公开(公告)号：US11755736B1

公开(公告)日：2023-09-12

申请号：US17935689

申请日：2022-09-27

Applicant: NetApp, Inc.

Inventor： Jagadish Vasudeva ,  Prateeksha Varshney ,  Priya Sehgal ,  Mrinal K. Bhattacharjee ,  Amit Valjibhai Panara ,  Siddhartha Nandi

IPC: G06F21/56 ,  G06F21/54 ,  G06F21/60 ,  G06F21/57

CPC classification number: G06F21/566 ,  G06F21/54 ,  G06F21/568 ,  G06F21/577 ,  G06F21/602

Abstract: A method, computing device, and non-transitory machine-readable medium for detecting malware attacks and mitigating data loss. In various embodiments, an agent is implemented in the operating system of a storage node to provide protection at the bottommost level in a data write path. The agent intercepts write requests and observes file events over time to detect anomalous behavior. For example, the agent may monitor incoming write requests and, when an incoming write request is detected, determine whether the file is associated with a malware attack risk based on an analysis of an encryption state of data in the file.

公开(公告)号：US20170185338A1

公开(公告)日：2017-06-29

申请号：US14757429

申请日：2015-12-23

Applicant: NetApp, Inc.

Inventor： Bharath Kumar K.M. ,  Jagadish Vasudeva ,  Atul Goel ,  Jaldhi Dave

IPC: G06F3/06

CPC classification number: G06F3/0631 ,  G06F3/0604 ,  G06F3/0689

Abstract: Presented herein are methods, non-transitory computer readable media, and devices for maximizing parallelization in a parity de-clustered and sliced disk RAID architecture implemented on at least one hard disk drive by creating at least one allocation group, each created allocation group comprising at least one parity group within a sliced disk group, selecting one of said at least one allocation group, and performing at least one of write or read concurrently on all parity groups within the selected allocation group.

公开(公告)号：US20230297264A1

公开(公告)日：2023-09-21

申请号：US18324355

申请日：2023-05-26

Applicant: NetApp Inc.

Inventor： Srinivasan Narayanamurthy ,  Dnyaneshwar Nagorao Pawar ,  Jagadish Vasudeva ,  Parag Deshmukh ,  Siddhartha Nandi

IPC: G06F3/06 ,  H04L9/08

CPC classification number: G06F3/0641 ,  G06F3/0608 ,  G06F3/067 ,  H04L9/0838 ,  H04L9/0891

Abstract: Techniques are provided for aggregate inline deduplication and volume granularity encryption. For example, data that is exclusive to a volume of a tenant is encrypted using an exclusive encryption key accessible to the tenant. The exclusive encryption key of that tenant is inaccessible to other tenants. Shared data that has been deduplicated and shared between the volume and another volume of a different tenant is encrypted using a shared encryption key of the volume. The shared encryption key is made available to other tenants. In this way, data can be deduplicated across multiple volumes of different tenants of a storage environment, while maintaining security and data privacy at a volume level.

公开(公告)号：US11256433B2

公开(公告)日：2022-02-22

申请号：US16354562

申请日：2019-03-15

Applicant: NetApp Inc.

Inventor： Srinivasan Narayanamurthy ,  Dnyaneshwar Nagorao Pawar ,  Jagadish Vasudeva ,  Parag Deshmukh ,  Siddhartha Nandi

IPC: G06F3/06 ,  H04L9/08

Abstract: Techniques are provided for aggregate inline deduplication and volume granularity encryption. For example, data that is exclusive to a volume of a tenant is encrypted using an exclusive encryption key accessible to the tenant. The exclusive encryption key of that tenant is inaccessible to other tenants. Shared data that has been deduplicated and shared between the volume and another volume of a different tenant is encrypted using a shared encryption key of the volume. The shared encryption key is made available to other tenants. In this way, data can be deduplicated across multiple volumes of different tenants of a storage environment, while maintaining security and data privacy at a volume level.

公开(公告)号：US12045481B2

公开(公告)日：2024-07-23

申请号：US17708271

申请日：2022-03-30

Applicant: NetApp, Inc.

Inventor： Ritika ,  Jagadish Vasudeva ,  Vani Vully ,  Raj Kamal ,  Deepak Dangi ,  Parag Deshmukh

IPC: G06F3/06

CPC classification number: G06F3/064 ,  G06F3/0619 ,  G06F3/0659 ,  G06F3/0664 ,  G06F3/0689

Abstract: Systems and methods for reducing read application in a virtual storage system are provided. According to one embodiment, read amplification is reduced when AZCS compression is being utilized by avoiding restarting of a read process via a slow path via a RAID layer of the virtual storage system when a data block associated with a read request and obtained via a first fast path read has been found not to be compressed. Instead, a second fast path read may be performed to obtain the corresponding checksum. Alternatively, or additionally, heuristics may be used to predict the odds of the data block being compressed. For example, when information encoded within a PVBN of the data block that identifies the PVBN as being within a compressed AZCS zone has shown to be sufficiently/insufficiently predictive of the data block being compressed, then a flag may be set to enable/disable fast path reads.

公开(公告)号：US20230024060A1

公开(公告)日：2023-01-26

申请号：US17468892

申请日：2021-09-08

Applicant: NetApp, Inc.

Inventor： Mrinal K. Bhattacharjee ,  Jagadish Vasudeva ,  Sateesh Kumar Pola

IPC: G06F3/06

Abstract: Systems and methods for supporting dynamic disk growth within a virtual storage appliance are provided. According to one embodiment, a portion of a logical size of respective hyperscale disks provided by a hyperscaler are provisioned for use by a virtual storage system as backing for respective file system disks. To accommodate growth, block numbers for the file system disks are pre-allocated within a sparse space of a contiguous sequence of block numbers corresponding to a number of blocks represented by the logical size. Metadata is maintained for the file system disks regarding a range of the pre-allocated block numbers that are available for use. Responsive to a triggering condition, the provisioned portion of a hyperscale disk is increased and subsequently, responsive to detecting a change in a size of the hyperscale disk by the virtual storage system, a size of the corresponding file system disk is updated within the metadata.

公开(公告)号：US20200293212A1

公开(公告)日：2020-09-17

申请号：US16354562

申请日：2019-03-15

Applicant: NetApp Inc.

Inventor： Srinivasan Narayanamurthy ,  Dnyaneshwar Nagorao Pawar ,  Jagadish Vasudeva ,  Parag Deshmukh ,  Siddhartha Nandi

IPC: G06F3/06 ,  H04L9/08

Abstract: Techniques are provided for aggregate inline deduplication and volume granularity encryption. For example, data that is exclusive to a volume of a tenant is encrypted using an exclusive encryption key accessible to the tenant. The exclusive encryption key of that tenant is inaccessible to other tenants. Shared data that has been deduplicated and shared between the volume and another volume of a different tenant is encrypted using a shared encryption key of the volume. The shared encryption key is made available to other tenants. In this way, data can be deduplicated across multiple volumes of different tenants of a storage environment, while maintaining security and data privacy at a volume level.

公开(公告)号：US08880981B2

公开(公告)日：2014-11-04

申请号：US14087319

申请日：2013-11-22

Applicant: NetApp, Inc.

Inventor： Tomislav Grcanac ,  Atul Goel ,  Jagadish Vasudeva ,  Gururaj Mj

IPC: G06F11/00 ,  G06F11/10

CPC classification number: G06F11/1088 ,  G06F11/1092 ,  G06F2211/104 ,  G06F2211/1088

Abstract: A data access request is received specifying a data block stored in a stripe of a parity group that includes a plurality of data storage devices to store data blocks and a parity storage device to store parity information for the data. The stripe includes a data block from each of the plurality of data storage devices and the stripe includes a parity block from the parity storage device. An error is detected in the data block specified by the data access request. The error is identified as a lost write error for the data block or a lost write error for the parity block. Identifying the error includes comparing a first storage device signature stored in a metadata field associated with the data block to a second storage device signature stored in a label block identifying a data storage device where the data block is stored.

Abstract translation: 接收指定存储在奇偶校验组的条带中的数据块的数据访问请求，所述奇偶校验组包括用于存储数据块的多个数据存储设备和用于存储数据的奇偶校验信息的奇偶校验存储设备。 条带包括来自多个数据存储设备中的每一个的数据块，并且条带包括来自奇偶校验存储设备的奇偶校验块。 在数据访问请求指定的数据块中检测到错误。 该错误被识别为数据块的丢失写入错误或奇偶校验块的丢失写入错误。 识别错误包括将存储在与数据块相关联的元数据字段中的第一存储设备签名与存储在识别数据块被存储的数据存储设备的标签块中的第二存储设备签名进行比较。

公开(公告)号：US20250036597A1

公开(公告)日：2025-01-30

申请号：US18917175

申请日：2024-10-16

Applicant: NetApp, Inc.

Inventor： Ritika ,  Jagadish Vasudeva ,  Vani Vully ,  Raj Kamal ,  Deepak Dangi ,  Parag Deshmukh

IPC: G06F16/174 ,  G06F3/06

Abstract: Systems and methods for reducing read application in a virtual storage system are provided. According to one embodiment, heuristic data may be tracked and utilized in real-time by a file system of the virtual storage system at the level of granularity of a volume, thereby allowing a fast path flag to be enabled/disabled at a volume level during various phases of operation of a workload. The heuristic data for a given volume may be indicative of a correlation between (i) data blocks stored on the given volume being located within a compressible zone of a zoned checksum scheme and (ii) the respective data blocks containing compressed data and a corresponding checksum. Based on the heuristic data, read requests may be selectively directed to the read path (e.g., a fast path or a slow path) expected to mitigate read amplification when data compression is enabled for a zoned checksum scheme.

公开(公告)号：US12124742B2

公开(公告)日：2024-10-22

申请号：US17468892

申请日：2021-09-08

Applicant: NetApp, Inc.

Inventor： Mrinal K. Bhattacharjee ,  Jagadish Vasudeva ,  Sateesh Kumar Pola

IPC: G06F3/00 ,  G06F3/06

CPC classification number: G06F3/0665 ,  G06F3/0604 ,  G06F3/0631 ,  G06F3/067 ,  G06F3/0689

Abstract: Systems and methods for supporting dynamic disk growth within a virtual storage appliance are provided. According to one embodiment, a portion of a logical size of respective hyperscale disks provided by a hyperscaler are provisioned for use by a virtual storage system as backing for respective file system disks. To accommodate growth, block numbers for the file system disks are pre-allocated within a sparse space of a contiguous sequence of block numbers corresponding to a number of blocks represented by the logical size. Metadata is maintained for the file system disks regarding a range of the pre-allocated block numbers that are available for use. Responsive to a triggering condition, the provisioned portion of a hyperscale disk is increased and subsequently, responsive to detecting a change in a size of the hyperscale disk by the virtual storage system, a size of the corresponding file system disk is updated within the metadata.