Expiration of access tokens for quiescing a distributed system

US 7,720,864 B1
Filed: 03/25/2004
Issued: 05/18/2010
Est. Priority Date: 03/25/2004
Status: Expired due to Fees

First Claim

Patent Images

1. A computer-implemented method, comprising:

in response to a metadata server receiving a data access request from one of a plurality of clients, the metadata server;

determining a maximum expiration time indicated by a next scheduled time for exclusive access;

wherein the data access request is for data that is also accessible by one or more other clients of the plurality of clients each having a corresponding unexpired token, and wherein said time for exclusive access is a time when exclusive access to the data is required by a task;

generating an access token that grants the client access to data stored on one or more storage devices associated with the metadata server, wherein the access token comprises an expiration time, wherein the access token is one of a plurality of access tokens each provided to a respective one of the plurality of clients; and

wherein said generating an access token comprises setting the expiration time of the access token to no later than the maximum expiration time indicated by the next scheduled time for exclusive access, such that the access token will be expired during the next scheduled time for exclusive access, thus preventing the client from using the access token to access the data during the next scheduled time for exclusive access, wherein at the next scheduled time for exclusive access the plurality of access tokens are expired without the metadata server transmitting a message to each client to expire its respective access tokens.

View all claims

9 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method, system and computer accessible medium for expiring access tokens in preparation for freezing file images. A metadata server may maintain a next scheduled quiesce time and may issue access tokens configured to expire before the next scheduled quiesce time. A metadata server may set an access token'"'"'s expiration time to a maximum expiration time indicated by the next scheduled quiesce time or may set an access token'"'"'s expiration time to a default expiration time if the default expiration time is earlier than the maximum expiration time. A storage device may recognize and enforce the access token'"'"'s expiration time.

Citations

14 Claims

1. A computer-implemented method, comprising:
- in response to a metadata server receiving a data access request from one of a plurality of clients, the metadata server;
  
  determining a maximum expiration time indicated by a next scheduled time for exclusive access;
  
  wherein the data access request is for data that is also accessible by one or more other clients of the plurality of clients each having a corresponding unexpired token, and wherein said time for exclusive access is a time when exclusive access to the data is required by a task;
  
  generating an access token that grants the client access to data stored on one or more storage devices associated with the metadata server, wherein the access token comprises an expiration time, wherein the access token is one of a plurality of access tokens each provided to a respective one of the plurality of clients; and
  
  wherein said generating an access token comprises setting the expiration time of the access token to no later than the maximum expiration time indicated by the next scheduled time for exclusive access, such that the access token will be expired during the next scheduled time for exclusive access, thus preventing the client from using the access token to access the data during the next scheduled time for exclusive access, wherein at the next scheduled time for exclusive access the plurality of access tokens are expired without the metadata server transmitting a message to each client to expire its respective access tokens.
- View Dependent Claims (2, 3, 4)
- - 2. The computer-implemented method of claim 1, further comprising:
    - determining a default expiration time; and
      
      if the default expiration time is earlier than the maximum expiration time, setting the expiration time of the access token to the default expiration time.
  - 3. The computer-implemented method of claim 1, further comprising the metadata server providing the access token to the client.
  - 4. The computer-implemented method of claim 3, further comprising:
    - a storage device receiving a data I/O request associated with the access token;
      
      comparing a current system time with the access token'"'"'s expiration time;
      
      denying the data I/O request if the current system time is later than the access token'"'"'s expiration time.tokens are expired without the metadata server transmitting a message to each client to expire its respective access tokens.

5. A system, comprising:
- a processor and a memory storing program instructions executable by the processor to implement a metadata server, wherein the metadata server is configured to;
  
  determine a maximum expiration time indicated by a next scheduled time for exclusive access in response to receiving a data access request from a client, wherein the client is one of a plurality of clients;
  
  wherein the data access request is for data that is also accessible by one or more other clients of the plurality of clients each having a corresponding unexpired token, and wherein said time for exclusive access is a time when exclusive access to the data is required by a task;
  
  generate an access token that grants the client access to data stored on one or more storage devices associated with the metadata server, wherein the access token comprises an expiration time, wherein the access token is one of a plurality of access tokens each provided to a respective one of the plurality of clients; and
  
  set the expiration time of the access token to no later than the maximum expiration time such that the access token will be expired during the next scheduled time for exclusive access, thus preventing the client from using the access token to access the data during the next scheduled time for exclusive access, wherein at the next scheduled time for exclusive access the plurality of access tokens are expired without the metadata server transmitting a message to each client to expire its respective access tokens.
- View Dependent Claims (6, 7, 8, 9)
- - 6. The system of claim 5, wherein the metadata server is further configured to:
    - determine a default expiration time; and
      
      set the expiration time of the access token to the default expiration time if the default expiration time is earlier than the maximum expiration time.
  - 7. The system of claim 5, further comprising a storage device, wherein the storage device is configured to:
    - receive a data I/O request associated with the access token;
      
      compare a current system time with the access token'"'"'s expiration time; and
      
      deny the data I/O request if the current system time is later than the access token'"'"'s expiration time.
  - 8. The system of claim 7, wherein the metadata server is further configured to:
    - provide the access token to the client.
  - 9. The system of claim 8,wherein the metadata server is further configured to:
    - provide one access token of the plurality of access tokens to a respective one of a plurality of clients.

10. A computer-readable, storage medium having stored program instructions that when executed by a computer implement:
- a metadata server determining a maximum expiration time indicated by a next scheduled time for exclusive access;
  
  generating an access token that grants one of a plurality of clients access to data stored on one or more storage devices associated with the metadata server, wherein the access token comprises an expiration time, wherein the data is also accessible by one or more other clients of the plurality of clients each having a corresponding unexpired token, wherein the access token is one of a plurality of access tokens each provided to a respective one of the plurality of clients, and wherein said time for exclusive access is a time when exclusive access to the data is required by a task; and
  
  setting the expiration time of the access token to no later than the maximum expiration time such that the access token will be expired during the next scheduled time for exclusive access, thus preventing the client from using the access token to access the data during the next scheduled time for exclusive access, wherein at the next scheduled time for exclusive access the plurality of access tokens are expired without the metadata server transmitting a message to each client to expire its respective access tokens.
- View Dependent Claims (11, 12, 13)
- - 11. The computer-readable, storage accessible medium of claim 10, wherein the program instructions are further computer-executable to implement:
    - determining a default expiration time; and
      
      if the default expiration time is earlier than the maximum expiration time, setting the expiration time of the access token to the default expiration time.
  - 12. The computer-readable, storage accessible medium of claim 10, wherein the program instructions are further computer-executable to implement:
    - receiving a data I/O request associated with the access token;
      
      comparing a current system time with the access token'"'"'s expiration time; and
      
      denying the data I/O request if the current system time is later than the access token'"'"'s expiration time.
  - 13. The computer-readable, storage accessible medium of claim 12, wherein the program instructions are further computer-executable to implement:
    - receiving a data access request from the client; and
      
      providing the access token to the client.

14. A system, comprising:
- means for determining a default expiration time;
  
  means for setting the expiration time of an access token to the earlier of either a maximum expiration time indicated by a next scheduled time for exclusive access or the default expiration time, wherein the access token grants one of a plurality of clients access to data stored on one or more storage devices associated with a metadata server, wherein the access token is one of a plurality of access tokens each provided to a respective one of the plurality of clients, and wherein the access token is set such that the access token will be expired during the next scheduled time for exclusive access, thus preventing the client from using the access token to access the data during the next scheduled time for exclusive access, wherein at the next scheduled time for exclusive access the plurality of access tokens are expired without transmitting a message to each client to expire its respective access tokens;
  
  means for receiving a data I/O request associated with the access token, wherein the data I/O request is for data that is also accessible by one or more other clients of the plurality of clients each having a corresponding unexpired token, and wherein said time for exclusive access is a time when exclusive access to the data is required by a task;
  
  means for comparing a current system time with the access token'"'"'s expiration time; and
  
  means for denying the data I/O request if the current system time is later than the access token'"'"'s expiration time.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Veritas Technologies, LLC (Whitehouse Group Ltd.)
Original Assignee
Symantec Operating Corporation (Gen Digital Inc.)
Inventors
Lanzatella, Thomas W., Muth, John A.
Primary Examiner(s)
PANNALA, SATHYANARAYA R

Application Number

US10/809,207
Time in Patent Office

2,245 Days
Field of Search

707/9, 707/1, 707/10, 717/11, 713/186
US Class Current

707/785
CPC Class Codes

G06F 16/128 Details of file system snap...

G06F 16/1774 Locking methods, e.g. locki...

Expiration of access tokens for quiescing a distributed system

First Claim

9 Assignments

0 Petitions

Accused Products

Abstract

Citations

14 Claims

Specification

Solutions

Use Cases

Quick Links

Expiration of access tokens for quiescing a distributed system

First Claim

9 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

14 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links