-
Patent Agency Ranking
公开(公告)号:US10417062B2
公开(公告)日:2019-09-17
申请号:US15280122
申请日:2016-09-29
Inventor: Linsi Yuan , Baisheng Wang , Dong Sun , Zhiyong Li
Abstract: The present application discloses a method and apparatus of unloading an out of memory (OOM) processing flow to a user space. A specific implementation of the method includes: writing related information of an OOM event into a memory page shared by a user space and a kernel space when a process triggers the OOM event, the related information comprising: an identification of the process and a path of a memory resource control sub-system where the process exists; acquiring, by an OOM service process of the user space, the related information of the OOM event through the memory page; and processing, by the OOM service process of the user space, the OOM event using the related information of the OOM event. The implementation implements unloading of an OOM processing in a kernel state to a user state for execution, and the whole OOM processing process is handed over to a user state process for implementation, which reduces the complexity of execution of the OOM processing, and is conducive to adjustment of OOM processing strategies and upgrade and replacement of services.
-
公开(公告)号:US10469583B2
公开(公告)日:2019-11-05
申请号:US15550851
申请日:2015-10-12
Inventor: Guangjun Xie , Baisheng Wang , Zhiyong Li
Abstract: The present disclosure provides a data storage method and device. The data storage method includes: receiving data by a simulating device from a client operating system; encapsulating the data in a user space of a host system according to a protocol used by a storage server; and sending the encapsulated data to the storage server for storage. The method can realize storing data in the storage server, thereby shortening the I/O path, improving the I/O throughput of a system, reducing the CPU load, and optimizing the system performance.
-
公开(公告)号:US10102373B2
公开(公告)日:2018-10-16
申请号:US15237940
申请日:2016-08-16
Inventor: Liang Ma , Ning Qu , Baisheng Wang , Zhipeng Wang
Abstract: The present application discloses a method and apparatus for capturing an operation, and security control in a container-based virtualization system. A specific implementation of the method for capturing the operation includes: detecting, in a user mode, a process launch operation in a container of the container-based virtualization system; and performing, in a kernel mode, a step of capturing a signal processing operation, if the process launch operation is detected, the step of capturing the signal processing operation comprising: determining a presence of an unprocessed signal in the process; causing an executable instruction indicated by the unprocessed signal to jump to an entry address of a self-defined first function, and passing a signal number of the unprocessed signal to the first function, if the unprocessed signal exists; and capturing a signal processing operation corresponding to the passed signal number, if the first function is called. This implementation implements the capture of an access operation by a process in a container to a host kernel, so that security control can be subsequently performed on the captured operation to ensure the security of the system.
-
公开(公告)号:US20170329655A1
公开(公告)日:2017-11-16
申请号:US15280122
申请日:2016-09-29
Inventor: Linsi Yuan , Baisheng Wang , Dong Sun , Zhiyong Li
CPC classification number: G06F9/542 , G06F3/0613 , G06F3/0647 , G06F3/0659 , G06F3/0683 , G06F9/485 , G06F9/545
Abstract: The present application discloses a method and apparatus of unloading an out of memory (OOM) processing flow to a user space. A specific implementation of the method includes: writing related information of an OOM event into a memory page shared by a user space and a kernel space when a process triggers the OOM event, the related information comprising: an identification of the process and a path of a memory resource control sub-system where the process exists; acquiring, by an OOM service process of the user space, the related information of the OOM event through the memory page; and processing, by the OOM service process of the user space, the OOM event using the related information of the OOM event. The implementation implements unloading of an OOM processing in a kernel state to a user state for execution, and the whole OOM processing process is handed over to a user state process for implementation, which reduces the complexity of execution of the OOM processing, and is conducive to adjustment of OOM processing strategies and upgrade and replacement of services.
-
5.发明申请公开(公告)号:US20170103206A1
公开(公告)日:2017-04-13
申请号:US15237940
申请日:2016-08-16
Inventor: Liang Ma , Ning Qu , Baisheng Wang , Zhipeng Wang
CPC classification number: G06F21/566 , G06F9/445 , G06F9/44505 , G06F9/455 , G06F9/48 , G06F21/53
Abstract: The present application discloses a method and apparatus for capturing an operation, and security control in a container-based virtualization system. A specific implementation of the method for capturing the operation includes: detecting, in a user mode, a process launch operation in a container of the container-based virtualization system; and performing, in a kernel mode, a step of capturing a signal processing operation, if the process launch operation is detected, the step of capturing the signal processing operation comprising: determining a presence of an unprocessed signal in the process; causing an executable instruction indicated by the unprocessed signal to jump to an entry address of a self-defined first function, and passing a signal number of the unprocessed signal to the first function, if the unprocessed signal exists; and capturing a signal processing operation corresponding to the passed signal number, if the first function is called. This implementation implements the capture of an access operation by a process in a container to a host kernel, so that security control can be subsequently performed on the captured operation to ensure the security of the system.
-
-
-
-
Search Results
5
records
(took 0.026 seconds)
