by the OS kernel, and wherein the OS kernel enforces zone boundaries to isolate the first set of one or more user processes within the first non-global zone and the second set of one or more user processes within the second non-global zone. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A machine-readable storage medium storing one or more sets of instructions which, when executed by one or more processors, cause the one or more processors to perform the steps of:
-
establishing, within a global operating system environment provided by an operating system (OS) kernel, a first non-global zone which serves as a first virtual platform for supporting and isolating user processes, wherein the first non-global zone is a separate and distinct OS partition of the global operating system environment having a first zone identifier associated therewith, and wherein the first non-global zone is established and exists without requiring any user processes to be running therein; establishing, within the global operating system environment, a second non-global zone which serves as a second virtual platform for supporting and isolating user processes, wherein the second non-global zone is a separate and distinct OS partition of the global operating system environment having a second zone identifier associated therewith, and wherein the second non-global zone is established and exists without requiring any user processes to be running therein; executing a first set of one or more user processes within the first non-global zone; executing a second set of one or more user processes within the second non-global zone; and isolating the first set of one or more user processes within the first non-global zone and the second set of one or more user processes within the second non-global zone such that the first set of one or more user processes cannot access processes in the second non-global zone and the second set of one or more user processes cannot access processes in the first non-global zone; wherein the first and second non-global zones are established by the OS kernel, and wherein the OS kernel enforces zone boundaries to isolate the first set of one or more user processes within the first non-global zone and the second set of one or more user processes within the second non-global zone. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
-
-
21. An apparatus comprising:
-
one or more processors configured to implement; means for establishing, within a global operating system environment provided by an operating system (OS) kernel, a first non-global zone which serves as a first virtual platform for supporting and isolating user processes, wherein the first non-global zone is a separate and distinct OS partition of the global operating system environment having a first zone identifier associated therewith, and wherein the first non-global zone is established and exists without requiring any user processes to be running therein; means for establishing, within said global operating system environment, a second non-global zone which serves as a second virtual platform for supporting and isolating user processes, wherein the second non-global zone is a separate and distinct OS partition of the global operating system environment having a second zone identifier associated therewith, and wherein the second non-global zone is established and exists without requiring any user processes to be running therein; means for executing a first set of one or more user processes within the first non-global zone; means for executing a second set of one or more user processes within the second non-global zone; and means for isolating the first set of one or more user processes within the first non-global zone and the second set of one or more user processes within the second non-global zone such that the first set of one or more user processes cannot access processes in the second non-global zone and the second set of one or more user processes cannot access processes in the first non-global zone; wherein the first and second non-global zones are established by the OS kernel, and wherein the OS kernel enforces zone boundaries to isolate the first set of one or more user processes within the first non-global zone and the second set of one or more user processes within the second non-global zone. - View Dependent Claims (22, 23, 24, 25, 26, 27)
-
Specification