公开(公告)号：US20180150337A1

公开(公告)日：2018-05-31

申请号：US15878606

申请日：2018-01-24

Applicant: ORACLE INTERNATIONAL CORPORATION

Inventor： Yuri Dolgov ,  Douglas Surber ,  Jean De Lavarene

IPC: G06F9/52 ,  G06F9/50 ,  G06F17/30

CPC classification number: G06F9/526 ,  G06F9/5011 ,  G06F9/5016 ,  G06F16/2246 ,  G06F16/2264 ,  G06F16/245 ,  G06F16/283 ,  G06F2209/5011 ,  G06F2209/5014

Abstract: In accordance with an embodiment, a system enables multidimensional search within a resource pool, to support complex borrow operations such as, for example, specifying ranges for particular connection properties. As threads access the pool, attempting to borrow connections having particular connection properties, one or more skipped pool elements can be represented as skip lists within a k-dimensional tree (KD-tree) or other data structure that enables searching across multiple dimensions. In response to receiving a request to borrow a connection having particular connection properties, a multidimensional search can be performed within the KD-tree to determine the availability of a connection having the requested properties.

公开(公告)号：US09888010B2

公开(公告)日：2018-02-06

申请号：US15635418

申请日：2017-06-28

Applicant: Oracle International Corporation

Inventor： Vadim Makhervaks ,  Richard Mousseau ,  Bjørn Dag Johnsen ,  Sumanta Chatterjee ,  Avneesh Pant ,  Jean De Lavarene ,  Kant C. Patel ,  Bhaskar Mathur ,  Feroz Alam Khan ,  Sudeep Vatsanath Reguna

IPC: H04L29/06

CPC classification number: H04L63/101 ,  H04L63/0236 ,  H04L63/0254 ,  H04L63/1458 ,  H04L63/20

Abstract: An integrated firewall provides security in a multi-tenant environment having a connection-based switched fabric directly connecting database servers which provide a plurality of database services with application servers hosting database service consumers each having a different database service consumer identity. The firewall functionality integrated into each database server provides access control by discarding communication packets which do not include a database service consumer identity and using the database service consumer identity in combination with an access control list to control access from the database service consumers to the database services. The access control includes address resolution access control, connection establishment access control, and data exchange access control based on said access control list. The integrated firewall enables direct connection of database servers and application servers via an InfiniBand network providing without requiring a separate intermediary firewall appliance or security node.

公开(公告)号：US09723008B2

公开(公告)日：2017-08-01

申请号：US14848109

申请日：2015-09-08

Applicant: Oracle International Corporation

Inventor： Vadim Makhervaks ,  Richard Mousseau ,  Bjørn Dag Johnsen ,  Sumanta Chatterjee ,  Avneesh Pant ,  Jean De Lavarene ,  Kant C. Patel ,  Bhaskar Mathur ,  Feroz Alam Khan ,  Sudeep Vatsanath Reguna

IPC: H04L29/06

CPC classification number: H04L63/101 ,  H04L63/0236 ,  H04L63/0254 ,  H04L63/1458 ,  H04L63/20

Abstract: An integrated firewall provides security in a multi-tenant environment having a connection-based switched fabric directly connecting database servers which provide a plurality of database services with application servers hosting database service consumers each having a different database service consumer identity. The firewall functionality integrated into each database server provides access control by discarding communication packets which do not include a database service consumer identity and using the database service consumer identity in combination with an access control list to control access from the database service consumers to the database services. The access control includes address resolution access control, connection establishment access control, and data exchange access control based on said access control list. The integrated firewall enables direct connection of database servers and application servers via an InfiniBand network providing without requiring a separate intermediary firewall appliance or security node.

公开(公告)号：US20160072816A1

公开(公告)日：2016-03-10

申请号：US14848109

申请日：2015-09-08

Applicant: Oracle International Corporation

Inventor： Vadim Makhervaks ,  Richard Mousseau ,  Bjørn Dag Johnsen ,  Sumanta Chatterjee ,  Avneesh Pant ,  Jean De Lavarene ,  Kant C. Patel ,  Bhaskar Mathur ,  Feroz Alam Khan ,  Sudeep Vatsanath Reguna

IPC: H04L29/06

CPC classification number: H04L63/101 ,  H04L63/0236 ,  H04L63/0254 ,  H04L63/1458 ,  H04L63/20

Abstract: An integrated firewall provides security in a multi-tenant environment having a connection-based switched fabric directly connecting database servers which provide a plurality of database services with application servers hosting database service consumers each having a different database service consumer identity. The firewall functionality integrated into each database server provides access control by discarding communication packets which do not include a database service consumer identity and using the database service consumer identity in combination with an access control list to control access from the database service consumers to the database services. The access control includes address resolution access control, connection establishment access control, and data exchange access control based on said access control list. The integrated firewall enables direct connection of database servers and application servers via an InfiniBand network providing without requiring a separate intermediary firewall appliance or security node.

Abstract translation: 集成防火墙在多承租人环境中提供安全性，其具有直接连接数据库服务器的基于连接的交换结构，所述数据库服务器向承载具有不同数据库服务消费者身份的数据库服务消费者的应用服务器提供多个数据库服务。 集成到每个数据库服务器中的防火墙功能通过丢弃不包括数据库服务消费者身份的通信数据包并​​使用数据库服务消费者身份与访问控制列表组合来控制从数据库服务使用者到数据库服务的访问来提供访问控制 。 访问控制包括基于所述访问控制列表的地址解析访问控制，连接建立访问控制和数据交换访问控制。 集成防火墙可以通过InfiniBand网络直接连接数据库服务器和应用程序服务器，而无需单独的中间防火墙设备或安全节点。

公开(公告)号：US20150326673A1

公开(公告)日：2015-11-12

申请号：US14748451

申请日：2015-06-24

Applicant: Oracle International Corporation

Inventor： Kevin S. Neel ,  Carol L. Colrain ,  Douglas N. Surber ,  Nancy R. Ikeda ,  Stefan Heinrich Roesch ,  Tong Zhou ,  Jean De Lavarene

IPC: H04L29/08 ,  H04L29/06

CPC classification number: H04L67/42 ,  G06F11/1443 ,  G06F11/1474 ,  H04L67/142 ,  H04L67/146 ,  H04L67/148 ,  H04L67/327

Abstract: Transactional and non-transactional data for maintaining session state is described. In a session, a server instance receives, from a client, a request to execute transactional commands and non-transactional commands. The server instance sends at least one first directive executable at the client to store, in a first set of information, one or more first items representing one or more particular transactional commands that are open but not yet committed. The first set of information is maintained separately from a second set of information including one or more second items representing one or more particular non-transactional commands that have been processed. Based on committing one or more particular transactional commands, the server instance sends at least one second directive executable at the client to purge, from the first set of information, the one or more first items without purging, from the second set of information, the one or more second items.

Abstract translation: 描述用于维护会话状态的事务和非事务性数据。 在会话中，服务器实例从客户端接收执行事务命令和非事务命令的请求。 服务器实例在客户端处发送至少一个第一指令可执行文件，以在第一组信息中存储一个或多个表示一个或多个已经开放但尚未提交的特定事务命令的第一项。 第一组信息与第二组信息分开维护，包括表示一个或多个已处理的特定非事务性命令的一个或多个第二项。 基于提交一个或多个特定事务命令，服务器实例在客户端发送至少一个第二指令可执行文件，从第一组信息中清除一个或多个第一项目，而不从第二组信息中清除 一个或多个第二个项目。

公开(公告)号：US20150324354A1

公开(公告)日：2015-11-12

申请号：US14273192

申请日：2014-05-08

Applicant: ORACLE INTERNATIONAL CORPORATION

Inventor： Nicolas Michael ,  Jean De Lavarene ,  Tong Zhou

IPC: G06F17/30

CPC classification number: G06F17/303 ,  G06F12/0813 ,  G06F12/0815 ,  G06F12/0868 ,  G06F17/30345 ,  G06F17/30902 ,  G06F2212/465

Abstract: A system and method for a planned migration of service connections from a first database instance to a second database instance in a clustered database. In accordance with an embodiment, a data source and connection pool enable access by a software application to a service on the first database instance. The data source is associated with a parameter specifying a delay-for-planned-draining, and a parameter specifying a planned-draining-period, which are used to rebalance connections when relocating a service. When a service is stopped on the first database instance, the connection pool receives a “service down” event from a notification service, and maintains the connections up to a time corresponding to the delay-for-planned-draining. When a “service up” event is received, the connection pool spreads migration of the connections from the first to second database instance over the planned-draining-period.

Abstract translation: 一种用于计划将服务连接从第一数据库实例迁移到群集数据库中的第二数据库实例的系统和方法。 根据实施例，数据源和连接池使软件应用程序能够访问第一数据库实例上的服务。 数据源与指定计划排水延迟的参数相关联，以及指定计划排水期的参数，用于在重新定位服务时重新平衡连接。 当在第一数据库实例上停止服务时，连接池从通知服务接收到“服务关闭”事件，并将连接维持到与计划排水延迟相对应的时间。 当接收到“服务启动”事件时，连接池将连接从第一个数据库实例迁移到第二个数据库实例在计划排放期间。

公开(公告)号：US20140380004A1

公开(公告)日：2014-12-25

申请号：US14259499

申请日：2014-04-23

Applicant: Oracle International Corporation

Inventor： Douglas Surber ,  Jean De Lavarene ,  Ashok Shivarudraiah ,  Edward Shirk ,  Mark Jungerman

IPC: G06F3/06

CPC classification number: G06F17/30492

Abstract: A system and method for efficient storage and retrieval of fragmented data using a pseudo linear dynamic byte array is provided. In accordance with an embodiment, the system comprises a database driver which provides access by a software application to a database. The database driver uses a dynamic byte array to enable access by the application to data in the database, including determining a size of a required data to be stored in memory, and successively allocating and copying the required data into the dynamic byte array as a succession of blocks. The data stored within the succession of blocks can then be accessed and provided to the application.

Abstract translation: 提供了一种使用伪线性动态字节阵列有效地存储和检索分段数据的系统和方法。 根据实施例，该系统包括数据库驱动器，其提供软件应用程序对数据库的访问。 数据库驱动程序使用动态字节数组来使应用程序能够访问数据库中的数据，包括确定要存储在存储器中的所需数据的大小，并将所需数据连续分配并复制到动态字节数组中作为继承 的块。 存储在连续块内的数据可以被访问并提供给应用程序。

公开(公告)号：US20140229531A1

公开(公告)日：2014-08-14

申请号：US14231347

申请日：2014-03-31

Applicant: Oracle International Corporation

Inventor： Kevin S. Neel ,  Carol L. Colrain ,  Douglas N. Surber ,  Nancy R. Ikeda ,  Stefan Heinrich Roesch ,  Tong Zhou ,  Jean De Lavarene

IPC: H04L29/06

CPC classification number: H04L67/42 ,  G06F11/1443 ,  G06F11/1474 ,  H04L67/142 ,  H04L67/146 ,  H04L67/148 ,  H04L67/327

Abstract: Transactional and non-transactional data for maintaining session state is described. In a session, a server instance receives, from a client, a request to execute transactional commands and non-transactional commands. The server instance sends at least one first directive executable at the client to store, in a first set of information, one or more first items representing one or more particular transactional commands that are open but not yet committed. The first set of information is maintained separately from a second set of information including one or more second items representing one or more particular non-transactional commands that have been processed. Based on committing one or more particular transactional commands, the server instance sends at least one second directive executable at the client to purge, from the first set of information, the one or more first items without purging, from the second set of information, the one or more second items.

Abstract translation: 描述用于维护会话状态的事务和非事务性数据。 在会话中，服务器实例从客户端接收执行事务命令和非事务命令的请求。 服务器实例在客户端处发送至少一个第一指令可执行文件，以在第一组信息中存储一个或多个表示一个或多个已经开放但尚未提交的特定事务命令的第一项。 第一组信息与第二组信息分开维护，包括表示一个或多个已处理的特定非事务性命令的一个或多个第二项。 基于提交一个或多个特定事务命令，服务器实例在客户端发送至少一个第二指令可执行文件，从第一组信息中清除一个或多个第一项目，而不从第二组信息中清除 一个或多个第二个项目。