Method and system for implementing a multilevel file system in a virtualized environment

US 9,547,656 B2
Filed: 08/09/2012
Issued: 01/17/2017
Est. Priority Date: 08/09/2012
Status: Active Grant

First Claim

Patent Images

1. A system, comprising:

a processor;

a host operating system (OS) configured to execute on the processor, wherein the host OS comprises;

a global zone comprising;

a multilevel filesystem (MLFS) mounted in the global zone and comprising a directory and a first file located within the directory,wherein the directory is associated with a directory label, andwherein the first file is associated with a first file label that is different than the directory label;

a first non-global zone, external to the MLFS, comprising a first loopback file system acting as a proxy to the MLFS; and

a second non-global zone, external to the MLFS, comprising a second loopback file system acting as a proxy to the MLFS,wherein the host OS is configured to;

receive, from a process executing on the host OS, a request to access the first file of a plurality of files in the MLFS,obtain a process label associated with the process,obtain the first file label associated with the first file,make a first determination that the process label dominates the first file label,based on the first determination, make a second determination that the first file label is equal to the process label,in response to the second determination, provide read and write access to the first file,receive, from the process executing on the host OS, a request to access a second file of the plurality of files in the MLFS,obtain a second file label associated with the second file,make a third determination that the process label dominates the second file label,based on the third determination, make a fourth determination that the second file label does not equal the process label, andin response to the fourth determination provide read only access to the second file.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A global zone executing on a host OS that includes a multilevel filesystem (MLFS) associated with a label range, where the MLFS includes files and directories, where each of the files is associated with its own label and where each of the directories is associated with its own label. The global zone further includes a first non-global zone, where the MLFS is mounted in the first non-global zone as a first loopback file system. The host OS is configured to receive, from a process executing on the host OS, a request to access a first file in the MLFS, make a first determination that a process label dominates a first file label, based on the first determination, make a second determination that the first file label is equal to the process label, and in response to the second determination, provide read and write access to the first file.

30 Citations

View as Search Results

20 Claims

1. A system, comprising:
- a processor;
  
  a host operating system (OS) configured to execute on the processor, wherein the host OS comprises;
  
  a global zone comprising;
  
  a multilevel filesystem (MLFS) mounted in the global zone and comprising a directory and a first file located within the directory,wherein the directory is associated with a directory label, andwherein the first file is associated with a first file label that is different than the directory label;
  
  a first non-global zone, external to the MLFS, comprising a first loopback file system acting as a proxy to the MLFS; and
  
  a second non-global zone, external to the MLFS, comprising a second loopback file system acting as a proxy to the MLFS,wherein the host OS is configured to;
  
  receive, from a process executing on the host OS, a request to access the first file of a plurality of files in the MLFS,obtain a process label associated with the process,obtain the first file label associated with the first file,make a first determination that the process label dominates the first file label,based on the first determination, make a second determination that the first file label is equal to the process label,in response to the second determination, provide read and write access to the first file,receive, from the process executing on the host OS, a request to access a second file of the plurality of files in the MLFS,obtain a second file label associated with the second file,make a third determination that the process label dominates the second file label,based on the third determination, make a fourth determination that the second file label does not equal the process label, andin response to the fourth determination provide read only access to the second file.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
- - 2. The system of claim 1, wherein the host OS is further configured to:
    - receive, from a second process executing on the host, a request to access the first file of the plurality of files in the MLFS,obtain a second process label associated with the second process,making a fifth determination that the second process label dominates the first file label,based on the fifth determination, making a sixth determination that the first file label does not equal the second process label, andin response to the sixth determination providing read only access to the first file.
  - 3. The system of claim 2, wherein the first process is in the first non-global zone and the second process is in a second non-global zone on the host OS.
  - 4. The system of claim 3, wherein the first non-global zone is associated with a first zone label and the second non-global zone is associated with a second zone label, wherein the first zone label is different than the second zone label.
  - 5. The system of claim 4, wherein the process label is equal to the first zone label.
  - 6. The system of claim 3, wherein the first non-global zone is associated with a first zone label and the second non-global zone is associated with a second zone label, wherein the first zone label dominates the second zone label.
  - 7. The system of claim 1, wherein the host OS is further configured to:
    - after the process has modified the first file to generate a first updated file;
      
      receive, from a second process executing on the host, a request to access the first updated file of the plurality of files in the MLFS, wherein the first updated file is associated with the first file label,obtain a second process label associated with the second process,making a fifth determination that the second process label dominates the first file label,based on the fifth determination, making a sixth determination that the first file label does not equal the process label, andin response to the sixth determination providing read only access to the updated first file.
  - 8. The system of claim 1, wherein the MLFS is mounted in the first non-global zone with read and write permissions.
  - 9. The system of claim 1, wherein the first non-global zone comprises a single-level file system (SLFS), wherein the first non-global zone is associated with a first label, wherein the SLFS is associated with a second label, wherein the first label and the second label are equal, and wherein the SLFS comprises a first plurality of files and a first plurality of directories, wherein each of the first plurality of files is implicitly associated with the second label and wherein each of the first plurality of directories is implicitly associated with the second label.
  - 10. The system of claim 1, wherein the host OS is further configured to:
    - receive, from the process executing on the host OS, a request to access the directory of a plurality of directories in the MLFS,obtain the directory label associated with the directory,make a fifth determination that the process label dominates the directory label, andin response to the fifth determination provide a listing of contents of the directory.
  - 11. The system of claim 10, wherein all content in the directory is associated with its own label, and wherein labels associated with the content are monotonic non-decreasing relative to the directory label.
  - 12. The system of claim 10, wherein the directory comprises a file with a third file label and wherein the third file label strictly dominates the directory label.
  - 13. The system of claim 12, wherein the third file label strictly dominates the process label.
  - 14. The system of claim 1, wherein the host OS is further configured to:
    - receive, from the process executing on the host OS, a request to access the directory of a plurality of directories in the MLFS,obtain the directory label associated with the directory,make a fifth determination that the process label dominates the directory label, andin response to the fifth determination provide a listing of contents of the directory, wherein the listing only includes files and sub-directories whose label is dominated by the process label.
  - 15. The system of claim 1, wherein the host OS is further configured to:
    - receive, from the process executing on the host OS, a request to create a third file in the directory in the MLFS,making a fifth determination that the process label is in the label range;
      
      obtain the directory label associated with the directory,make a sixth determination that the process label dominates the directory label, andin response to the sixth determination create the third file, wherein the third file is associated with the process label.
  - 16. The system of claim 15, wherein the process label strictly dominates the directory label.

17. A non-transitory computer readable medium comprising computer readable program code that when executed by a processor cause the processor to:
- receive, from a process executing on a host operating system, a request to access a first file of a plurality of files in a multilevel filesystem (MLFS) mounted in a global zone, the MLFS comprising a directory and the first file located within the directory, wherein the directory is associated with a directory label, wherein the first file is associated with a first file label that is different than the directory label, and wherein the host operating system comprises the global zone, the global zone comprising;
  
  a first non-global zone, external to the MLFS, comprising a first loopback file system acting as a proxy to the MLFS; and
  
  a second non-global zone, external to the MLFS, comprising a second loopback file system acting as a proxy to the MLFS;
  
  obtain a process label associated with the process;
  
  obtain the first file label associated with the first file;
  
  make a first determination that the process label dominates the first file label;
  
  based on the first determination, make a second determination that the first file label is equal to the process label;
  
  in response to the second determination, provide read and write access to the first file;
  
  receive, from the process executing on the host OS, a request to access a second file of the plurality of files in the MLFS;
  
  obtain a second file label associated with the second file;
  
  make a third determination that the process label dominates the second file label;
  
  based on the third determination, make a fourth determination that the second file label does not equal the process label; and
  
  in response to the fourth determination provide read only access to the second file.
- View Dependent Claims (18, 19, 20)
- - 18. The non-transitory computer readable medium of claim 17, wherein the computer readable program code further cause the processor to:
    - receive, from a second process executing on the host, a request to access the first file of the plurality of files in the MLFS,obtain a second process label associated with the second process,making a fifth determination that the second process label dominates the first file label,based on the fifth determination, making a sixth determination that the first file label does not equal the second process label, andin response to the sixth determination providing read only access to the first file.
  - 19. The non-transitory computer readable medium of claim 17, wherein the computer readable program code further cause the processor to:
    - after the process has modified the first file to generate a first updated file;
      
      receive, from a second process executing on the host, a request to access the first updated file of the plurality of files in the MLFS, wherein the first updated file is associated with the first file label,obtain a second process label associated with the second process,making a fifth determination that the second process label dominates the first file label,based on the fifth determination, making a sixth determination that the first file label does not equal the process label, andin response to the sixth determination providing read only access to the updated first file.
  - 20. The non-transitory computer readable medium of claim 17, wherein the computer readable program code further cause the processor to:
    - receive, from the process executing on the host OS, a request to access the directory of a plurality of directories in the MLFS,obtain the directory label associated with the directory,make a fifth determination that the process label dominates the directory label, andin response to the fifth determination provide a listing of contents of the directory, wherein the listing only includes files and sub-directories whose label is dominated by the process label.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Oracle International Corporation (Oracle Corporation)
Original Assignee
Oracle International Corporation (Oracle Corporation)
Inventors
Aleshire, Richard E., Faden, Glenn T.
Primary Examiner(s)
Liu, Hexing

Application Number

US13/570,825
Publication Number

US 20140046986A1
Time in Patent Office

1,622 Days
Field of Search

None
US Class Current

1/1
CPC Class Codes

G06F 16/13 File access structures, e.g...

G06F 21/6218 to a system of files or obj...

Method and system for implementing a multilevel file system in a virtualized environment

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

30 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Method and system for implementing a multilevel file system in a virtualized environment

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

30 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links