Cluster-wide unique ID for object access control lists
원문보기
IPC분류정보
국가/구분
United States(US) Patent
등록
국제특허분류(IPC7판)
G06F-017/30
G06F-011/14
출원번호
US-0364210
(2012-03-29)
등록번호
US-9575975
(2017-02-21)
국제출원번호
PCT/US2012/031100
(2012-03-29)
§371/§102 date
20140610
(20140610)
국제공개번호
WO2013/147782
(2013-10-03)
발명자
/ 주소
Clark, Nathan W.
Palmer, Trek
Bryant, Alan G.
출원인 / 주소
Hitachi Data Systems Corporation
대리인 / 주소
Mattingly & Malur, PC
인용정보
피인용 횟수 :
0인용 특허 :
5
초록▼
A redundant array of independent nodes are networked together. Each node executes an instance of an application that provides object-based storage. The nodes are grouped into systems each having multiple nodes. Objects in the systems have access control lists (ACLs) associated therewith. A method of
A redundant array of independent nodes are networked together. Each node executes an instance of an application that provides object-based storage. The nodes are grouped into systems each having multiple nodes. Objects in the systems have access control lists (ACLs) associated therewith. A method of providing a search key to each ACL in any one system comprises: selecting a region for each metadata object pertaining to the objects in the system; and generating, for each ACL associated with an object in the system, an ACL ID (identifier) as a search key which includes the region number of the region selected for the metadata object pertaining to the object, a region map level corresponding to the region selected, and a monotonically increasing counter value that is automatically incremented each time an ACL ID is generated. The ACL ID remains unique during reconfiguration via splitting/merging existing distributed portions of the database.
대표청구항▼
1. A method for a system comprising a plurality of nodes, the system configured to store objects having access control lists (ACLs) associated with the objects, and, metadata objects associated with the objects in a plurality of regions distributed across the plurality of nodes, the method comprisin
1. A method for a system comprising a plurality of nodes, the system configured to store objects having access control lists (ACLs) associated with the objects, and, metadata objects associated with the objects in a plurality of regions distributed across the plurality of nodes, the method comprising: selecting a region from the plurality of regions for each metadata object, wherein a region number of the selected region to store a metadata object is identified by hashing a metadata object attribute of the metadata object and extracting a number of bits of a resulting hash value, wherein a region map level dictates the number of bits to use of the extracted number of bits of the hash value to identify the region for the metadata object, and dictates the number of the regions;generating an ACL ID (identifier), the ACL ID including the region number of the selected region to store the metadata object pertaining to an object, the region map level corresponding to the selected region, and a counter value that is incremented each time an ACL ID is generated;when a redistributing of the metadata objects occurs and when there are multiple ACL IDs for a same ACL after the redistributing:selecting one ACL ID which has the highest counter value from the multiple ACL IDs;removing each remaining ACL ID not selected from the multiple ACL IDs; and updating the relationships between the objects and the ACLs associated with the objects in the system as a result of the selecting one ACL ID and the removing of each remaining ACL ID. 2. The method according to claim 1, wherein each region is uniquely identified by a combination of the region map level and the region number;wherein each ACL ID is uniquely identified by a combination of the region map level and the region number and the counter value; andwherein each region has a corresponding region database that shows, via the ACL IDs, relationships between the objects and the ACLs associated with the objects in the system. 3. The method according to claim 2, further comprising, in response to increasing the region map level from a current region map level of N to a next region map level of N+1: increasing the number of regions and the number of corresponding region databases from 2N current level regions and current level region databases to 2N+1 next level regions and next level region databases;redistributing the metadata objects in the current level regions and any new metadata objects pertaining to new objects to the next level regions, wherein the region number of the region of the next level regions to select for a metadata object is identified by hashing a metadata object attribute of the metadata object and extracting a number of bits of a resulting hash value, and wherein the next region map level dictates the number of bits to use of the extracted number of bits of the hash value to identify the region for the metadata object; andif there are one or more new objects in the system, then generating a new ACL ID including the region number of the selected region to store the new metadata object pertaining to the new object, the region map level corresponding to the selected region, and the counter value that is incremented each time an ACL ID is generated. 4. The method according to claim 3, wherein the redistributing comprises: for each next level region database, performing a query on the current level region databases to identify all metadata objects to be redistributed to said each next level region database; andcopying the identified metadata objects to said each next level region database. 5. The method according to claim 2, further comprising, in response to decreasing the region map level from a current region map level of N to a next region map level of N−1: decreasing the number of regions and the number of corresponding region databases from 2N current level regions and current level region databases to 2N−1 next level regions and next level region databases; andredistributing the metadata objects in the current level regions to the next level regions, wherein the region number of the region of the next level regions to select for a metadata object is identified by hashing a metadata object attribute of the metadata object and extracting a number of bits of a resulting hash value, and wherein the next region map level dictates the number of bits to use of the extracted number of bits of the hash value to identify the region for the metadata object. 6. The method according to claim 5, wherein the redistributing comprises: for each next level region database, performing a query on the current level region databases to identify all metadata objects to be redistributed to said each next level region database; andcopying the identified metadata objects to said each next level region database. 7. A system configured to store objects having access control lists (ACLs) associated with the objects, and metadata objects associated with the objects in a plurality of regions distributed in the system, the system comprising: a network; anda plurality of nodes coupled by the network, each of the nodes include a processor configured to:select a region from the plurality of regions for each metadata object, wherein a region number of the selected region to store a metadata object is identified by hashing a metadata object attribute of the metadata object and extracting a number of bits of the hash value, wherein a region map level dictates the number of bits to use of the extracted number of bits of the hash value to identify the region for the metadata object, and dictates the number of the regions;generate an ACL ID (identifier), the ACL ID including the region number of the selected region to store the metadata object pertaining to an object, the region map level corresponding to the selected region, and a counter value that is incremented each time an ACL ID is generated;when a redistributing of the metadata objects occurs and when there are multiple ACL IDs for a same ACL after the redistributing:selecting one ACL ID which has the highest counter value from the multiple ACL IDs;removing each remaining ACL ID not selected from the multiple ACL IDs; and updating the relationships between the objects and the ACLs associated with the objects in the system as a result of the selecting one ACL ID and the removing of each remaining ACL ID. 8. The apparatus according to claim 7, wherein each region is uniquely identified by a combination of the region map level and the region number;wherein each ACL ID is uniquely identified by a combination of the region map level and the region number and the counter value; andwherein each region has a corresponding region database that shows, via the ACL IDs, relationships between the objects and the ACLs associated with the objects in the system. 9. The apparatus according to claim 8, wherein the processor is configured, in response to increasing the region map level from a current region map level of N to a next region map level of N+1, to: increase the number of regions and the number of corresponding region databases from 2N current level regions and current level region databases to 2N+1 next level regions and next level region databases;redistribute the metadata objects in the current level regions and any new metadata objects pertaining to new objects to the next level regions, wherein the region number of the region of the next level regions to select for a metadata object is identified by hashing a metadata object attribute of the metadata object and extracting a number of bits of a resulting hash value, and wherein the next region map level dictates the number of bits to use of the extracted number of bits of the hash value to identify the region for the metadata object; andif there are one or more new objects in the system, then generate a new ACL ID including the region number of the selected region to store the new metadata object pertaining to the new object, the region map level corresponding to the selected region, and the counter value that is incremented each time an ACL ID is generated. 10. The apparatus according to claim 9, wherein the redistributing comprises: for each next level region database, performing a query on the current level region databases to identify all metadata objects to be redistributed to said each next level region database; andcopying the identified metadata objects to said each next level region database. 11. The apparatus according to claim 8, wherein the processor is configured, in response to decreasing the region map level from a current region map level of N to a next region map level of N−1, to: decrease the number of regions and the number of corresponding region databases from 2N current level regions and current level region databases to 2N−1 next level regions and next level region databases; andredistribute the metadata objects in the current level regions to the next level regions, wherein the region number of the region of the next level regions to select for a metadata object is identified by hashing a metadata object attribute of the metadata object and extracting a number of bits of a resulting hash value, and wherein the next region map level dictates the number of bits to use of the extracted number of bits of the hash value to identify the region for the metadata object. 12. The apparatus according to claim 11, wherein the redistributing comprises: for each next level region database, performing a query on the current level region databases to identify all metadata objects to be redistributed to said each next level region database; andcopying the identified metadata objects to said each next level region database.
연구과제 타임라인
LOADING...
LOADING...
LOADING...
LOADING...
LOADING...
이 특허에 인용된 특허 (5)
Xu Yikang ; Vahalia Uresh K. ; Jiang Xiaoye ; Gupta Uday ; Tzelnic Percy, File server system using file system storage, data movers, and an exchange of meta data among data movers for file locking and direct access to shared file systems.
※ AI-Helper는 부적절한 답변을 할 수 있습니다.