System and method for inspecting a virtual appliance runtime environment

US 8,209,288 B2
Filed: 06/01/2009
Issued: 06/26/2012
Est. Priority Date: 05/30/2008
Status: Active Grant

First Claim

Patent Images

1. A system for inspecting a virtual appliance runtime environment, comprising:

a runtime environment having one or more processors configured to;

execute a base image in a virtual machine having a guest operating system and a user space file system to execute the base image;

load a new image having a pointer to the base image, wherein the new image initially comprises an empty file;

receive one or more read requests to read data from the user space file system associated with the guest operating system, wherein the one or more read requests reference one or more memory blocks or clusters in the base image;

read the data associated with the one or more read requests from the new image if the one or more memory blocks or clusters referenced in the one or more read requests have been allocated in the new image;

read the data associated with the one or more read requests from the base image and write the one or more memory blocks or clusters referenced in the one or more read requests to the new image if the one or more memory blocks or clusters have not been allocated in the new image;

receive one or more write requests to write data to the user space file system associated with the guest operating system; and

write the data associated with the one or more write requests to the new image to process the one or more write requests; and

a monitoring engine configured to compare the new image to the base image to generate a runtime log that describes runtime activity attributable to the one or more read requests and the one or more write requests.

View all claims

19 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system and method for inspecting a virtual appliance runtime environment is provided. In particular, runtime activity within a virtual machine may be monitored and tracked to manage a file system associated with the runtime activity. For example, a new image having a pointer to a base image being executed may be created, wherein the new image may be empty when created, and wherein data may be written to the new image in response to any files being created, deleted, modified, or otherwise accessed during execution of the base image within the virtual machine. Thus, a file system for the new image may be compared to a file system for the base image to analyze the runtime activity for the base image, wherein the new image may preserve runtime changes to the file system and provide visibility into particular runtime modifications to the file system.

Citations

38 Claims

1. A system for inspecting a virtual appliance runtime environment, comprising:
- a runtime environment having one or more processors configured to;
  
  execute a base image in a virtual machine having a guest operating system and a user space file system to execute the base image;
  
  load a new image having a pointer to the base image, wherein the new image initially comprises an empty file;
  
  receive one or more read requests to read data from the user space file system associated with the guest operating system, wherein the one or more read requests reference one or more memory blocks or clusters in the base image;
  
  read the data associated with the one or more read requests from the new image if the one or more memory blocks or clusters referenced in the one or more read requests have been allocated in the new image;
  
  read the data associated with the one or more read requests from the base image and write the one or more memory blocks or clusters referenced in the one or more read requests to the new image if the one or more memory blocks or clusters have not been allocated in the new image;
  
  receive one or more write requests to write data to the user space file system associated with the guest operating system; and
  
  write the data associated with the one or more write requests to the new image to process the one or more write requests; and
  
  a monitoring engine configured to compare the new image to the base image to generate a runtime log that describes runtime activity attributable to the one or more read requests and the one or more write requests.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
- - 2. The system of claim 1, wherein the one or more processors associated with the runtime environment are further configured to:
    - copy the data associated with the one or more read requests from the new image to the user space file system associated with the guest operating system if the one or more memory blocks or clusters referenced in the one or more read requests have been allocated in the new image; and
      
      write the data associated with the one or more write requests to the user space file system associated with the guest operating system to process the one or more write requests.
  - 3. The system of claim 1, wherein the one or more processors associated with the runtime environment are further configured to:
    - copy the data associated with the one or more read requests from the base image to the user space file system associated with the guest operating system if the one or more memory blocks or clusters referenced in the one or more read requests have not been allocated in the new image; and
      
      write the data associated with the one or more write requests to the user space file system associated with the guest operating system to process the one or more write requests.
  - 4. The system of claim 1, wherein the monitoring engine is further configured to:
    - retrieve inodes that contain metadata describing every object in the user space file system associated with the guest operating system from the new image;
      
      retrieve inodes that contain metadata describing every object in an original version associated with the user space file system from the base image; and
      
      compare the metadata contained in the inodes retrieved from the new image to the metadata contained in the inodes retrieved from the base image to identify the runtime activity attributable to the one or more read requests and the one or more write requests.
  - 5. The system of claim 4, the identified runtime activity includes one or more added files that were created in the user space file system, one or more deleted files that were deleted from the original version associated with the user space file system, one or more modified files that were read from the base image and subsequently modified in the user space file system, one or more unchanged files that were read from the base image but not subsequently modified in the user space file system, and one or more unused files that were not read from the base image.
  - 6. The system of claim 5, wherein the monitoring engine is further configured to identify the one or more added files in response to the metadata contained in the inodes retrieved from the new image describing one or more objects in the user space file system that are not described in the metadata contained in the inodes retrieved from the base image.
  - 7. The system of claim 5, wherein the monitoring engine is further configured to identify the one or more deleted files in response to the metadata contained in the inodes retrieved from the new image describing one or more objects in the user space file system that have deletion times associated therewith.
  - 8. The system of claim 5, wherein the monitoring engine is further configured to identify the one or more modified files in response to the inodes retrieved from the new image and the inodes retrieved from the base image containing different metadata to describe one or more objects in the user space file system and the original version associated therewith that correspond to one another.
  - 9. The system of claim 8, wherein the monitoring engine is further configured to compare the different metadata associated with the one or more modified files to identify changes to the one or more objects in the user space file system relative to the one or more objects the original version associated with the user space file system.
  - 10. The system of claim 9, further comprising a build engine configured to update the base image to incorporate the changes to the one or more objects in the user space file system into the original version associated therewith.
  - 11. The system of claim 5, wherein the monitoring engine is further configured to identify the one or more unchanged files in response to the inodes retrieved from the new image and the inodes retrieved from the base image containing identical metadata to describe one or more objects in the user space file system and the original version associated therewith that correspond to one another.
  - 12. The system of claim 11, wherein monitoring engine is further configured to identify the one or more unused files in response to the metadata contained in the inodes retrieved from the base image describing one or more objects in the original version associated with the user space file system that are not described in the metadata contained in the inodes retrieved from the new image.
  - 13. The system of claim 1, wherein the new image comprises a snapshot to capture a runtime state associated with the base image.
  - 14. The system of claim 13, wherein the runtime log describes the runtime activity attributable to the one or more read requests and the one or more write requests subsequent to when the snapshot was created to capture the runtime state associated with the base image.
  - 15. The system of claim 1, further comprising a build engine configured to update the base image to incorporate one or more changes to the user space file system associated with the runtime activity attributable to the one or more read requests and the one or more write requests.
  - 16. The system of claim 1, wherein the new image comprises a copy-on-write image.

17. A system for inspecting a virtual appliance runtime environment, comprising:
- a runtime environment configured to;
  
  execute an application in a virtual machine having a guest operating system and a user space file system to execute the application with data stored on a disk;
  
  receive one or more read requests to read from the user space file system associated with the application executed in the virtual machine;
  
  forward activity relating to the one or more read requests to a monitoring engine, wherein the forwarded activity relating to the one or more read requests includes data that the virtual machine read from the disk to process the one or more read requests and one or more timestamps to describe when the virtual machine read the data associated with the one or more read requests from the disk;
  
  receive one or more write requests to write to the user space file system associated with the application executed in the virtual machine; and
  
  forward activity relating to the one or more write requests to the monitoring engine, wherein the forwarded activity relating to the one or more write requests includes data that the virtual machine wrote to the disk to process the one or more write requests and one or more timestamps to describe when the virtual machine wrote the data associated with the one or more write requests to the disk; and
  
  one or more processors to execute the monitoring engine, wherein the one or more processors to execute the monitoring engine are configured to;
  
  determine a startup state associated with the user space file system, wherein the startup state associated with the user space file system corresponds to a state associated with the data stored on the disk when the runtime environment started to execute the application in the virtual machine;
  
  construct a first version associated with the user space file system at a first point in time using the startup state associated with the user space file system, the forwarded activity relating to the one or more read requests, and the forwarded activity relating the one or more write requests;
  
  construct a second version associated with the user space file system at a second point in time using the startup state associated with the user space file system, the forwarded activity relating to the one or more read requests, and the forwarded activity relating to the one or more write requests; and
  
  compare the first version associated with the user space file system to the second version associated with the user space file system to generate a runtime log that describes runtime activity associated with the application executed in the virtual machine that occurred between the first point in time and the second point in time.
- View Dependent Claims (18, 19)
- - 18. The system of claim 17, further comprising a build engine configured to restore the user space file system to the first version associated with the user space file system using the one or more timestamps that describe when the virtual machine read the data associated with the one or more read requests from the disk and the one or more timestamps that describe when the virtual machine wrote the data associated with the one or more write requests to the disk, wherein the restored user space file system discards changes to the user space file system attributable to the runtime activity that occurred between the first point in time and the second point in time.
  - 19. The system of claim 17, wherein the one or more processors associated with the monitoring engine are configured to construct the first version associated with the user space file system at the first point in time and the second version associated with the user space file system at the second point in time using the one or more timestamps that describe when the virtual machine read the data associated with the one or more read requests from the disk and the one or more timestamps that describe when the virtual machine wrote the data associated with the one or more write requests to the disk.

20. A method for inspecting a virtual appliance runtime environment, comprising:
- loading a runtime environment configured to execute a base image in a virtual machine having a guest operating system and a user space file system to execute the base image;
  
  loading a new image having a pointer to the base image, wherein the new image initially comprises an empty file;
  
  receiving one or more read requests to read data from the user space file system associated with the guest operating system, wherein the one or more read requests reference one or more memory blocks or clusters in the base image;
  
  reading the data from associated with the one or more read requests from the new image if the one or more memory blocks or clusters referenced in the one or more read requests have been allocated in the new image;
  
  reading the data associated with the one or more read requests from the base image and writing the one or more memory blocks or clusters referenced in the one or more read requests to the new image if the one or more memory blocks or clusters have not been allocated in the new image;
  
  receiving one or more write requests to write data to the user space file system associated with the guest operating system;
  
  writing the data associated with the one or more write requests to the new image to process the one or more write requests; and
  
  comparing the new image to the base image to generate a runtime log that describes runtime activity attributable to the one or more read requests and the one or more write requests.
- View Dependent Claims (21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35)
- - 21. The method of claim 20, further comprising:
    - copying the data associated with the one or more read requests from the new image to the user space file system associated with the guest operating system if the one or more memory blocks or clusters referenced in the one or more read requests have been allocated in the new image; and
      
      writing the data associated with the one or more write requests to the user space file system associated with the guest operating system to process the one or more write requests.
  - 22. The method of claim 20, further comprising:
    - copying the data associated with the one or more read requests from the base image to the user space file system associated with the guest operating system if the one or more memory blocks or clusters referenced in the one or more read requests have not been allocated in the new image; and
      
      writing the data associated with the one or more write requests to the user space file system associated with the guest operating system to process the one or more write requests.
  - 23. The method of claim 20, wherein comparing the new image to the base image to generate the runtime log includes:
    - retrieving inodes that contain metadata describing every object in the user space file system associated with the guest operating system from the new image;
      
      retrieving inodes that contain metadata describing every object in an original version associated with the user space file system from the base image; and
      
      comparing the metadata contained in the inodes retrieved from the new image to the metadata contained in the inodes retrieved from the base image to identify the runtime activity attributable to the one or more read requests and the one or more write requests.
  - 24. The method of claim 23, wherein the identified runtime activity includes one or more added files that were created in the user space file system, one or more deleted files that were deleted from the original version associated with the user space file system, one or more modified files that were read from the base image and subsequently modified in the user space file system, one or more unchanged files that were read from the base image but not subsequently modified in the user space file system, and one or more unused files that were not read from the base image.
  - 25. The method of claim 24, further comprising identifying the one or more added files in response to the metadata contained in the inodes retrieved from the new image describing one or more objects in the user space file system that are not described in the metadata contained in the inodes retrieved from the base image.
  - 26. The method of claim 24, further comprising identifying the one or more deleted files in response to the metadata contained in the inodes retrieved from the new image describing one or more objects in the user space file system that have deletion times associated therewith.
  - 27. The method of claim 24, further comprising identifying the one or more modified files in response to the inodes retrieved from the new image and the inodes retrieved from the base image containing different metadata to describe one or more objects in the user space file system and the original version associated therewith that correspond to one another.
  - 28. The method of claim 27, further comparing the different metadata associated with the one or more modified files to identify changes to the one or more objects in the user space file system relative to the one or more objects the original version associated with the user space file system.
  - 29. The method of claim 28, further comprising updating the base image to incorporate the changes to the one or more objects in the user space file system into the original version associated therewith.
  - 30. The method of claim 24, further comprising identifying the one or more unchanged files in response to the inodes retrieved from the new image and the inodes retrieved from the base image containing identical metadata to describe one or more objects in the user space file system and the original version associated therewith that correspond to one another.
  - 31. The method of claim 30, further comprising identifying the one or more unused files in response to the metadata contained in the inodes retrieved from the base image describing one or more objects in the original version associated with the user space file system that are not described in the metadata contained in the inodes retrieved from the new image.
  - 32. The method of claim 20, wherein the new image comprises a snapshot to capture a runtime state associated with the base image.
  - 33. The method of claim 32, wherein the runtime log describes the runtime activity attributable to the one or more read requests and the one or more write requests subsequent to when the snapshot was created to capture the runtime state associated with the base image.
  - 34. The method of claim 20, wherein the new image comprises a copy-on-write image.
  - 35. The method of claim 20, further comprising updating the base image to incorporate one or more changes to the user space file system associated with the runtime activity attributable to the one or more read requests and the one or more write requests.

36. A method for inspecting a virtual appliance runtime environment, comprising:
- executing an application in a runtime environment, wherein the runtime environment includes a virtual machine having a guest operating system and a user space file system to execute the application with data stored on a disk;
  
  read a state associated with the data stored on the disk in response to the runtime environment starting to execute the application in the virtual machine, wherein a monitoring engine reads the state associated with the data stored on the disk to capture a startup state associated with the user space file system;
  
  receiving one or more read requests to read from the user space file system associated with the application executed in the virtual machine;
  
  forwarding activity relating to the one or more read requests from the virtual machine to the monitoring engine, wherein the forwarded activity relating to the one or more read requests includes data that the virtual machine read from the disk to process the one or more read requests and one or more timestamps to describe when the virtual machine read the data associated with the one or more read requests from the disk;
  
  receiving one or more write requests to write to the user space file system associated with the application executed in the virtual machine;
  
  forwarding activity relating to the one or more write requests from the virtual machine to the monitoring engine, wherein the forwarded activity relating to the one or more write requests includes data that the virtual machine wrote to the disk to process the one or more write requests and one or more timestamps to describe when the virtual machine wrote the data associated with the one or more write requests to the disk;
  
  constructing, at the monitoring engine, a first version associated with the user space file system at a first point in time using the startup state associated with the user space file system, the forwarded activity relating to the one or more read requests, and the forwarded activity relating the one or more write, requests;
  
  constructing, at the monitoring engine, a second version associated with the user space file system at a second point in time using the startup state associated with the user space file system, the forwarded activity relating to the one or more read requests, and the forwarded activity relating to the one or more write requests; and
  
  comparing, at the monitoring engine, the first version associated with the user space file system to the second version associated with the user space file system to generate a runtime log that describes runtime activity associated with the application executed in the virtual machine that occurred between the first point in time and the second point in time.
- View Dependent Claims (37, 38)
- - 37. The method of claim 36, further comprising restoring the user space file system to the first version associated with the user space file system using the one or more timestamps that describe when the virtual machine read the data associated with the one or more read requests from the disk and the one or more timestamps that describe when the virtual machine wrote the data associated with the one or more write requests to the disk, wherein the restored user space file system discards changes to the user space file system attributable to the runtime activity that occurred between the first point in time and the second point in time.
  - 38. The method of claim 36, wherein the monitoring engine uses the one or more timestamps that describe when the virtual machine read the data associated with the one or more read requests from the disk and the one or more timestamps that describe when the virtual machine wrote the data associated with the one or more write requests to the disk to construct the first version associated with the user space file system at the first point in time and the second version associated with the user space file system at the second point in time.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
SUSE, LLC (EQT AB)
Original Assignee
Novell Incorporated (Open Text Corporation)
Inventors
Friedman, Nathaniel, De Icaza, Miguel
Primary Examiner(s)
Vu, Bai D.

Application Number

US12/476,210
Publication Number

US 20090300076A1
Time in Patent Office

1,121 Days
Field of Search

None
US Class Current

707/638
CPC Class Codes

G06F 11/3664 Environments for testing or...

System and method for inspecting a virtual appliance runtime environment

First Claim

19 Assignments

0 Petitions

Accused Products

Abstract

Citations

38 Claims

Specification

Solutions

Use Cases

Quick Links

System and method for inspecting a virtual appliance runtime environment

First Claim

19 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

38 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links