VMware, Inc. patent applications on January 25th, 2024
Patent Applications by VMware, Inc. on January 25th, 2024
VMware, Inc.: 70 patent applications
VMware, Inc. has applied for patents in the areas of G06F9/455 (27), G06F9/45558 (26), G06F2009/4557 (12), G06F2009/45595 (10), H04L47/125 (10)
With keywords such as: data, application, network, service, device, based, cluster, multiple, machine, and source in patent application abstracts.
Patent Applications by VMware, Inc.
Inventor(s): Siddhartha Visveswara Jayanti of Boston MA (US) for vmware, inc., Marcos Kawazoe Aguilera of Mountain View CA (US) for vmware, inc., Naama Ben David of Mountain View CA (US) for vmware, inc.
IPC Code(s): G06F3/06
Abstract: in one set of embodiments, a computer system can receive an input array including n elements and sort the input array to generate a sorted array including the n elements in ascending or descending element order. the computer system can further convert the sorted array into a tree-ordered array including the n elements in a tree order, where the tree order corresponds to a descending order of nodes in a binary tree created from the n elements. the computer system can then place the first m<n elements of the tree-ordered array in first memory tier of the computer system and place the remaining n−m elements of the tree ordered array in a second memory tier of the computer system, where the second memory tier has a slower access time than the first memory tier.
20240028243.TECHINQUES FOR TRACKING FREQUENTLY ACCESSED MEMORY_simplified_abstract_(vmware, inc.)
Inventor(s): Andreas Georg Nowatzyk of San Jose CA (US) for vmware, inc., Isam Wadih Akkawi of Santa Clara CA (US) for vmware, inc., Pratap Subrahmanyam of Saratoga CA (US) for vmware, inc., Adarsh Seethanadi Nayak of Troy NY (US) for vmware, inc., Nishchay Dua of Pleasanton CA (US) for vmware, inc.
IPC Code(s): G06F3/06, G06F12/02
Abstract: in one set of embodiments, a hardware module of a computer system can receive a stream of addresses corresponding to memory units being accessed by a central processing unit (cpu) of the computer system. the hardware module can further generate a frequency estimate for each address in the stream of addresses, the frequency estimate being indicative of a number of times a memory unit identified by the address has been accessed by the cpu, and can determine, based on the generated frequency estimates, a set of n most frequently accessed memory units.
Inventor(s): Weiqing WU of Cupertino CA (US) for vmware, inc., Uday Suresh MASUREKAR of Sunnyvale CA (US) for vmware, inc., Liang CUI of Beijing (CN) for vmware, inc., Govind HARIDAS of San Jose CA (US) for vmware, inc., Narendra Kumar BASUR SHANKARAPPA of Fremont CA (US) for vmware, inc.
IPC Code(s): G06F8/65, G06F9/455
Abstract: an example method of upgrading remote sites of a distributed container orchestration system includes: deploying, by upgrade software executing in a data center remote from the remote sites, a second container orchestration (co) control plane executing concurrently with a first co control plane, the second co control plane having a second version different than a first version of the first co control plane, the first co control plane initially managing all of the remote sites; upgrading, by the upgrade software, co support software of a first portion of the remote sites; adding, by the upgrade software, the first portion of the remote sites to a second co cluster managed by the second co control plane; and removing, by the upgrade software, the first portion of the remote sites from a first co cluster managed by the first co control plane.
Inventor(s): GURIVI REDDY GOPIREDDY of Bangalore (IN) for vmware, inc., AAKASH CHANDRASEKARAN of Bangalore (IN) for vmware, inc., UMAR SHAIKH of Dubai (AE) for vmware, inc., HEMANT SADANA of Haridwar (IN) for vmware, inc., VENU GOPALA RAO KOTHA of Bangalore (IN) for vmware, inc.
IPC Code(s): G06F8/65
Abstract: systems, methods, devices and non-transitory, computer-readable storage mediums are disclosed for simulating nodes of a container orchestration system. an example method includes: deploying a mock node for taking on a role of actual worker nodes, wherein the mock node is provided with a first set of resources providing a first compute capacity and the mock node includes an interface for interacting with an api server of the container orchestration system; configuring the interface to present to the container orchestration system an available compute capacity of a second compute capacity; registering the mock node as an actual worker node of the cluster with the api server based on the interface of the mock node; causing the container orchestration system to deploy a plurality of application pods to the mock node; and obtaining events generated by the interface in the mock node indicating deployment and running statuses of the application pods.
Inventor(s): Yang Yang of Shanghai (CN) for vmware, inc., Sixuan Yang of Shanghai (CN) for vmware, inc., Jin Feng of Shanghai (CN) for vmware, inc., Chengmao Lu of Shanghai (CN) for vmware, inc., Zhou Huang of Shanghai (CN) for vmware, inc., Junchi Zhang of Palo Alto CA (US) for vmware, inc.
IPC Code(s): G06F8/77, G06F8/60, G06F8/41
Abstract: the current document is directed to methods and subsystems that manage submitted code changes for processing by continuous-integration/continuous-delivery/deployment systems. in disclosed implementations, code changes are processed as quickly as possible, when the code changes are flagged as being urgent. non-urgent code changes are evaluated for the possibility of merging the non-urgent code changes with additional, subsequently submitted code changes in order to more efficiently employ computational resources needed for processing the code changes. when there is a code change, waiting for processing, with which a submitted code change can be merged, the submitted code change is merged with the waiting code change so that the merged code changes can be together verified. otherwise, a submitted code change that has been evaluated to have a reasonable possibility of being merged with subsequently submitted code changes is placed in a queue for processing, where the submitted code change waits for submission of one or more additional code changes that can be merged with the submitted code change.
Inventor(s): Frederick Joseph Jacobs of Los Gatos CA (US) for vmware, inc., Sam Scalise of San Jose CA (US) for vmware, inc., Martim Carbone of Sunnyvale CA (US) for vmware, inc.
IPC Code(s): G06F9/30, G06F9/54, G06F9/455
Abstract: in one set of embodiments, an operating system (os) kernel of a computer system can receive an invocation of a system call by a user program running on the computer system. the os kernel can further fetch a plurality of subsequent instructions that will be executed by the user program after the invocation of the system call and decode the plurality of subsequent instructions into a plurality of decoded instructions. the os kernel can then analyze whether the plurality of decoded instructions include an additional system call invocation and whether other decoded instructions that appear between the invocation of the system call and the additional system call invocation are viable for emulation by the os kernel.
20240028343.UNIFIED BOOT IMAGE FOR MULTIPLE OPERATING SYSTEMS_simplified_abstract_(vmware, inc.)
Inventor(s): ARAVINDA HARYADI of Bangalore (IN) for vmware, inc., Karthik RAMACHANDRA of Bangalore (IN) for vmware, inc., Suman BORO of Bangalore (IN) for vmware, inc.
IPC Code(s): G06F9/4401, G06F8/61, G06F9/455
Abstract: disclosed are various embodiments for a unified boot image that can be used to install an operating system onto a host machine and a respective operating system onto a data processing units (dpu) installed on a host machine. the unified boot image contains installation files for installing an operating system on the host machine and an installation depot that can be used to create a boot image for installing the same or different operating system on the dpu. during installation of an operating system on a host machine, the installation workflow can also require installation of an additional operating system or other configuration of a dpu installed in a host machine. in response to determining that an operating system is to be installed on the dpu, the installation depot can be obtained and reformatted into a downloadable format that is compatible with the dpu.
Inventor(s): Ankit Khani of Bellevue WA (US) for vmware, inc., Nandesh Amit Guru of Bellevue WA (US) for vmware, inc., Deep Pradeep Desai of Bellevue WA (US) for vmware, inc.
IPC Code(s): G06F9/445, G06F9/50
Abstract: systems and methods are described for linking kubernetes resources with underlying infrastructure. an agent running in a kubernetes cluster can collect data about the cluster. the agent can add universal identifiers (“uids”) corresponding to specific characteristics of the kubernetes cluster. the agent can send the data with the uids to a backend service. the backend service can identify a cluster on a host platform that corresponds to the kubernetes cluster based on the uids. the backend service can then link components of the kubernetes cluster to host machines in the host platform that they are running on. using the links, a graph model can be displayed in a graphical user interface. the graph model can visually illustrate how the components in the kubernetes cluster and the host cluster connect to each other.
20240028355.DYNAMIC AND INTELLIGENT VIRTUAL DESKTOP MANAGEMENT_simplified_abstract_(vmware, inc.)
Inventor(s): Bo Liu of Beijing (CN) for vmware, inc., Yingfeng Ou of Beijing (CN) for vmware, inc., Feng Yan of Beijing (CN) for vmware, inc., Per Olov Larsson of London (GB) for vmware, inc., Lin Lv of Beijing (CN) for vmware, inc., Dongyu Zhao of Beijing (CN) for vmware, inc.
IPC Code(s): G06F9/451, G06F9/445, H04L9/40
Abstract: systems and methods are provided for dynamically optimizing and configuring various aspects of virtual desktops in virtual desktop infrastructure. data collectors can be installed on and operate on various components in the virtual desktop infrastructure, such as on the virtual desktops running on the server, on the virtual desktop clients running on user devices, and on the connection server. the data collectors can operate to collect various types of information from corresponding components, such as application usage data and status, device performance, networking environment and speed, application or system crash data, and so on. the collected data can be logged, tracked, and analyzed to perform various actions on the virtual desktop.
20240028357.LARGE-SCALE TESTING AND SIMULATION_simplified_abstract_(vmware, inc.)
Inventor(s): Jian LAN of Beijing (CN) for vmware, inc., Liang CUI of Beijing (CN) for vmware, inc., Yan QI of Beijing (CN) for vmware, inc., Xiaoli TIE of Beijing (CN) for vmware, inc., Weiqing WU of Cupertino CA (US) for vmware, inc., Aravind SRINIVASAN of Santa Clara CA (US) for vmware, inc., Hemanth Kumar PANNEM of Cupertino CA (US) for vmware, inc., Uday Suresh MASUREKAR of Sunnyvale CA (US) for vmware, inc., Todd SABIN of Morganville NJ (US) for vmware, inc.
IPC Code(s): G06F9/455, G06F9/54
Abstract: the disclosure provides an approach for simulating a virtual environment. a method includes simulating, using a virtualization simulator, a plurality of hosts; simulating, using the virtualization simulator, a plurality of virtual computing instances (vcis) associated with the plurality of simulated hosts, based on information obtained from a cluster application programming interface (api) provider; creating, using a virtualization simulator operator, one or more node simulator schedulers; creating, using the one or more node schedulers, a node simulator; simulating, using the node simulator, a plurality of guest operating systems (oss) associated with the plurality of simulated vcis; and joining the plurality of simulated guest oss to one or more node clusters in a data center via an api server.
20240028358.A GENERAL NETWORK POLICY FOR NAMESPACES_simplified_abstract_(vmware, inc.)
Inventor(s): Danting LIU of Beijing (CN) for vmware, inc., Qian SUN of Beijing (CN) for vmware, inc., Jianjun SHEN of Redwood City CA (US) for vmware, inc., Wenfeng LIU of Beijing (CN) for vmware, inc., Donghai HAN of Beijing (CN) for vmware, inc.
IPC Code(s): G06F9/455
Abstract: disclosed herein is a system and method for controlling network traffic among namespaces in which various entities, such as virtual machines, pod virtual machines, and a container orchestration system, such as kubernetes, reside and operate. the entities have access to a network that includes one or more firewalls. the traffic that is permitted to flow over the network among and between the namespaces is defined by a security policy definition. the security policy definition is posted to a master node in a supervisor cluster that supports and provisions the namespaces. the master node invokes a network manager to generate a set of firewall rules and program the one or more firewalls in the network to enforce the rules.
Inventor(s): Sam Scalise of San Jose CA (US) for vmware, inc., Frederick Joseph Jacobs of Los Gatos CA (US) for vmware, inc., James Kenneth White of Lake Stevens WA (US) for vmware, inc.
IPC Code(s): G06F9/455
Abstract: in one set of embodiments, new hardware-assisted virtualization features for a cpu are provided that include, among other things: (1) a new control structure that allows a kernel level hypervisor component to set, for each configurable property/setting maintained in an existing control structure, whether the property/setting is accessible from an unprivileged hypervisor mode of the cpu, (2) another new control structure that allows the kernel level hypervisor component to set, for each of a plurality of guest events or operations, whether the guest event or operation will cause a transition from a privileged or unprivileged guest mode of the cpu to the unprivileged hypervisor mode, and (3) the ability for the cpu to transition directly from the unprivileged hypervisor mode to the privileged or unprivileged guest mode.
Inventor(s): Stoyan Genchev of Sofia (BG) for vmware, inc., Plamen Peev of Sofia (BG) for vmware, inc., Dimo Stanev of Sofia (BG) for vmware, inc., Nikola Bratanov of Sofia (BG) for vmware, inc.
IPC Code(s): G06F9/455, G06F9/48, G06F9/50
Abstract: methods, apparatus, systems, and articles of manufacture are disclosed for schedule-based lifecycle management of a virtual computing environment. an example apparatus includes at least one memory, machine readable instructions, and processor circuitry to at least one of execute or instantiate the machine readable instructions to at least generate a schedule including a rule, the rule to trigger an operation associated with a virtual resource of the virtualized environment, identify the virtual resource after a first determination that the rule corresponds to the virtual resource, and execute the operation after a second determination that a value of a utilization parameter of the virtual resource satisfies a threshold.
Inventor(s): Phani Kishore GADEPALLI of Cupertino CA (US) for vmware, inc., Xunjia LU of Los Altos CA (US) for vmware, inc., James Kenneth WHITE of Lake Stevens WA (US) for vmware, inc., Sam SCALISE of San Jose CA (US) for vmware, inc.
IPC Code(s): G06F9/455, G06F12/084
Abstract: an example method of virtualized cache allocation for a virtualized computing system includes: providing, by a hypervisor for a virtual machine (vm), a virtual shared cache, the virtual shared cache backed by a physical shared cache of a processor; providing, by the hypervisor to the vm, virtual service classes and virtual service class bit masks; mapping, by the hypervisor, the virtual service classes to physical service classes of the processor; associating, by the hypervisor, a shift factor with the virtual service class bit masks with respect to physical service class bit masks of the processor; and configuring, by the hypervisor, service class registers and service class bit mask registers of the processor based on the mapping and the shift factor in response to configuration of the virtual shared cache by the vm.
Inventor(s): Branislav Abadzhimarinov of Sofia (BG) for vmware, inc., Martin Marinov of Sofia (BG) for vmware, inc.
IPC Code(s): G06F9/455, G06F9/54
Abstract: a script for execution in a software-defined data center (sddc) can be received. the script can include an object identifier of an sddc resource object. a validation of the object identifier can be performed before the script is executed. the script can be executed responsive to the validation being successful. a notification can be provided responsive to the validation being unsuccessful.
Inventor(s): Sowgandh Sunil Gadi of San Jose CA (US) for vmware, inc., Venkata Subhash Reddy Peddamallu of Sugar Hill GA (US) for vmware, inc.
IPC Code(s): G06F9/455
Abstract: the present disclosure relates to providing availability of passthrough devices configured on vcis according to one or more embodiments of the present disclosure. one method includes receiving a notification of a failure associated with a passthrough device configured on a vci, communicating, to the vci, a simulation of a surprise hot removal of the device from the vci, resetting the device, communicating, to the vci, a simulation of a surprise hot add of the device to the vci, and hot adding the device to the vci.
Inventor(s): Han Li of San Jose CA (US) for vmware, inc., Li Sun of Sunnyvale CA (US) for vmware, inc., Jianjun Shen of Redwood City CA (US) for vmware, inc.
IPC Code(s): G06F9/455, G06F9/50
Abstract: some embodiments provide a novel method for processing control plane messages regarding migration of a particular machine from a first host computer managed by a first central control plane (ccp) server to a second host computer. at the first ccp server, the method receives a first data message from the first host computer notifying that the particular machine has been removed from the first host computer. the method determines whether a second data message from a second host computer notifying that the particular machine has been added to the second host computer has been received and processed in order to process the first data message. when it is determined that the second data message has been received and processed, the method processes the first data message.
20240028366.LOAD BALANCING OVER TUNNEL ENDPOINT GROUPS_simplified_abstract_(vmware, inc.)
Inventor(s): Subin Cyriac Mathew of San Jose CA (US) for vmware, inc., Prerit Rodney of Union City CA (US) for vmware, inc., Chidambareswaran Raman of Sunnyvale CA (US) for vmware, inc.
IPC Code(s): G06F9/455
Abstract: some embodiments provide a method of forwarding data messages between source and destination host computers that execute source and destination machines. at a source computer on which a source machine for a data message flow executes, the method in some embodiments identifies a source tunnel endpoint group (tepg) associated with the source machine. for the flow, the method selects one tep of the tepg as the source tep. the method then uses the selected source tep to forward the flow to the destination computer on which the destination machine executes.
20240028367.LOAD BALANCING OVER TUNNEL ENDPOINT GROUPS_simplified_abstract_(vmware, inc.)
Inventor(s): Subin Cyriac Mathew of San Jose CA (US) for vmware, inc., Prerit Rodney of Union City CA (US) for vmware, inc., Chidambareswaran Raman of Sunnyvale CA (US) for vmware, inc.
IPC Code(s): G06F9/455
Abstract: some embodiments provide a method of forwarding data messages between source and destination host computers that execute source and destination machines. at a source computer on which a source machine for a data message flow executes, the method in some embodiments identifies a source tunnel endpoint group (tepg) associated with the source machine. for the flow, the method selects one tep of the tepg as the source tep. the method then uses the selected source tep to forward the flow to the destination computer on which the destination machine executes.
20240028368.REMOTE EDGE VIRTUALIZATION MANAGEMENT_simplified_abstract_(vmware, inc.)
Inventor(s): Tiejun Chen of Beijing (CN) for vmware, inc.
IPC Code(s): G06F9/455
Abstract: aspects of remote edge virtualization management are described. an edge hypervisor shadow application is executed. the edge hypervisor shadow application acts as an input/output for an edge hypervisor that is ip inaccessible to a virtualization service. the edge hypervisor shadow application receives a hypertext transport protocol (http) communication from the virtualization service. a message queue telemetry transport (mqtt) message is generated to include the http request, and is published to an mqtt broker service, the mqtt message comprising the http request.
Inventor(s): Wu BAI of Beijing (CN) for vmware, inc., Haiwei ZHAO of Beijing (CN) for vmware, inc., Weigang HUANG of Beijing (CN) for vmware, inc., Feng YAN of Beijing (CN) for vmware, inc., Kun SHI of Beijing (CN) for vmware, inc.
IPC Code(s): G06F9/455, G06F9/4401
Abstract: a method of performing open and close input/output (i/o) requests targeting a directory of a client computing device includes the steps of: receiving a first i/o request to open the directory, from a driver of a host server, forwarding the first i/o request to the client computing device; in response to the first i/o request, receiving an identifier (id) of the directory from the client computing device and transmitting the id to the driver; in response to receiving a second i/o request to close the directory, from the driver, storing the id in a cache, and not forwarding the second i/o request to the client computing device; and in response to receiving a third i/o request to open the directory, from the driver, retrieving the id from the cache, and transmitting the id to the driver again.
Inventor(s): Jian LAN of Beijing (CN) for vmware, inc., Liang CUI of Beijing (CN) for vmware, inc., Qi WANG of Beijing (CN) for vmware, inc., Aravind SRINIVASAN of Sunnyvale CA (US) for vmware, inc., Todd SABIN of Morganville NJ (US) for vmware, inc., Govind HARIDAS of San Jose CA (US) for vmware, inc., Weiqing WU of Cupertino CA (US) for vmware, inc., Uday Suresh MASUREKAR of Sunnyvale CA (US) for vmware, inc., Wenwu PENG of Beijing (CN) for vmware, inc., Ni LU of Beijing (CN) for vmware, inc.
IPC Code(s): G06F9/455, G06F9/50, G06F11/36
Abstract: an example method of diagnosing remote sites of a distributed container orchestration system includes: receiving, at a management cluster, definition of a test suite custom resource; deploying, in response to the test suite custom resource, a first pod in the management cluster; deploying, by the first pod, a second pod in a server of a first remote site of the remote sites; checking, by the second pod, configuration of the server that includes an additional pod executing alongside the second pod, at least one virtual machine (vm) in which the second pod and the additional pod execute, a hypervisor configured to support the at least one vm, and a hardware platform on which the hypervisor executes; and returning test data from the second pod to the first pod, the test data including results of the step of checking the configuration of the server.
Inventor(s): MANDAR NANIVADEKAR of Pune (IN) for vmware, inc., LEENA SHUKLENDU SOMAN of Pune (IN) for vmware, inc.
IPC Code(s): G06F9/455
Abstract: systems and methods are provided for efficiently registering cloned vms while preventing unnecessary subsequent registrations. two independent threads can execute on a cloned vm and control different variables indicating whether registration is needed or has already been performed. a first thread can set a first variable based on an internal identifier of the cloned vm relative to the parent vm. it can also check a second variable, set by a second thread, based on an external identifier of the cloned vm not being updated at a backend cloud service. it can then set a third variable indicating whether registration has been triggered or not, based on the other variables. to avoid duplication, the second thread sets the second variable based on both the external identifier as well as a status of the first variable. the variables can be atomic variables to avoid multi-thread interference and undesirable thread locks.
Inventor(s): ASHVIN LAKSHMIKANTA of Bangalore (IN) for vmware, inc., Umar Shaikh of Bangalore (IN) for vmware, inc., Kiran Kumar Cherivirala of Bangalore (IN) for vmware, inc., Venu Gopala Rao Kotha of Bangalore (IN) for vmware, inc., Sureshbabu Koyadan Chathoth of Bangalore (IN) for vmware, inc.
IPC Code(s): G06F9/455
Abstract: an example method of deploying an application by a telecommunications platform in a multi-cloud computing system includes: receiving, at the telecommunications platform executing in a first software-defined data center (sddc), an application deployment specification for a first application; receiving, at the telecommunications platform, selection of a virtual infrastructure (vi) template for the first application, the vi template defining a configuration of sddc resources in the multi-cloud computing system; and deploying the first application based on the application deployment specification of the first application and the vi template.
Inventor(s): RAHUL SINGH of Bangalore (IN) for vmware, inc., VINOTHKUMAR D of Bangalore (IN) for vmware, inc., ABHISHEK SINGH of Bangalore (IN) for vmware, inc., BHUVANESWARI ADDANKI of Bangalore (IN) for vmware, inc., ATREYEE BHADURI of Bangalore (IN) for vmware, inc.
IPC Code(s): G06F9/455
Abstract: methods, apparatus, systems, and articles of manufacture are disclosed. an example apparatus includes: at least one memory; instructions; and processor circuitry to execute the instructions to: install an agent on a virtual machine, the agent execute as a serverless application in a cloud infrastructure; obtain first metrics from the virtual machine, the first metrics based on an operating system executing on the virtual machine; configure a plug-in of the agent to facilitate the agent monitoring an application executing on the virtual machine; obtain second metrics from the virtual machine, the second metrics based on the application; parse the first and second metrics; and transmit the first and second metrics to a server for storage and analysis.
20240028375.CONTROL PLANE LIFECYCLE MANAGEMENT WITH DPU DEVICES_simplified_abstract_(vmware, inc.)
Inventor(s): PRADEEP SHANMUKHA JIGALUR of Bangalore (IN) for vmware, inc., CHRISTOPHER JOHN SCHAEFER of Venice FL (US) for vmware, inc., BHAVANI CHINNAPURA RAJANNA of Bangalore (IN) for vmware, inc., DIVYA RANI of Santa Clara CA (US) for vmware, inc., SUBHANI SHAIK of Bangalore (IN) for vmware, inc., ASTHA AGARWAL of Moradabad (IN) for vmware, inc., PRAKASH MISHRA of Bangalore (IN) for vmware, inc.
IPC Code(s): G06F9/455, G06F8/65, G06F8/61
Abstract: disclosed are various examples of control plane lifecycle management using data processing unit (dpu) devices. in some examples, a passthrough between a control plane virtual machine and a data processing unit (dpu) is enabled using a dpu management hypervisor executed by a dpu device. the dpu device is installed to the host device. the dpu device receives a control plane update command with instructions to update a control plane that includes the control plane virtual machine. the control plane update command is performed. control plane data for the update is transmitted through the passthrough.
Inventor(s): PRATEEK GUPTA of San Francisco CA (US) for vmware, inc., PRAVEEN TIRUMANYAM of Bangalore (IN) for vmware, inc., MATTHEW WILLINGHAM of Orlando FL (US) for vmware, inc., LAV JAIN of Battle Ground IN (US) for vmware, inc.
IPC Code(s): G06F9/455
Abstract: a method of forwarding logs of a software-defined data center (sddc) and logs of an agent platform appliance to a cloud platform through the agent platform appliance, the agent platform appliance having deployed thereon a plurality of agents of cloud services that are delivered to the sddc, includes the steps of: collecting first log data from one or more management appliances of the sddc; collecting second log data from one or more of the agents of cloud services; acquiring one or more access tokens for communicating with the cloud platform; and transmitting log data generated from the collected first log data and the collected second log data, along with the one or more access tokens, to a log monitoring service running in the cloud platform, wherein the log monitoring service is configured to generate alerts separately for different tenants of the computer system from log data of the different tenants.
Inventor(s): Mathieu COLOMBET of Palo Alto CA (US) for vmware, inc., Daniel Evan SCHWARTZ of Palo Alto CA (US) for vmware, inc., Julie A. PICKHARDT of Boulder CO (US) for vmware, inc., Prateek GANGWAL of San Jose CA (US) for vmware, inc.
IPC Code(s): G06F9/455, G06F9/50, G06F21/33
Abstract: the generation, actuation, and enforcement of policies within a distributed computing system is provided. the policies are employed to manage the resources of the system. the resources include virtualized resources, such as virtual machines (vms) and virtual storage disks (vsds). a policy includes a rule and scope. enforcing a policy includes applying the rule to resources that are within the policy's scope. policies are employed to constrain the leasing period and reclaim leased resources, as well constrain the access of certain users to specific operations on the leased resources. policies may be created via a ui that automatically generates a policy encoding. the policy is registered and accessed via a policy store. when multiple policies target a particular resource, merging strategies are applied to the multiple policies, to generate an effective policy that is consistent with the multiple policies and is enforced on the particular resource.
Inventor(s): Navaneeth Krishnan Ramaswamy of Chennai (IN) for vmware, inc., Arun Kumar Srinivasan of Waterloo (CA) for vmware, inc.
IPC Code(s): G06F9/455
Abstract: some embodiments provide a method for using a heat map to modify an sd-wan (software-defined wide-area network) deployed for a set of geographic locations. from a set of managed forwarding elements (mfes) that forward multiple data message flows through the sd-wan to a set of destination clusters, the method collects multiple metrics associated with the multiple data message flows. based on the collected multiple metrics, the method generates a heat map that accounts for (1) the multiple data message flows, (2) locations of the set of mfes, and (3) locations of the one or more destination clusters. the method uses the generated heat map to identify at least one modification to make to the sd-wan to improve forwarding of the multiple data message flows.
20240028411.CLUSTER ADD-ON LIFECYCLE MANAGEMENT_simplified_abstract_(vmware, inc.)
Inventor(s): Hailing XU of Beijing (CN) for vmware, inc., Liang CUI of Beijing (CN) for vmware, inc., Aravind SRINIVASAN of Sunnyvale CA (US) for vmware, inc., Ni LU of Beijing (CN) for vmware, inc.
IPC Code(s): G06F9/50
Abstract: example methods and systems for cluster add-on lifecycle management are described. in one example, a computer system may obtain cluster add-on definition information specifying multiple add-ons that are each capable of extending functionality of at least a first cluster and a second cluster. user interface(s) may be generated based on the cluster add-on definition information to allow a user to request for a management action associated. in response to receiving a first request for a first management action associated with the first add-on, a first instruction may be generated and sent to cause the first management action to be performed in the first cluster. in response to receiving a second request for a second management action associated with the second add-on, a second instruction may be generated and sent to cause the second management action to be performed in the first cluster or the second cluster.
20240028412.CLUSTER ADD-ON LIFECYCLE MANAGEMENT_simplified_abstract_(vmware, inc.)
Inventor(s): Hailing XU of Beijing (CN) for vmware, inc., Liang CUI of Beijing (CN) for vmware, inc., Aravind SRINIVASAN of Sunnyvale CA (US) for vmware, inc., Ni LU of Beijing (CN) for vmware, inc.
IPC Code(s): G06F9/50
Abstract: example methods and systems for cluster add-on lifecycle management are described. in one example, a computer system may obtain cluster add-on definition information specifying multiple add-ons that are each capable of extending functionality of at least a first cluster and a second cluster. in response to receiving a first instruction to perform a first management action, a first validation operation may be performed based on the cluster add-on definition information and multiple first configuration values associated the multiple first configuration fields. in response to receiving a second instruction to perform a second management action associated with the second add-on, a second validation operation may be performed based on the cluster add-on definition information and multiple second configuration values associated the multiple second configuration fields. the first/second management action may be performed in response to determination that the first/second validation operation is successful.
20240028431.LEADER ELECTION FOR GROUPS OF APPLICATIONS_simplified_abstract_(vmware, inc.)
Inventor(s): Xiaopei LIU of Beijing (CN) for vmware, inc., Zhengsheng ZHOU of Beijing (CN) for vmware, inc., Wenfeng LIU of Beijing (CN) for vmware, inc., Donghai HAN of Beijing (CN) for vmware, inc.
IPC Code(s): G06F9/54, G06F9/50
Abstract: a computer-implemented method for electing a leader in a computing system is provided. in one aspect, a method includes identifying a computing resource for multiple container groups that each include one or more containers. a determination is made, from applications running in containers of the container groups, of multiple election candidate applications. each election candidate application has an instance deployed in a corresponding container in each container group. for each container group, an election runner process is established within the container group. for each instance of each of the election candidate applications, a corresponding election watcher process is established. a communication link is established between the election runner process and each election watcher process. a request for leader election is transmitted from the election runner process to the computing resource. a response received from the computing resource. the response is transmitted to each election watcher process via the communication link.
Inventor(s): Jian LAN of Beijing (CN) for vmware, inc., Liang CUI of Beijing (CN) for vmware, inc., Aravind SRINIVASAN of Sunnyvale CA (US) for vmware, inc., Hailing XU of Beijing (CN) for vmware, inc., Yan QI of Beijing (CN) for vmware, inc., Prachi DALVI of Fremont CA (US) for vmware, inc., Shuting MA of Beijing (CN) for vmware, inc., Todd SABIN of Morganville NJ (US) for vmware, inc., Uday Suresh MASUREKAR of Sunnyvale CA (US) for vmware, inc., Weiqing WU of Cupertino CA (US) for vmware, inc.
IPC Code(s): G06F11/07, G06F9/455
Abstract: an example method of propagating fault domain topology information in a distributed container orchestration system includes: receiving, at control plane software executing in a data center, the fault domain topology, which includes tags for a protection group and fault domains for remote sites in communication with the data center; deploying, by a master server of the distributed container orchestration system that executes in the data center, a node pool comprising virtual machines (vms) executing in servers of the remote sites, the vms being nodes of the distributed container orchestration system in which containers execute; determining, by a controller of the master server, relationships among the vms, the servers, the protection group, and the fault domains based on state of resources maintained by the master server; and providing, by the controller, labels to the servers for associating the tags of the protection group and the fault domains to the vms.
Inventor(s): Ashot Nshan Harutyunyan of Yerevan (AM) for vmware, inc., Arnak Poghosyan of Yerevan (AM) for vmware, inc., Lilit Harutyunyan of Yerevan (AM) for vmware, inc., Nelli Aghajanyan of Yerevan (AM) for vmware, inc., Tigran Bunarjyan of Yerevan (AM) for vmware, inc., Marine Harutyunyan of Yerevan (AM) for vmware, inc., Sam Israelyan of Yerevan (AM) for vmware, inc.
IPC Code(s): G06F11/07
Abstract: automated, computer-implemented methods and systems for resolving performance problems with objects executing in a data center are described. the automated methods use machine learning to train a model that comprises rules defining relationships between probabilities of event types of in log messages and values of a key performance indictor (“kpi”) of the object over a historical time period. when a kpi violates a corresponding threshold, the rules are used to evaluate run time log messages that describe the probable root cause of the performance problem. an alert identifying the kpi threshold violation, and the log messages are displayed in a graphical user interface of an electronic display device.
20240028443.EVENT-BASED DIAGNOSTIC INFORMATION COLLECTION_simplified_abstract_(vmware, inc.)
Inventor(s): RANDHIR SINGH of Bangalore (IN) for vmware, inc., KASHISH BHATIA of Bangalore (IN) for vmware, inc.
IPC Code(s): G06F11/07, G06F9/54
Abstract: an example computing device includes a processor and a memory coupled to the processor. the memory may include a diagnostic daemon executing in a user space. the diagnostic daemon may include a plugin layer and a plurality of plugins communicatively connected to the plugin layer. each plugin may perform at least one operation related to diagnostic data collection. the plugin layer may receive an event from a component running in the computing device upon the component encountering an error. the event may include a plugin identifier and an operation identifier. further, the plugin layer may route the event to a plugin of the plurality of plugins based on the plugin identifier. furthermore, the plugin may determine an operation to be performed corresponding to the component based on the operation identifier and execute the operation to collect a type of diagnostic information specified for the component.
Inventor(s): Ashot Nshan Harutyunyan of Yerevan (AM) for vmware, inc., Arnak Poghosyan of Yerevan (AM) for vmware, inc., Lilit Harutyunyan of Yerevan (AM) for vmware, inc., Nelli Aghajanyan of Yerevan (AM) for vmware, inc., Tigran Bunarjyan of Yerevan (AM) for vmware, inc., Marine Harutyunyan of Yerevan (AM) for vmware, inc., Sam Israelyan of Yerevan (AM) for vmware, inc.
IPC Code(s): G06F11/07
Abstract: automated computer-implemented methods and systems for resolving performance problems with objects executing in a data center are described. the automated methods use machine learning to obtain rules defining relationships between probabilities of event types of in log messages and performance problems identified by a key performance indictor (“kpi”) of the object. when a kpi violates a corresponding threshold, the rules are used to evaluate run time log messages that describe the probable root cause of the performance problem. an alert identifying the kpi threshold violation, and the log messages are displayed in a graphical user interface of an electronic display device.
Inventor(s): GIRISH SHANKAR SADHANI of Bangalore (IN) for vmware, inc., SHOBHA M of Bangalore (IN) for vmware, inc., RAMYA BANGERA of Bangalore (IN) for vmware, inc.
IPC Code(s): G06F11/14
Abstract: computer-implemented methods, media, and systems for automatic discovery of application resources for application backup in a container orchestration platform (e.g., a kubernetes system) are disclosed. in an example method, a pod of an application deployed in a container orchestration platform is identified. then an owner object of the pod is determined. resources mounted on the pod and on the owner object of the pod in the container orchestration platform are checked. based on the pod, the owner object of the pod, and the resources mounted on the pod and on the owner object of the pod, a resource hierarchy of the application is constructed. a backup specification for backup of the application is identified. based on the backup specification and the resource hierarchy of the application, resources of the application are backed up.
20240028497.DYNAMICALLY CAPTURING DEBUG LOGS DURING RUNTIME_simplified_abstract_(vmware, inc.)
Inventor(s): ANERI RAJIV DESAI of Pune (IN) for vmware, inc., MANISHA GAMBHIR PAREKH of Pune (IN) for vmware, inc., ANAND JAYSINGH BHALERAO of Pune (IN) for vmware, inc., AMIT RATNAPAL SANGODKAR of Pune (IN) for vmware, inc.
IPC Code(s): G06F11/36, G06F8/41
Abstract: systems and methods are described herein for dynamic debug logging during application runtime. in an example, a wrapper can be added to the code for functions of the application. during runtime, the wrapper can cause the functions to retain certain debug data. in one example, a function call graph can be constructed, which can include all the possible function call paths for the application. when an error occurs, if the application does not have a stack trace tool or api available, the application can use the function call graph to determine all possible function call paths between the entrant function and the errored function. if an application does have a stack trace tool or api, then the application can retrieve the actual function call path that led to the error. the application can enable a debug flag in the wrapper for each function in the function call path, which can cause those functions to log runtime debug data.
20240028498.DYNAMICALLY CAPTURING DEBUG LOGS DURING RUNTIME_simplified_abstract_(vmware, inc.)
Inventor(s): ANERI RAJIV DESAI of Pune (IN) for vmware, inc., Manisha Gambhir PAREKH of Pune (IN) for vmware, inc., Anand JaySingh BHALERAO of Pune (IN) for vmware, inc., Amit Ratnapal SANGODKAR of Pune (IN) for vmware, inc.
IPC Code(s): G06F11/36, G06F8/41
Abstract: systems and methods are described herein for dynamic debug logging during application runtime. in an example, a wrapper can be added to the code for functions of the application. during runtime, the wrapper can cause the functions to retain certain debug data. in one example, a function call graph can be constructed, which can include all the possible function call paths for the application. when an error occurs, if the application does not have a stack trace tool or api available, the application can use the function call graph to determine all possible function call paths between the entrant function and the errored function. if an application does have a stack trace tool or api, then the application can retrieve the actual function call path that led to the error. the application can enable a debug flag in the wrapper for each function in the function call path, which can cause those functions to log runtime debug data.
Inventor(s): Wu BAI of Beijing (CN) for vmware, inc., Haiwei ZHAO of Beijing (CN) for vmware, inc., Weigang HUANG of Beijing (CN) for vmware, inc., Feng YAN of Beijing (CN) for vmware, inc., Kun SHI of Beijing (CN) for vmware, inc.
IPC Code(s): G06F12/0831, G06F12/0891
Abstract: a method of copying at least first and second files stored in a client computing device to a host server, includes the steps of: generating at the host server a first read i/o request for data of the first file based on responses to pre-read i/o requests for the first file, received from the client computing device; transmitting a merged i/o request that includes the first read i/o request for data of the first file and pre-read i/o requests for the second file from the host server to the client computing device; generating at the host server a second read i/o request for data of the second file based on responses to the pre-read i/o requests for the second file, received from the client computing device; and transmitting the second read i/o request for data of the second file from the host server to the client computing device.
20240028547.EXPOSING PCIE CONFIGURATION SPACES AS ECAM COMPATIBLE_simplified_abstract_(vmware, inc.)
Inventor(s): Andrei Warkentin of South Elgin IL (US) for vmware, inc.
IPC Code(s): G06F13/42
Abstract: disclosed are various approaches for exposing peripheral component interconnect express (pcie) configuration space implementations as enhanced configuration access mechanism (ecam)-compatible. in some examples, a bridge device is identified on a segment corresponding to a root complex of a computing device. an endpoint device is connected to a bus downstream from the bridge device. a synthetic segment identifier is assigned to the bus once the endpoint device is identified as connected to the bus. synthetic address data is generated for the endpoint device. the synthetic address data includes the synthetic segment identifier for the bus and sets a bus identifier of the bus to zero regardless of a hierarchical position of the bus in a standard peripheral component interconnect express (pcie) bus hierarchy.
Inventor(s): Ittai Abraham of Tel Aviv (IL) for vmware, inc., Ioan Alin Tomescu Nicolescu of Mountain View CA (US) for vmware, inc., Guy Golan Gueta of Holon (IL) for vmware, inc., Neil Giridharan of Palo Alto CA (US) for vmware, inc., Heidi Howard of Cambridge (GB) for vmware, inc.
IPC Code(s): G06F16/27, G06F16/2453, H04L9/00, G06F11/00
Abstract: the present disclosure is directed to a leader-based partially synchronous bft smr protocol that improves upon existing protocols by exhibiting two rounds of communication latency, linear authenticator complexity, and optimistic responsiveness. this is achieved through the novel use of an aggregate signature scheme as part of the protocol's view-change procedure.
20240028720.SECURE BLOCK CLONING ON RESILIENT FILE SYSTEMS_simplified_abstract_(vmware, inc.)
Inventor(s): AMIT ANANDRAM LUNIYA of Pune (IN) for vmware, inc.
IPC Code(s): G06F21/56, G06F21/57
Abstract: to implement secure block cloning on file systems that support block cloning, a computer security application is executed on a computer system deploying a file system that supports block cloning. the computer security application receives a block cloning command to clone a source file to a target file. before the computer system executes the block cloning command, the computer security application identifies a trust status associated with the source file. the trust status is identified by looking up a base inventory that stores trust data associated with multiple files stored on the file system. the multiple files include the source file. based on the trust status associated with the source file, the computer security application determines that the trust status associated with the source file is trustworthy. in response to determining that the source file is trustworthy, the computer security application applies the trust status associated with the source file to the target file.
Inventor(s): KRISHNA SHANBHAG B of Bangalore (IN) for vmware, inc., RAMANANDAN NAMBANNOR KUNNATH of Bangalore (IN) for vmware, inc., VENKATESH ARLAGADDA of Bangalore (IN) for vmware, inc., POORNANANDA PRABHU of Bangalore (IN) for vmware, inc.
IPC Code(s): G06F21/62
Abstract: disclosed are mechanisms that enable secure file sharing between applications using an operating system framework. in some examples, an extension map is received by a client device. the extension map relates a file extension to an alias file extension. a management software development kit (sdk) is used by an application. the management sdk identifies that the application originates a file comprising the file extension, stores the file as an extension-aliased file by changing its file extension to the alias file extension according to the extension map. the extension-aliased file is transferred to a recipient application using a file sharing utility of an operating system of the client device.
Inventor(s): Ashot Nshan Harutyunyan of Yerevan (AM) for vmware, inc., Arnak Poghosyan of Yerevan (AM) for vmware, inc., Lilit Harutyunyan of Yerevan (AM) for vmware, inc., Nelli Aghajanyan of Yerevan (AM) for vmware, inc., Tigran Bunarjyan of Yerevan (AM) for vmware, inc., Marine Harutyunyan of Yerevan (AM) for vmware, inc., Sam Israelyan of Yerevan (AM) for vmware, inc.
IPC Code(s): G06N20/00, G06N5/04
Abstract: automated, computer-implemented methods and systems describe herein resolve performance problems with objects executing in a data center. the operations manager uses machine learning to train an inference model that relates probability distributions of event types of log messages of the object to a key performance indicator (“kpi”) of the object. the operations manager monitors the kpi for run-time kpi values that violates a kpi threshold. when the kpi violates the threshold, the operations manager determines probabilities of event types of log messages recorded in a run-time interval and uses the inference model to determine event types of the probabilities of event types of log messages in the run-time interval to determine a root cause of the performance problem. the inference models can be used to identify log messages of event types that correspond to potential performance problems with data center objects and execute appropriate remedial measures to avoid the problems.
20240029029.DYNAMIC MEETING CREATION AND SCHEDULING_simplified_abstract_(vmware, inc.)
Inventor(s): ROHIT PRADEEP SHETTY of Bangalore (IN) for vmware, inc.
IPC Code(s): G06Q10/10, G06F40/289
Abstract: disclosed are various approaches for dynamically scheduling meetings for user groups. users participating in an email thread can provide feedback regarding whether they would like for a meeting to be scheduled. a meeting service can automatically schedule a meeting based upon user feedback or an analysis of the email thread.
Inventor(s): Minjal AGARWAL of San Jose CA (US) for vmware, inc., David TSAI of Palo Alto CA (US) for vmware, inc., Sonam SINHA of San Jose CA (US) for vmware, inc.
IPC Code(s): G08B19/00
Abstract: the disclosure herein describes managing smart alarms based on an associated set of alarms and/or events. the alarms are detected in a computing system and the detected alarms are used to identify a smart alarm definition with which the detected alarms are associated. a condition of the identified smart alarm definition is evaluated, and it is determined that the condition is satisfied at least in part by the set of alarms. smart alarm information is then provided using the smart alarm definition and the detected set of alarms. providing smart alarm information associated with the detected set of alarms and/or events provides additional context to enable efficient interpretation of detected alarms in a computing system. further, managing the smart alarms as described reduces the quantity of individual alarms that must be processed and reduces the likelihood of errors occurring as those alarms are processed.
20240029729.TRANSLATION OF VOICE COMMANDS USING MACHINE LEARNING_simplified_abstract_(vmware, inc.)
Inventor(s): ROHIT PRADEEP SHETTY of Bangalore (IN) for vmware, inc.
IPC Code(s): G10L15/22, G10L15/26, G06F40/253, G06F40/284, G06F3/16
Abstract: the present disclosure relates to translation of voice commands using machine learning. command text corresponding to a voice command can be received, and at least one error can be identified in the command text. a comparison can be performed between the at least one error and at least one lexical pattern corresponding to a user associated with the voice command. modified command text can be generated based at least in part on the comparison between the at least one error and the at least one lexical pattern. the modified command text can be determined to fail to comprise an additional error.
20240031225.SHARING NETWORK MANAGER BETWEEN MULTIPLE TENANTS_simplified_abstract_(vmware, inc.)
Inventor(s): Amarnath Palavalli of Cupertino CA (US) for vmware, inc., Suresh Muppala of Cupertino CA (US) for vmware, inc., Farzad Ghannadian of Burlingame CA (US) for vmware, inc., Sukhdev Singh of San Jose CA (US) for vmware, inc., Pavlush Margarian of Dublin CA (US) for vmware, inc.
IPC Code(s): H04L41/0816, H04L47/125, H04L47/70, H04L49/90, H04L41/0894
Abstract: some embodiments provide a method for one of multiple shared api processing services in a container cluster that implements a network policy manager shared between multiple tenants. the method receives a configuration request from a particular tenant to modify a logical network configuration for the particular tenant. configuration requests from the plurality of tenants are balanced across the plurality of shared api processing services. based on the received configuration request, the method posts a logical network configuration change to a configuration queue in the cluster. the configuration queue is dedicated to the logical network of the particular tenant. services are instantiated separately in the container cluster for each tenant to distribute configuration changes from the respective configuration queues for the tenants to datacenters that implement the tenant logical networks such that configuration changes for one tenant do not slow down processing of configuration changes for other tenants.
20240031228.HIERARCHICAL API FOR A SDDC_simplified_abstract_(vmware, inc.)
Inventor(s): Sachin Mohan Vaidya of Pune (IN) for vmware, inc., Mayur Dhas of Pune (IN) for vmware, inc., Naveen Ramaswamy of Pune (IN) for vmware, inc., Pavlush Margarian of Dublin CA (US) for vmware, inc., Hamza Aharchaou of Redwood City CA (US) for vmware, inc.
IPC Code(s): H04L41/08, H04L41/0806
Abstract: some embodiments of the invention provide a method for deploying software-implemented resources in a software defined datacenter (sddc). the method initially receives a hierarchical api command that, in a declarative format, specifies several operation requests for several software-defined (sd) resources at several resource levels of a resource hierarchy in the sddc. the method parses the api command to identify the sd resources at the plurality of resource levels. based on the parsed api command, the method deploys the sd resources by using a deployment process that ensures that any first sd resource on which a second sd resource depends is deployed before the second resource. in some embodiments, a second sd resource depends on a first sd resource when the second sd resource is a child of the first sd resource. alternatively, or conjunctively, a second sd resource can also depend on a first sd resource in some embodiments when the second sd resource has some operational dependency on the first sd resource. in some embodiments, the method parses the api command by identifying several sets of sd resources, with each set having one or more sd resources at one resource level. the deployment in some embodiments deploys the identified sd resource sets at higher resource levels before deploying sd resources at lower resource levels.
Inventor(s): Amarnath Palavalli of Cupertino CA (US) for vmware, inc., Suresh Muppala of Cupertino CA (US) for vmware, inc., Farzad Ghannadian of Burlingame CA (US) for vmware, inc., Sukhdev Singh of San Jose CA (US) for vmware, inc., Pavlush Margarian of Dublin CA (US) for vmware, inc.
IPC Code(s): H04L41/0893, H04L41/085, H04L67/51, H04L43/0811, H04L47/125
Abstract: some embodiments provide a method for a management service executing within a container cluster to manage logical networks for multiple tenants. each tenant logical network is distributed across a respective set of datacenters. the method determines that a particular datacenter of a particular tenant requires a complete synchronization of the logical network for the particular tenant. based on the determination, the method instantiates an on-demand service to manage streaming logical network configuration data for the particular datacenter from a database in the container cluster that stores logical network configurations for each of the multiple tenants.
Inventor(s): Tiejun Chen of Beijing (CN) for vmware, inc., Olivier Alain Cremel of Los Altos CA (US) for vmware, inc.
IPC Code(s): H04L41/0895, H04L61/5014, G06F9/455
Abstract: aspects of wireless communications for edge virtualization management are described. an edge hypervisor launches a wireless communications virtual machine (vm) that includes a guest operating system (os). the guest os provides drivers for a wireless adapter of the edge device. a component of the wireless communications vm configures network connection data that enables a wireless adapter to connect to a wireless network. the wireless communications vm executes a dynamic host configuration protocol (dhcp) component. a wireless network connection is enabled using the edge hypervisor and the wireless communications virtual machine. the dhcp component identifies ip data for the wireless network connection.
20240031246.PRESENTING DATA REGARDING GROUPED FLOWS_simplified_abstract_(vmware, inc.)
Inventor(s): Rajiv Mordani of Fremont CA (US) for vmware, inc., Shankar Vilayannur Natarajan of Milpitas CA (US) for vmware, inc., Suresh Nagar of Sunnyvale CA (US) for vmware, inc., Ashish Patel of Fremont CA (US) for vmware, inc., Vinith Podduturi of Fremont CA (US) for vmware, inc., Tea Liukkonen-Olmiala of Santa Clara CA (US) for vmware, inc., Vaishnavi Ramamoorthy of Santa Clara CA (US) for vmware, inc., Ashish Shendure of Santa Clara CA (US) for vmware, inc.
IPC Code(s): H04L41/22, H04L41/12, G06F16/215, G06F16/28
Abstract: some embodiments provide a novel method for receiving a plurality of attribute sets from a set of host computers, each attribute set associated with a group of one or more flows that is created by using a key to associate individual flows into the group of flows. the appliance, in some embodiments, merges two identified attribute sets into one merged attribute set and analyzes the merged attribute set to identify a set of properties of the flows in the groups of flows associated with the two attribute sets. in some embodiments, a visualization process includes identifying machines as members of groups and identifying machines that are connected. the visualization process, in some embodiments, also generates a graphical user interface that can be used to select groups of machines, domains, or individual machines and displays contextual attributes relevant to the selected group, domain, or machine.
20240031248.ASYNCHRONOUS BOOSTING OF STATE MACHINE REPLICATION_simplified_abstract_(vmware, inc.)
Inventor(s): Alexander Spiegelman of Yoknem (IL) for vmware, inc., Ittai Abraham of Herzliya (IL) for vmware, inc., Dahlia Malkhi of Palo Alto CA (US) for vmware, inc.
IPC Code(s): H04L41/00, H04L41/0816, H04L67/1001
Abstract: an asynchronous state machine replication solution in a system of replicas includes executing multiple instances of a consensus protocol, referred to as leader-based views (lbvs) in each replica, where each replica is a leader participant in one of the lbv instances. each replica drives a decision based on the consensus being reached among the lbv instances, rather than relying the expiration of timers and view changes to drive progress.
20240031258.TAGGING PACKETS FOR MONITORING AND ANALYSIS_simplified_abstract_(vmware, inc.)
Inventor(s): Xi Cheng of Beijing (CN) for vmware, inc., Caixia Jiang of Beijing (CN) for vmware, inc., Dongrui Mo of Beijing (CN) for vmware, inc., Jingchun Jason Jiang of Beijing (CN) for vmware, inc., Xiaoyan Jin of Beijing (CN) for vmware, inc., Qiong Wang of Beijing (CN) for vmware, inc., Donghai Han of Beijing (CN) for vmware, inc.
IPC Code(s): H04L43/028, H04L43/10, H04L47/2483, G06F9/455, H04L43/04, H04L69/22, H04L47/41
Abstract: some embodiments provide a method for performing data traffic monitoring. the method processes a packet through a packet processing pipeline that includes multiple stages. at a filtering stage, the method tags the packet with a set of monitoring actions for subsequent stages to perform on the packet based on a determination that the packet matches a particular filter. for each stage of a set of packet processing stages subsequent to the filtering stage, the method (i) executes any monitoring actions specified for the stage to perform on the packet and (ii) sends the packet to a next stage in the packet processing pipeline.
20240031262.USAGE AND POLICY DRIVEN METRIC COLLECTION_simplified_abstract_(vmware, inc.)
Inventor(s): SAMEER CHANDRA TATIRAJU of Bangalore (IN) for vmware, inc., AGNELLO LLOYED NORONHA of Bangalore (IN) for vmware, inc., MANISH BALCHAND JAIN of Bangalore (IN) for vmware, inc.
IPC Code(s): H04L43/067, H04L43/028
Abstract: a plurality of values of a metric can be collected by a cloud monitoring system over a period of time from a metric source. one of a plurality of usage frequency categories associated with the metric over the period of time can be determined. one of a plurality of change frequency categories associated with the metric over the period of time can be determined. a collection frequency associated with the metric can be modified based on the determined usage frequency category and the determined change frequency category. a subsequent query for the metric can be responded to based on the determined usage frequency category and the determined change frequency category.
Inventor(s): VINEETH TOTAPPANAVAR of Bangalore (IN) for vmware, inc., ASWATHY RAMABHADRAN of Bangalore (IN) for vmware, inc., VINOTHKUMAR D of Bangalore (IN) for vmware, inc., RAHUL SINGH of Bangalore (IN) for vmware, inc., VENKATA PADMA KAKI of Bangalore (IN) for vmware, inc.
IPC Code(s): H04L43/0811, H04L41/0816, H04L9/14
Abstract: methods, apparatus, systems, and articles of manufacture are disclosed to improve management operations of a cloud computing environment. an example apparatus includes at least one memory, machine readable instructions, and processor circuitry to at least one of instantiate or execute the machine readable instructions to determine a connectivity status between a first agent operating on a proxy server and a second agent operating on a compute node, the first agent and the second agent executing an application monitoring service, in response to determining that the connectivity status is indicative of a failed connection between the first agent and second agent, update the connectivity status of the second agent, and obtain an instruction to rectify the failed connection, and resolve that failed connection between the first agent and the second agent.
Inventor(s): Avinash Nigam of Lucknow (IN) for vmware, inc., Prashant JAIN of Jaipur (IN) for vmware, inc., Upasana Prasad PISE of Pune (IN) for vmware, inc., Shriya TALWAR of Ghaziabad (IN) for vmware, inc., Sameer P. KARVE of Pune (IN) for vmware, inc., Aditya KINTALI of Pune (IN) for vmware, inc.
IPC Code(s): H04L43/0823, H04L41/0604
Abstract: systems and methods for more effectively monitoring the performance of applications with respect to their associated sd-wan edge devices. variables are formulated for measuring the performance of individual applications accessed from an individual edge device. in some embodiments of the disclosure, flow records such as internet protocol flow information export (ipfix) records are collected. records specific to a particular application and a particular edge device from which the application is accessed may be extracted and assembled into a variable which illustrates the performance of that application from that edge device over time.
Inventor(s): Jianwei SUI of Beijing (CN) for vmware, inc., Danting LIU of Beijing (CN) for vmware, inc., Donghai HAN of Beijing (CN) for vmware, inc., Wenfeng LIU of Beijing (CN) for vmware, inc., Jianjun SHEN of Redwood City CA (US) for vmware, inc.
IPC Code(s): H04L43/0876, G06F9/54, G06F9/455
Abstract: a system and method for capturing resource usage information in a network for namespaces in which pods operate are described herein. a data structure specifies a topology that includes a gateway and routing addresses in a network whose usage is to be captured. the data structure is provided to an api of a master node controlling the pods. a controller in the master node enforces the data structure and reports results back to the api.
20240031267.FLOW TRACING FOR HETEROGENEOUS NETWORKS_simplified_abstract_(vmware, inc.)
Inventor(s): Ran Gu of Beijing (CN) for vmware, inc., Wenfeng Liu of Beijing (CN) for vmware, inc., Donghai Han of Beijing (CN) for vmware, inc., Jianjun Shen of Redwood City CA (US) for vmware, inc., Zhengsheng Zhou of Beijing (CN) for vmware, inc.
IPC Code(s): H04L43/10, H04L43/062
Abstract: some embodiments of the invention provide a method for performing data traffic monitoring for a system that includes a set of heterogeneous networks that includes at least an overlay first network layer that is built on top of an underlay second network layer. the method is performed at a federation controller for the system. the method directs (1) a first set of components in the overlay first network layer to perform a first trace operation to trace a packet exchanged between two machines and passing through network components defined in the overlay first network layer and underlay second network layer and (2) a second set of components in the underlay second network layer to perform a second trace operation to trace the packet. the method receives, from the first and second sets of components, first and second sets of trace data collected during the first and second trace operations. the collected trace data includes correlation data for correlating the first and second sets of data. the method uses the correlation data to correlate the first and second sets of trace data to generate a final trace report identifying a complete path traversed by the packet through the overlay first network layer and underlay second network layer.
20240031268.FLOW TRACING FOR HETEROGENEOUS NETWORKS_simplified_abstract_(vmware, inc.)
Inventor(s): Ran Gu of Beijing (CN) for vmware, inc., Wenfeng Liu of Beijing (CN) for vmware, inc., Donghai Han of Beijing (CN) for vmware, inc., Jianjun Shen of Redwood City CA (US) for vmware, inc., Zhengsheng Zhou of Beijing (CN) for vmware, inc.
IPC Code(s): H04L43/10, H04L45/64
Abstract: some embodiments of the invention provide a method for performing data traffic monitoring for a system that includes a set of heterogeneous networks that includes at least an overlay first network layer that is built on top of an underlay second network layer. the method is performed at a federation controller for the system. the method directs (1) a first set of components in the overlay first network layer to perform a first trace operation to trace a packet exchanged between two machines and passing through network components defined in the overlay first network layer and underlay second network layer and (2) a second set of components in the underlay second network layer to perform a second trace operation to trace the packet. the method receives, from the first and second sets of components, first and second sets of trace data collected during the first and second trace operations. the collected trace data includes correlation data for correlating the first and second sets of data. the method uses the correlation data to correlate the first and second sets of trace data to generate a final trace report identifying a complete path traversed by the packet through the overlay first network layer and underlay second network layer.
Inventor(s): Navaneeth Krishnan Ramaswamy of Chennai (IN) for vmware, inc., Arun Kumar Srinivasan of Waterloo (CA) for vmware, inc.
IPC Code(s): H04L45/02, H04L67/10
Abstract: some embodiments provide a method for dynamically deploying a managed forwarding element (mfe) in a software-defined wide-area network (sd-wan) for a particular geographic region across which multiple saas applications is distributed. the method determines, based on flow patterns for multiple flows destined for the multiple saas applications distributed across the particular geographic region, that an additional mfe is needed for the particular geographic region. the method configures the additional mfe to deploy at a particular location in the particular geographic region for forwarding the multiple flows to the multiple saas applications. the method provides, to a particular set of mfes that connect a set of branch sites to the sd-wan, a set of forwarding rules to direct the particular set of mfes to use the additional mfe for forwarding subsequent data messages belonging to the multiple flows to the multiple saas applications.
Inventor(s): Bo LIN of Beijing (CN) for vmware, inc., Yong WANG of San Jose CA (US) for vmware, inc., Dongping CHEN of Beijing (CN) for vmware, inc., Xinhua HONG of Campbell CA (US) for vmware, inc., Xinyu HE of Beijing (CN) for vmware, inc.
IPC Code(s): H04L45/76, H04L47/125, H04L45/74
Abstract: example methods and systems for centralized service insertion in an active-active cluster are described. in one example, a first service endpoint may operate in an active mode on a first logical service router (sr) supported by the computer system. the first service endpoint may be associated with a second service endpoint operating on the second logical sr in a standby mode. the first logical sr and the second logical sr may be assigned to a first sub-cluster of the active-active cluster. in response to receiving a service request originating from a virtualized computing instance, the service request may be processed using the first service endpoint according to a centralized service that is implemented by both the first service endpoint and the second service endpoint. a processed service request may be forwarded towards a destination capable of generating and sending a service response in reply to the processed service request.
20240031291.LOAD BALANCING OVER TUNNEL ENDPOINT GROUPS_simplified_abstract_(vmware, inc.)
Inventor(s): Subin Cyriac Mathew of San Jose CA (US) for vmware, inc., Prerit Rodney of Union City CA (US) for vmware, inc., Chidambareswaran Raman of Sunnyvale CA (US) for vmware, inc.
IPC Code(s): H04L47/125, H04L12/46
Abstract: some embodiments provide a method of forwarding data messages between source and destination host computers that execute source and destination machines. at a source computer on which a source machine for a data message flow executes, the method in some embodiments identifies a source tunnel endpoint group (tepg) associated with the source machine. for the flow, the method selects one tep of the tepg as the source tep. the method then uses the selected source tep to forward the flow to the destination computer on which the destination machine executes.
20240031292.NETWORK FLOW BASED LOAD BALANCING_simplified_abstract_(vmware, inc.)
Inventor(s): Giri Reddy of Larkspur CA (US) for vmware, inc., Amol Manohar Vaikar of Pune (IN) for vmware, inc.
IPC Code(s): H04L47/125, H04L47/62, H04L43/062, H04L43/045
Abstract: some embodiments provide a method for using flow-based load balancing to select a service endpoint from multiple service endpoints in a datacenter of an enterprise network for providing one or more services to client devices in the enterprise network. the method receives, from a network modeling appliance that categorizes service endpoints based on network data, a first set of service endpoints that provide at least one particular service for which a client connection is to be scheduled. the method generates an intersecting set of service endpoints based on the received first set of service endpoints and a second set of service endpoints identified by a load balancer that performs load balancing operations for data message flows to and from the plurality of service endpoints. based on the generated intersecting set of service endpoints, the method selects a particular service endpoint for scheduling the client connection.
20240031296.MODIFYING AN SD-WAN BASED ON FLOW METRICS_simplified_abstract_(vmware, inc.)
Inventor(s): Navaneeth Krishnan Ramaswamy of Chennai (IN) for vmware, inc., Arun Kumar Srinivasan of Waterloo (CA) for vmware, inc.
IPC Code(s): H04L47/24, H04L43/0876, H04L45/12
Abstract: some embodiments provide a method for modifying an sd-wan (software-defined wide-area network). the method collects, from a set of managed forwarding elements (mfes), multiple metrics associated with multiple data message flows sent between the set of mfes. the method analyzes the collected multiple metrics to group the data message flows according to multiple types and to identify a ranking of the multiple groups of data message flows according to traffic throughput. the method uses the ranking to identify a set of one or more groups of data message flows. the method modifies the sd-wan to improve forwarding through the sd-wan for the identified set of one or more groups of data message flows.
20240031334.IDENTITY FIREWALL WITH CONTEXT INFORMATION TRACKING_simplified_abstract_(vmware, inc.)
Inventor(s): RAYANAGOUDA BHEEMANAGOUDA PATIL of Pune (IN) for vmware, inc., MANISHA SAMEER GAMBHIR PAREKH of Pune (IN) for vmware, inc., KULDEEP NAMADEORAO NIKAM of Pune (IN) for vmware, inc., SOUMEE PHATAK of Pune (IN) for vmware, inc.
IPC Code(s): H04L9/40
Abstract: example methods and systems for identity firewall with context information tracking are described. in one example, a first computer system may detect establishment of a connection with a virtualized computing instance, and track context information associated with the connection. the context information may include (a) first identity information that is associated with a prior connection between the client device and a second computer system, and (b) second identity information that is associated with the connection with the virtualized computing instance. further, the first computer system may obtain a first identity firewall policy associated with the first identity information. in response to detecting a packet associated with a flow originating from, or destined for, the virtualized computing instance, the first computer system may allow or block forwarding of the packet based on the first identity firewall policy.
Inventor(s): GAURAV JINDAL of Pune (IN) for vmware, inc., Hussaina Begum Nandyala of Pune (IN) for vmware, inc.
IPC Code(s): H04L9/40
Abstract: embodiments described herein relate to load balancing using multiple cpus. a method for tunnel creation according to a security protocol at a source tunnel endpoint (tep) includes exchanging messages with a destination tep to create a security association (sa) for the tunnel creation; sending a message to the destination tep, wherein the message is an encrypted message based on the first message exchange, and the message includes a traffic selector of the source tep and a number of available cpus of the source tep; receiving a message from the destination tep, wherein the message is an encrypted message based on the first message exchange, and the message includes a traffic selector of the destination tep and a number of available cpus of the destination tep; and determining a number of sas to create with the destination tep, wherein the determination is based on the traffic selectors and the number of available cpus.
20240031340.END USER PRIVACY MANAGEMENT OF ACCESSED DEVICE DATA_simplified_abstract_(vmware, inc.)
Inventor(s): Hemant Sahani of Palo Alto CA (US) for vmware, inc., Phillip Charles Krasko of Redwood City CA (US) for vmware, inc., Scott Harlow Kelley of Atlanta GA (US) for vmware, inc.
IPC Code(s): H04L9/40
Abstract: disclosed are various examples for controlling and managing data access to increase user privacy and minimize intentional or inadvertent misuse of accessed information. upon detecting a request for an administrator review of a user client device, permission for administrator access can be obtained from a user associated with the user client device. the client device identifier can be obfuscated such that the administrator accessing the data is not provided the actual device identifier. an administrator review session between the user client device and an administrator client device can be established to allow the administrator client device access to the permitted client device data.
20240031428.TRANSPARENT LOAD BALANCING_simplified_abstract_(vmware, inc.)
Inventor(s): Srinivasa Srikanth Podila of Bangalore (IN) for vmware, inc., Hiral Mehta of Bangalore (IN) for vmware, inc., Varun Lakkur Ambaji Rao of Bangalore (IN) for vmware, inc.
IPC Code(s): H04L67/1004
Abstract: some embodiments provide a method of performing load balancing on client traffic sent to a cluster of servers that are associated with a common network address (e.g., for a vip address associated with a service provided by the cluster of servers). the method assigns a cluster of two or more transparent load balancers to the common network address associated with the server cluster. the method configures at least two of these transparent load balancers as active transparent load balancers that concurrently (1) receive data message flows sent by clients directed to the common network address, (2) select one of the servers for each flow, and (3) forward each flow to the server selected for the flow without modifying a source network address (e.g., ip network address) of the flow. in some embodiments, the transparent load balancers do not modify the source network addresses for the flows that the load balancers forward to the servers because the servers need the source network addresses for operations that the servers perform for the forwarded data messages. the method also configures each active transparent load balancer to provide information to a default gateway regarding each flow processed by the active transparent load balancer. this flow information will allow the default gateway to forward to the active transparent load balancer responsive data messages that the servers send back to the clients for the flows that the active transparent load balancer forwarded to the servers.
- VMware, Inc.
- G06F3/06
- Vmware, inc.
- G06F12/02
- G06F8/65
- G06F9/455
- G06F8/77
- G06F8/60
- G06F8/41
- G06F9/30
- G06F9/54
- G06F9/4401
- G06F8/61
- G06F9/445
- G06F9/50
- G06F9/451
- H04L9/40
- G06F9/48
- G06F12/084
- G06F11/36
- G06F21/33
- G06F11/07
- G06F11/14
- G06F12/0831
- G06F12/0891
- G06F13/42
- G06F16/27
- G06F16/2453
- H04L9/00
- G06F11/00
- G06F21/56
- G06F21/57
- G06F21/62
- G06N20/00
- G06N5/04
- G06Q10/10
- G06F40/289
- G08B19/00
- G10L15/22
- G10L15/26
- G06F40/253
- G06F40/284
- G06F3/16
- H04L41/0816
- H04L47/125
- H04L47/70
- H04L49/90
- H04L41/0894
- H04L41/08
- H04L41/0806
- H04L41/0893
- H04L41/085
- H04L67/51
- H04L43/0811
- H04L41/0895
- H04L61/5014
- H04L41/22
- H04L41/12
- G06F16/215
- G06F16/28
- H04L41/00
- H04L67/1001
- H04L43/028
- H04L43/10
- H04L47/2483
- H04L43/04
- H04L69/22
- H04L47/41
- H04L43/067
- H04L9/14
- H04L43/0823
- H04L41/0604
- H04L43/0876
- H04L43/062
- H04L45/64
- H04L45/02
- H04L67/10
- H04L45/76
- H04L45/74
- H04L12/46
- H04L47/62
- H04L43/045
- H04L47/24
- H04L45/12
- H04L67/1004
- G06F9/45558
- G06F2009/4557
- G06F2009/45595