首页 | 本学科首页   官方微博 | 高级检索  
     

VM内部隔离驱动程序的可靠性架构
引用本文:郑豪,董小社,王恩东,陈宝可,朱正东. VM内部隔离驱动程序的可靠性架构[J]. 软件学报, 2014, 25(10): 2235-2250
作者姓名:郑豪  董小社  王恩东  陈宝可  朱正东
作者单位:1. 西安交通大学计算机科学与技术系,陕西西安,710049
2. 高效能服务器和存储技术国家重点实验室,山东济南,250013
基金项目:国家高技术研究发展计划(863)(2008AA01A202,2012AA01A306);国家科技攻关计划(2011BAH04B03);NSF青年基金(61202041)
摘    要:利用虚拟化技术来整合资源已成为高性能服务器提高资源利用率的重要手段,虚拟化技术的可靠性对于高性能服务器所提供服务的质量至关重要.然而,驱动故障严重影响了虚拟机中操作系统的可靠性,也同样影响到整个服务器的可靠性.为此,提出一种在虚拟机内部通过隔离故障驱动程序来提高虚拟机可靠性的架构,该架构通过监视驱动程序所使用的内存信息来建立驱动可写权限的授权表,并在虚拟机监视器中设置虚拟机内核空间对应影子页表的写保护来捕获虚拟机的写操作,进而结合授权表判断被隔离驱动程序写操作的正确性.目前,该架构能够在无需修改驱动程序的情况下,在虚拟机内部实现对驱动程序的隔离.实验结果表明:该架构可以隔离84.63%的注入故障造成的系统崩溃失效,并且对于驱动性能的影响小于20%,提高了虚拟化环境的可靠性.

关 键 词:虚拟化  可靠性  驱动隔离
收稿时间:2014-01-25
修稿时间:2014-07-07

Reliability Architecture to Isolate the Driver Inside the VM
ZHENG Hao,DONG Xiao-She,WANG En-Dong,CHEN Bao-Ke and ZHU Zheng-Dong. Reliability Architecture to Isolate the Driver Inside the VM[J]. Journal of Software, 2014, 25(10): 2235-2250
Authors:ZHENG Hao  DONG Xiao-She  WANG En-Dong  CHEN Bao-Ke  ZHU Zheng-Dong
Affiliation:Department of Computer Science and Technology, Xi'an Jiaotong University, Xi'an 710049, China;Department of Computer Science and Technology, Xi'an Jiaotong University, Xi'an 710049, China;State Key Laboratory of High-End Server & Storage Technology, Ji'nan 250013, China;Department of Computer Science and Technology, Xi'an Jiaotong University, Xi'an 710049, China;Department of Computer Science and Technology, Xi'an Jiaotong University, Xi'an 710049, China
Abstract:Using virtualization technology to integrate resources has become an important mean to improve the resource utilization of current high-performance servers. Thus the reliability of virtualization technology is very crucial to the service quality of high- performance server. However, the driver fault greatly impacts not only the reliability of operating system inside the virtual machine but also the reliability of the servers. In light of issue, this paper presents a driver isolation architecture inside the virtual machine to improve its reliability. It establishes the authorization table by monitoring the memory information which are used by the driver, captures the driver's write operations by setting the write protection of the shadow page table corresponding to the kernel space of the virtual machine, and judges the correctness of write operations of the isolated driver with the authorization table. Currently, the architecture can isolate drivers inside the virtual machine without modifying them. Experimental results show that the architecture can isolate 84.63% injection faults which cause system crashes with the performance loss less than 20%, and therefore effectively improves the reliability of the virtualization environment.
Keywords:virtualization  reliability  driver isolation
本文献已被 万方数据 等数据库收录!
点击此处可从《软件学报》浏览原始摘要信息
点击此处可从《软件学报》下载全文
设为首页 | 免责声明 | 关于勤云 | 加入收藏

Copyright©北京勤云科技发展有限公司  京ICP备09084417号