Executing native-code applications in a browser

US 9,588,803 B2
Filed: 05/11/2009
Issued: 03/07/2017
Est. Priority Date: 05/11/2009
Status: Active Grant

First Claim

Patent Images

1. A method comprising:

sending a request to execute an application comprising native code from a computing device;

responsive at least in part to the sending of the request, receiving the native code of the application at the computing device;

assigning, by a monitor process, a portion of memory of the computing device to the application comprising the native code, the portion of the memory being enforced by hardware of the computing device;

making an operating system (OS)-specific kernel call that revokes an ability of the application to communicate kernel calls to an OS by causing an OS kernel to transfer control of intercepting kernel calls to the monitor process;

executing the native code of the application within the portion of the memory being enforced by the hardware;

within the portion of the memory being enforced by the hardware, translating OS-independent calls from the executing application to OS-specific calls based on a table of function pointers and calling conventions for corresponding functions; and

monitoring, by the monitor process, calls made by the application for system services outside of the portion of the memory being enforced by the hardware to determine whether the respective calls are permissible.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Techniques for leveraging legacy code to deploy native-code desktop applications over a network (e.g., the Web) are described herein. These techniques include executing an application written in native code within a memory region that hardware of a computing device enforces. For instance, page-protection hardware (e.g., a memory management unit) or segmentation hardware may protect this region of memory in which the application executes. The techniques may also provide a narrow system call interface out of this memory region by dynamically enforcing system calls made by the application. Furthermore, these techniques may enable a browser of the computing device to function as an operating system for the native-code application. These techniques thus allow for execution of native-code applications on a browser of a computing device and, hence, over the Web in a resource-efficient manner and without sacrificing security of the computing device.

241 Citations

19 Claims

1. A method comprising:
- sending a request to execute an application comprising native code from a computing device;
  
  responsive at least in part to the sending of the request, receiving the native code of the application at the computing device;
  
  assigning, by a monitor process, a portion of memory of the computing device to the application comprising the native code, the portion of the memory being enforced by hardware of the computing device;
  
  making an operating system (OS)-specific kernel call that revokes an ability of the application to communicate kernel calls to an OS by causing an OS kernel to transfer control of intercepting kernel calls to the monitor process;
  
  executing the native code of the application within the portion of the memory being enforced by the hardware;
  
  within the portion of the memory being enforced by the hardware, translating OS-independent calls from the executing application to OS-specific calls based on a table of function pointers and calling conventions for corresponding functions; and
  
  monitoring, by the monitor process, calls made by the application for system services outside of the portion of the memory being enforced by the hardware to determine whether the respective calls are permissible.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. A method as recited in claim 1, wherein the hardware of the computing device comprises page-protection hardware of the computing device.
  - 3. A method as recited in claim 1, wherein the sending of the request comprises sending a request over a network to a server that stores the application comprising the native code.
  - 4. A method as recited in claim 1, wherein the native code comprises binary code in an instruction set of a processor of the computing device.
  - 5. A method as recited in claim 2, wherein the page-protection hardware of the computing device comprises a memory management unit of the computing device.
  - 6. A method as recited in claim 1, wherein the hardware of the computing device comprises segmentation hardware of the computing device.
  - 7. A method as recited in claim 1, further comprising executing a block image transfer (BLIT) of a representation of an image from the portion of the memory to a browser of the computing device through an interface provided by the browser.

8. One or more computer-readable storage hardware devices storing computer-executable instructions that, when executed on one or more processors, cause the one or more processors to perform acts comprising:
- sending a request to execute an application comprising native code from a computing device;
  
  responsive at least in part to the sending of the request, receiving the native code of the application at the computing device;
  
  assigning, by a monitor process, a portion of memory of the computing device to the application comprising the native code, the portion of the memory being enforced by hardware of the computing device;
  
  making an operating system (OS)-specific kernel call that revokes an ability of the application to communicate kernel calls to an OS by causing an OS kernel to transfer control of intercepting kernel calls to the monitor process;
  
  executing the native code of the application within the portion of the memory being enforced by the hardware;
  
  within the portion of the memory being enforced by the hardware, translating OS-independent calls from the executing application to OS-specific calls based on a table of function pointers and calling conventions for corresponding functions; and
  
  monitoring, by the monitor process, calls made by the application for system services outside of the portion of the memory being enforced by the hardware to determine whether the respective calls are permissible.
- View Dependent Claims (9, 10, 11)
- - 9. One or more computer-readable storage hardware devices as recited in claim 8, wherein the hardware of the computing device comprises page-protection hardware of the computing device.
  - 10. One or more computer-readable storage hardware devices as recited in claim 8, wherein the sending of the request comprises sending a request over a network to a server that stores the application comprising the native code.
  - 11. One or more computer-readable storage hardware devices as recited in claim 8, wherein the native code comprises binary code in an instruction set of a processor of the computing device.

12. A system comprising:
- one or more processors; and
  
  one or more computer-readable hardware devices storing computer-executable instructions that, when executed on one or more processors, cause the one or more processors to perform acts comprising;
  
  sending a request to execute an application comprising native code from a computing device;
  
  responsive at least in part to the sending of the request, receiving the native code of the application at the computing device;
  
  assigning, by a monitor process, a portion of memory of the computing device to the application comprising the native code, the portion of the memory being enforced by hardware of the computing device;
  
  making an operating system (OS)-specific kernel call that revokes an ability of the application to make kernel calls to an OS by causing an OS kernel to transfer control of intercepting kernel calls to the monitor process;
  
  executing the native code of the application within the portion of the memory being enforced by the hardware;
  
  within the portion of the memory being enforced by the hardware, translating OS-independent calls from the executing application to OS-specific calls based on a table of function pointers and calling conventions for corresponding functions; and
  
  monitoring, by the monitor process, calls made by the application for system services outside of the portion of the memory being enforced by the hardware to determine whether the respective calls are permissible.
- View Dependent Claims (13, 14, 15, 16, 17, 18, 19)
- - 13. A system as recited in claim 12, wherein the hardware of the computing device comprises page-protection hardware of the computing device.
  - 14. A system as recited in claim 12, wherein the sending of the request comprises sending a request over a network to a server that stores the application comprising the native code.
  - 15. A system as recited in claim 12, wherein the native code comprises binary code in an instruction set of a processor of the computing device.
  - 16. A system as recited in claim 12, the acts further comprising:
    - enabling a browser of the computing device to function as an operating system for the application comprising the native code, wherein the enabling of the browser of the computing device to function as an operating system comprises enabling the browser to provide network input/output (I/O) to the native code of the application.
  - 17. A system as recited in claim 12, the acts further comprising:
    - enabling a browser of the computing device to function as an operating system for the application comprising the native code, wherein the enabling of the browser of the computing device to function as an operating system comprises enabling the browser to provide storage input/output (I/O) to the native code of the application.
  - 18. A system as recited in claim 12, the acts further comprising:
    - enabling a browser of the computing device to function as an operating system for the application comprising the native code, wherein the enabling of the browser of the computing device to function as an operating system comprises enabling the browser to provide object caching to the native code of the application.
  - 19. A system as recited in claim 12, the acts further comprising:
    - enabling a browser of the computing device to function as an operating system for the application comprising the native code; and
      
      transferring a piece of audio from the portion of the memory to the browser through an interface provided by the browser.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Microsoft Technology Licensing LLC (Microsoft Corporation)
Original Assignee
Microsoft Technology Licensing LLC (Microsoft Corporation)
Inventors
Howell, Jonathan R., Lorch, Jacob R., Elson, Jeremy E., Douceur, John R.
Primary Examiner(s)
Nigh, James D

Application Number

US12/463,892
Publication Number

US 20100287618A1
Time in Patent Office

2,857 Days
Field of Search

705/50, 726/26
US Class Current

1/1
CPC Class Codes

G06F 21/53   by executing in a restricte...

G06F 8/60   Software deployment

G06F 9/468   Specific access rights for ...

G06Q 20/1235   with control of digital rig...

Executing native-code applications in a browser

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

241 Citations

19 Claims

Specification

Use Cases

Quick Links

Others

Executing native-code applications in a browser

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

241 Citations

19 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others