JP2004252776A - Control method of multi-operating system, program making computer execute same method, and control device of multi-operating system - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To improve the security and reliability of a multi-operating system. <P>SOLUTION: This control device comprises a transmission buffer 12 and receiving buffer 14 for an NIC (Network Interface Card) 10 for temporarily storing data (packet, command, etc.) of a communication object in OS30<SB>1</SB>and OS30<SB>2</SB>which constitute the multi-operating system, and an NIC device driver 20<SB>1</SB>and NIC device driver 20<SB>2</SB>for setting the normal connecting destination of the transmission buffer 12 and receiving buffer 14 to the OS30<SB>2</SB>side, and setting, when the data of the communication object are related to the OS30<SB>1</SB>, the connecting destination of the transmission buffer 12 and receiving buffer 14 for temporarily storing the data to the OS30<SB>1</SB>while relaying the S30<SB>2</SB>. <P>COPYRIGHT: (C)2004,JPO&NCIPI

Description

[0001]
TECHNICAL FIELD OF THE INVENTION
The present invention relates to a multi-operating system control method for operating a plurality of operating systems on one computer, a program for causing a computer to execute the method, and a multi-operating system control device. The present invention relates to a multi-operating system control method capable of improving reliability, a program for causing a computer to execute the method, and an operating system control device.
[0002]
[Prior art]
In an ordinary computer, one operating system operates, which manages computer resources such as a processor, a memory, and a secondary storage device of the computer, and implements a resource schedule so that the computer can operate efficiently. There are various types of operating systems. There are various types such as those that are excellent in batch processing, those that are excellent in TSS (Time Sharing System), those that are excellent in GUI (Graphical User Interface).
[0003]
On the other hand, there is a need to simultaneously execute these plural operating systems on one computer. For example, in a large-scale computer, there is a demand to operate an operating system for executing online processing associated with actual work and an operating system for development on one computer. Alternatively, there is a demand that an operating system having a GUI and an operating system having an excellent real-time property be operated at the same time.
[0004]
However, each operating system is designed on the assumption that computer resources are managed independently. Therefore, coexistence of a plurality of operating systems is not possible without some mechanism.
[0005]
As a mechanism for operating a plurality of operating systems on one computer, there is a virtual computer system implemented by a large computer. FIG. 70 is a block diagram showing a configuration example 1 of a conventional multi-operating system based on the virtual computer system.
[0006]
The multi-operating system shown in FIG. 1 includes hardware 1, a base OS 2, a VM (Virtual Machine) monitor 3, and a virtual OS (operating system) 4. ₁ , Virtual OS4 ₂ And virtual OS4 ₃ It is composed of
[0007]
The hardware 1 is a CPU (Central Processing Unit), a physical memory, an input / output device, and the like. The base OS 2 and the VM monitor 3 control all of the hardware 1. VM monitor 3 is a virtual OS 4 ₁ ~ 4 ₃ Emulates an interface to the respective hardware 1. Virtual OS4 ₁ ~ 4 ₃ Runs on the platform OS2. That is, the base OS 2 and the virtual OS 4 ₁ ~ 4 ₃ Are in a master-slave relationship.
[0008]
In the multi-operating system shown in the figure, for example, when communication such as packets is performed between virtual OSs, the base OS 2 ₁ ~ 4 ₃ Via a shared memory (not shown) which can be referred to at the same time.
[0009]
For example, virtual OS4 ₁ From virtual OS4 ₂ To send a packet to the virtual OS 4 ₁ After storing the packet in the shared memory, the virtual OS 4 ₂ Gets a packet from shared memory. Communication between the virtual OS and another device is performed via the shared memory and the base OS 2 in addition to the communication between the virtual OSs.
[0010]
As a technique for providing an interface of a plurality of operating systems with one computer, there is a microkernel method. FIG. 71 is a block diagram showing a configuration example 2 of a conventional multi-operating system based on the microkernel system.
[0011]
The multi-operating system shown in FIG. 1 includes a hardware 5, a microkernel (control program) 6, and an OS7. ₁ , OS7 ₂ And OS7 ₃ It is composed of
[0012]
In the microkernel system, on the microkernel 6, an OS 7 providing an operating system function to be shown to the user is provided. ₁ ~ 7 ₃ Has been built. User is OS7 ₁ ~ 7 ₃ Via the hardware 5 (computer resources). Microkernel 6 is OS7 ₁ ~ 7 ₃ Control.
[0013]
In the multi-operating system shown in the figure, for example, when communication of packets or the like is performed between OSs, the microkernel or the OS 7 ₁ ~ 7 ₃ Via a shared memory (not shown) which can be referred to at the same time.
[0014]
For example, OS7 ₁ From OS7 ₂ When sending a packet to OS7 ₁ After storing the packet in the shared memory, the OS 7 ₂ Gets a packet from shared memory. Communication between the OS and another device is performed via the shared memory and the microkernel 6 in addition to between the OSs.
[0015]
[Patent Document 1]
JP-A-11-149385
[Patent Document 2]
JP 2001-216172 A
[Patent Document 3]
JP 2000-207232 A
[Patent Document 4]
JP-A-8-212089
[Patent Document 5]
JP 2001-290661 A
[Patent Document 6]
JP-A-11-85546
[Patent Document 7]
JP 2001-282558 A
[Patent Document 8]
JP-A-11-85546
[0016]
[Problems to be solved by the invention]
By the way, as described above, in the conventional multi-operating system shown in FIG. 70, security is low because communication is performed via the shared memory between the virtual OSs or between the virtual OS and other devices. There was a problem.
[0017]
That is, if the shared memory is a virtual OS 4 ₁ ~ 4 ₃ Can be simultaneously accessed from each of the virtual OSs 4. If the shared memory is illegally accessed from outside during communication, the virtual OS 4 ₁ ~ 4 ₃ Are attacked at the same time.
[0018]
In addition, in the conventional multi-operating system, since the hardware 1 is controlled by one base OS 2, there is a problem that a system down occurs due to the stop of the base OS 2, resulting in low reliability.
[0019]
Also, in the conventional multi-operating system shown in FIG. ₁ ~ 7 ₃ Can be referred to simultaneously from each other, so that if the shared memory is illegally accessed from outside during communication, the OS 7 ₁ ~ 7 ₃ Are attacked at the same time, and there is a security problem.
[0020]
The present invention has been made in view of the above, and provides a multi-operating system control method capable of improving security and reliability of a multi-operating system, a program for causing a computer to execute the method, and a multi-operating system control device. The purpose is to provide.
[0021]
[Means for Solving the Problems]
In order to achieve the above object, the present invention relates to a multi-operating system control method for controlling a first operating system and a second operating system running on a single computer, wherein the storing method temporarily stores data to be communicated. The normal connection destination in the means is set to the second operating system, and when the data to be communicated is related to the first operating system, the connection destination of the storage means for temporarily storing the data is A setting step of setting the first operating system by relaying the second operating system.
[0022]
According to the present invention, the normal connection destination in the storage unit for temporarily storing data to be communicated is set to the second operating system, and when the data to be communicated is related to the first operating system, the data is transferred to the second operating system. Since the connection destination of the storage means for temporarily storing is set to the first operating system via the second operating system, the first operating system and the second operating system simultaneously attack from the outside during communication. It is possible to avoid the possibility of being performed and improve the security and reliability of the multi-operating system.
[0023]
The present invention also relates to a multi-operating system control method for controlling a first operating system and a second operating system running on one computer, wherein the first operating system and the second operating system are operated while the second operating system is running. When data destined for the operating system is stored in the storage means, a setting step of setting the connection of the storage means to the first operating system via the second operating system is included. .
[0024]
According to the present invention, when data addressed to the first operating system is stored in the storage unit during execution of the second operating system, the connection of the storage unit is switched to the first operating system via the second operating system. , The security and reliability of the multi-operating system in data communication addressed to the first operating system can be improved.
[0025]
Further, according to the present invention, in the multi-operating system control method according to claim 1 or 2, in the setting step, when the reliability of the data is equal to or more than a previously registered value, the second operating system is controlled. The data stored in the storage means is directly passed to the first operating system without relaying.
[0026]
According to this invention, when the reliability of the data is equal to or more than the value registered in advance, the data stored in the storage unit is directly passed to the first operating system without relaying the second operating system. Therefore, the communication processing can be speeded up.
[0027]
The present invention also relates to a multi-operating system control method for controlling a first operating system and a second operating system running on a single computer, the method comprising controlling a normal connection destination in storage means for temporarily storing data to be communicated. Setting the second operating system to the second operating system, and when data addressed to the second operating system is stored in the storage unit during execution of the first operating system, Switching to a second operating system.
[0028]
According to the present invention, when data destined for the second operating system is stored in the storage unit during execution of the first operating system, the first operating system is switched to the second operating system. , The security and reliability of the multi-operating system in data communication addressed to the second operating system can be improved.
[0029]
The present invention also relates to a multi-operating system control method for controlling a first operating system and a second operating system running on one computer, wherein the first operating system executes the first operating system while the first operating system is running. And setting a connection destination of the storage unit to the first operating system via the second operating system when data addressed to the operating system is stored in the storage unit. I do.
[0030]
According to the present invention, when data addressed to the first operating system is stored in the storage unit while the first operating system is running, the connection destination of the storage unit is set to the second operating system via the second operating system. Since the first operating system is set, security and reliability of the multi-operating system in data communication addressed to the first operating system can be improved.
[0031]
The present invention also relates to a multi-operating system control method for controlling a first operating system and a second operating system running on one computer, wherein a method for controlling a multi-operating system from the first operating system to the second operating system is provided. When performing communication, a first setting change step of changing the connection destination of the storage unit for temporarily storing data to be communicated from the second operating system as a normal connection destination to the first operating system; A storage step of storing data from the first operating system in the storage means, and a second setting change for changing a connection destination of the storage means from the first operating system to the second operating system And a step.
[0032]
According to the present invention, when communication is performed from the first operating system to the second operating system, the connection destination of the storage unit that temporarily stores data to be communicated is set to the second operating system as a normal connection destination From the first operating system to the first operating system, and after storing data from the first operating system in the storage means, the connection destination of the storage means is changed from the first operating system to the second operating system. Therefore, security and reliability of the multi-operating system in data communication from the first operating system to the second operating system can be improved.
[0033]
The present invention also relates to a multi-operating system control method for controlling a first operating system and a second operating system running on one computer, wherein a communication is performed from the first operating system to another device. A first setting change step of changing a connection destination of a storage unit for temporarily storing data to be communicated from a second operating system as a normal connection destination to the first operating system; A storage step of storing data from an operating system in the storage unit, a second setting change step of changing a connection destination of the storage unit from the first operating system to the second operating system, Relaying the second operating system, the case Characterized in that it comprises a transmission step of transmitting the stored data to the means to the other device.
[0034]
According to the present invention, when communication is performed from the first operating system to another device, the connection destination of the storage unit that temporarily stores data to be communicated is changed from the second operating system as a normal connection destination to the first operating system. After changing the setting to the operating system, the data from the first operating system is stored in the storage means, and the connection destination of the storage means is changed from the first operating system to the second operating system. The security and reliability of the multi-operating system in data communication from the first operating system to another device can be improved.
[0035]
Further, according to the multi-operating system control method of the present invention, when the reliability of the data is equal to or more than a previously registered value, the setting change is performed in the second setting change step. In the transmitting step, the data stored in the storage unit is directly transmitted to the other device without relaying the second operating system.
[0036]
According to the present invention, when the reliability of the data is equal to or more than the value registered in advance, the data stored in the storage means is not changed without changing the setting and without relaying the second operating system. Since the data is transmitted directly to the device, the communication processing can be speeded up.
[0037]
The present invention also relates to a multi-operating system control method for controlling a first operating system and a second operating system running on a single computer, the method comprising controlling a normal connection destination in storage means for temporarily storing data to be communicated. Setting in the second operating system, and when performing communication from the second operating system to the first operating system, storing data from the second operating system in the storage unit. A storage step and a setting change step of changing a setting of a connection destination of the storage unit from the second operating system to the first operating system are included.
[0038]
According to the present invention, when communication is performed from the second operating system to the first operating system, data from the second operating system is stored in the storage unit, and the connection destination of the storage unit is set to the second operating system. Since the setting is changed from the first operating system to the first operating system, security and reliability of the multi-operating system in data communication from the second operating system to the first operating system can be improved.
[0039]
The present invention also provides a multi-operating system control method according to any one of claims 1 to 9, wherein the data is checked for normality, and a communication check process is continued only when the data is normal. It is characterized by including.
[0040]
According to the present invention, the normality of the data is checked, and the communication processing is continued only when the data is normal, so that the security and reliability of the multi-operating system can be further improved.
[0041]
Further, according to the present invention, in the multi-operating system control method according to any one of claims 1 to 10, regarding the setting of the connection destination of the storage unit, authority is given only to the second operating system side. It is characterized by having.
[0042]
According to the present invention, only the second operating system is authorized to set the connection destination of the storage means. Therefore, there is a possibility that the first operating system having no authority is attacked from the outside. It is extremely low, and the security and reliability of the multi-operating system can be significantly improved.
[0043]
Further, the present invention is a program for causing a computer to execute the multi-operating system control method according to any one of claims 1 to 11, and the program becomes readable by a computer. The operation of the invention described in any one of the above can be executed by a computer.
[0044]
The present invention also relates to a multi-operating system control device for controlling a first operating system and a second operating system running on a single computer, wherein the multi-operating system control device includes a normal connection destination in storage means for temporarily storing data to be communicated. Is set to the second operating system, and when the data to be communicated is related to the first operating system, the connection destination of the storage unit for temporarily storing the data is set to the second operating system. Setting means for relaying and setting the first operating system.
[0045]
According to the present invention, the normal connection destination in the storage unit for temporarily storing data to be communicated is set to the second operating system, and when the data to be communicated is related to the first operating system, the data is transferred to the second operating system. Since the connection destination of the storage means for temporarily storing is set to the first operating system via the second operating system, the first operating system and the second operating system simultaneously attack from the outside during communication. It is possible to avoid the possibility of being performed and improve the security and reliability of the multi-operating system.
[0046]
Further, the present invention is a multi-operating system control device for controlling a first operating system and a second operating system running on one computer, wherein the first operating system is controlled by the first operating system while the second operating system is running. Setting means for setting connection of the storage means to the first operating system via the second operating system when data destined for the operating system is stored in the storage means; I do.
[0047]
According to the present invention, when data addressed to the first operating system is stored in the storage unit during execution of the second operating system, the connection of the storage unit is switched to the first operating system via the second operating system. , The security and reliability of the multi-operating system in data communication addressed to the first operating system can be improved.
[0048]
Further, according to the present invention, in the multi-operating system control device according to claim 13 or 14, when the reliability of the data is equal to or more than a value registered in advance, the setting means sets the second operating system. The data stored in the storage means is directly passed to the first operating system without relaying.
[0049]
According to this invention, when the reliability of the data is equal to or more than the value registered in advance, the data stored in the storage unit is directly passed to the first operating system without relaying the second operating system. Therefore, the communication processing can be speeded up.
[0050]
The present invention also relates to a multi-operating system control device for controlling a first operating system and a second operating system running on a single computer, wherein the multi-operating system control device includes a normal connection destination in storage means for temporarily storing data to be communicated. Setting means for setting the second operating system to the second operating system; and when data addressed to the second operating system is stored in the storage means during execution of the first operating system, Switching means for switching to the second operating system.
[0051]
According to the present invention, when data destined for the second operating system is stored in the storage unit during execution of the first operating system, the first operating system is switched to the second operating system. , The security and reliability of the multi-operating system in data communication addressed to the second operating system can be improved.
[0052]
Further, the present invention is a multi-operating system control device for controlling a first operating system and a second operating system running on one computer, wherein the first operating system executes the first operating system while the first operating system is running. Setting means for setting a connection destination of the storage means to the first operating system via the second operating system when data addressed to the operating system is stored in the storage means; And
[0053]
According to the present invention, when data addressed to the first operating system is stored in the storage unit while the first operating system is running, the connection destination of the storage unit is set to the second operating system via the second operating system. Since the first operating system is set, security and reliability of the multi-operating system in data communication addressed to the first operating system can be improved.
[0054]
Further, the present invention is a multi-operating system control device which controls a first operating system and a second operating system which are operated by one computer, wherein the multi-operating system control device controls the first operating system and the second operating system from the first operating system. When performing communication, first setting change means for changing the connection destination of the storage means for temporarily storing data to be communicated from the second operating system as a normal connection destination to the first operating system; Storage control means for storing data from the first operating system in the storage means; and second setting for changing a connection destination of the storage means from the first operating system to the second operating system. And changing means. That.
[0055]
According to the present invention, when communication is performed from the first operating system to the second operating system, the connection destination of the storage unit that temporarily stores data to be communicated is set to the second operating system as a normal connection destination From the first operating system to the first operating system, and after storing data from the first operating system in the storage means, the connection destination of the storage means is changed from the first operating system to the second operating system. Therefore, security and reliability of the multi-operating system in data communication from the first operating system to the second operating system can be improved.
[0056]
Further, the present invention is a multi-operating system control device for controlling a first operating system and a second operating system running on one computer, wherein communication is performed from the first operating system to another device. A first setting change means for changing a connection destination of a storage means for temporarily storing data to be communicated from a second operating system as a normal connection destination to the first operating system; and Storage control means for storing data from an operating system in the storage means; second setting change means for changing the connection destination of the storage means from the first operating system to the second operating system; Relaying the second operating system, The data stored in the storage means data characterized by comprising a transmitting means for transmitting to the other device.
[0057]
According to the present invention, when communication is performed from the first operating system to another device, the connection destination of the storage unit that temporarily stores data to be communicated is changed from the second operating system as a normal connection destination to the first operating system. After changing the setting to the operating system, the data from the first operating system is stored in the storage means, and the connection destination of the storage means is changed from the first operating system to the second operating system. The security and reliability of the multi-operating system in data communication from the first operating system to another device can be improved.
[0058]
Further, in the multi-operating system control device according to claim 19, when the reliability of the data is equal to or more than a value registered in advance, the second setting change unit performs the setting change. In addition, the transmitting means transmits the data stored in the storing means directly to the other device without relaying the second operating system.
[0059]
According to the present invention, when the reliability of the data is equal to or more than the value registered in advance, the data stored in the storage means is not changed without changing the setting and without relaying the second operating system. Since the data is transmitted directly to the device, the communication processing can be speeded up.
[0060]
The present invention also relates to a multi-operating system control device for controlling a first operating system and a second operating system running on a single computer, wherein the multi-operating system control device includes a normal connection destination in storage means for temporarily storing data to be communicated. Setting means for setting the second operating system to the second operating system, and when communication is performed from the second operating system to the first operating system, data from the second operating system is stored in the storage means. It is characterized by comprising storage control means, and setting change means for changing the connection destination of the storage means from the second operating system to the first operating system.
[0061]
According to the present invention, when communication is performed from the second operating system to the first operating system, data from the second operating system is stored in the storage unit, and the connection destination of the storage unit is set to the second operating system. Since the setting is changed from the first operating system to the first operating system, security and reliability of the multi-operating system in data communication from the second operating system to the first operating system can be improved.
[0062]
Further, according to the present invention, in the multi-operating system control device according to any one of claims 13 to 21, data checking means for checking the normality of the data, and continuing communication processing only when the data is normal, It is characterized by having.
[0063]
According to the present invention, the normality of the data is checked, and the communication processing is continued only when the data is normal, so that the security and reliability of the multi-operating system can be further improved.
[0064]
Further, according to the present invention, in the multi-operating system control device according to any one of claims 13 to 22, regarding the setting of the connection destination of the storage unit, authority is given only to the second operating system side. It is characterized by having.
[0065]
According to the present invention, only the second operating system is authorized to set the connection destination of the storage means. Therefore, there is a possibility that the first operating system having no authority is attacked from the outside. It is extremely low, and the security and reliability of the multi-operating system can be significantly improved.
[0066]
BEST MODE FOR CARRYING OUT THE INVENTION
Hereinafter, a first embodiment of a multi-operating system control method according to the present invention, a program for causing a computer to execute the method, and a multi-operating system control device will be described in detail with reference to the drawings.
[0067]
(Embodiment 1)
FIG. 1 is a block diagram showing a configuration of the first exemplary embodiment according to the present invention. The multi-operating system shown in FIG. 1 includes a NIC (Network Interface Card) 10 and a NIC device driver 20. ₁ , NIC device driver 20 ₂ , OS30 ₁ , OS30 ₂ , AP (application program) 40 ₁ ~ 40 ₄ And a network 50.
[0068]
In the multi-operating system, the OS 30 ₁ From OS30 ₂ Or OS30 ₂ From OS30 ₁ Is switched in the interrupt processing routine. Causes of the interruption include a communication request via the NIC 10 and a periodic switching request by a timer (not shown).
[0069]
In addition, the multi-operating system uses the NIC 10 without using a common control program or a shared memory as in the related art, and uses the NIC 30 while maintaining high security. ₁ And OS30 ₂ It is characterized in that data (packets and the like) are exchanged between the device and the device.
[0070]
Hereinafter, each component will be described in detail. The NIC 10 is, for example, a LAN (Local Area Network) card and has a communication interface function. The NIC 10 includes an NIC device driver 20 described later. ₁ And NIC device driver 20 ₂ Is controlled by
[0071]
In the NIC 10, the NIC transmission processing unit 11 has a function of transmitting a packet. The transmission buffer 12 temporarily stores a packet transmitted from the NIC transmission processing unit 11. The NIC reception processing unit 13 has a function of receiving a packet from the network 50. The reception buffer 14 temporarily stores the packet received by the NIC reception processing unit 13.
[0072]
The transmission buffer register 15 includes a transmission buffer 23 described later. ₁ Or transmission buffer 23 ₂ Is a register for storing a value (address) corresponding to any of the following. The reception buffer register 16 includes a reception buffer 25 described later. ₁ Or the reception buffer 25 ₂ Is a register for storing a value (address) corresponding to any of the following.
[0073]
NIC device driver 20 ₁ Is OS30 ₁ And a function of controlling the NIC 10 during communication, a function of rewriting the values of the transmission buffer register 15 and the reception buffer register 16, ₁ From OS30 ₂ It has a function to switch to.
[0074]
NIC device driver 20 ₁ In the transmission processing unit 22 ₁ Is OS30 ₁ It has the function of transmitting packets from Transmission buffer 23 ₁ Is OS30 ₁ Temporarily store the packet from Reception processing unit 24 ₁ Is OS30 ₁ It has the function of receiving packets addressed to it. Receive buffer 25 ₁ Is OS30 ₁ Temporarily store packets addressed to. OS switching processing unit 21 ₁ Changes the OS to OS30 ₁ From OS30 ₂ It has a function to switch to.
[0075]
On the other hand, the NIC device driver 20 ₂ Is OS30 ₂ And a function of controlling the NIC 10 during communication, a function of rewriting the values of the transmission buffer register 15 and the reception buffer register 16, ₂ From OS30 ₁ It has a function to switch to.
[0076]
Also, the NIC device driver 20 ₂ In the transmission processing unit 22 ₂ Is OS30 ₂ It has the function of transmitting packets from Transmission buffer 23 ₂ Is OS30 ₂ Temporarily store the packet from Reception processing unit 24 ₂ Is OS30 ₂ It has the function of receiving packets addressed to it. Receive buffer 25 ₂ Is OS30 ₂ Temporarily store packets addressed to. OS switching processing unit 21 ₂ Changes the OS to OS30 ₂ From OS30 ₁ It has a function to switch to. Data check processing unit 26 ₂ Performs a check on the packet for the possibility of virus infection or network attack.
[0077]
Here, OS30 ₁ , For example, 192.168.1.3 is assigned as an IP address. On the other hand, OS30 ₂ Is assigned another IP address, for example, 192.168.1.4. In the first to third embodiments, a MAC (Media Access Control) address may be used instead of the IP address as the information for identifying the OS.
[0078]
Next, operation outlines 1 to 4 of the first embodiment will be described with reference to FIGS.
[0079]
(Operation outline 1 of the first embodiment)
First, the outline 1 of the operation of the first embodiment will be described with reference to the block diagram shown in FIG. In the operation overview 1, the OS 30 ₂ From OS30 ₁ The case where communication is performed to the server will be described.
[0080]
In FIG. ₂ Is being executed, and the transmission buffer 23 is stored in the transmission buffer register 15. ₂ Are stored in the reception buffer register 16 and the reception buffer 25 ₂ It is assumed that a value corresponding to is stored.
[0081]
In this state, in (1), the NIC device driver 20 ₂ Transmission processing unit 22 ₂ Is OS30 ₂ (Hereinafter, data, command, etc.) from the transmission buffer 23 ₂ To be stored. This packet is sent to the OS 30 ₂ From OS30 ₁ Sent to Therefore, the destination IP address of the packet is ₁ 192.168.1.3.
[0082]
In (2), the transmission processing unit 22 ₂ Stores the value of the reception buffer register 16 of the NIC 10 in the reception buffer 25. ₂ To receive buffer 25 ₁ Rewrite to In (3), the NIC transmission processing unit 11 refers to the transmission buffer register 15 and ₂ Access to the transmission buffer 23 ₂ Is copied to the transmission buffer 12.
[0083]
In (4), the NIC transmission processing unit 11 reads a packet from the transmission buffer 12 and transmits the packet to the network 50. Then, after the packet is received by the NIC reception processing unit 13, the packet is stored in the reception buffer 14.
[0084]
In (5), the NIC reception processing unit 13 refers to the reception buffer register 16 and ₁ After the access to the receiving buffer 14, the receiving buffer 14 ₁ Copy the packet to
[0085]
In (6), the OS switching processing unit 21 ₂ Changes the OS to OS30 ₂ From OS30 ₁ Switch to In (7), the reception processing unit 24 ₁ Is the reception buffer 25 ₁ From the OS 30 after switching the packet. ₁ Pass to
[0086]
As described above, in the operation outline 1 of the first embodiment, the communication between the OSs is realized while maintaining high security by cooperation between the communication via the NIC 10 and the OS switching.
[0087]
(Operation Outline 2 of Embodiment 1)
Next, an outline 2 of the operation of the first embodiment will be described with reference to the block diagram shown in FIG. In the operation outline 2, the OS 30 ₁ From OS30 ₂ The case where communication is performed to the server will be described.
[0088]
In FIG. ₁ Is being executed, and the transmission buffer 23 is stored in the transmission buffer register 15. ₂ Are stored in the reception buffer register 16 and the reception buffer 25 ₂ It is assumed that a value corresponding to is stored.
[0089]
In this state, in (1), the NIC device driver 20 ₁ Transmission processing unit 22 ₁ Is OS30 ₁ From the transmission buffer 23 ₁ To be stored. This packet is sent to the OS 30 ₁ From OS30 ₂ Sent to Therefore, the destination IP address of the packet is ₂ 192.168.1.4.
[0090]
In (2), the transmission processing unit 22 ₁ Stores the value of the transmission buffer register 15 of the NIC 10 in the transmission buffer 23 ₂ From the transmission buffer 23 ₁ Rewrite to In (3), the NIC transmission processing unit 11 refers to the transmission buffer register 15 and ₁ Access to the transmission buffer 23 ₁ Is copied to the transmission buffer 12.
[0091]
In (4), the NIC transmission processing unit 11 reads a packet from the transmission buffer 12 and transmits the packet to the network 50. Then, after the packet is received by the NIC reception processing unit 13, the packet is stored in the reception buffer 14.
[0092]
In (5), the NIC reception processing unit 13 refers to the reception buffer register 16 and ₂ After the access to the receiving buffer 14, the receiving buffer 14 ₂ Copy the packet to
[0093]
In (6), the OS switching processing unit 21 ₁ Changes the OS to OS30 ₁ From OS30 ₂ Switch to In (7), the reception processing unit 24 ₂ Is the reception buffer 25 ₂ From the OS 30 after switching the packet. ₂ Pass to
[0094]
(Operation Outline 3 of Embodiment 1)
Next, the operation outline 3 of the first embodiment will be described with reference to the block diagram shown in FIG. In the operation summary 3, the OS 30 is transmitted from another device (not shown) connected to the network 50. ₁ The packet addressed to the OS 30 via the NIC 10 ₂ Will be described in the case of relaying and performing data check (virus check, etc.).
[0095]
In FIG. ₂ Is being executed, and the transmission buffer 23 is stored in the transmission buffer register 15. ₂ Are stored in the reception buffer register 16 and the reception buffer 25 ₂ It is assumed that a value corresponding to is stored.
[0096]
In this state, in (1), the NIC reception processing unit 13 of the NIC 10 sends the OS 30 from another device (not shown). ₁ After the packet transmitted to the destination is received via the network 50, the packet is stored in the reception buffer 14. Here, the destination IP address of the packet is the OS 30 ₁ 192.168.1.3.
[0097]
In (2), the NIC reception processing unit 13 refers to the reception buffer register 16 and ₂ After the access to the receiving buffer 14, the receiving buffer 14 ₂ Copy the packet to
[0098]
In (3), the reception processing unit 24 ₂ Is the data check processing unit 26 ₂ Call. In (4), the data check processing unit 26 ₂ Is the reception buffer 25 ₂ Checks the packet stored in the server for the possibility of virus infection or network attack. If the check result is abnormal, an alarm is raised and a series of processing is interrupted.
[0099]
In this case, assuming that the check result is normal, in (5), the reception processing unit 24 ₂ (Or data check processing unit 26 ₂ ) Indicates the reception buffer 25 ₂ From the transmission buffer 23 ₂ To copy the packet.
[0100]
In (6), the transmission processing unit 22 ₂ Stores the value of the reception buffer register 16 in the reception buffer 25. ₂ To receive buffer 25 ₁ Rewrite to In (7), the NIC transmission processing unit 11 of the NIC 10 refers to the transmission buffer register 15 and ₂ Is copied to the transmission buffer 12.
[0101]
In (8), the NIC transmission processing unit 11 reads out the packet from the transmission buffer 12 and transmits this to the network 50. Then, after the packet is received by the NIC reception processing unit 13, the packet is stored in the reception buffer 14.
[0102]
In (9), the NIC reception processing unit 13 refers to the reception buffer register 16 and ₁ After the access to the receiving buffer 14, the receiving buffer 14 ₁ Copy the packet to
[0103]
In (10), the OS switching processing unit 21 ₂ Changes the OS to OS30 ₂ From OS30 ₁ Switch to In (11), the reception processing unit 24 ₁ Is the reception buffer 25 ₁ From the OS 30 after switching the packet. ₁ Pass to
[0104]
(Operation Outline 4 of First Embodiment)
Next, the operation outline 4 of the first embodiment will be described with reference to the block diagram shown in FIG. In the operation summary 4, the OS 30 ₁ A packet addressed to another device (not shown) connected to the network 50 from the OS 30 via the NIC 10 ₂ Will be described in the case of relaying and performing data check (virus check, etc.).
[0105]
In FIG. ₁ Is being executed, and the transmission buffer 23 is stored in the transmission buffer register 15. ₂ Are stored in the reception buffer register 16 and the reception buffer 25 ₂ It is assumed that a value corresponding to is stored.
[0106]
In this state, in (1), the NIC device driver 20 ₁ Transmission processing unit 22 ₁ Is OS30 ₁ From the transmission buffer 23 ₁ To be stored. This packet is sent to the OS 30 ₁ To another device (not shown). Therefore, the destination IP address of the packet is the IP address assigned to the other device.
[0107]
In (2), the transmission processing unit 22 ₁ Stores the value of the transmission buffer register 15 of the NIC 10 in the transmission buffer 23 ₂ From the transmission buffer 23 ₁ Rewrite to In (3), the NIC transmission processing unit 11 refers to the transmission buffer register 15 and ₁ Access to the transmission buffer 23 ₁ Is copied to the transmission buffer 12.
[0108]
In (4), the NIC transmission processing unit 11 reads the packet from the transmission buffer 12 and changes the destination IP address of this packet from the IP address of the other device to the OS 30. ₂ To the IP address (192.168.1.4). Next, the NIC transmission processing unit 11 transmits the changed packet to the network 50. Next, after the packet is received by the NIC reception processing unit 13, the packet is stored in the reception buffer 14.
[0109]
In (5), the NIC reception processing unit 13 refers to the reception buffer register 16 and ₂ After the access to the receiving buffer 14, the receiving buffer 14 ₂ Copy the packet to
[0110]
In (6), the transmission processing unit 22 ₁ Stores the value of the transmission buffer register 15 in the transmission buffer 23 ₁ From the transmission buffer 23 ₂ Rewrite to In (7), the OS switching processing unit 21 ₁ Changes the OS to OS30 ₁ From OS30 ₂ Switch to
[0111]
In (8), the reception processing unit 24 ₂ Is the data check processing unit 26 ₂ Call. In (9), the data check processing unit 26 ₂ Is the reception buffer 25 ₂ Checks the packet stored in the server for the possibility of virus infection or network attack. If the check result is abnormal, an alarm is raised and a series of processing is interrupted.
[0112]
In this case, assuming that the check result is normal, in (10), the reception processing unit 24 ₂ (Or data check processing unit 26 ₂ ) Indicates the reception buffer 25 ₂ From the transmission buffer 23 ₂ To copy the packet.
[0113]
In (11), the NIC transmission processing unit 11 of the NIC 10 refers to the transmission buffer register 15 and ₂ Is copied to the transmission buffer 12.
[0114]
In (12), the NIC transmission processing unit 11 reads a packet from the transmission buffer 12 and transmits the packet to the network 50. Then, the packet is received by another device (not shown) via the network 50.
[0115]
(Operation Example 1 of First Embodiment)
Next, an operation example 1 of the first embodiment will be described with reference to FIGS. This operation example 1 corresponds to the OS 30 shown in FIG. ₂ Is running, the OS 30 ₂ This is an operation when the NIC 10 receives a packet addressed to the destination.
[0116]
In step SA1 shown in FIG. 7, the NIC reception processing is executed. Specifically, in step SJ1 shown in FIG. 23, the NIC reception processing unit 13 of the NIC 10 shown in FIG. And repeat the same determination.
[0117]
Then, the OS 30 via the network 50 ₂ When a packet addressed to the destination arrives, the NIC reception processing unit 13 sets the determination result of step SJ1 to “Yes”. In step SJ2, the NIC reception processing unit 13 determines whether or not the reception is prohibited, and in this case, the determination result is “No”.
[0118]
In step SJ3, the NIC reception processing unit 13 stores the packet in the reception buffer 14 after receiving the packet. In step SJ4, the NIC reception processing unit 13 stores the packet in the reception buffer 14 into the reception buffer 25 corresponding to the reception buffer register 16. ₂ Copy to
[0119]
In step SJ5, the NIC reception processing unit 13 executes the running OS (in this case, the OS 30 ₂ ), The NIC 10 generates a NIC reception completion interrupt indicating completion of packet reception.
[0120]
Thereby, the OS 30 ₂ On the side, the second reception process is executed in step SA2 shown in FIG. Specifically, in step SK1 shown in FIG. ₂ Reception processing unit 24 ₂ Is the reception buffer 25 ₂ The source IP address of the packet stored in OS 30 ₁ Is determined, and in this case, the determination result is “No”.
[0121]
In step SK2, the reception processing unit 24 ₂ Indicates that the destination IP address of the packet is OS30 ₂ Is determined, and in this case, the determination result is “Yes”. In step SK6, the reception processing unit 24 ₂ Is the reception buffer 25 ₂ From OS30 ₂ Copy the packet to
[0122]
(Operation Example 2 of Embodiment 1)
Next, an operation example 2 of the first embodiment will be described with reference to FIGS. This operation example 2 corresponds to the OS 30 shown in FIG. ₂ Is running, the OS 30 ₁ This is an operation when the NIC 10 receives a packet addressed to the destination.
[0123]
In step SB1 shown in FIG. 9, the NIC reception process (see FIG. 23) is executed in the same manner as in the operation example 1. In this NIC reception processing, the NIC reception processing unit 13 of the NIC 10 shown in FIG. ₁ After the packet addressed to it is received, it is stored in the reception buffer 14. Next, the packet is sent to the reception buffer 25 by the NIC reception processing unit 13. ₂ Is stored in
[0124]
In step SB2 shown in FIG. ₂ The second side performs the second receiving process. Specifically, in step SK1 shown in FIG. ₂ Reception processing unit 24 ₂ Is the reception buffer 25 ₂ The source IP address of the packet stored in OS 30 ₁ Is determined, and in this case, the determination result is “No”.
[0125]
In step SK2, the reception processing unit 24 ₂ Indicates that the destination IP address of the packet is OS30 ₂ Is determined, and in this case, the determination result is “No”. In step SK3, the reception processing unit 24 ₂ Indicates that the destination IP address of the packet is OS30 ₁ Is determined, and in this case, the determination result is “Yes”.
[0126]
In step SK7, the reception processing unit 24 ₂ Issues a reception prohibition command to the NIC 10. Thus, in step SK8, the NIC reception interrupt is prohibited, and the NIC 10 is set to the above-described reception prohibited state. Therefore, the NIC 10 prohibits reception of a packet.
[0127]
In step SK9, the reception processing unit 24 ₂ Is the data check processing unit 26 ₂ And receive buffer 25 ₂ Check of the packet stored in the server for the possibility of virus infection or network attack. If the check result is abnormal, an alarm is raised and a series of processing is interrupted.
[0128]
In this case, assuming that the check result is normal, in step SK10, the reception processing unit 24 ₂ Is the reception buffer 25 ₂ From the transmission buffer 23 ₂ To copy the packet. In step SK11, the reception processing unit 24 ₂ Is the transmission processing unit 22 ₂ Call.
[0129]
Thereby, the second transmission process is executed in step SB3 shown in FIG. Specifically, in step SL1 shown in FIG. ₂ Is the transmission buffer 23 ₂ Destination IP address of the packet stored in the OS 30 ₁ Is determined, and in this case, the determination result is “Yes”.
[0130]
In step SL4, the transmission processing unit 22 ₂ Stores the value of the reception buffer register 16 in the reception buffer 25. ₂ To receive buffer 25 ₁ Rewrite to In step SL5, the transmission processing unit 22 ₂ Releases the NIC reception interrupt prohibition.
[0131]
In step SL6, the transmission processing unit 22 ₂ Issues a reception prohibition release command to the NIC 10. Thereby, the reception prohibition in the NIC 10 is released. In step SL7, the transmission processing unit 22 ₂ Calls the NIC transmission processing unit 11. In step SL8, the transmission processing unit 22 ₂ Transfers the transmission command to the NIC transmission processing unit 11 and generates an NIC transmission interrupt.
[0132]
Thereby, the NIC transmission process is executed in step SB4 shown in FIG. Specifically, in step SI1 shown in FIG. 22, the NIC transmission processing unit 11 ₁ Or the transmission processing unit 22 ₂ It is determined whether a transmission command has been received from.
[0133]
In this case, in step SL8 (see FIG. 25), the transmission processing unit 22 ₂ , The NIC transmission processing unit 11 sets the determination result in step SI1 to “Yes”. If the transmission command has not been received, the NIC transmission processing unit 11 sets the determination result to “No” and repeats the determination in step SI1.
[0134]
In step SI2, the NIC transmission processing unit 11 transmits the transmission buffer 23 corresponding to the transmission buffer register 15. ₂ Is copied to the transmission buffer 12. In step SI3, the NIC transmission processing unit 11 transmits the packet (the OS 30 ₁ To the network 50.
[0135]
In step SI4, the NIC transmission processing unit 11 executes the running OS (in this case, the OS 30 ₂ ), The NIC 10 generates an NIC transmission completion interrupt indicating the completion of packet transmission.
[0136]
Further, in step SL9 shown in FIG. ₂ Is the OS switching processing unit 21 ₂ Call. Thus, in step SB5 shown in FIG. ₂ Changes the OS to OS30 ₂ From OS30 ₁ A second OS switching process of switching to is performed.
[0137]
Then, after the switching, in step SB6, the NIC receiving process (see FIG. 23) is executed. In this NIC reception process, the NIC reception processing unit 13 sets the determination result of step SJ1 shown in FIG. 23 to “Yes” and then sets the determination result of step SJ2 to “No”.
[0138]
In step SJ3, the NIC reception processing unit 13 ₁ After receiving the packet addressed to it, the packet is stored in the reception buffer 14. In step SJ4, the NIC reception processing unit 13 stores the packet in the reception buffer 14 into the reception buffer 25 corresponding to the reception buffer register 16. ₁ Copy to
[0139]
In step SJ5, the NIC reception processing unit 13 executes the running OS (in this case, the OS 30 ₁ ), The NIC 10 generates a NIC reception completion interrupt indicating completion of packet reception.
[0140]
Thereby, the OS 30 ₁ On the side, the first reception process is executed in step SB7 shown in FIG. Specifically, in step SM1 shown in FIG. 26, the NIC device driver 20 ₁ Reception processing unit 24 ₁ Is the reception buffer 25 ₁ Destination IP address of the packet stored in the OS 30 ₁ Is determined, and in this case, the determination result is “Yes”.
[0141]
In step SM3, the reception processing unit 24 ₁ Issues a reception prohibition command to the NIC 10. In step SM4, the NIC reception interrupt is prohibited. In step SM5, the reception processing unit 24 ₁ Is the reception buffer 25 ₁ From OS30 ₁ Copy the packet to
[0142]
In step SM6, the reception processing unit 24 ₁ Stores the value of the reception buffer register 16 in the reception buffer 25. ₁ To receive buffer 25 ₂ Rewrite to In step SM7, the reception processing unit 24 ₁ Releases the NIC reception interrupt prohibition. In step SM8, the reception processing unit 24 ₁ Issues a reception prohibition release command to the NIC 10.
[0143]
(Operation Example 3 of First Embodiment)
Next, a third operation example of the first embodiment will be described with reference to FIGS. This operation example 3 corresponds to the OS 30 shown in FIG. ₁ Is running, the OS 30 ₂ This is an operation when the NIC 10 receives a packet addressed to the destination.
[0144]
In step SC1 shown in FIG. 11, an NIC reception process is executed. Specifically, in step SJ1 shown in FIG. 23, the NIC reception processing unit 13 of the NIC 10 shown in FIG. 10 determines whether or not a packet has arrived from the network 50. In this case, the determination result is “No”. And repeat the same determination.
[0145]
Then, the OS 30 via the network 50 ₂ When the packet addressed to the NIC arrives, the NIC reception processing unit 13 sets the determination result in step SJ1 to “Yes” and then sets the determination result in step SJ2 to “No”.
[0146]
In step SJ3, the NIC reception processing unit 13 stores the packet in the reception buffer 14 after receiving the packet. In step SJ4, the NIC reception processing unit 13 stores the packet in the reception buffer 14 into the reception buffer 25 corresponding to the reception buffer register 16. ₂ Copy to
[0147]
In step SJ5, the NIC reception processing unit 13 executes the running OS (in this case, the OS 30 ₁ ), The NIC 10 generates a NIC reception completion interrupt indicating completion of packet reception.
[0148]
As a result, the first reception processing is executed in step SC2 shown in FIG. Specifically, in step SM1 shown in FIG. 26, the NIC device driver 20 ₁ Reception processing unit 24 ₁ Is the reception buffer 25 ₁ Destination IP address of the packet stored in the OS 30 ₁ Is determined, and in this case, since no packet is stored, the determination result is “No”.
[0149]
In step SM2, the reception processing unit 24 ₁ Is the OS switching processing unit 21 ₁ Call. Thus, in step SC3 shown in FIG. ₁ Changes the OS to OS30 ₁ From OS30 ₂ The first OS switching process of switching to the first OS is executed.
[0150]
In step SC4, a second reception process is performed. Specifically, in step SK1 shown in FIG. ₂ Reception processing unit 24 ₂ Is the reception buffer 25 ₂ The source IP address of the packet stored in OS 30 ₁ Is determined, and in this case, the determination result is “No”.
[0151]
In step SK2, the reception processing unit 24 ₂ Indicates that the destination IP address of the packet is OS30 ₂ Is determined, and in this case, the determination result is “Yes”. In step SK6, the reception processing unit 24 ₂ Is the reception buffer 25 ₂ From OS30 ₂ Copy the packet to
[0152]
(Operation Example 4 of First Embodiment)
Next, an operation example 4 of the first embodiment will be described with reference to FIGS. This operation example 4 corresponds to the OS 30 shown in FIG. ₁ Is running, the OS 30 ₁ This is an operation when the NIC 10 receives a packet addressed to the destination.
[0153]
In step SD1 shown in FIG. 13, the NIC reception processing is executed. Specifically, in step SJ1 shown in FIG. 23, the NIC reception processing unit 13 of the NIC 10 shown in FIG. 12 determines whether or not a packet has arrived from the network 50. In this case, the determination result is “No”. And repeat the same determination.
[0154]
Then, the OS 30 via the network 50 ₁ When the packet addressed to the NIC arrives, the NIC reception processing unit 13 sets the determination result in step SJ1 to “Yes” and then sets the determination result in step SJ2 to “No”.
[0155]
In step SJ3, the NIC reception processing unit 13 stores the packet in the reception buffer 14 after receiving the packet. In step SJ4, the NIC reception processing unit 13 stores the packet in the reception buffer 14 into the reception buffer 25 corresponding to the reception buffer register 16. ₂ Copy to
[0156]
In step SJ5, the NIC reception processing unit 13 executes the running OS (in this case, the OS 30 ₁ ), The NIC 10 generates a NIC reception completion interrupt indicating completion of packet reception.
[0157]
As a result, the first reception processing is executed in step SD2 shown in FIG. Specifically, in step SM1 shown in FIG. 26, the NIC device driver 20 ₁ Reception processing unit 24 ₁ Is the reception buffer 25 ₁ Destination IP address of the packet stored in the OS 30 ₁ Is determined, and in this case, since no packet is stored, the determination result is “No”.
[0158]
In step SM2, the reception processing unit 24 ₁ Is the OS switching processing unit 21 ₁ Call. Thus, in step SD3 shown in FIG. ₁ Changes the OS to OS30 ₁ From OS30 ₂ The first OS switching process of switching to the first OS is executed.
[0159]
In step SD4, a second reception process is executed. Specifically, in step SK1 shown in FIG. ₂ Reception processing unit 24 ₂ Is the reception buffer 25 ₂ The source IP address of the packet stored in OS 30 ₁ Is determined, and in this case, the determination result is “No”.
[0160]
In step SK2, the reception processing unit 24 ₂ Indicates that the destination IP address of the packet is OS30 ₂ Is determined, and in this case, the determination result is “No”. In step SK3, the reception processing unit 24 ₂ Indicates that the destination IP address of the packet is OS30 ₁ Is determined, and in this case, the determination result is “Yes”.
[0161]
In step SK7, the reception processing unit 24 ₂ Issues a reception prohibition command to the NIC 10. Thus, in step SK8, the NIC reception interrupt is prohibited, and the NIC 10 is set to the above-described reception prohibited state. Therefore, the NIC 10 prohibits reception of a packet.
[0162]
In step SK9, the reception processing unit 24 ₂ Is the data check processing unit 26 ₂ And receive buffer 25 ₂ Check of the packet stored in the server for the possibility of virus infection or network attack. If the check result is abnormal, an alarm is raised and a series of processing is interrupted.
[0163]
In this case, assuming that the check result is normal, in step SK10, the reception processing unit 24 ₂ Is the reception buffer 25 ₂ From the transmission buffer 23 ₂ To copy the packet. In step SK11, the reception processing unit 24 ₂ Is the transmission processing unit 22 ₂ Call.
[0164]
Thereby, the second transmission process is executed in step SD5 shown in FIG. Specifically, in step SL1 shown in FIG. ₂ Is the transmission buffer 23 ₂ Destination IP address of the packet stored in the OS 30 ₁ Is determined, and in this case, the determination result is “Yes”.
[0165]
In step SL4, the transmission processing unit 22 ₂ Stores the value of the reception buffer register 16 in the reception buffer 25. ₂ To receive buffer 25 ₁ Rewrite to In step SL5, the transmission processing unit 22 ₂ Releases the NIC reception interrupt prohibition.
[0166]
In step SL6, the transmission processing unit 22 ₂ Issues a reception prohibition release command to the NIC 10. Thereby, the reception prohibition in the NIC 10 is released. In step SL7, the transmission processing unit 22 ₂ Calls the NIC transmission processing unit 11. In step SL8, the transmission processing unit 22 ₂ Transfers the transmission command to the NIC transmission processing unit 11 and generates an NIC transmission interrupt.
[0167]
Thus, in step SD6 shown in FIG. 13, the NIC transmission processing is executed. Specifically, in step SI1 shown in FIG. 22, the NIC transmission processing unit 11 ₁ Or the transmission processing unit 22 ₂ It is determined whether a transmission command has been received from.
[0168]
In this case, in step SL8 (see FIG. 25), the transmission processing unit 22 ₂ , The NIC transmission processing unit 11 sets the determination result in step SI1 to “Yes”.
[0169]
In step SI2, the NIC transmission processing unit 11 transmits the transmission buffer 23 corresponding to the transmission buffer register 15. ₂ Is copied to the transmission buffer 12. In step SI3, the NIC transmission processing unit 11 transmits the packet (the OS 30 ₁ To the network 50.
[0170]
In step SI4, the NIC transmission processing unit 11 executes the running OS (in this case, the OS 30 ₂ ), The NIC 10 generates an NIC transmission completion interrupt indicating the completion of packet transmission.
[0171]
Further, in step SL9 shown in FIG. ₂ Is the OS switching processing unit 21 ₂ Call. Thus, in step SD7 shown in FIG. ₂ Changes the OS to OS30 ₂ From OS30 ₁ A second OS switching process of switching to is performed.
[0172]
After the switching, in step SD8, the NIC receiving process (see FIG. 23) is executed. In this NIC reception process, the NIC reception processing unit 13 sets the determination result of step SJ1 shown in FIG. 23 to “Yes” and then sets the determination result of step SJ2 to “No”.
[0173]
In step SJ3, the NIC reception processing unit 13 stores the packet in the reception buffer 14 after receiving the packet. In step SJ4, the NIC reception processing unit 13 stores the packet in the reception buffer 14 into the reception buffer 25 corresponding to the reception buffer register 16. ₁ Copy to
[0174]
In step SJ5, the NIC reception processing unit 13 executes the running OS (in this case, the OS 30 ₁ ), The NIC 10 generates a NIC reception completion interrupt indicating completion of packet reception.
[0175]
Thereby, the first reception processing is executed in step SD9. Specifically, in step SM1 shown in FIG. 26, the NIC device driver 20 ₁ Reception processing unit 24 ₁ Is the reception buffer 25 ₁ Destination IP address of the packet stored in the OS 30 ₁ Is determined, and in this case, the determination result is “Yes”.
[0176]
In step SM3, the reception processing unit 24 ₁ Issues a reception prohibition command to the NIC 10. In step SM4, the NIC reception interrupt is prohibited. In step SM5, the reception processing unit 24 ₁ Is the reception buffer 25 ₁ From OS30 ₁ Copy the packet to
[0177]
In step SM6, the reception processing unit 24 ₁ Stores the value of the reception buffer register 16 in the reception buffer 25. ₁ To receive buffer 25 ₂ Rewrite to In step SM7, the reception processing unit 24 ₁ Releases the NIC interrupt prohibition. In step SM8, the reception processing unit 24 ₁ Issues a reception prohibition release command to the NIC 10.
[0178]
(Operation Example 5 of First Embodiment)
Next, an operation example 5 of the first embodiment will be described with reference to FIG. 14 and FIG. This operation example 5 corresponds to the OS 30 shown in FIG. ₁ From OS30 ₂ This is an operation when a packet is transmitted to the server.
[0179]
In step SE1 shown in FIG. 15, a first transmission process is performed. Specifically, in step SN1 shown in FIG. ₁ Is OS30 ₁ The destination IP address of the packet to be transmitted passed from the OS 30 ₂ After replacing with the IP address of the ₁ To be stored.
[0180]
In step SN2, the transmission processing unit 22 ₁ Stores the value of the transmission buffer register 15 in the transmission buffer 23 ₂ From the transmission buffer 23 ₁ Rewrite to In step SN3, the transmission processing unit 22 ₁ Calls the NIC transmission processing unit 11 and issues a transmission command. In step SN4, the transmission processing unit 22 ₁ Determines whether a NIC transmission completion interrupt has occurred in the NIC 10, and in this case, the determination result is “No”.
[0181]
Further, when the NIC transmission processing unit 11 is called in step SN3, the NIC transmission processing is executed in step SE2 shown in FIG. Specifically, in step SI1 shown in FIG. 23, the NIC transmission processing unit 11 ₁ Or the transmission processing unit 22 ₂ It is determined whether or not a transmission command has been received from, and in this case, the determination result is “Yes”.
[0182]
In step SI2, the NIC transmission processing unit 11 transmits the transmission buffer 23 corresponding to the transmission buffer register 15. ₁ Is copied to the transmission buffer 12. In step SI3, the NIC transmission processing unit 11 transmits the packet (the OS 30 ₂ To the network 50.
[0183]
In step SI4, the NIC transmission processing unit 11 executes the running OS (in this case, the OS 30 ₁ ), The NIC 10 generates an NIC transmission completion interrupt indicating the completion of packet transmission.
[0184]
Thereby, the transmission processing unit 22 ₁ Makes the determination result of step SN4 shown in FIG. 27 "Yes". In step SN5, the transmission processing unit 22 ₁ Stores the value of the transmission buffer register 15 in the transmission buffer 23 ₁ From the transmission buffer 23 ₂ Rewrite to In step SN6, the transmission processing unit 22 ₁ Is the OS switching processing unit 21 ₁ Call.
[0185]
As a result, in step SE3 shown in FIG. ₁ Changes the OS to OS30 ₁ From OS30 ₂ The first OS switching process of switching to the first OS is executed.
[0186]
In step SE4, NIC reception processing (see FIG. 23) is executed. In this NIC reception process, the NIC reception processing unit 13 of the NIC 10 shown in FIG. ₂ After the packet addressed to it is received, it is stored in the reception buffer 14. Next, the packet is sent to the reception buffer 25 by the NIC reception processing unit 13. ₂ Is stored in
[0187]
In step SE5, the OS 30 ₂ The second side performs the second receiving process. Specifically, in step SK1 shown in FIG. ₂ Reception processing unit 24 ₂ Is the reception buffer 25 ₂ The source IP address of the packet stored in OS 30 ₁ Is determined, and in this case, the determination result is “Yes”.
[0188]
In step SK5, the reception processing unit 24 ₂ Is the data check processing unit 26 ₂ And receive buffer 25 ₂ A data check is performed on the packet stored in the. If the check result is abnormal, an alarm is raised and a series of processing is interrupted.
[0189]
In this case, it is assumed that the check result is normal, and in step SK2, the reception processing unit 24 ₂ Indicates that the destination IP address of the packet is OS30 ₂ Is determined, and in this case, the determination result is “Yes”. In step SK6, the reception processing unit 24 ₂ Is the reception buffer 25 ₂ From OS30 ₂ Copy the packet to
[0190]
(Operation Example 6 of First Embodiment)
Next, an operation example 6 of the first embodiment will be described with reference to FIGS. This operation example 6 corresponds to the OS 30 shown in FIG. ₁ This is an operation when a packet is transmitted from to the other device connected to the network 50.
[0191]
In step SF1 shown in FIG. 17, a first transmission process is performed. Specifically, in step SN1 shown in FIG. ₁ Is OS30 ₁ The destination IP address (in this case, the IP address of the other device) of the packet to be transmitted passed from the ₂ After replacing with the IP address of the ₁ To be stored. The IP address of the other device before replacement is stored in the data area of the packet.
[0192]
In step SN2, the transmission processing unit 22 ₁ Stores the value of the transmission buffer register 15 in the transmission buffer 23 ₂ From the transmission buffer 23 ₁ Rewrite to In step SN3, the transmission processing unit 22 ₁ Calls the NIC transmission processing unit 11 and issues a transmission command. In step SN4, the transmission processing unit 22 ₁ Determines whether a NIC transmission completion interrupt has occurred in the NIC 10, and in this case, the determination result is “No”.
[0193]
Further, when the NIC transmission processing unit 11 is called in step SN3, the NIC transmission processing is executed in step SF2 shown in FIG. Specifically, in step SI1 shown in FIG. 22, the NIC transmission processing unit 11 ₁ Or the transmission processing unit 22 ₂ It is determined whether or not a transmission command has been received from, and in this case, the determination result is “Yes”.
[0194]
In step SI2, the NIC transmission processing unit 11 transmits the transmission buffer 23 corresponding to the transmission buffer register 15. ₁ Is copied to the transmission buffer 12. In step SI3, the NIC transmission processing unit 11 transmits the packet (the OS 30 ₂ To the network 50.
[0195]
In step SI4, the NIC transmission processing unit 11 executes the running OS (in this case, the OS 30 ₁ ), The NIC 10 generates an NIC transmission completion interrupt indicating the completion of packet transmission.
[0196]
Thereby, the transmission processing unit 22 ₁ Makes the determination result of step SN4 shown in FIG. 27 "Yes". In step SN5, the transmission processing unit 22 ₁ Stores the value of the transmission buffer register 15 in the transmission buffer 23 ₁ From the transmission buffer 23 ₂ Rewrite to In step SN6, the transmission processing unit 22 ₁ Is the OS switching processing unit 21 ₁ Call.
[0197]
Accordingly, in step SF3 shown in FIG. ₁ Changes the OS to OS30 ₁ From OS30 ₂ The first OS switching process of switching to the first OS is executed.
[0198]
In step SF4, NIC reception processing (see FIG. 23) is executed. In this NIC reception processing, the NIC reception processing unit 13 of the NIC 10 shown in FIG. ₂ After the packet addressed to it is received, it is stored in the reception buffer 14. Next, the NIC reception processing unit 13 replaces the transmission destination IP address of the packet with the IP address of another device, and then stores the packet in the reception buffer 25. ₂ To be stored.
[0199]
In step SF5, the OS 30 ₂ The second side performs the second receiving process. Specifically, in step SK1 shown in FIG. ₂ Reception processing unit 24 ₂ Is the reception buffer 25 ₂ The source IP address of the packet stored in OS 30 ₁ Is determined, and in this case, the determination result is “Yes”.
[0200]
In step SK5, the reception processing unit 24 ₂ Is the data check processing unit 26 ₂ And receive buffer 25 ₂ A data check is performed on the packet stored in the. If the check result is abnormal, an alarm is raised and a series of processing is interrupted.
[0201]
In this case, it is assumed that the check result is normal, and in step SK2, the reception processing unit 24 ₂ Indicates that the destination IP address of the packet is OS30 ₂ Is determined, and in this case, the determination result is “No”. In step SK3, the reception processing unit 24 ₂ Indicates that the destination IP address of the packet is OS30 ₁ Is determined, and in this case, the determination result is “No”. In step SK4, the reception processing unit 24 ₂ Determines whether the destination IP address of the packet corresponds to another device, and in this case, the determination result is “Yes”.
[0202]
In step SK12, the reception processing unit 24 ₂ Is the reception buffer 25 ₂ From the transmission buffer 23 ₂ Copy the packet to In step SK13, the reception processing unit 24 ₂ Is the transmission processing unit 22 ₂ Call.
[0203]
Thus, the second transmission process is performed in step SF6 shown in FIG. Specifically, in step SL1 shown in FIG. ₂ Is the transmission buffer 23 ₂ Destination IP address of the packet stored in the OS 30 ₁ Is determined, and in this case, the determination result is “No”.
[0204]
In step SL2, the transmission processing unit 22 ₂ Calls the NIC transmission processing unit 11 of the NIC 10. In step SL3, the transmission processing unit 22 ₂ Transfers the transmission command to the NIC transmission processing unit 11 and generates an NIC transmission interrupt.
[0205]
Thus, the NIC transmission process is executed in step SF7 shown in FIG. Specifically, in step SI1 shown in FIG. 22, the NIC transmission processing unit 11 ₂ , The judgment result is “Yes”.
[0206]
In step SI2, the NIC transmission processing unit 11 transmits the transmission buffer 23 corresponding to the transmission buffer register 15. ₂ Is copied to the transmission buffer 12. In step SI3, the NIC transmission processing unit 11 transmits the packet (addressed to another device) in the transmission buffer 12 to the network 50. Thereby, the packet is received by another device via the network 50.
[0207]
In step SI4, the NIC transmission processing unit 11 executes the running OS (in this case, the OS 30 ₂ ), The NIC 10 generates an NIC transmission completion interrupt indicating the completion of packet transmission.
[0208]
(Operation Example 7 of First Embodiment)
Next, an operation example 7 of the first embodiment will be described with reference to FIGS. This operation example 7 corresponds to the OS 30 shown in FIG. ₂ This is an operation when a packet is transmitted from to the other device connected to the network 50.
[0209]
In step SG1 shown in FIG. 19, a second transmission process is performed. Specifically, in step SL1 shown in FIG. ₂ Is OS30 ₂ Destination IP address of the packet passed from OS 30 ₁ It is determined whether it corresponds to. In this case, it is assumed that the destination IP address of the packet corresponds to another device, and the transmission processing unit 22 ₂ Makes the determination result of step SL1 "No".
[0210]
In step SL2, the transmission processing unit 22 ₂ Calls the NIC transmission processing unit 11. In step SL3, the transmission processing unit 22 ₂ Transfers the transmission command to the NIC transmission processing unit 11 and generates an NIC transmission interrupt.
[0211]
Thus, the NIC transmission processing is executed in step SG2 shown in FIG. Specifically, in step SI1 shown in FIG. 22, the NIC transmission processing unit 11 ₂ , The judgment result is “Yes”.
[0212]
In step SI2, the NIC transmission processing unit 11 transmits the transmission buffer 23 corresponding to the transmission buffer register 15. ₂ Is copied to the transmission buffer 12. In step SI3, the NIC transmission processing unit 11 transmits the packet (addressed to another device) in the transmission buffer 12 to the network 50. Thus, the packet is received by another device via the network 50.
[0213]
In step SI4, the NIC transmission processing unit 11 executes the running OS (in this case, the OS 30 ₂ ), The NIC 10 generates an NIC transmission completion interrupt indicating the completion of packet transmission.
[0214]
(Operation Example 8 of First Embodiment)
Next, an operation example 8 of the first embodiment will be described with reference to FIGS. This operation example 8 corresponds to the OS 30 shown in FIG. ₂ From OS30 ₁ This is an operation when a packet is transmitted to the server.
[0215]
In step SH1 shown in FIG. ₂ Is OS30 ₂ OS 30 passed by ₁ Data check such as virus check is performed on the packet addressed to. If the check result is normal, a second transmission process is executed in step SH2.
[0216]
Specifically, in step SL1 shown in FIG. ₂ Is OS30 ₂ Destination IP address of the packet passed from OS 30 ₁ Is determined, and in this case, the determination result is “Yes”.
[0219]
In step SL4, the transmission processing unit 22 ₂ Stores the value of the reception buffer register 16 in the reception buffer 25. ₂ To receive buffer 25 ₁ Rewrite to In step SL5, the transmission processing unit 22 ₂ Releases the NIC reception interrupt prohibition.
[0218]
In step SL6, the transmission processing unit 22 ₂ Issues a reception prohibition release command to the NIC 10. Thereby, the reception prohibition in the NIC 10 is released. In step SL7, the transmission processing unit 22 ₂ Calls the NIC transmission processing unit 11. In step SL8, the transmission processing unit 22 ₂ Transfers the transmission command to the NIC transmission processing unit 11 and generates an NIC transmission interrupt.
[0219]
Thereby, the NIC transmission process is executed in step SH3 shown in FIG. Specifically, in step SI1 shown in FIG. 22, the NIC transmission processing unit 11 ₂ , The judgment result is “Yes”.
[0220]
In step SI2, the NIC transmission processing unit 11 transmits the transmission buffer 23 corresponding to the transmission buffer register 15. ₂ Is copied to the transmission buffer 12. In step SI3, the NIC transmission processing unit 11 transmits the packet (the OS 30 ₁ To the network 50.
[0221]
In step SI4, the NIC transmission processing unit 11 executes the running OS (in this case, the OS 30 ₂ ), The NIC 10 generates an NIC transmission completion interrupt indicating the completion of packet transmission.
[0222]
Further, in step SL9 shown in FIG. ₂ Is the OS switching processing unit 21 ₂ Call. Thus, in step SH4 shown in FIG. ₂ Changes the OS to OS30 ₂ From OS30 ₁ A second OS switching process of switching to is performed.
[0223]
Then, after the switching, in step SH5, the NIC receiving process (see FIG. 23) is executed. In this NIC reception process, the NIC reception processing unit 13 sets the determination result of step SJ1 shown in FIG. 23 to “Yes” and then sets the determination result of step SJ2 to “No”.
[0224]
In step SJ3, the NIC reception processing unit 13 ₁ After receiving the packet addressed to it, the packet is stored in the reception buffer 14. In step SJ4, the NIC reception processing unit 13 stores the packet in the reception buffer 14 into the reception buffer 25 corresponding to the reception buffer register 16. ₁ Copy to
[0225]
In step SJ5, the NIC reception processing unit 13 executes the running OS (in this case, the OS 30 ₁ ), The NIC 10 generates a NIC reception completion interrupt indicating completion of packet reception.
[0226]
Thereby, the OS 30 ₁ On the side, the first reception process is executed in step SH6 shown in FIG. Specifically, in step SM1 shown in FIG. 26, the NIC device driver 20 ₁ Reception processing unit 24 ₁ Is the reception buffer 25 ₁ Destination IP address of the packet stored in the OS 30 ₁ Is determined, and in this case, the determination result is “Yes”.
[0227]
In step SM3, the reception processing unit 24 ₁ Issues a reception prohibition command to the NIC 10. In step SM4, the NIC reception interrupt is prohibited. In step SM5, the reception processing unit 24 ₁ Is the reception buffer 25 ₁ From OS30 ₁ Copy the packet to
[0228]
In step SM6, the reception processing unit 24 ₁ Stores the value of the reception buffer register 16 in the reception buffer 25. ₁ To receive buffer 25 ₂ Rewrite to In step SM7, the reception processing unit 24 ₁ Releases the NIC interrupt prohibition. In step SM8, the reception processing unit 24 ₁ Issues a reception prohibition release command to the NIC 10.
[0229]
As described above, according to the first embodiment, the normal connection destination in the transmission buffer 12 and the transmission buffer register 15 (storage unit) of the NIC 10 for temporarily storing data such as a packet to be communicated is changed to the OS 30. ₂ And the communication target data is OS30 ₁ When the connection destination of the transmission buffer 12 and the transmission buffer register 15 (storage means) for temporarily storing data is ₂ OS30 ₁ , So that the OS 30 ₁ And OS30 ₂ Can be simultaneously prevented from being attacked from the outside, and the security and reliability of the multi-operating system can be improved.
[0230]
According to the first embodiment, the normality of the packet (data) to be communicated is checked by the data check processing unit 26. ₂ The communication processing is continued only when the operation is normal, so that the security and reliability of the multi-operating system can be further improved.
[0231]
(Embodiment 2)
In the first embodiment, the OS 30 is connected via the NIC 10 shown in FIG. ₁ Communication (transmission and reception of packets) by OS 30 ₂ And the data check processing unit 26 ₂ Although the configuration example in which data check is performed has been described above, a configuration in which relaying and data check are not performed on a packet whose reliability has been confirmed may be adopted. Hereinafter, this configuration example will be described as a second embodiment.
[0232]
Here, in the second embodiment, the second reception processing shown in FIG. 34 is executed instead of FIG. 24, and the first transmission processing shown in FIG. 35 is executed instead of FIG.
[0233]
(Operation Example 1 of Second Embodiment)
First, an operation example 1 of the second embodiment will be described with reference to FIGS. This operation example 1 corresponds to the OS 30 shown in FIG. ₂ Is running, the OS 30 ₁ This is an operation performed when the NIC 10 receives a packet addressed to the destination (a packet having high reliability).
[0234]
In step SO1 shown in FIG. 29, NIC reception processing (see FIG. 23) is executed. In this NIC reception processing, the NIC reception processing unit 13 of the NIC 10 shown in FIG. ₁ After the packet addressed to it is received, it is stored in the reception buffer 14. Next, after the packet is received by the NIC reception processing unit 13, the reception buffer 25 ₂ Is stored in The packet has been transmitted from another device connected to the network 50.
[0235]
In step SO2 shown in FIG. ₂ The second side performs the second receiving process. Specifically, in step SR1 shown in FIG. 34, the NIC device driver 20 ₂ Reception processing unit 24 ₂ Is the reception buffer 25 ₂ The source IP address of the packet stored in OS 30 ₁ Is determined, and in this case, the determination result is “No”.
[0236]
In step SR2, the reception processing unit 24 ₂ Indicates that the destination IP address of the packet is OS30 ₂ Is determined, and in this case, the determination result is “No”. In step SR3, the reception processing unit 24 ₂ Indicates that the destination IP address of the packet is OS30 ₁ Is determined, and in this case, the determination result is “Yes”.
[0237]
In step SR14, the reception processing unit 24 ₂ Determines whether the source IP address of the packet is a previously registered IP address with high reliability, and in this case, the determination result is “Yes”.
[0238]
In step SR15, the reception processing unit 24 ₂ The reception buffer 25 does not perform a data check and does not pass through the NIC 10. ₂ To receive buffer 25 ₁ Copy the packet to In this case, since the reliability of the packet has been confirmed, the packet may be copied via a shared memory (not shown).
[0239]
In step SR16, the reception processing unit 24 ₂ Is the OS switching processing unit 21 ₂ Call. Thus, in step SO3 shown in FIG. ₂ Changes the OS to OS30 ₂ From OS30 ₁ A second OS switching process of switching to is performed. After the switching, the reception processing unit 24 ₂ Is the NIC device driver 20 ₁ Reception processing unit 24 ₁ Call.
[0240]
In step SO4 shown in FIG. ₁ Is the reception buffer 25 ₁ From OS30 ₁ Copy the packet to OS30 ₁ Executes a first reception process for receiving a packet.
[0241]
In FIG. 34, steps SR1 to SR13 correspond to steps SK1 to SK13 shown in FIG.
[0242]
(Operation Example 2 of Embodiment 2)
Next, an operation example 2 of the second embodiment will be described with reference to FIGS. This operation example 2 corresponds to the OS 30 shown in FIG. ₁ Is running, the OS 30 ₁ This is an operation when the NIC 10 receives a packet addressed to the destination (a packet with high reliability).
[0243]
In step SP1 shown in FIG. 31, the NIC reception processing is executed. Specifically, in step SJ1 shown in FIG. 23, the NIC reception processing unit 13 of the NIC 10 shown in FIG. And repeat the same determination.
[0244]
Then, the OS 30 is transmitted from another device via the network 50. ₁ When the packet addressed to the NIC arrives, the NIC reception processing unit 13 sets the determination result in step SJ1 to “Yes” and then sets the determination result in step SJ2 to “No”.
[0245]
In step SJ3, the NIC reception processing unit 13 stores the packet in the reception buffer 14 after receiving the packet. In step SJ4, the NIC reception processing unit 13 stores the packet in the reception buffer 14 into the reception buffer 25 corresponding to the reception buffer register 16. ₂ Copy to
[0246]
In step SJ5, the NIC reception processing unit 13 executes the running OS (in this case, the OS 30 ₁ ), The NIC 10 generates a NIC reception completion interrupt indicating completion of packet reception.
[0247]
As a result, the first reception processing is executed in step SP2 shown in FIG. Specifically, in step SM1 shown in FIG. 26, the NIC device driver 20 ₁ Reception processing unit 24 ₁ Is the reception buffer 25 ₁ Destination IP address of the packet stored in the OS 30 ₁ Is determined, and in this case, since no packet is stored, the determination result is “No”.
[0248]
In step SM2, the reception processing unit 24 ₁ Is the OS switching processing unit 21 ₁ Call. Thereby, in step SP3 shown in FIG. 31, the OS switching processing unit 21 ₁ Changes the OS to OS30 ₁ From OS30 ₂ The first OS switching process of switching to the first OS is executed.
[0249]
In step SP4, a second reception process is performed. Specifically, in step SR1 shown in FIG. 34, the NIC device driver 20 ₂ Reception processing unit 24 ₂ Is the reception buffer 25 ₂ The source IP address of the packet stored in OS 30 ₁ Is determined, and in this case, the determination result is “No”.
[0250]
In step SR2, the reception processing unit 24 ₂ Indicates that the destination IP address of the packet is OS30 ₂ Is determined, and the result of the determination is “No”. In step SR3, the reception processing unit 24 ₂ Indicates that the destination IP address of the packet is OS30 ₁ Is determined, and in this case, the determination result is “Yes”.
[0251]
In step SR14, the reception processing unit 24 ₂ Determines whether the source IP address of the packet is a previously registered IP address with high reliability, and in this case, the determination result is “Yes”.
[0252]
In step SR15, the reception processing unit 24 ₂ The reception buffer 25 does not perform a data check and does not pass through the NIC 10. ₂ To receive buffer 25 ₁ Copy the packet to In this case, since the reliability of the packet has been confirmed, the packet may be copied via a shared memory (not shown).
[0253]
In step SR16, the reception processing unit 24 ₂ Is the OS switching processing unit 21 ₂ Call. Thus, in step SP5 shown in FIG. ₂ Changes the OS to OS30 ₂ From OS30 ₁ A second OS switching process of switching to is performed. After the switching, the reception processing unit 24 ₂ Is the NIC device driver 20 ₁ Reception processing unit 24 ₁ Call.
[0254]
In step SP6, the reception processing unit 24 ₁ Is the reception buffer 25 ₁ From OS30 ₁ Copy the packet to OS30 ₁ Executes a first reception process for receiving a packet.
[0255]
(Operation Example 3 of Second Embodiment)
Next, an operation example 3 of the second embodiment will be described with reference to FIG. 32 and FIG. This operation example 3 corresponds to the OS 30 shown in FIG. ₁ This is an operation in the case where a packet (however, a packet with high reliability) is transmitted from to the other device connected to the network 50.
[0256]
In step SQ1 shown in FIG. ₁ Is OS30 ₁ If the reliability of the packet to be transmitted passed from is higher than the reliability registered in advance, the first transmission process shown in FIG. 35 is executed. When the reliability of the packet is lower than the reliability registered in advance, the first transmission processing shown in FIG. 27 is executed.
[0257]
Specifically, in step SS1 shown in FIG. ₁ Stores the value of the transmission buffer register 15 in the transmission buffer 23 ₂ From the transmission buffer 23 ₁ Rewrite to In step SS2, the transmission processing unit 22 ₁ Calls the NIC transmission processing unit 11 and issues a transmission command. In step SS3, the transmission processing unit 22 ₁ Determines whether a NIC transmission completion interrupt has occurred in the NIC 10, and in this case, the determination result is “No”.
[0258]
Further, when the NIC transmission processing unit 11 is called in step SS2, the NIC transmission processing is executed in step SQ2 shown in FIG. Specifically, in step SI1 shown in FIG. 22, the NIC transmission processing unit 11 ₁ , The judgment result is “Yes”.
[0259]
In step SI2, the NIC transmission processing unit 11 transmits the transmission buffer 23 corresponding to the transmission buffer register 15. ₁ Is copied to the transmission buffer 12. In step SI3, the NIC transmission processing unit 11 transmits the packet (addressed to another device) in the transmission buffer 12 to the network 50. Thus, the packet is received by another device (not shown) via the network 50.
[0260]
In step SI4, the NIC transmission processing unit 11 executes the running OS (in this case, the OS 30 ₁ ), The NIC 10 generates an NIC transmission completion interrupt indicating the completion of packet transmission.
[0261]
Thereby, the transmission processing unit 22 ₁ Makes the determination result of step SS3 shown in FIG. 35 "Yes". In step SS4, the transmission processing unit 22 ₁ Stores the value of the transmission buffer register 15 in the transmission buffer 23 ₁ From the transmission buffer 23 ₂ Rewrite to
[0262]
As described above, according to the second embodiment, when the reliability of data is equal to or more than the value registered in advance, the OS 30 ₂ Without relaying the data to OS 30 ₁ The communication process can be sped up because the data is passed directly to the server.
[0263]
(Embodiment 3)
In the first embodiment, the values of the transmission buffer register 15 and the reception buffer register 16 of the NIC 10 shown in FIG. ₁ And NIC device driver 20 ₂ Although the configuration example in which the rewriting can be performed by both is described, the rewriting authority is set to the NIC device driver 20 for the purpose of further enhancing the security. ₂ It may be configured to be held only by the user. Hereinafter, this configuration example will be described as a third embodiment.
[0264]
FIG. 36 is a block diagram showing a configuration of the third embodiment according to the present invention. In this figure, parts corresponding to respective parts in FIG. 1 are denoted by the same reference numerals. In the figure, the NIC device driver 20 ₂ Transmission buffer register rewriting processing unit 27 ₂ And reception buffer register rewriting processing unit 28 ₂ Is newly provided.
[0265]
Here, in the third embodiment, the NIC device driver 20 ₂ Has the authority to rewrite the values of the transmission buffer register 15 and the reception buffer register 16 of the NIC 10. On the other hand, the NIC device driver 20 ₁ Does not have the authority to rewrite the values of the transmission buffer register 15 and the reception buffer register 16 of the NIC 10. Therefore, the NIC device driver 20 ₁ When the rewriting request occurs, the NIC device driver 20 ₂ Ask for rewriting.
[0266]
Transmission buffer register rewrite processing unit 27 ₂ Is the NIC device driver 20 ₁ In response to a rewrite request from the server, the value of the transmission buffer register 15 is rewritten as a proxy. Also, the receiving buffer register rewriting processing unit 28 ₂ Is the NIC device driver 20 ₁ In response to a rewrite request from the server, the value of the reception buffer register 16 is rewritten as a proxy.
[0267]
Next, operation outlines 1 to 4 of the third embodiment will be described with reference to FIGS.
[0268]
(Operation outline 1 of Embodiment 3)
First, the operation outline 1 of the third embodiment will be described with reference to the block diagram shown in FIG. In the operation overview 1, the OS 30 ₂ From OS30 ₁ The case where communication is performed to the server will be described.
[0269]
In FIG. ₂ Is being executed, and the transmission buffer 23 is stored in the transmission buffer register 15. ₂ Are stored in the reception buffer register 16 and the reception buffer 25 ₂ It is assumed that a value corresponding to is stored.
[0270]
In this state, in (1), the NIC device driver 20 ₂ Transmission processing unit 22 ₂ Is OS30 ₂ From the transmission buffer 23 ₂ To be stored. This packet is sent to the OS 30 ₂ From OS30 ₁ Sent to Therefore, the destination IP address of the packet is ₁ 192.168.1.3.
[0271]
In (2), the transmission processing unit 22 ₂ Stores the value of the reception buffer register 16 of the NIC 10 in the reception buffer 25. ₂ To receive buffer 25 ₁ Rewrite to In (3), the NIC transmission processing unit 11 refers to the transmission buffer register 15 and ₂ Access to the transmission buffer 23 ₂ Is copied to the transmission buffer 12.
[0272]
In (4), the NIC transmission processing unit 11 reads a packet from the transmission buffer 12 and transmits the packet to the network 50. Then, after the packet is received by the NIC reception processing unit 13, the packet is stored in the reception buffer 14.
[0273]
In (5), the NIC reception processing unit 13 refers to the reception buffer register 16 and ₁ After the access to the receiving buffer 14, the receiving buffer 14 ₁ Copy the packet to
[0274]
In (6), the OS switching processing unit 21 ₂ Changes the OS to OS30 ₂ From OS30 ₁ Switch to In (7), the reception processing unit 24 ₁ Is the reception buffer 25 ₁ From the OS 30 after switching the packet. ₁ Pass to
[0275]
In (8), the OS switching processing unit 21 ₁ Changes the OS to OS30 ₁ From OS30 ₂ Switch to In (9), the reception buffer register rewriting processor 28 ₂ Is OS30 ₁ From OS30 ₂ Switching to the NIC device driver 20 ₁ Instead of the value of the reception buffer register 16 ₁ To receive buffer 25 ₂ Rewrite to In (10), the data check processing unit 26 ₂ Changes the OS to OS30 ₁ From OS30 ₂ Switch to
[0276]
(Operation outline 2 of Embodiment 3)
Next, an outline 2 of the operation of the third embodiment will be described with reference to the block diagram shown in FIG. In the operation outline 2, the OS 30 ₁ From OS30 ₂ The case where communication is performed to the server will be described.
[0277]
In FIG. ₁ Is being executed, and the transmission buffer 23 is stored in the transmission buffer register 15. ₂ Are stored in the reception buffer register 16 and the reception buffer 25 ₂ It is assumed that a value corresponding to is stored.
[0278]
In this state, in (1), the NIC device driver 20 ₁ Transmission processing unit 22 ₁ Is OS30 ₁ From the transmission buffer 23 ₁ To be stored. This packet is sent to the OS 30 ₁ From OS30 ₂ Sent to Therefore, the destination IP address of the packet is ₂ 192.168.1.4.
[0279]
In (2), the OS switching processing unit 21 ₁ Changes the OS to OS30 ₁ From OS30 ₂ Switch to In (3), the transmission buffer register rewriting processor 27 ₂ Is OS30 ₁ From OS30 ₂ Switching to the NIC device driver 20 ₁ Is replaced with the value of the transmission buffer register 15 of the NIC 10 by the transmission buffer 23. ₂ From the transmission buffer 23 ₁ Rewrite to
[0280]
In (4), the OS switching processing unit 21 ₂ Changes the OS to OS30 ₂ From OS30 ₁ Switch to In (5), the NIC transmission processing unit 11 refers to the transmission buffer register 15 and ₁ Access to the transmission buffer 23 ₁ Is copied to the transmission buffer 12.
[0281]
In (6), the NIC transmission processing unit 11 reads out the packet from the transmission buffer 12 and transmits this to the network 50. Then, after the packet is received by the NIC reception processing unit 13, the packet is stored in the reception buffer 14.
[0282]
In (7), the NIC reception processing unit 13 refers to the reception buffer register 16 and ₂ After the access to the receiving buffer 14, the receiving buffer 14 ₂ Copy the packet to
[0283]
In (8), the OS switching processing unit 21 ₁ Changes the OS to OS30 ₁ From OS30 ₂ Switch to In (9), the reception processing unit 24 ₂ Stores the value of the transmission buffer register 15 in the transmission buffer 23 ₁ From the transmission buffer 23 ₂ Rewrite to In (10), the reception processing unit 24 ₂ Is the reception buffer 25 ₁ From the OS 30 after switching the packet. ₂ Pass to
[0284]
(Operation Outline 3 of Third Embodiment)
First, an outline 3 of the operation of the third embodiment will be described with reference to a block diagram shown in FIG. In the operation summary 3, the OS 30 is transmitted from another device (not shown) connected to the network 50. ₁ The packet addressed to the OS 30 via the NIC 10 ₂ Will be described in the case of relaying and performing data check (virus check, etc.).
[0285]
In FIG. ₂ Is being executed, and the transmission buffer 23 is stored in the transmission buffer register 15. ₂ Are stored in the reception buffer register 16 and the reception buffer 25 ₂ It is assumed that a value corresponding to is stored.
[0286]
In this state, in (1), the NIC reception processing unit 13 of the NIC 10 sends the OS 30 from another device (not shown). ₁ After the packet transmitted to the destination is received via the network 50, the packet is stored in the reception buffer 14. Here, the destination IP address of the packet is the OS 30 ₁ 192.168.1.3.
[0287]
In (2), the NIC reception processing unit 13 refers to the reception buffer register 16 and ₂ After the access to the receiving buffer 14, the receiving buffer 14 ₂ Copy the packet to
[0288]
In (3), the reception processing unit 24 ₂ Is the data check processing unit 26 ₂ Call. In (4), the data check processing unit 26 ₂ Is the reception buffer 25 ₂ Checks the packet stored in the server for the possibility of virus infection or network attack. If the check result is abnormal, an alarm is raised and a series of processing is interrupted.
[0289]
In this case, assuming that the check result is normal, in (5), the reception processing unit 24 ₂ (Or data check processing unit 26 ₂ ) Indicates the reception buffer 25 ₂ From the transmission buffer 23 ₂ To copy the packet.
[0290]
In (6), the transmission processing unit 22 ₂ Stores the value of the reception buffer register 16 in the reception buffer 25. ₂ To receive buffer 25 ₁ Rewrite to In (7), the NIC transmission processing unit 11 of the NIC 10 refers to the transmission buffer register 15 and ₂ Is copied to the transmission buffer 12.
[0291]
In (8), the NIC transmission processing unit 11 reads out the packet from the transmission buffer 12 and transmits this to the network 50. Then, after the packet is received by the NIC reception processing unit 13, the packet is stored in the reception buffer 14.
[0292]
In (9), the NIC reception processing unit 13 refers to the reception buffer register 16 and ₁ After the access to the receiving buffer 14, the receiving buffer 14 ₁ Copy the packet to
[0293]
In (10), the OS switching processing unit 21 ₂ Changes the OS to OS30 ₂ From OS30 ₁ Switch to In (11), the reception processing unit 24 ₁ Is the reception buffer 25 ₁ From the OS 30 after switching the packet. ₁ Pass to
[0294]
In (12), the OS switching processing unit 21 ₁ Changes the OS to OS30 ₁ From OS30 ₂ Switch to In (13), the receiving buffer register rewriting processing unit 28 ₂ Is OS30 ₁ From OS30 ₂ Switching to the NIC device driver 20 ₁ Instead of the value of the reception buffer register 16 ₁ To receive buffer 25 ₂ Rewrite to In (14), the data check processing unit 26 ₂ Changes the OS to OS30 ₁ From OS30 ₂ Switch to
[0295]
(Operation outline 4 of Embodiment 3)
Next, an operation outline 4 of the third embodiment will be described with reference to the block diagram shown in FIG. In the operation summary 4, the OS 30 ₁ A packet addressed to another device (not shown) connected to the network 50 from the OS 30 via the NIC 10 ₂ Will be described in the case of relaying and performing data check (virus check, etc.).
[0296]
In FIG. ₁ Is being executed, and the transmission buffer 23 is stored in the transmission buffer register 15. ₂ Are stored in the reception buffer register 16 and the reception buffer 25 ₂ It is assumed that a value corresponding to is stored.
[0297]
In this state, in (1), the NIC device driver 20 ₁ Transmission processing unit 22 ₁ Is OS30 ₁ From the transmission buffer 23 ₁ To be stored. This packet is sent to the OS 30 ₁ To another device (not shown). Therefore, the destination IP address of the packet is the IP address assigned to the other device.
[0298]
In (2), the OS switching processing unit 21 ₁ Changes the OS to OS30 ₁ From OS30 ₂ Switch to In (3), the transmission buffer register rewriting processor 27 ₂ Is OS30 ₁ From OS30 ₂ Switching to the NIC device driver 20 ₁ Is replaced with the value of the transmission buffer register 15 by the transmission buffer 23. ₂ From the transmission buffer 23 ₁ Rewrite to
[0299]
In (4), the OS switching processing unit 21 ₂ Changes the OS to OS30 ₂ From OS30 ₁ Switch to In (5), the NIC transmission processing unit 11 refers to the transmission buffer register 15 and ₁ Access to the transmission buffer 23 ₁ Is copied to the transmission buffer 12.
[0300]
In (6), the NIC transmission processing unit 11 reads the packet from the transmission buffer 12, and sets the destination IP address of this packet from the IP address of the other device to the OS 30. ₂ To the IP address (192.168.1.4). Next, the NIC transmission processing unit 11 transmits the changed packet to the network 50. Next, after the packet is received by the NIC reception processing unit 13, the reception buffer 25 ₂ Is stored in
[0301]
In (7), the NIC reception processing unit 13 refers to the reception buffer register 16 and ₂ After the access to the receiving buffer 14, the receiving buffer 14 ₂ Copy the packet to
[0302]
In (8), the OS switching processing unit 21 ₁ Changes the OS to OS30 ₁ From OS30 ₂ Switch to In (9), the transmission buffer register rewriting processing unit 27 ₂ Is OS30 ₁ From OS30 ₂ Switching to the NIC device driver 20 ₁ Is replaced with the value of the transmission buffer register 15 by the transmission buffer 23. ₁ From the transmission buffer 23 ₂ Rewrite to
[0303]
In (10), the reception processing unit 24 ₂ Is the data check processing unit 26 ₂ Call. In (11), the data check processing unit 26 ₂ Is the reception buffer 25 ₂ Checks the packet stored in the server for the possibility of virus infection or network attack. If the check result is abnormal, an alarm is raised and a series of processing is interrupted.
[0304]
In this case, assuming that the check result is normal, in (12), the reception processing unit 24 ₂ (Or data check processing unit 26 ₂ ) Indicates the reception buffer 25 ₂ From the transmission buffer 23 ₂ To copy the packet.
[0305]
In (13), the NIC transmission processing unit 11 of the NIC 10 refers to the transmission buffer register 15 and ₂ Is copied to the transmission buffer 12.
[0306]
In (14), the NIC transmission processing unit 11 reads out the packet from the transmission buffer 12 and transmits this to the network 50. Then, the packet is received by another device (not shown) via the network 50.
[0307]
(Operation Example 1 of Third Embodiment)
Next, an operation example 1 of the third embodiment will be described with reference to FIG. 41 and FIG. This operation example 1 corresponds to the OS 30 shown in FIG. ₂ Is running, the OS 30 ₂ This is an operation when the NIC 10 receives a packet addressed to the destination.
[0308]
Here, in the third embodiment, the second reception processing shown in FIG. 59 instead of FIG. 24, the first reception processing shown in FIG. 60 instead of FIG. 26, and the first reception processing shown in FIG. 61 instead of FIG. Respectively performed first transmission processing.
[0309]
In step ST1 shown in FIG. 42, NIC reception processing is executed. Specifically, in step SJ1 shown in FIG. 23, the NIC reception processing unit 13 of the NIC 10 shown in FIG. 41 determines whether or not a packet has arrived from the network 50. In this case, the determination result is “No”. And repeat the same determination.
[0310]
Then, the OS 30 via the network 50 ₂ When a packet addressed to the destination arrives, the NIC reception processing unit 13 sets the determination result of step SJ1 to “Yes”. In step SJ2, the NIC reception processing unit 13 determines whether or not the reception is prohibited, and in this case, the determination result is “No”.
[0311]
In step SJ3, the NIC reception processing unit 13 stores the packet in the reception buffer 14 after receiving the packet. In step SJ4, the NIC reception processing unit 13 stores the packet in the reception buffer 14 into the reception buffer 25 corresponding to the reception buffer register 16. ₂ Copy to
[0312]
In step SJ5, the NIC reception processing unit 13 executes the running OS (in this case, the OS 30 ₂ ), The NIC 10 generates a NIC reception completion interrupt indicating completion of packet reception.
[0313]
Thereby, the OS 30 ₂ On the side, the second reception process is executed in step ST2 shown in FIG. Specifically, in step SSD1 shown in FIG. 59, the NIC device driver 20 ₂ Reception processing unit 24 ₂ Is the reception buffer 25 ₂ The source IP address of the packet stored in OS 30 ₁ Is determined, and in this case, the determination result is “No”.
[0314]
In step SSD2, the reception processing unit 24 ₂ Indicates that the destination IP address of the packet is OS30 ₂ Is determined, and in this case, the determination result is “Yes”. In step SSD7, the reception processing unit 24 ₂ Is the reception buffer 25 ₂ From OS30 ₂ Copy the packet to
[0315]
(Operation Example 2 of Third Embodiment)
Next, an operation example 2 of the third embodiment will be described with reference to FIG. 43 and FIG. This operation example 2 corresponds to the OS 30 shown in FIG. ₂ Is running, the OS 30 ₁ This is an operation when the NIC 10 receives a packet addressed to the destination.
[0316]
In step SU1 shown in FIG. 44, the NIC reception process (see FIG. 23) is executed as in the first operation example. In this NIC reception processing, the NIC reception processing unit 13 of the NIC 10 shown in FIG. ₁ After the packet addressed to it is received, it is stored in the reception buffer 14. Next, the packet is sent to the reception buffer 25 by the NIC reception processing unit 13. ₂ Is stored in
[0317]
In step SU2 shown in FIG. ₂ The second side performs the second receiving process. Specifically, in step SSD1 shown in FIG. 59, the NIC device driver 20 ₂ Reception processing unit 24 ₂ Is the reception buffer 25 ₂ The source IP address of the packet stored in OS 30 ₁ Is determined, and in this case, the determination result is “No”.
[0318]
In step SSD2, the reception processing unit 24 ₂ Indicates that the destination IP address of the packet is OS30 ₂ Is determined, and in this case, the determination result is “No”. In step SSD3, the reception processing unit 24 ₂ Indicates that the destination IP address of the packet is OS30 ₁ Is determined, and in this case, the determination result is “Yes”.
[0319]
In step SSD8, the reception processing unit 24 ₂ Issues a reception prohibition command to the NIC 10. As a result, in step SSD9, the NIC reception interrupt is prohibited, and the NIC 10 is set to the above-described reception prohibited state. Therefore, the NIC 10 prohibits reception of a packet.
[0320]
In step SSD10, the reception processing unit 24 ₂ Is the data check processing unit 26 ₂ And receive buffer 25 ₂ Check of the packet stored in the server for the possibility of virus infection or network attack. If the check result is abnormal, an alarm is raised and a series of processing is interrupted.
[0321]
In this case, assuming that the check result is normal, in step SSD11, the reception processing unit 24 ₂ Is the reception buffer 25 ₂ From the transmission buffer 23 ₂ To copy the packet. In step SSD12, the reception processing unit 24 ₂ Is the transmission processing unit 22 ₂ Call.
[0322]
Thereby, the second transmission process is executed in step SU3 shown in FIG. Specifically, in step SL1 shown in FIG. ₂ Is the transmission buffer 23 ₂ Destination IP address of the packet stored in the OS 30 ₁ Is determined, and in this case, the determination result is “Yes”.
[0323]
In step SL4, the transmission processing unit 22 ₂ Stores the value of the reception buffer register 16 in the reception buffer 25. ₂ To receive buffer 25 ₁ Rewrite to In step SL5, the transmission processing unit 22 ₂ Releases the NIC reception interrupt prohibition.
[0324]
In step SL6, the transmission processing unit 22 ₂ Issues a reception prohibition release command to the NIC 10. Thereby, the reception prohibition in the NIC 10 is released. In step SL7, the transmission processing unit 22 ₂ Calls the NIC transmission processing unit 11. In step SL8, the transmission processing unit 22 ₂ Transfers the transmission command to the NIC transmission processing unit 11 and generates an NIC transmission interrupt.
[0325]
Thus, in step SU4 shown in FIG. 44, the NIC transmission processing is executed. Specifically, in step SI1 shown in FIG. 22, the NIC transmission processing unit 11 ₁ Or the transmission processing unit 22 ₂ It is determined whether a transmission command has been received from.
[0326]
In this case, in step SL8 (see FIG. 25), the transmission processing unit 22 ₂ , The NIC transmission processing unit 11 sets the determination result in step SI1 to “Yes”. If no transmission command has been received, the NIC transmission processing unit 11 repeats the determination in step SI1.
[0327]
In step SI2, the NIC transmission processing unit 11 transmits the transmission buffer 23 corresponding to the transmission buffer register 15. ₂ Is copied to the transmission buffer 12. In step SI3, the NIC transmission processing unit 11 transmits the packet (the OS 30 ₁ To the network 50.
[0328]
In step SI4, the NIC transmission processing unit 11 executes the running OS (in this case, the OS 30 ₂ ), The NIC 10 generates an NIC transmission completion interrupt indicating the completion of packet transmission.
[0329]
Further, in step SL9 shown in FIG. ₂ Is the OS switching processing unit 21 ₂ Call. Accordingly, in step SU5 shown in FIG. ₂ Changes the OS to OS30 ₂ From OS30 ₁ A second OS switching process of switching to is performed.
[0330]
Then, after the switching, in step SU6, the NIC receiving process (see FIG. 23) is executed. In this NIC reception process, the NIC reception processing unit 13 sets the determination result of step SJ1 shown in FIG. 23 to “Yes” and then sets the determination result of step SJ2 to “No”.
[0331]
In step SJ3, the NIC reception processing unit 13 ₁ After receiving the packet addressed to it, the packet is stored in the reception buffer 14. In step SJ4, the NIC reception processing unit 13 stores the packet in the reception buffer 14 into the reception buffer 25 corresponding to the reception buffer register 16. ₁ Copy to
[0332]
In step SJ5, the NIC reception processing unit 13 executes the running OS (in this case, the OS 30 ₁ ), The NIC 10 generates a NIC reception completion interrupt indicating completion of packet reception.
[0333]
Thereby, the OS 30 ₁ On the side, the first reception process is executed in step SU7 shown in FIG. Specifically, in step SSE1 shown in FIG. ₁ Reception processing unit 24 ₁ Is the reception buffer 25 ₁ Destination IP address of the packet stored in the OS 30 ₁ Is determined, and in this case, the determination result is “Yes”.
[0334]
In step SSE3, the reception processing unit 24 ₁ Issues a reception prohibition command to the NIC 10. In step SSE4, the NIC reception interrupt is prohibited. In step SSE5, the reception processing unit 24 ₁ Is the reception buffer 25 ₁ From OS30 ₁ Copy the packet to
[0335]
In step SSE6, the reception processing unit 24 ₁ Is the OS switching processing unit 21 ₁ Call. In step SSE7, the reception processing unit 24 ₁ Releases the NIC reception interrupt prohibition. In step SSE8, the reception processing unit 24 ₁ Issues a reception prohibition release command to the NIC 10.
[0336]
In step SU8 shown in FIG. ₁ Changes the OS to OS30 ₁ From OS30 ₂ The first OS switching process of switching to the first OS is executed. In step SU9, the reception buffer register rewriting processing unit 28 ₂ Is OS30 ₁ From OS30 ₂ The rewriting process is executed by using the switch to the trigger as a trigger.
[0337]
Specifically, in step SSB1 shown in FIG. ₂ Is OS30 ₁ From OS30 ₂ It is determined whether or not there is a switch to. If this determination result is "No," the same determination is repeated. In this case, since the switching has been performed, the reception buffer register rewriting processing unit 28 ₂ Sets the determination result of step SSB1 to "Yes".
[0338]
In step SSB2, the reception buffer register rewriting processing unit 28 ₂ Stores the value of the reception buffer register 16 in the reception buffer 25. ₁ To receive buffer 25 ₂ Rewrite to
[0339]
In step SU10 shown in FIG. ₂ Is called. Thereby, the OS switching processing unit 21 ₂ Changes the OS to OS30 ₂ From OS30 ₁ The second OS switching process of switching to the second OS is executed.
[0340]
(Operation Example 3 of Third Embodiment)
Next, a third operation example of the third embodiment will be described with reference to FIG. 45 and FIG. This operation example 3 corresponds to the OS 30 shown in FIG. ₁ Is running, the OS 30 ₂ This is an operation when the NIC 10 receives a packet addressed to the destination.
[0341]
In step SV1 shown in FIG. 46, NIC reception processing is executed. More specifically, in step SJ1 shown in FIG. 23, the NIC reception processing unit 13 of the NIC 10 shown in FIG. 45 determines whether or not a packet has arrived from the network 50. And repeat the same determination.
[0342]
Then, the OS 30 via the network 50 ₂ When the packet addressed to the NIC arrives, the NIC reception processing unit 13 sets the determination result in step SJ1 to “Yes” and then sets the determination result in step SJ2 to “No”.
[0343]
In step SJ3, the NIC reception processing unit 13 stores the packet in the reception buffer 14 after receiving the packet. In step SJ4, the NIC reception processing unit 13 stores the packet in the reception buffer 14 into the reception buffer 25 corresponding to the reception buffer register 16. ₂ Copy to
[0344]
In step SJ5, the NIC reception processing unit 13 executes the running OS (in this case, the OS 30 ₁ ), The NIC 10 generates a NIC reception completion interrupt indicating completion of packet reception.
[0345]
Thus, the first reception process is executed in step SV2 shown in FIG. Specifically, in step SSE1 shown in FIG. ₁ Reception processing unit 24 ₁ Is the reception buffer 25 ₁ Destination IP address of the packet stored in the OS 30 ₁ Is determined, and in this case, since no packet is stored, the determination result is “No”.
[0346]
In step SSE2, the reception processing unit 24 ₁ Is the OS switching processing unit 21 ₁ Call. Accordingly, in step SV3 shown in FIG. ₁ Changes the OS to OS30 ₁ From OS30 ₂ The first OS switching process of switching to the first OS is executed.
[0347]
In step SV4, a second reception process is performed. Specifically, in step SSD1 shown in FIG. 59, the NIC device driver 20 ₂ Reception processing unit 24 ₂ Is the reception buffer 25 ₂ The source IP address of the packet stored in OS 30 ₁ Is determined, and in this case, the determination result is “No”.
[0348]
In step SSD2, the reception processing unit 24 ₂ Indicates that the destination IP address of the packet is OS30 ₂ Is determined, and in this case, the determination result is “Yes”. In step SSD7, the reception processing unit 24 ₂ Is the reception buffer 25 ₂ From OS30 ₂ Copy the packet to
[0349]
(Operation Example 4 of Third Embodiment)
Next, an operation example 4 of the third embodiment will be described with reference to FIG. 47 and FIG. This operation example 4 corresponds to the OS 30 shown in FIG. ₁ Is running, the OS 30 ₁ This is an operation when the NIC 10 receives a packet addressed to the destination.
[0350]
In step SW1 shown in FIG. 48, an NIC reception process is performed. More specifically, in step SJ1 shown in FIG. 23, the NIC reception processing unit 13 of the NIC 10 shown in FIG. 47 determines whether or not a packet has arrived from the network 50. And repeat the same determination.
[0351]
Then, the OS 30 via the network 50 ₁ When the packet addressed to the NIC arrives, the NIC reception processing unit 13 sets the determination result in step SJ1 to “Yes” and then sets the determination result in step SJ2 to “No”.
[0352]
In step SJ3, the NIC reception processing unit 13 stores the packet in the reception buffer 14 after receiving the packet. In step SJ4, the NIC reception processing unit 13 stores the packet in the reception buffer 14 into the reception buffer 25 corresponding to the reception buffer register 16. ₂ Copy to
[0353]
In step SJ5, the NIC reception processing unit 13 executes the running OS (in this case, the OS 30 ₁ ), The NIC 10 generates a NIC reception completion interrupt indicating completion of packet reception.
[0354]
As a result, the first reception processing is executed in step SW2 shown in FIG. Specifically, in step SSE1 shown in FIG. ₁ Reception processing unit 24 ₁ Is the reception buffer 25 ₁ Destination IP address of the packet stored in the OS 30 ₁ Is determined, and in this case, since no packet is stored, the determination result is “No”.
[0355]
In step SSE2, the reception processing unit 24 ₁ Is the OS switching processing unit 21 ₁ Call. Accordingly, in step SW3 shown in FIG. ₁ Changes the OS to OS30 ₁ From OS30 ₂ The first OS switching process of switching to the first OS is executed.
[0356]
In step SW4, a second reception process is performed. Specifically, in step SSD1 shown in FIG. 59, the NIC device driver 20 ₂ Reception processing unit 24 ₂ Is the reception buffer 25 ₂ The source IP address of the packet stored in OS 30 ₁ Is determined, and in this case, the determination result is “No”.
[0357]
In step SSD2, the reception processing unit 24 ₂ Indicates that the destination IP address of the packet is OS30 ₂ Is determined, and in this case, the determination result is “No”. In step SSD3, the reception processing unit 24 ₂ Indicates that the destination IP address of the packet is OS30 ₁ Is determined, and in this case, the determination result is “Yes”.
[0358]
In step SSD8, the reception processing unit 24 ₂ Issues a reception prohibition command to the NIC 10. As a result, in step SSD9, the NIC reception interrupt is prohibited, and the NIC 10 is set to the above-described reception prohibited state. Therefore, the NIC 10 prohibits reception of a packet.
[0359]
In step SSD10, the reception processing unit 24 ₂ Is the data check processing unit 26 ₂ And receive buffer 25 ₂ Check of the packet stored in the server for the possibility of virus infection or network attack. If the check result is abnormal, an alarm is raised and a series of processing is interrupted.
[0360]
In this case, assuming that the check result is normal, in step SSD11, the reception processing unit 24 ₂ Is the reception buffer 25 ₂ From the transmission buffer 23 ₂ To copy the packet. In step SSD12, the reception processing unit 24 ₂ Is the transmission processing unit 22 ₂ Call.
[0361]
Thus, the second transmission process is performed in step SW5 shown in FIG. Specifically, in step SL1 shown in FIG. ₂ Is the transmission buffer 23 ₂ Destination IP address of the packet stored in the OS 30 ₁ Is determined, and in this case, the determination result is “Yes”.
[0362]
In step SL4, the transmission processing unit 22 ₂ Stores the value of the reception buffer register 16 in the reception buffer 25. ₂ To receive buffer 25 ₁ Rewrite to In step SL5, the transmission processing unit 22 ₂ Releases the NIC reception interrupt prohibition.
[0363]
In step SL6, the transmission processing unit 22 ₂ Issues a reception prohibition release command to the NIC 10. Thereby, the reception prohibition in the NIC 10 is released. In step SL7, the transmission processing unit 22 ₂ Calls the NIC transmission processing unit 11. In step SL8, the transmission processing unit 22 ₂ Transfers the transmission command to the NIC transmission processing unit 11 and generates an NIC transmission interrupt.
[0364]
Thus, the NIC transmission processing is executed in step SW6 shown in FIG. Specifically, in step SI1 shown in FIG. 22, the NIC transmission processing unit 11 ₁ Or the transmission processing unit 22 ₂ It is determined whether a transmission command has been received from.
[0365]
In this case, in step SL8 (see FIG. 25), the transmission processing unit 22 ₂ , The NIC transmission processing unit 11 sets the determination result in step SI1 to “Yes”.
[0366]
In step SI2, the NIC transmission processing unit 11 transmits the transmission buffer 23 corresponding to the transmission buffer register 15. ₂ Is copied to the transmission buffer 12. In step SI3, the NIC transmission processing unit 11 transmits the packet (the OS 30 ₁ To the network 50.
[0367]
In step SI4, the NIC transmission processing unit 11 executes the running OS (in this case, the OS 30 ₂ ), The NIC 10 generates an NIC transmission completion interrupt indicating the completion of packet transmission.
[0368]
Further, in step SL9 shown in FIG. ₂ Is the OS switching processing unit 21 ₂ Call. Accordingly, in step SW7 shown in FIG. ₂ Changes the OS to OS30 ₂ From OS30 ₁ A second OS switching process of switching to is performed.
[0369]
After the switching, in step SW8, the NIC receiving process (see FIG. 23) is executed. In this NIC reception process, the NIC reception processing unit 13 sets the determination result of step SJ1 shown in FIG. 23 to “Yes” and then sets the determination result of step SJ2 to “No”.
[0370]
In step SJ3, the NIC reception processing unit 13 stores the packet in the reception buffer 14 after receiving the packet. In step SJ4, the NIC reception processing unit 13 stores the packet in the reception buffer 14 into the reception buffer 25 corresponding to the reception buffer register 16. ₁ Copy to
[0371]
In step SJ5, the NIC reception processing unit 13 executes the running OS (in this case, the OS 30 ₂ ), The NIC 10 generates a NIC reception completion interrupt indicating completion of packet reception.
[0372]
As a result, the first reception processing is executed in step SW9 shown in FIG. Specifically, in step SSE1 shown in FIG. ₁ Reception processing unit 24 ₁ Is the reception buffer 25 ₁ Destination IP address of the packet stored in the OS 30 ₁ Is determined, and in this case, the determination result is “Yes”.
[0373]
In step SSE3, the reception processing unit 24 ₁ Issues a reception prohibition command to the NIC 10. In step SSE4, the NIC reception interrupt is prohibited. In step SSE5, the reception processing unit 24 ₁ Is the reception buffer 25 ₁ From OS30 ₁ Copy the packet to
[0374]
In step SSE6, the reception processing unit 24 ₁ Is the OS switching processing unit 21 ₁ Call. In step SSE7, the reception processing unit 24 ₁ Releases the NIC reception interrupt prohibition. In step SSE8, the reception processing unit 24 ₁ Issues a reception prohibition release command to the NIC 10.
[0375]
In step SW10 shown in FIG. 48, the OS switching processing unit 21 ₁ Changes the OS to OS30 ₁ From OS30 ₂ The first OS switching process of switching to the first OS is executed. In step SW11, the reception buffer register rewriting processing unit 28 ₂ Is OS30 ₁ From OS30 ₂ The rewriting process is executed by using the switch to the trigger as a trigger.
[0376]
Specifically, in step SSB1 shown in FIG. ₂ Is OS30 ₁ From OS30 ₂ It is determined whether or not there is a switch to. In this case, the determination result is “Yes”.
[0377]
In step SSB2, the reception buffer register rewriting processing unit 28 ₂ Changes the value of the reception buffer register 16 from the reception buffer 251 to the reception buffer 25 ₂ Rewrite to
[0378]
In step SW12 shown in FIG. 48, the OS switching processing unit 21 ₂ Is called. Thereby, the OS switching processing unit 21 ₂ Changes the OS to OS30 ₁ From OS30 ₂ The second OS switching process of switching to the second OS is executed.
[0379]
(Operation Example 5 of Third Embodiment)
Next, an operation example 5 of the third embodiment will be described with reference to FIGS. 49 and 50. This operation example 5 corresponds to the OS 30 shown in FIG. ₁ From OS30 ₂ This is an operation when a packet is transmitted to the server.
[0380]
In step SX1 shown in FIG. 50, a first transmission process is executed. Specifically, in step SSF1 shown in FIG. ₁ Is OS30 ₁ The destination IP address of the packet to be transmitted passed from the OS 30 ₂ After replacing with the IP address of the ₁ To be stored.
[0381]
In step SSF2, the transmission processing unit 22 ₁ Is the OS switching processing unit 21 ₁ Call. Thus, in step SX2 shown in FIG. ₁ Changes the OS to OS30 ₁ From OS30 ₂ The first OS switching process of switching to the first OS is executed.
[0382]
In step SX3, the transmission buffer register rewriting processor 27 ₂ Is OS30 ₁ From OS30 ₂ The transmission buffer register rewriting process is executed with the switching to the trigger as a trigger.
[0383]
More specifically, in step SSC1 shown in FIG. ₂ Is OS30 ₁ From OS30 ₂ It is determined whether or not there is a switch to. If this determination result is "No," the same determination is repeated. In this case, since the switching has been performed, the transmission buffer register rewriting processor 27 ₂ Sets the determination result of step SSC1 to "Yes".
[0384]
In step SSC2, the transmission buffer register rewriting processor 27 ₂ Stores the value of the transmission buffer register 15 in the transmission buffer 23 ₁ From the transmission buffer 23 ₂ Rewrite to
[0385]
In step SX4 shown in FIG. ₂ Is called. Thereby, the OS switching processing unit 21 ₂ Changes the OS to OS30 ₂ From OS30 ₁ The second OS switching process of switching to the second OS is executed.
[0386]
In step SX5, the transmission processing unit 22 ₁ Continues the first transmission process. That is, in step SSF3 shown in FIG. ₁ Calls the NIC transmission processing unit 11 and issues a transmission command. In step SSF4, the transmission processing unit 22 ₁ Determines whether or not an NIC transmission completion interrupt has occurred in the NIC 10. In this case, the determination result is “No”, and the same determination is repeated.
[0387]
When the NIC transmission processing unit 11 is called in step SSF3 (see FIG. 61), the OS 30 ₂ From OS30 ₁ After switching to, in step SX6 shown in FIG. 50, NIC transmission processing is executed. Specifically, in step SI1 shown in FIG. 22, the NIC transmission processing unit 11 ₁ Or the transmission processing unit 22 ₂ It is determined whether or not a transmission command has been received from, and in this case, the determination result is “Yes”.
[0388]
In step SI2, the NIC transmission processing unit 11 transmits the transmission buffer 23 corresponding to the transmission buffer register 15. ₁ Is copied to the transmission buffer 12. In step SI3, the NIC transmission processing unit 11 transmits the packet (the OS 30 ₂ To the network 50.
[0389]
In step SI4, the NIC transmission processing unit 11 executes the running OS (in this case, the OS 30 ₁ ), The NIC 10 generates an NIC transmission completion interrupt indicating the completion of packet transmission.
[0390]
Thereby, the transmission processing unit 22 ₁ Makes the determination result of step SSF4 shown in FIG. 61 "Yes". In step SSF5, the transmission processing unit 22 ₁ Is a transmission buffer register rewriting processing unit 27 ₂ The value of the transmission buffer register 15 is ₁ From the transmission buffer 23 ₂ To be rewritten. In step SSF6, the transmission processing unit 22 ₁ Is the OS switching processing unit 21 ₁ Call.
[0391]
As a result, in step SX7 shown in FIG. ₁ Changes the OS to OS30 ₁ From OS30 ₂ The first OS switching process of switching to the first OS is executed.
[0392]
In step SX8, NIC reception processing (see FIG. 23) is executed. In this NIC reception process, the NIC reception processing unit 13 of the NIC 10 shown in FIG. ₂ After the packet addressed to it is received, it is stored in the reception buffer 14. Next, the packet is sent to the reception buffer 25 by the NIC reception processing unit 13. ₂ Is stored in
[0393]
In step SX9, the OS 30 ₂ The second side performs the second receiving process. Specifically, in step SSD1 shown in FIG. 59, the NIC device driver 20 ₂ Reception processing unit 24 ₂ Is the reception buffer 25 ₂ The source IP address of the packet stored in OS 30 ₁ Is determined, and in this case, the determination result is “Yes”.
[0394]
In step SSD5, the reception processing unit 24 ₂ Stores the value of the transmission buffer register 15 in the transmission buffer 23 ₁ From the transmission buffer 23 ₂ Rewrite to In step SSD6, the reception processing unit 24 ₂ Is the data check processing unit 26 ₂ And receive buffer 25 ₂ A data check is performed on the packet stored in the. If the check result is abnormal, an alarm is raised and a series of processing is interrupted.
[0395]
In this case, it is assumed that the check result is normal, and in step SSD2, the reception processing unit 24 ₂ Indicates that the destination IP address of the packet is OS30 ₂ Is determined, and in this case, the determination result is “Yes”. In step SSD7, the reception processing unit 24 ₂ Is the reception buffer 25 ₂ From OS30 ₂ Copy the packet to
[0396]
(Operation Example 6 of Third Embodiment)
Next, an operation example 6 of the third embodiment will be described with reference to FIG. 51 and FIG. This operation example 6 corresponds to the OS 30 shown in FIG. ₁ This is an operation when a packet is transmitted from to the other device connected to the network 50.
[0397]
In step SY1 shown in FIG. 52, a first transmission process is executed. Specifically, in step SSF1 shown in FIG. ₁ Is OS30 ₁ The destination IP address (in this case, the IP address of the other device) of the packet to be transmitted passed from the ₂ After replacing with the IP address of the ₁ To be stored. The IP address of the other device before replacement is stored in the data area of the packet.
[0398]
In step SSF2, the transmission processing unit 22 ₁ Is the OS switching processing unit 21 ₁ Call. Thereby, in step SY2 shown in FIG. ₁ Changes the OS to OS30 ₁ From OS30 ₂ The first OS switching process of switching to the first OS is executed.
[0399]
In step SY3, the transmission buffer register rewriting processing unit 27 ₂ Is OS30 ₁ From OS30 ₂ The transmission buffer register rewriting process is executed with the switching to the trigger as a trigger.
[0400]
More specifically, in step SSC1 shown in FIG. ₂ Is OS30 ₁ From OS30 ₂ It is determined whether or not there is a switch to. If this determination result is "No," the same determination is repeated. In this case, since the switching has been performed, the transmission buffer register rewriting processor 27 ₂ Sets the determination result of step SSC1 to "Yes".
[0401]
In step SSC2, the transmission buffer register rewriting processor 27 ₂ Stores the value of the transmission buffer register 15 in the transmission buffer 23 ₁ From the transmission buffer 23 ₂ Rewrite to
[0402]
In step SY4 shown in FIG. ₂ Is called. Thereby, the OS switching processing unit 21 ₂ Changes the OS to OS30 ₂ From OS30 ₁ The second OS switching process of switching to the second OS is executed.
[0403]
In step SY5, the transmission processing unit 22 ₁ Continues the first transmission process. That is, in step SSF3 shown in FIG. ₁ Calls the NIC transmission processing unit 11 and issues a transmission command. In step SSF4, the transmission processing unit 22 ₁ Determines whether a NIC transmission completion interrupt has occurred in the NIC 10, and in this case, the determination result is “No”.
[0404]
Further, when the NIC transmission processing unit 11 is called in step SSF3, the NIC transmission processing is executed in step SY6 shown in FIG. Specifically, in step SI1 shown in FIG. 22, the NIC transmission processing unit 11 ₁ Or the transmission processing unit 22 ₂ It is determined whether or not a transmission command has been received from, and in this case, the determination result is “Yes”.
[0405]
In step SI2, the NIC transmission processing unit 11 transmits the transmission buffer 23 corresponding to the transmission buffer register 15. ₂ Is copied to the transmission buffer 12. In step SI3, the NIC transmission processing unit 11 transmits the packet (the OS 30 ₂ To the network 50.
[0406]
In step SI4, the NIC transmission processing unit 11 executes the running OS (in this case, the OS 30 ₁ ), The NIC 10 generates an NIC transmission completion interrupt indicating the completion of packet transmission.
[0407]
Thereby, the transmission processing unit 22 ₁ Makes the determination result of step SSF4 shown in FIG. 61 "Yes". In step SSF5, the transmission processing unit 22 ₁ Is a transmission buffer register rewriting processing unit 27 ₂ The value of the transmission buffer register 15 is ₁ From the transmission buffer 23 ₂ To be rewritten. In step SSF6, the transmission processing unit 22 ₁ Is the OS switching processing unit 21 ₁ Call.
[0408]
Accordingly, in step SY7 shown in FIG. ₁ Changes the OS to OS30 ₁ From OS30 ₂ The first OS switching process of switching to the first OS is executed.
[0409]
In step SY8, NIC reception processing (see FIG. 23) is executed. In this NIC reception processing, the NIC reception processing unit 13 of the NIC 10 shown in FIG. ₂ After the packet addressed to it is received, it is stored in the reception buffer 14. Next, the NIC reception processing unit 13 replaces the transmission destination IP address of the packet with the IP address of another device, and then stores the packet in the reception buffer 25. ₂ To be stored.
[0410]
In step SY9, the OS 30 ₂ The second side performs the second receiving process. Specifically, in step SSD1 shown in FIG. 59, the NIC device driver 20 ₂ Reception processing unit 24 ₂ Is the reception buffer 25 ₂ The source IP address of the packet stored in OS 30 ₁ Is determined, and in this case, the determination result is “Yes”. In step SSD5, the reception processing unit 24 ₂ Stores the value of the transmission buffer register 15 in the transmission buffer 23 ₁ From the transmission buffer 23 ₂ Rewrite to
[0411]
In step SSD6, the reception processing unit 24 ₂ Is the data check processing unit 26 ₂ And receive buffer 25 ₂ A data check is performed on the packet stored in the. If the check result is abnormal, an alarm is raised and a series of processing is interrupted.
[0412]
In this case, it is assumed that the check result is normal, and in step SSD2, the reception processing unit 24 ₂ Indicates that the destination IP address of the packet is OS30 ₂ Is determined, and in this case, the determination result is “No”. In step SSD3, the reception processing unit 24 ₂ Indicates that the destination IP address of the packet is OS30 ₁ Is determined, and in this case, the determination result is “No”. In step SSD4, the reception processing unit 24 ₂ Determines whether the destination IP address of the packet corresponds to another device, and in this case, the determination result is “Yes”.
[0413]
In step SSD13, the reception processing unit 24 ₂ Is the reception buffer 25 ₂ From the transmission buffer 23 ₂ Copy the packet to In step SSD14, the reception processing unit 24 ₂ Is the transmission processing unit 22 ₂ Call.
[0414]
Thereby, the second transmission process is executed in step SY10 shown in FIG. Specifically, in step SL1 shown in FIG. ₂ Is the transmission buffer 23 ₂ Destination IP address of the packet stored in the OS 30 ₁ Is determined, and in this case, the determination result is “No”.
[0415]
In step SL2, the transmission processing unit 22 ₂ Calls the NIC transmission processing unit 11 of the NIC 10. In step SL3, the transmission processing unit 22 ₂ Transfers the transmission command to the NIC transmission processing unit 11 and generates an NIC transmission interrupt.
[0416]
Thus, in step SY11 shown in FIG. 52, the NIC transmission processing is executed. Specifically, in step SI1 shown in FIG. 22, the NIC transmission processing unit 11 ₂ , The judgment result is “Yes”.
[0417]
In step SI2, the NIC transmission processing unit 11 transmits the transmission buffer 23 corresponding to the transmission buffer register 15. ₂ Is copied to the transmission buffer 12. In step SI3, the NIC transmission processing unit 11 transmits the packet (addressed to another device) in the transmission buffer 12 to the network 50. Thereby, the packet is received by another device via the network 50.
[0418]
In step SI4, the NIC transmission processing unit 11 executes the running OS (in this case, the OS 30 ₂ ), The NIC 10 generates an NIC transmission completion interrupt indicating the completion of packet transmission.
[0419]
(Operation Example 7 of Third Embodiment)
Next, an operation example 7 of the third embodiment will be described with reference to FIGS. This operation example 7 corresponds to the OS 30 shown in FIG. ₂ This is an operation when a packet is transmitted from to the other device connected to the network 50.
[0420]
In step SZ1 shown in FIG. 54, a second transmission process is performed. Specifically, in step SL1 shown in FIG. ₂ Is OS30 ₂ Destination IP address of the packet passed from OS 30 ₁ It is determined whether it corresponds to. In this case, in this case, it is assumed that the destination IP address of the packet corresponds to another device, and the transmission processing unit 22 ₂ Makes the determination result of step SL1 "No".
[0421]
In step SL2, the transmission processing unit 22 ₂ Calls the NIC transmission processing unit 11. In step SL3, the transmission processing unit 22 ₂ Transfers the transmission command to the NIC transmission processing unit 11 and generates an NIC transmission interrupt.
[0422]
Thus, in step SZ2 shown in FIG. 54, the NIC transmission processing is executed. Specifically, in step SI1 shown in FIG. 22, the NIC transmission processing unit 11 ₂ , The judgment result is “Yes”.
[0423]
In step SI2, the NIC transmission processing unit 11 transmits the transmission buffer 23 corresponding to the transmission buffer register 15. ₂ Is copied to the transmission buffer 12. In step SI3, the NIC transmission processing unit 11 transmits the packet (addressed to another device) in the transmission buffer 12 to the network 50. Thus, the packet is received by another device via the network 50.
[0424]
In step SI4, the NIC transmission processing unit 11 executes the running OS (in this case, the OS 30 ₂ ), The NIC 10 generates an NIC transmission completion interrupt indicating the completion of packet transmission.
[0425]
(Operation Example 8 of Embodiment 3)
Next, an operation example 8 of the third embodiment will be described with reference to FIGS. This operation example 8 corresponds to the OS 30 shown in FIG. ₂ From OS30 ₁ This is an operation when a packet is transmitted to the server.
[0426]
In step SSA1 shown in FIG. ₂ Is OS30 ₂ OS 30 passed by ₁ Data check such as virus check is performed on the packet addressed to. If the check result is normal, a second transmission process is executed in step SSA2.
[0427]
Specifically, in step SL1 shown in FIG. ₂ Is OS30 ₂ Destination IP address of the packet passed from OS 30 ₁ Is determined, and in this case, the determination result is “Yes”.
[0428]
In step SL4, the transmission processing unit 22 ₂ Stores the value of the reception buffer register 16 in the reception buffer 25. ₂ To receive buffer 25 ₁ Rewrite to In step SL5, the transmission processing unit 22 ₂ Releases the NIC reception interrupt prohibition.
[0429]
In step SL6, the transmission processing unit 22 ₂ Issues a reception prohibition release command to the NIC 10. Thereby, the reception prohibition in the NIC 10 is released. In step SL7, the transmission processing unit 22 ₂ Calls the NIC transmission processing unit 11. In step SL8, the transmission processing unit 22 ₂ Transfers the transmission command to the NIC transmission processing unit 11 and generates an NIC transmission interrupt.
[0430]
Thus, in step SSA3 shown in FIG. 56, the NIC transmission processing is executed. Specifically, in step SI1 shown in FIG. 22, the NIC transmission processing unit 11 ₂ , The judgment result is “Yes”.
[0431]
In step SI2, the NIC transmission processing unit 11 transmits the transmission buffer 23 corresponding to the transmission buffer register 15. ₂ Is copied to the transmission buffer 12. In step SI3, the NIC transmission processing unit 11 transmits the packet (the OS 30 ₁ To the network 50.
[0432]
In step SI4, the NIC transmission processing unit 11 executes the running OS (in this case, the OS 30 ₂ ), The NIC 10 generates an NIC transmission completion interrupt indicating the completion of packet transmission.
[0433]
Further, in step SL9 shown in FIG. ₂ Is the OS switching processing unit 21 ₂ Call. Accordingly, in step SSA4 shown in FIG. ₂ Changes the OS to OS30 ₂ From OS30 ₁ A second OS switching process of switching to is performed.
[0434]
Then, after the switching, in step SSA5, NIC reception processing (see FIG. 23) is executed. In this NIC reception process, the NIC reception processing unit 13 sets the determination result of step SJ1 shown in FIG. 23 to “Yes” and then sets the determination result of step SJ2 to “No”.
[0435]
In step SJ3, the NIC reception processing unit 13 ₁ After receiving the packet addressed to it, the packet is stored in the reception buffer 14. In step SJ4, the NIC reception processing unit 13 stores the packet in the reception buffer 14 into the reception buffer 25 corresponding to the reception buffer register 16. ₁ Copy to
[0436]
In step SJ5, the NIC reception processing unit 13 executes the running OS (in this case, the OS 30 ₁ ), The NIC 10 generates a NIC reception completion interrupt indicating completion of packet reception.
[0437]
Thereby, the OS 30 ₁ On the side, the first reception processing is executed in step SSA6 shown in FIG. Specifically, in step SSE1 shown in FIG. ₁ Reception processing unit 24 ₁ Is the reception buffer 25 ₁ Destination IP address of the packet stored in the OS 30 ₁ Is determined, and in this case, the determination result is “Yes”.
[0438]
In step SSE3, the reception processing unit 24 ₁ Issues a reception prohibition command to the NIC 10. In step SSE4, the NIC reception interrupt is prohibited. In step SSE5, the reception processing unit 24 ₁ Is the reception buffer 25 ₁ From OS30 ₁ Copy the packet to
[0439]
In step SSE6, the reception processing unit 24 ₁ Is the OS switching processing unit 21 ₁ Call. In step SSE7, the reception processing unit 24 ₁ Releases the NIC reception interrupt prohibition. In step SSE8, the reception processing unit 24 ₁ Issues a reception prohibition release command to the NIC 10.
[0440]
In step SSA7 shown in FIG. 56, the OS switching processing unit 21 ₁ Changes the OS to OS30 ₁ From OS30 ₂ The first OS switching process of switching to the first OS is executed. In step SSA8, the reception buffer register rewriting processor 28 ₂ Is OS30 ₁ From OS30 ₂ The rewriting process is executed by using the switch to the trigger as a trigger.
[0441]
Specifically, in step SSB1 shown in FIG. ₂ Is OS30 ₁ From OS30 ₂ It is determined whether or not there is a switch to. In this case, the determination result is “Yes”.
[0442]
In step SSB2, the reception buffer register rewriting processing unit 28 ₂ Stores the value of the reception buffer register 16 in the reception buffer 25. ₁ To receive buffer 25 ₂ Rewrite to
[0443]
In step SSA9 shown in FIG. 56, the OS switching processing unit 21 ₂ Is called. Thereby, the OS switching processing unit 21 ₂ Changes the OS to OS30 ₁ From OS30 ₂ The second OS switching process of switching to the second OS is executed.
[0444]
As described above, according to the third embodiment, regarding the setting of the connection destination of the transmission buffer 12 and the reception buffer 14, the OS 30 ₂ OS 30 that does not have the authority ₁ The possibility of external attacks on the side is extremely low, and the security and reliability of the multi-operating system can be significantly improved.
[0445]
FIGS. 62A to 62D are diagrams for explaining application examples 1 to 4 of the above-described first to third embodiments. Application example 1 shown in FIG. 62A is an example in which new and old OSs coexist and are used at the time of system renewal. The new OS is, for example, OS 30 ₁ It corresponds to. On the other hand, the old OS is OS30 ₂ It corresponds to.
[0446]
The application example 2 shown in FIG. 62B is an example in which a new function is speed-developed on the source-public OS without utilizing the source-public OS and waiting for the release of the source non-public OS. The source non-public OS is an operating system whose source code is not disclosed. ₁ It corresponds to. On the other hand, the source open OS is an operating system whose source code is open, and the OS 30 ₂ It corresponds to.
[0447]
Application example 3 shown in FIG. 62C is an example in which a dedicated OS and a general-purpose OS coexist. The dedicated OS shares functions specializing in real-time properties and the like. ₁ It corresponds to. On the other hand, the general-purpose OS is Windows (registered trademark) of Microsoft Corporation or the like, which shares GUI functions, ₂ It corresponds to.
[0448]
Application example 4 shown in FIG. 62D is an example in which resources are divided, and uses different methods depending on the purpose of use of OS1 and OS2. OS1 is, for example, OS30 ₁ It corresponds to. On the other hand, OS2 is ₂ It corresponds to.
[0449]
FIG. 63 is a diagram illustrating a case where the first to third embodiments are applied to system migration. In the figure, in the conventional migration work, it is necessary to migrate all the modules of the old OS mounted on the old terminal to the new OS of the new terminal at a time, and there is a concern about safety.
[0450]
On the other hand, if there is a multi-operating system, each module of the old OS installed in the old terminal is transferred to the old OS of the intermediate terminal while confirming safety. Next, in the intermediate terminal, each module of the old OS is transferred to the new OS while confirming the security.
[0451]
Next, all the modules of the new OS of the intermediate terminal are transferred at once to the new OS of the new terminal. In this case, no problem occurs because the transition is between new OSs. The transition by the multi-OS is effective when a new function is quickly added to a specific module.
[0452]
FIG. 64 is a diagram illustrating a case where the first to third embodiments are applied to a high security gateway. In the figure, the hardware includes a multi-operating system (OS1 and OS2) and is connected to the Internet via a NIC (network interface card). This hardware functions as a high security gateway.
[0453]
The OS 1 manages an AP (application program) 1 used by a user and stores a communication log in a DK (disk) 1. On the other hand, the OS 2 monitors a communication packet from the Internet and accumulates a monitoring log in the DK 2.
[0454]
In the OS 2, the NIC is directly controlled to perform communication. For this reason, the OS2 provides the OS1 with a pseudo NIC-I / F that simulates an interface for providing software to the NIC in order to support the communication of the OS1. AP2 is an application program for collecting packet monitoring logs, and operates on OS2.
[0455]
The AP 2 does not infect the virus because it only looks at the communication packet from the outside and does not process the execution code included in the communication packet. The monitoring log stored in the DK2 is not falsified by a malicious third party. Therefore, it is possible to leave a trace of the attack.
[0456]
Here, when a security attack is performed on the environment of the user (such as the OS1), the communication log of the OS1 may be falsified. However, in the first to third embodiments, since the monitoring logs of the OS1 and the OS2 are separately managed by the multi-operating system, it is possible to track an attacker. Thereby, an effect of suppressing an attack on the security gateway can be expected.
[0457]
FIG. 65 is a diagram illustrating a case where Embodiments 1 to 3 are applied to a desktop Grid terminal. In FIG. 1, the hardware includes a multi-operating system (OS1 and OS2), and is connected to the Internet via an NIC. A Grid server is connected to the Internet. The hardware functions as a desktop grid terminal.
[0458]
The desktop grid terminal is a terminal for performing a desktop grid calculation for realizing the calculation by allocating a part of a large calculation while the user does not use the computer. Here, from the user's point of view, there is a concern that the above-mentioned calculation whose contents are unknown will adversely affect its own computer environment.
[0459]
Therefore, in the same figure, the above adverse effect can be eliminated by managing its own computer environment by OS1 and managing the grid calculation processing environment by OS2. That is, all data and programs used in the Grid calculation are managed and executed only under the control of the OS 2. On the other hand, access to computer resources such as DK1 and MEM (memory) 1 under the control of OS1 is not permitted. Therefore, adverse effects from the grid calculation program are eliminated.
[0460]
FIG. 66 is a diagram illustrating a case where Embodiments 1 to 3 are applied to a remote management terminal. In FIG. 1, the hardware includes a multi-operating system (OS1 and OS2) and is connected to a network via an NIC. A system administrator machine and other machines are connected to the network. The hardware functions as a remote management terminal.
[0461]
In the figure, a category that can be managed by a user is limited to OS1, and management of OS2 is performed by a system administrator machine via a network. This allows the system administrator to construct a default environment for a personal computer used in an office environment or the like under the control of the OS 2, while setting the environment to be used according to the personal preference or situation of the user under the control of the OS 1. Can be built with
[0462]
Therefore, it is possible to prevent the environment prepared by the system from causing an operation failure due to the user's personal environment setting. The OS 2 is managed by a system administrator on a system administrator machine and provides an environment designed on the system side. When using the environment, the user reads the file information of OS2 into OS1 and starts it, or requests OS2 to start it and executes it in a client / server mode.
[0463]
FIG. 67 is a diagram illustrating a case where Embodiments 1 to 3 are applied to a high-efficiency network service providing terminal. In FIG. 1, the hardware includes a multi-operating system (OS1 and OS2) and is connected to a network via an NIC. A content provider server and other machines are connected to the network. The hardware functions as a highly efficient network service providing terminal.
[0464]
In the figure, the high-efficiency network service providing terminal is similar to the remote management terminal (see FIG. 66), in which one OS1 is under the management of the user and the other OS2 is under the management of the net service. Is a terminal that distributes in advance the content under the management of OS2 (DK2) and realizes the immediate use of the content from the DK1 managed by OS1 at the release time.
[0465]
After the content is distributed from the content provider server to the DK2 under the management of the OS2 via the network, the content is provided from the DK2 to the DK1 under the management of the OS1 at the request of the user, and the content can be used immediately. . In this way, in the content provider server, concentration of download access is prevented by pre-delivery.
[0466]
FIG. 68 is a diagram illustrating a case where the first to third embodiments are applied to a high-security Web service providing server. In FIG. 1, the hardware includes a multi-operating system (OS1 and OS2) and is connected to a network via an NIC. A web browsing terminal is connected to the network. The hardware functions as a high security Web service providing server.
[0467]
In the high security Web service providing server shown in FIG. 1, an environment accessible from outside is OS2, and an environment accessible only by local users is OS1.
[0468]
For example, Web published contents and usage logs are stored in the DK2 managed by the OS2. On the other hand, data that is not desired to be disclosed is stored in the DK1 under the management of the OS1. In this case, it is possible to avoid a situation in which information that is not desired to be disclosed is erroneously disclosed on the Web due to a setting error or the like. Further, even when the OS2 side is attacked by a malicious third party from the outside, the OS1 can operate except for the network function.
[0469]
Although the first to third embodiments according to the present invention have been described in detail with reference to the drawings, specific examples of the configuration are not limited to the first to third embodiments and depart from the gist of the present invention. Even if there is a design change within the range not to be included, it is included in the present invention.
[0470]
For example, in the above-described first to third embodiments, a program for realizing the above-described multi-operating system control method is recorded on the computer-readable recording medium 200 shown in FIG. Each function may be realized by causing the computer 100 shown in the figure to read the executed program and executing the program.
[0471]
The computer 100 shown in FIG. 1 includes a CPU 110 that executes the above-described program, an input device 120 such as a keyboard and a mouse, a ROM (Read Only Memory) 130 that stores various data, and a RAM (Random) that stores calculation parameters and the like. Access Memory) 140, a reading device 150 that reads a program from the recording medium 200, an output device 160 such as a display and a printer, and a bus 170 that connects each unit of the device.
[0472]
After reading the program recorded on the recording medium 200 via the reading device 150, the CPU 110 executes the program to realize the functions described above. Note that the recording medium 200 includes an optical disk, a flexible disk, a hard disk, and the like.
[0473]
In the first and second embodiments, the two operating systems 30 shown in FIG. ₁ , OS30 ₂ However, the present invention also includes a configuration example having three or more OSs.
[0474]
For example, in the case of a configuration having n OSs of OS1, OS2, OS3,..., OSn, when an interrupt (1) occurs during the running of the OS1, the system switches from the OS1 to the OS2 and interrupts the running of the OS1 When (2) occurs, switching from OS1 to OS3 is performed, and similarly, control is performed so as to switch from OS1 to OSn when an interruption (n-1) occurs during the running of OS1.
[0475]
【The invention's effect】
As described above, according to the present invention, the normal connection destination in the storage means for temporarily storing data to be communicated is set to the second operating system, and the data to be communicated is stored in the first operating system. In the related case, the connection destination of the storage unit for temporarily storing data is set to the first operating system via the second operating system, so that the first operating system and the second operating system can be connected during communication. It is possible to avoid the possibility that the system is simultaneously attacked from the outside, and it is possible to improve the security and reliability of the multi-operating system.
[0476]
Further, according to the present invention, when data addressed to the first operating system is stored in the storage unit during execution of the second operating system, the connection of the storage unit is established via the second operating system. Since the first operating system is set, it is possible to improve the security and reliability of the multi-operating system in data communication addressed to the first operating system.
[0477]
Further, according to the present invention, when the reliability of the data is equal to or more than the value registered in advance, the data stored in the storage means is directly transmitted to the first operating system without relaying the second operating system. Since the transfer is performed, the communication processing can be speeded up.
[0478]
According to the present invention, when data addressed to the second operating system is stored in the storage unit while the first operating system is being executed, switching from the first operating system to the second operating system is performed. Therefore, the effect is obtained that the security and reliability of the multi-operating system in data communication addressed to the second operating system can be improved.
[0479]
Further, according to the present invention, when data addressed to the first operating system is stored in the storage unit during execution of the first operating system, the connection destination of the storage unit is relayed to the second operating system. Therefore, the security and reliability of the multi-operating system in data communication addressed to the first operating system can be improved.
[0480]
According to the present invention, when communication is performed from the first operating system to the second operating system, the connection destination of the storage unit that temporarily stores data to be communicated is set to the second connection destination as a normal connection destination. After the setting is changed from the operating system to the first operating system and the data from the first operating system is stored in the storage, the connection destination of the storage is changed from the first operating system to the second operating system. Therefore, there is an effect that security and reliability of the multi-operating system in data communication from the first operating system to the second operating system can be improved.
[0481]
Further, according to the present invention, when communication from the first operating system to another device is performed, the connection destination of the storage unit for temporarily storing data to be communicated is changed from the second operating system as a normal connection destination. After changing the setting to the first operating system, storing data from the first operating system in the storage means, and changing the connection destination of the storage means from the first operating system to the second operating system. Therefore, there is an effect that security and reliability of the multi-operating system in data communication from the first operating system to another device can be improved.
[0482]
Further, according to the present invention, when the reliability of the data is equal to or more than a pre-registered value, the data stored in the storage unit is not changed without changing the setting, and without relaying the second operating system. Is transmitted directly to another device, so that the communication processing can be speeded up.
[0483]
According to the present invention, when communication is performed from the second operating system to the first operating system, data from the second operating system is stored in the storage unit, and the connection destination of the storage unit is set to the second operating system. Since the setting is changed from the operating system to the first operating system, it is possible to improve the security and reliability of the multi-operating system in data communication from the second operating system to the first operating system. Play.
[0484]
Further, according to the present invention, the normality of the data is checked and the communication processing is continued only when the data is normal, so that the security and reliability of the multi-operating system can be further improved. Play.
[0485]
Further, according to the present invention, since only the second operating system is authorized to set the connection destination of the storage unit, the first operating system having no authority can be attacked from outside. And the security and reliability of the multi-operating system can be significantly improved.
[0486]
Further, according to the present invention, since the multi-operating system control method according to any one of claims 1 to 11 is executed by a computer, the program can be read by a computer. 11 has the effect that the operation of the invention described in any one of the eleventh aspect can be executed by a computer.
[Brief description of the drawings]
FIG. 1 is a block diagram showing a configuration of a first exemplary embodiment according to the present invention.
FIG. 2 is a block diagram illustrating an operation outline 1 according to the first embodiment.
FIG. 3 is a block diagram illustrating an operation outline 2 according to the first embodiment.
FIG. 4 is a block diagram illustrating an outline 3 of operation in the first embodiment.
FIG. 5 is a block diagram illustrating an operation outline 4 in the first embodiment.
FIG. 6 is a block diagram illustrating an operation example 1 according to the first embodiment.
FIG. 7 is a flowchart illustrating an operation example 1 according to the first embodiment.
FIG. 8 is a block diagram illustrating an operation example 2 according to the first embodiment.
FIG. 9 is a flowchart illustrating an operation example 2 in the first embodiment.
FIG. 10 is a block diagram illustrating an operation example 3 in the first embodiment.
FIG. 11 is a flowchart illustrating an operation example 3 in the first embodiment.
FIG. 12 is a block diagram illustrating an operation example 4 in the first embodiment.
FIG. 13 is a flowchart illustrating an operation example 4 in the first embodiment.
FIG. 14 is a block diagram illustrating an operation example 5 in the first embodiment.
FIG. 15 is a flowchart illustrating an operation example 5 in the first embodiment.
FIG. 16 is a block diagram illustrating an operation example 6 in the first embodiment.
FIG. 17 is a flowchart illustrating an operation example 6 in the first embodiment.
FIG. 18 is a block diagram illustrating an operation example 7 in the first embodiment.
FIG. 19 is a flowchart illustrating an operation example 7 in the first embodiment.
FIG. 20 is a block diagram illustrating an operation example 8 in the first embodiment.
FIG. 21 is a flowchart illustrating an operation example 8 in the first embodiment.
FIG. 22 is a flowchart illustrating NIC transmission processing.
FIG. 23 is a flowchart illustrating NIC reception processing.
FIG. 24 is a flowchart illustrating a second reception process.
FIG. 25 is a flowchart illustrating a second transmission process.
FIG. 26 is a flowchart illustrating a first reception process.
FIG. 27 is a flowchart illustrating a first transmission process.
FIG. 28 is a block diagram illustrating an operation example 1 of the second embodiment according to the present invention;
FIG. 29 is a flowchart illustrating an operation example 1 of the second embodiment.
FIG. 30 is a block diagram illustrating an operation example 2 of the second embodiment.
FIG. 31 is a flowchart illustrating an operation example 2 of the second embodiment.
FIG. 32 is a block diagram illustrating an operation example 3 of the second embodiment.
FIG. 33 is a flowchart illustrating an operation example 3 of the second embodiment.
FIG. 34 is a flowchart illustrating a second reception process.
FIG. 35 is a flowchart illustrating a first transmission process.
FIG. 36 is a block diagram showing a configuration of a third exemplary embodiment of the present invention.
FIG. 37 is a block diagram illustrating an operation outline 1 according to the third embodiment.
FIG. 38 is a block diagram illustrating an outline of operation 2 in the third embodiment.
FIG. 39 is a block diagram illustrating an outline of operation 3 in the third embodiment.
FIG. 40 is a block diagram illustrating an outline of operation 4 in the third embodiment.
FIG. 41 is a block diagram illustrating an operation example 1 of the third embodiment.
FIG. 42 is a flowchart illustrating an operation example 1 of the third embodiment.
FIG. 43 is a block diagram illustrating an operation example 2 of the third embodiment.
FIG. 44 is a flowchart illustrating an operation example 2 of the third embodiment.
FIG. 45 is a block diagram illustrating an operation example 3 of the third embodiment.
FIG. 46 is a flowchart illustrating an operation example 3 of the third embodiment.
FIG. 47 is a block diagram illustrating an operation example 4 of the third embodiment.
FIG. 48 is a flowchart illustrating an operation example 4 of the third embodiment.
FIG. 49 is a block diagram illustrating an operation example 5 of the third embodiment.
FIG. 50 is a flowchart illustrating an operation example 5 of the third embodiment.
FIG. 51 is a block diagram illustrating an operation example 6 of the third embodiment.
FIG. 52 is a flowchart illustrating an operation example 6 of the third embodiment.
FIG. 53 is a block diagram illustrating an operation example 7 of the third embodiment.
FIG. 54 is a flowchart illustrating an operation example 7 of the third embodiment.
FIG. 55 is a block diagram illustrating an operation example 8 of the third embodiment.
FIG. 56 is a flowchart illustrating an operation example 8 of the third embodiment.
FIG. 57 is a flowchart illustrating a reception buffer register rewriting process.
FIG. 58 is a flowchart illustrating a transmission buffer register rewriting process.
FIG. 59 is a flowchart illustrating a second reception process.
FIG. 60 is a flowchart illustrating a first reception process.
FIG. 61 is a flowchart illustrating a first transmission process.
FIG. 62 is a diagram illustrating applied examples 1 to 4 of the first to third embodiments according to the present invention.
FIG. 63 is a diagram illustrating a case where the first to third embodiments are applied to system migration;
FIG. 64 is a diagram illustrating a case where the first to third embodiments are applied to a high security gateway.
FIG. 65 is a diagram illustrating a case where Embodiments 1 to 3 are applied to a desktop Grid terminal.
FIG. 66 is a diagram illustrating a case where Embodiments 1 to 3 are applied to a remote management terminal.
FIG. 67 is a diagram illustrating a case where Embodiments 1 to 3 are applied to a high-efficiency network service providing terminal.
FIG. 68 is a diagram illustrating a case where the first to third embodiments are applied to a high security Web service providing server.
FIG. 69 is a block diagram showing a configuration of a modification of the first to third embodiments.
FIG. 70 is a block diagram illustrating a configuration example 1 of a conventional multi-operating system.
FIG. 71 is a block diagram illustrating a configuration example 2 of a conventional multi-operating system.
[Explanation of symbols]
10 NIC
11 NIC transmission processing unit
12 Transmission buffer
13 NIC reception processing unit
14 Receive buffer
15 Transmit buffer register
16 Receive buffer register
20 ₁ NIC device driver
21 ₁ OS switching processing unit
22 ₁ Transmission processing unit
23 ₁ Transmit buffer
24 ₁ Reception processing unit
25 ₁ Receive buffer
20 ₂ NIC device driver
21 ₂ OS switching processing unit
22 ₂ Transmission processing unit
23 ₂ Transmit buffer
24 ₂ Reception processing unit
25 ₂ Receive buffer
26 ₂ Data check processing unit
27 ₂ Transmission buffer register rewrite processing unit
28 ₂ Reception buffer register rewrite processing unit
30 ₁ OS
30 ₂ OS
100 computer
140 RAM

Claims (23)

A multi-operating system control method for controlling a first operating system and a second operating system running on one computer,
A normal connection destination in the storage unit for temporarily storing data to be communicated is set to the second operating system, and when the data to be communicated is related to the first operating system, the data is temporarily stored. Setting a connection destination of the storage means to be set to the first operating system via the second operating system;
A method for controlling a multi-operating system, comprising: A multi-operating system control method for controlling a first operating system and a second operating system running on one computer,
When the data addressed to the first operating system is stored in the storage unit while the second operating system is running, the connection of the storage unit is changed to the first operation system via the second operating system. Setting process to set in the operating system,
A method for controlling a multi-operating system, comprising: In the setting step, when the reliability of the data is equal to or greater than a value registered in advance, the data stored in the storage unit is transferred to the first operating system without relaying the second operating system. 3. The multi-operating system control method according to claim 1, wherein the data is directly passed. A multi-operating system control method for controlling a first operating system and a second operating system running on one computer,
Setting a normal connection destination in the storage means for temporarily storing data to be communicated in the second operating system;
A step of switching from the first operating system to the second operating system when data addressed to the second operating system is stored in the storage unit during execution of the first operating system;
A method for controlling a multi-operating system, comprising: A multi-operating system control method for controlling a first operating system and a second operating system running on one computer,
When data addressed to the first operating system is stored in a storage unit during execution of the first operating system, the connection destination of the storage unit is set to the first operating system via the second operating system. Configuration process to configure the operating system of the
A method for controlling a multi-operating system, comprising: A multi-operating system control method for controlling a first operating system and a second operating system running on one computer,
When performing communication from the first operating system to the second operating system, the connection destination of the storage unit for temporarily storing data to be communicated is changed from the second operating system as a normal connection destination to the first operating system. A first setting change step of changing settings to the operating system of
A storing step of storing data from the first operating system in the storing means;
A second setting change step of changing the connection destination of the storage means from the first operating system to the second operating system;
A method for controlling a multi-operating system, comprising: A multi-operating system control method for controlling a first operating system and a second operating system running on one computer,
When performing communication from the first operating system to another device, the connection destination of the storage unit for temporarily storing data to be communicated is changed from the second operating system as a normal connection destination to the first operating system. A first setting change step of changing a setting;
A storing step of storing data from the first operating system in the storing means;
A second setting change step of changing the connection destination of the storage means from the first operating system to the second operating system;
A transmission step of transmitting the data stored in the storage means to the other device via the second operating system,
A method for controlling a multi-operating system, comprising: If the reliability of the data is equal to or greater than a value registered in advance, the setting change is not performed in the second setting change step, and the second operating system is not relayed in the transmission step. 8. The multi-operating system control method according to claim 7, wherein the data stored in the storage unit is directly transmitted to the other device. A multi-operating system control method for controlling a first operating system and a second operating system running on one computer,
Setting a normal connection destination in the storage means for temporarily storing data to be communicated in the second operating system;
When performing communication from the second operating system to the first operating system, a storing step of storing data from the second operating system in the storing unit;
A setting change step of changing the connection destination of the storage means from the second operating system to the first operating system;
A method for controlling a multi-operating system, comprising: The multi-operating system control method according to any one of claims 1 to 9, further comprising a data check step of checking the normality of the data and continuing communication processing only when the data is normal. 11. The multi-operating system control method according to claim 1, wherein only the second operating system is authorized to set the connection destination of the storage unit. A program for causing a computer to execute the multi-operating system control method according to claim 1. A multi-operating system control device for controlling a first operating system and a second operating system running on one computer,
A normal connection destination in the storage unit for temporarily storing data to be communicated is set to the second operating system, and when the data to be communicated is related to the first operating system, the data is temporarily stored. Setting means for setting the connection destination of the storage means to be set to the first operating system via the second operating system;
A multi-operating system control device characterized by comprising: A multi-operating system control device for controlling a first operating system and a second operating system running on one computer,
When the data addressed to the first operating system is stored in the storage unit while the second operating system is running, the connection of the storage unit is changed to the first operation system via the second operating system. Setting means for setting in the operating system,
A multi-operating system control device characterized by comprising: In the setting unit, when the reliability of the data is equal to or more than a value registered in advance, the data stored in the storage unit is transferred to the first operating system without relaying the second operating system. The multi-operating system control device according to claim 13, wherein the multi-operating system control device is passed directly. A multi-operating system control device for controlling a first operating system and a second operating system running on one computer,
Setting means for setting a normal connection destination in the storage means for temporarily storing data to be communicated in the second operating system;
Switching means for switching from the first operating system to the second operating system when data addressed to the second operating system is stored in the storage means during execution of the first operating system;
A multi-operating system control device characterized by comprising: A multi-operating system control device for controlling a first operating system and a second operating system running on one computer,
When data addressed to the first operating system is stored in a storage unit during execution of the first operating system, the connection destination of the storage unit is set to the first operating system via the second operating system. Setting means for setting the operating system of the
A multi-operating system control device characterized by comprising: A multi-operating system control device for controlling a first operating system and a second operating system running on one computer,
When performing communication from the first operating system to the second operating system, the connection destination of the storage unit for temporarily storing data to be communicated is changed from the second operating system as a normal connection destination to the first operating system. First setting change means for changing the setting to the operating system of
Storage control means for storing data from the first operating system in the storage means;
Second setting change means for changing the connection destination of the storage means from the first operating system to the second operating system;
A multi-operating system control device characterized by comprising: A multi-operating system control device for controlling a first operating system and a second operating system running on one computer,
When performing communication from the first operating system to another device, the connection destination of the storage unit for temporarily storing data to be communicated is changed from the second operating system as a normal connection destination to the first operating system. First setting change means for changing the setting;
Storage control means for storing data from the first operating system in the storage means;
Second setting change means for changing the connection destination of the storage means from the first operating system to the second operating system;
A transmission unit that relays the data stored in the storage unit to the other device by relaying the second operating system;
A multi-operating system control device characterized by comprising: When the reliability of the data is equal to or greater than a value registered in advance, the second setting change unit does not change the setting, and the transmitting unit does not relay the second operating system. 20. The multi-operating system control device according to claim 19, wherein the data stored in the storage unit is directly transmitted to the other device. A multi-operating system control device for controlling a first operating system and a second operating system running on one computer,
Setting means for setting a normal connection destination in the storage means for temporarily storing data to be communicated in the second operating system;
A storage control unit configured to store data from the second operating system in the storage unit when performing communication from the second operating system to the first operating system;
Setting change means for changing the connection destination of the storage means from the second operating system to the first operating system;
A multi-operating system control device characterized by comprising: 22. The multi-operating system control device according to claim 13, further comprising a data check unit that checks the normality of the data and continues communication processing only when the data is normal. . 23. The multi-operating system control device according to claim 13, wherein an authority is given only to the second operating system with respect to the setting of the connection destination of the storage unit.

Images