公开(公告)号：US11100058B2

公开(公告)日：2021-08-24

申请号：US15912856

申请日：2018-03-06

Applicant: Oracle International Corporation

Inventor： Pablo Silberkasten ,  Carol Colrain ,  Kevin Neel ,  Michael McMahon ,  Saurabh Verma ,  Jean De Lavarene

IPC: G06F15/16 ,  G06F16/21 ,  H04L29/08 ,  G06F16/958 ,  G06F16/25 ,  G06F1/30 ,  G06F16/2455

Abstract: In accordance with an embodiment, described herein is a system and method for connection concentration in a database environment. A transparency engine provided between client applications and a database can include a connection pool (e.g., UCP connection pool). The transparency engine can operate as a proxy engine for the database and as a session abstraction layer for the client applications, to enable the client applications to utilize features provided by the connection pool without code changes. The transparency engine can receive application connections from the client applications, and concentrate the application connections on a smaller number of database connections maintained in the connection pool.

公开(公告)号：US10909211B2

公开(公告)日：2021-02-02

申请号：US15644504

申请日：2017-07-07

Applicant: Oracle International Corporation

Inventor： Jean De Lavarene ,  Vidya Hegde ,  Saurabh Verma ,  Chandra Sekhar Krishna Mahidhara ,  Aramvalarthanathan Namachivayam

IPC: G06F16/00 ,  G06F16/958 ,  G06F16/25 ,  G06F16/28 ,  G06F16/21 ,  G06F16/2453

Abstract: Described herein are systems and methods for providing access to a database in a multi-tenant environment, including the use of a connection pool, and support for limiting the maximum number of connections per tenant or per database shard. For example, when a tenant is associated with a service, configuring a maximum connections per service limit on a shared connection pool indicates to the system that the shared pool should not repurpose existing connections, or create new connections for a service, if the maximum connections per service limit has been reached for that particular service. The system can also maintain a parameter that keeps track of the total number of connections created to each shard of a sharded database. The connection pool can scan the sharded database topology, to determine which shard or sharded instance can satisfy the request, without exceeding the maximum limit for that shard.

公开(公告)号：US10824750B2

公开(公告)日：2020-11-03

申请号：US15644505

申请日：2017-07-07

Applicant: Oracle International Corporation

Inventor： Jean De Lavarene ,  Aramvalarthanathan Namachivayam ,  Vidya Hegde ,  Saurabh Verma ,  Chandra Sekhar Krishna Mahidhara

IPC: G06F16/00 ,  G06F21/62 ,  H04L29/06 ,  G06F16/951 ,  H04L29/08

Abstract: Described herein are systems and methods for providing access to a database in a multi-tenant environment, including the use of a connection pool, and support for efficient connection validation. For example, the system can support a “seconds to trust idle connection” functionality, which enables lazy validation of connections in the connection pool. The seconds to trust idle connection is the time period, expressed, for example, as a number of seconds, within a particular connection usage, that the connection pool trusts that the connection is still viable, and if so will skip a connection validation test before delivering the connection to a requesting application.

公开(公告)号：US10313477B2

公开(公告)日：2019-06-04

申请号：US15215372

申请日：2016-07-20

Applicant: Oracle International Corporation

Inventor： Yuri Dolgov ,  Douglas Surber ,  Jean De Lavarene

IPC: H04L29/08

Abstract: In accordance with an embodiment, described herein is a system and method for use of a non-blocking process with a resource pool, for example a connection pool, or another type of computing environment. A generic wait-free approach can be used with a variety of different types of resource pools and pool elements. Threads which require access to a collection of resources do not have to wait for a lock on that collection of resources to become available. Although a borrowing thread may still be required to wait for a particular resource to be released, the wait-free approach allows the thread to browse through a list of available resources. The approach can be used with connection pools, or with other types of computing environments, to provide improved scalability in such systems.

公开(公告)号：US09124670B2

公开(公告)日：2015-09-01

申请号：US14231347

申请日：2014-03-31

Applicant: Oracle International Corporation

Inventor： Kevin S. Neel ,  Carol L. Colrain ,  Douglas N. Surber ,  Nancy R. Ikeda ,  Stefan Heinrich Roesch ,  Tong Zhou ,  Jean De Lavarene

IPC: G06F17/30 ,  H04L29/06 ,  H04L29/08

CPC classification number: H04L67/42 ,  G06F11/1443 ,  G06F11/1474 ,  H04L67/142 ,  H04L67/146 ,  H04L67/148 ,  H04L67/327

Abstract: Transactional and non-transactional data for maintaining session state is described. In a session, a server instance receives, from a client, a request to execute transactional commands and non-transactional commands. The server instance sends at least one first directive executable at the client to store, in a first set of information, one or more first items representing one or more particular transactional commands that are open but not yet committed. The first set of information is maintained separately from a second set of information including one or more second items representing one or more particular non-transactional commands that have been processed. Based on committing one or more particular transactional commands, the server instance sends at least one second directive executable at the client to purge, from the first set of information, the one or more first items without purging, from the second set of information, the one or more second items.

Abstract translation: 描述用于维护会话状态的事务和非事务性数据。 在会话中，服务器实例从客户端接收执行事务命令和非事务命令的请求。 服务器实例在客户端处发送至少一个第一指令可执行文件，以在第一组信息中存储一个或多个表示一个或多个已经开放但尚未提交的特定事务命令的第一项。 第一组信息与第二组信息分开维护，包括表示一个或多个已处理的特定非事务性命令的一个或多个第二项。 基于提交一个或多个特定事务命令，服务器实例在客户端发送至少一个第二指令可执行文件，从第一组信息中清除一个或多个第一项目，而不从第二组信息中清除 一个或多个第二个项目。

公开(公告)号：US12072851B2

公开(公告)日：2024-08-27

申请号：US17409203

申请日：2021-08-23

Applicant: Oracle International Corporation

Inventor： Pablo Silberkasten ,  Carol Colrain ,  Kevin Neel ,  Michael McMahon ,  Saurabh Verma ,  Jean De Lavarene

IPC: G06F15/16 ,  G06F1/30 ,  G06F16/21 ,  G06F16/2455 ,  G06F16/25 ,  G06F16/958 ,  H04L67/1004 ,  H04L67/14 ,  H04L67/141 ,  H04L67/142 ,  H04L67/145 ,  H04L67/5681

CPC classification number: G06F16/21 ,  G06F1/30 ,  G06F16/2455 ,  G06F16/252 ,  G06F16/972 ,  H04L67/1004 ,  H04L67/14 ,  H04L67/141 ,  H04L67/142 ,  H04L67/145 ,  H04L67/5681

Abstract: In accordance with an embodiment, described herein is a system and method for connection concentration in a database environment. A transparency engine provided between client applications and a database can include a connection pool (e.g., UCP connection pool). The transparency engine can operate as a proxy engine for the database and as a session abstraction layer for the client applications, to enable the client applications to utilize features provided by the connection pool without code changes. The transparency engine can receive application connections from the client applications, and concentrate the application connections on a smaller number of database connections maintained in the connection pool.

公开(公告)号：US10802890B2

公开(公告)日：2020-10-13

申请号：US15878606

申请日：2018-01-24

Applicant: ORACLE INTERNATIONAL CORPORATION

Inventor： Yuri Dolgov ,  Douglas Surber ,  Jean De Lavarene

IPC: G06F9/52 ,  G06F9/50 ,  G06F16/245 ,  G06F16/28 ,  G06F16/22

Abstract: In accordance with an embodiment, a system enables multidimensional search within a resource pool, to support complex borrow operations such as, for example, specifying ranges for particular connection properties. As threads access the pool, attempting to borrow connections having particular connection properties, one or more skipped pool elements can be represented as skip lists within a k-dimensional tree (KD-tree) or other data structure that enables searching across multiple dimensions. In response to receiving a request to borrow a connection having particular connection properties, a multidimensional search can be performed within the KD-tree to determine the availability of a connection having the requested properties.

公开(公告)号：US09984096B2

公开(公告)日：2018-05-29

申请号：US15087895

申请日：2016-03-31

Applicant: Oracle International Corporation

Inventor： Paul Parkinson ,  Todd J. Little ,  Carol Colrain ,  Jean De Lavarene ,  Vivekanandhan Raja ,  Douglas Surber ,  Stefan Roesch ,  Nancy Ikeda ,  Kevin Neel

IPC: G06F17/30 ,  G06F9/46

CPC classification number: G06F17/30227 ,  G06F9/46 ,  G06F9/466

Abstract: A system and method for reducing communications overhead in a distributed transaction processing environment such as an XA environment. In accordance with an embodiment communication overhead is reduced in a transaction start method by deferring a transaction start communication. The deferred transaction start communication is determined from a subsequent transaction processing communication thereby reducing the number of networks calls required for each transaction and enhancing system performance.

公开(公告)号：US09723009B2

公开(公告)日：2017-08-01

申请号：US14848111

申请日：2015-09-08

Applicant: Oracle International Corporation

Inventor： Vadim Makhervaks ,  Richard Mousseau ,  Bjørn Dag Johnsen ,  Sumanta Chatterjee ,  Avneesh Pant ,  Jean De Lavarene ,  Kant C. Patel ,  Bhaskar Mathur ,  Feroz Alam Khan ,  Sudeep Vatsanath Reguna

IPC: H04L29/06

CPC classification number: H04L63/101 ,  H04L63/0236 ,  H04L63/0254 ,  H04L63/1458 ,  H04L63/20

Abstract: A security solution provides secure communication in a multi-tenant environment which includes a connection-based fabric, storage cells holding data associated with different tenants, database servers which provide a plurality of database services using said data, application servers hosting database service consumers. The fabric is configured into partitions isolating the storage cells from the database service consumers. The application servers securely associate unique database service consumer identities with each database service consumer and all communications with the database servers. The database servers reject all communications from the application servers which do not include an identity and use an access control list to control access from the database service consumers to the database services using address resolution access control, connection establishment access control, and data exchange access control based on said access control list. DoS attack prevention can also be performed based on consumer identities included in packets.

公开(公告)号：US20160072817A1

公开(公告)日：2016-03-10

申请号：US14848111

申请日：2015-09-08

Applicant: Oracle International Corporation

Inventor： Vadim Makhervaks ,  Richard Mousseau ,  Bjørn Dag Johnsen ,  Sumanta Chatterjee ,  Avneesh Pant ,  Jean De Lavarene ,  Kant C. Patel ,  Bhaskar Mathur ,  Feroz Alam Khan ,  Sudeep Vatsanath Reguna

IPC: H04L29/06

CPC classification number: H04L63/101 ,  H04L63/0236 ,  H04L63/0254 ,  H04L63/1458 ,  H04L63/20

Abstract: A security solution provides secure communication in a multi-tenant environment which includes a connection-based fabric, storage cells holding data associated with different tenants, database servers which provide a plurality of database services using said data, application servers hosting database service consumers. The fabric is configured into partitions isolating the storage cells from the database service consumers. The application servers securely associate unique database service consumer identities with each database service consumer and all communications with the database servers. The database servers reject all communications from the application servers which do not include an identity and use an access control list to control access from the database service consumers to the database services using address resolution access control, connection establishment access control, and data exchange access control based on said access control list. DoS attack prevention can also be performed based on consumer identities included in packets.

Abstract translation: 安全解决方案在多租户环境中提供安全通信，其包括基于连接的结构，保存与不同租户相关联的数据的存储单元，使用所述数据提供多个数据库服务的数据库服务器，承载数据库服务使用者的应用服务器。 将结构配置为隔离存储单元与数据库服务使用者的分区。 应用程序服务器将唯一的数据库服务使用者身份与每个数据库服务使用者进行安全关联，并与数据库服务器进行所有通信。 数据库服务器拒绝来自不包括身份的应用服务器的所有通信，并使用访问控制列表来控制使用地址解析访问控制，连接建立访问控制和数据交换访问控制从数据库服务使用者到数据库服务的访问 基于所述访问控制列表。 DoS攻击预防也可以根据包中包含的消费者身份进行。