System and method for associating NIS attributes with CIFS clients

US 7,668,881 B1
Filed: 06/01/2004
Issued: 02/23/2010
Est. Priority Date: 06/01/2004
Status: Active Grant

First Claim

Patent Images

1. A computer implemented method for associating first attributes of a first protocol with a file, the file previously generated on a storage system and associated with second attributes of a second protocol, the method comprising:

receiving, over a computer network, a request for the first attributes of the file using the first protocol;

in response to determining that the first attributes of the file do not exist, obtaining the second attributes associated with the file by a server of the first protocol having a server domain name,generating a new name for the first attributes of the first protocol by using the domain name of the server of the first protocol associated with the received request as a domain portion of the new name and a user identifier of the second attributes of the second protocol obtained by the server of the first protocol as a relative identifier of the new name;

generating a new group name for the first attributes of the first protocol by using the domain name of the server of the first protocol associated with the received request as a domain portion of the new group name and a group identifier of the second attributes of the second protocol obtained by the server of the first protocol as a relative identifier of the new group name; and

generating a new access control list for the first attributes based on permission bits of the second attributes and the new name and the new group name; and

sending, in response to the received request, over a computer network, the new name in the first attributes, the new group name in the first attributes and the new access control list to a requesting client.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system and method for associating NIS attributes with CIFS client. Upon requesting attributes by a CIFS client, a CIFS security ID (SID) is generated for the owner and group from the NIS attributes associated with the NIS name. The generated SIDs are returned to the CIFS client. The SIDs are generated using the NIS UID or GID and a CIFS domain associated with the file server storing the referenced file.

17 Citations

View as Search Results

33 Claims

1. A computer implemented method for associating first attributes of a first protocol with a file, the file previously generated on a storage system and associated with second attributes of a second protocol, the method comprising:
- receiving, over a computer network, a request for the first attributes of the file using the first protocol;
  
  in response to determining that the first attributes of the file do not exist, obtaining the second attributes associated with the file by a server of the first protocol having a server domain name,generating a new name for the first attributes of the first protocol by using the domain name of the server of the first protocol associated with the received request as a domain portion of the new name and a user identifier of the second attributes of the second protocol obtained by the server of the first protocol as a relative identifier of the new name;
  
  generating a new group name for the first attributes of the first protocol by using the domain name of the server of the first protocol associated with the received request as a domain portion of the new group name and a group identifier of the second attributes of the second protocol obtained by the server of the first protocol as a relative identifier of the new group name; and
  
  generating a new access control list for the first attributes based on permission bits of the second attributes and the new name and the new group name; and
  
  sending, in response to the received request, over a computer network, the new name in the first attributes, the new group name in the first attributes and the new access control list to a requesting client.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
- - 2. The computer implemented method of claim 1 wherein the first attributes comprises common Internet file system (CIFS) attributes and wherein the second attributes comprises network information services (NIS) attributes.
  - 3. The computer implemented method of claim 2 wherein the NIS attributes comprise network file system attributes.
  - 4. The computer implemented method of claim 1 wherein the step of generating a new name in the first attributes, further comprises:
    - creating a security identifier (SID) using a predefined domain and a user identifier associated with the second attributes.
  - 5. The computer implemented method of claim 4 wherein the predefined domain comprises a domain associated with the storage system serving the file.
  - 6. The computer implemented method of claim 1 wherein the user identifier associated with the second attributes comprises a NIS user identifier (UID).
  - 7. The computer implemented method of claim 1 wherein the step of creating a group in the first attributes, further comprises:
    - creating a security identifier (SID) using a predefined domain and a group identifier associated with the second set of attributes.
  - 8. The computer implemented method of claim 7 wherein the predefined domain comprises a domain associated with the storage system serving the file.
  - 9. The computer implemented method of claim 1 wherein the group identifier associated with the second attributes comprises a NIS group identifier (GID).
  - 10. The computer implemented method of claim 1 wherein the request is a client requesting the first attributes.
  - 11. The computer implemented method of claim 1 wherein the step of generating an access control list in the first attributes, further comprises:
    - mapping attributes associated with a user identifier (UID) in the second attributes to an access control entry in the first attributes.
  - 12. The computer implemented method of claim 1 wherein the step of generating an access control list in the first attributes, further comprises:
    - mapping attributes associated with a group identifier (GID) in the second attributes to an access control entry in the first attributes.
  - 13. The computer implemented method of claim 1 wherein the step of generating an access control list in the first attributes, further comprises:
    - mapping attributes associated with others in the second attributes to an access control entry in the first attributes.
  - 14. The computer implemented method of claim 1 wherein the storage system comprises a file server.

15. A system for associating first attributes of a first protocol with a file, the file previously generated on a storage system and associated with second attributes of a second protocol, the system comprising:
- means for receiving, over a computer network, a request for the first attributes of the file using the first protocol;
  
  means for obtaining the second attributes associated with the file by a server of the first protocol having a server domain name in response to determining that the first attributes of the file do not exist,means for generating a new name for the first attributes of the first protocol by using the domain name of the server of the first protocol associated with the received request as a domain portion of the new name and a user identifier of the second attributes of the second protocol obtained by the server of the first protocol as a relative identifier of the new name;
  
  means for generating a new group name for the first attributes by using the domain name of the server of the first protocol associated with the received request as a domain portion of the new group name and a group identifier of the second attributes of the second protocol obtained by the server of the first protocol as a relative identifier of the new group name; and
  
  means for generating a new access control list for the first set of attributes based on permission bits of the second attributes and the new name and the new group name; and
  
  means for sending, in response to the received request, over a computer network, the new name in the first attributes, the new group name in the first attributes and the new access control list to a requesting client.
- View Dependent Claims (16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27)
- - 16. The system of claim 15 wherein the first attributes comprises common Internet file system (CIFS) attributes and wherein the second attributes comprises network information services (NIS) attributes.
  - 17. The system of claim 16 wherein the NIS attributes comprise network file system attributes.
  - 18. The system of claim 16 wherein the means for generating a new name in the first attributes, further comprises:
    - means for creating a security identifier (SID) using a predefined domain and a user identifier associated with the second set of attributes.
  - 19. The system of claim 15 wherein the predefined domain comprises a domain associated with the storage system serving the file.
  - 20. The system of claim 15 wherein the user identifier associated with the second attributes comprises a NIS user identifier (UID).
  - 21. The system of claim 15 wherein means for creating a group in the first attributes, further comprises:
    - means for creating a security identifier (SID) using a predefined domain and a group identifier associated with the second set of attributes.
  - 22. The system of claim 15 wherein the predefined domain comprises a domain associated with the storage system serving the file.
  - 23. The system of claim 15 wherein the group identifier associated with the second attributes comprises a NIS group identifier (GID).
  - 24. The system of claim 15 wherein the means for generating an access control list in the first attributes, further comprises:
    - means for mapping attributes associated with a user identifier (UID) in the second set of attributes to an access control entry in the first set of attributes.
  - 25. The system of claim 15 wherein the means for generating an access control list in the first attributes, further comprises:
    - means for mapping attributes associated with a group identifier (GID) in the second attributes to an access control entry in the first attributes.
  - 26. The system of claim 15 wherein the means for generating an access control list in the first attributes, further comprises:
    - means for mapping attributes associated with others in the second attributes to an access control entry in the first attributes.
  - 27. The system of claim 15 wherein the storage system comprises a file server.

28. A computer readable medium containing executable program instructions executed by a processor, comprising:
- program instructions that receive, over a computer network, a request for a first attributes of a file using the first protocol;
  
  program instructions that obtain second attributes associated with the file by a server of the first protocol having a server domain name in response to determining that the first attributes of the file do not exist,program instructions that generate a new name for the first attributes by using the domain name of the server of the first protocol associated with the received request as a domain portion of the new name and a user identifier of the second attributes of the second protocol obtained by the server of the first protocol as a relative identifier of the new name;
  
  program instructions that generate a new group name for the first attributes of the first protocol by using the domain name of the server of the first protocol associated with the received request as a domain portion of the new group name and a group identifier of the second attributes of the second protocol obtained by the server of the first protocol as a relative identifier of the new group name; and
  
  program instructions that generate a new access control list for the first attributes based on permission bits of the second attributes and the new name and the new group name; and
  
  program instructions that send, in response to the received request, over a computer network, the new name in the first attributes, the new group name in the first attributes and the new access control list to a requesting client.
- View Dependent Claims (29)
- - 29. The computer readable medium of claim 28 wherein the first attributes comprises common Internet file system (CIFS) attributes and wherein the second attributes comprises network information services (NIS) attributes.

30. A system for associating first attributes of a first protocol with a file, the file previously generated on a storage system and associated with second attributes of a second protocol, the system comprising:
- a network adapter to receive a request for the first attributes of the file using the first protocol;
  
  a file server storing the file and configured to request the first attributes associated with the file, the file server of the first protocol having a server domain name;
  
  a client operatively interconnected with the file server; and
  
  a storage operating system executing on the file server, the storage operating system having the server of the first protocol configured to, in response to the first attributes associated with the file not existing;
  
  obtain the second attributes associated with the file;
  
  generate a new name for the first attributes of the first protocol associated with the received request by using the domain name of the server of the first protocol as a domain portion of the new name and a user identifier of the second attributes of the second protocol obtained by the server of the first protocol as a relative identifier of the new name;
  
  generate a new group name for the first attributes of the first protocol associated with the received request by using the domain name of the server of the first protocol as a domain portion of the new group name and a group identifier of the second attributes of the second protocol obtained by the server of the first protocol as a relative identifier of the new group name; and
  
  generate a new access control list for the first attributes based on permission bits of the second attributes and the new name and the new group name; and
  
  send, in response to the received request, over a computer network, the new name in the first attributes, the new group name in the first attributes and the new access control list to the client.
- View Dependent Claims (31, 32, 33)
- - 31. The system of claim 30 wherein the server of the first protocol implements a common Internet file system protocol.
  - 32. The system of claim 30 wherein the first attributes comprises common Internet file system (CIFS) attributes and wherein the second attributes comprises network information services (NIS) attributes.
  - 33. The system of claim 32 wherein the NIS attributes comprise network file system attributes.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
NetApp, Inc.
Original Assignee
NetApp, Inc.
Inventors
Drake, Daniel John, Hoffmann, John Eric
Primary Examiner(s)
Rones; Charles
Assistant Examiner(s)
Choi; Yuk Ting

Application Number

US10/858,182
Time in Patent Office

2,093 Days
Field of Search

707/205
US Class Current

1/1
CPC Class Codes

G06F 16/10 File systems; File servers

Y10S 707/99956 File allocation

System and method for associating NIS attributes with CIFS clients

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

17 Citations

33 Claims

Specification

Solutions

Use Cases

Quick Links

System and method for associating NIS attributes with CIFS clients

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

17 Citations

33 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links