WO2019184775A1 - Management data storage method and device, and storage medium - Google Patents

Management data storage method and device, and storage medium Download PDF

Info

Publication number
WO2019184775A1
WO2019184775A1 PCT/CN2019/078825 CN2019078825W WO2019184775A1 WO 2019184775 A1 WO2019184775 A1 WO 2019184775A1 CN 2019078825 W CN2019078825 W CN 2019078825W WO 2019184775 A1 WO2019184775 A1 WO 2019184775A1
Authority
WO
WIPO (PCT)
Prior art keywords
management
management data
area unit
data
block
Prior art date
Application number
PCT/CN2019/078825
Other languages
French (fr)
Chinese (zh)
Inventor
胡艺馨
Original Assignee
华为技术有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 华为技术有限公司 filed Critical 华为技术有限公司
Publication of WO2019184775A1 publication Critical patent/WO2019184775A1/en

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/10Protocols in which an application is distributed across nodes in the network
    • H04L67/104Peer-to-peer [P2P] networks
    • H04L67/1042Peer-to-peer [P2P] networks using topology management mechanisms
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F11/00Error detection; Error correction; Monitoring
    • G06F11/07Responding to the occurrence of a fault, e.g. fault tolerance
    • G06F11/14Error detection or correction of the data by redundancy in operation
    • G06F11/1402Saving, restoring, recovering or retrying
    • G06F11/1446Point-in-time backing up or restoration of persistent data
    • G06F11/1448Management of the data involved in backup or backup restore
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F11/00Error detection; Error correction; Monitoring
    • G06F11/07Responding to the occurrence of a fault, e.g. fault tolerance
    • G06F11/14Error detection or correction of the data by redundancy in operation
    • G06F11/1402Saving, restoring, recovering or retrying
    • G06F11/1446Point-in-time backing up or restoration of persistent data
    • G06F11/1458Management of the backup or restore process
    • G06F11/1464Management of the backup or restore process for networked environments
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F11/00Error detection; Error correction; Monitoring
    • G06F11/07Responding to the occurrence of a fault, e.g. fault tolerance
    • G06F11/14Error detection or correction of the data by redundancy in operation
    • G06F11/1402Saving, restoring, recovering or retrying
    • G06F11/1446Point-in-time backing up or restoration of persistent data
    • G06F11/1458Management of the backup or restore process
    • G06F11/1469Backup restoration techniques
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/46Multiprogramming arrangements
    • G06F9/54Interprogram communication
    • G06F9/542Event management; Broadcasting; Multicasting; Notifications
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/46Multiprogramming arrangements
    • G06F9/54Interprogram communication
    • G06F9/546Message passing systems or structures, e.g. queues
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/08Configuration management of networks or network elements
    • H04L41/085Retrieval of network configuration; Tracking network configuration history
    • H04L41/0853Retrieval of network configuration; Tracking network configuration history by actively collecting configuration information or by backing up configuration information
    • H04L41/0856Retrieval of network configuration; Tracking network configuration history by actively collecting configuration information or by backing up configuration information by backing up or archiving configuration information
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/10Protocols in which an application is distributed across nodes in the network
    • H04L67/1095Replication or mirroring of data, e.g. scheduling or transport for data synchronisation between network nodes
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/10Protocols in which an application is distributed across nodes in the network
    • H04L67/1097Protocols in which an application is distributed across nodes in the network for distributed storage of data in networks, e.g. transport arrangements for network file system [NFS], storage area networks [SAN] or network attached storage [NAS]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L69/00Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
    • H04L69/40Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass for recovering from a failure of a protocol instance or entity, e.g. service redundancy protocols, protocol state redundancy or protocol service redirection
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3236Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions
    • H04L9/3239Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions involving non-keyed hash functions, e.g. modification detection codes [MDCs], MD5, SHA or RIPEMD
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/50Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols using hash chains, e.g. blockchains or hash trees
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2201/00Indexing scheme relating to error detection, to error correction, and to monitoring
    • G06F2201/82Solving problems relating to consistency
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3247Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures

Definitions

  • the present application relates to the field of information processing technologies, and in particular, to a storage method, device, and storage medium for managing data.
  • a distributed cloud data center usually includes a plurality of regional units distributed in a plurality of regions, each regional unit corresponding to one region, and each regional unit is used to manage data in the local domain.
  • each area unit shares a set of management data including information necessary for the operation of the area unit, such as identity authentication data and system configuration parameters. Since each regional unit shares a set of management data, how to store management data to achieve global sharing of the management data becomes more and more important.
  • a global region is set in a certain regional unit of the plurality of regional units, and management data is stored in the global region at initialization, and the like.
  • the area unit can acquire the management data by accessing the area unit to implement global sharing of management data. Then, when the management data needs to be updated, the management data stored in the global area is updated, and other area units can also obtain the updated management data by accessing the area unit.
  • the present application provides a storage method, device, and storage medium for managing data.
  • the technical solution is as follows:
  • a storage method for managing data is provided, which is applied to a distributed cloud data center, where the distributed cloud data center includes a plurality of regional units, and the method includes:
  • the first management database node acquires the updated management data, and stores the updated management data in a management data link of the first area unit, where the first management database node has the first area unit of the plurality of area units Management database node;
  • the first management database node instructs the second management database node to store the updated management data in a management data link of the second area unit, where the second area unit is other than the first area unit Any of the area units, the second area unit having the second management database node, and the management data links of the different area units of the plurality of area units are used for mutual disaster recovery backup.
  • the distributed cloud data center includes a plurality of area units, and when the first management database node in the first area unit acquires the updated management data, after the update is stored in the management data link of the first area unit Management data, and instructing the second management database node to store the updated management data in the management data link of the second area unit. Therefore, in the present application, when the first management database node stores the updated management data, the management database node of the other regional unit will also store the updated management data to implement the management database node of each regional unit. Management data is stored and the stored management data is consistent.
  • management data is stored in each area unit, so that each of the area units can acquire management data from its own management data chain, which improves the efficiency of the area unit to obtain management data.
  • management data is stored in the management data link of each area unit, there is no possibility that other area units cannot obtain management data.
  • the management data chain of each area unit includes a plurality of first blocks, each of the plurality of first blocks includes one management data, and the management data chain of each area unit is a tree structure, the plurality of first blocks are respectively nodes in the first tree structure;
  • the first management database node stores the updated management data in the management data link of the first area unit, including:
  • the first management database node generates a new first block, and the new first block includes the updated management data
  • the first management database node adds the new first block as the last first block in the first trust path
  • the first management database node instructs the second management database node to store the updated management data in the management data link of the second area unit, including:
  • the first management database node instructs the second management database node to add the new first block as the last first block in the second trust path.
  • the management data chain in each area unit is a tree structure composed of a plurality of blocks, each node in the tree structure is a block, and each block includes a management. Data so that subsequent management data can be obtained from the block.
  • the first trust path has the most node in the management data link of the first area unit
  • the second trust path has the most management data chain of the second area unit where the second management database node is located. node.
  • the trust path in the management data chain of the regional unit is the path with the most nodes in the management data chain. That is, each regional unit determines the path having the most nodes in its management data chain as the trust path.
  • each area unit further includes a change audit data chain, and the change audit data chain of each area unit includes a plurality of second blocks, and the plurality of second blocks are interconnected to form a first branch having at least one branch a two-tree structure, wherein the plurality of second blocks are nodes in the second tree structure;
  • the first management database node adds the new first block as the last first block in the first trust path, including:
  • the trust path in the management data chain needs to be redefined.
  • each of the above regional units will have its own management data link.
  • the method in which the path with the most nodes is determined to be the trusted path is not applicable to the scenario. Therefore, in the present application, a change audit data chain can be provided for each area unit, and the block in the change audit data chain is used to indicate the trust path in the management data link.
  • the method further includes:
  • the first management database node receives the management data read request, determines the first trust path according to the third trust path, and reads the updated management data in the last first block in the first trust path.
  • the management database node of each area unit further includes a change audit data link
  • the third trust path in the audit data chain is first determined to determine the number in the management data chain.
  • each first block has a timestamp, and a timestamp of each first block is used to indicate a time corresponding to the management data thereon;
  • the method also includes:
  • the first management database node generates a new second block according to the first block found, and adds the new second block as the last second block in the third trust path, the new The second block is configured to reset the first trust path according to the first block that is found.
  • each regional unit further includes a change audit data link
  • the block in the change audit data chain is used to indicate the trust path in the management data link, when the management data needs to be restored to the historical designated time When managing data, simply add a new second block to the change audit data chain.
  • a storage device for managing data which is applied to a first management database node in a distributed cloud data center, where the distributed cloud data center includes a plurality of regional units, where the first management database node is The management database node of the first area unit among the area units has a function of realizing the storage method behavior of the management data in the first aspect described above.
  • the storage device for managing data includes at least one module for implementing the storage method of the management data provided by the above first aspect.
  • a third aspect provides a storage device for managing data, where the storage device includes a processor and a memory for storing a storage device supporting the management data to execute the management data provided by the first aspect.
  • the processor is configured to execute a program stored in the memory.
  • the operating device of the storage device can also include a communication bus for establishing a connection between the processor and the memory.
  • a computer readable storage medium having stored therein instructions that, when run on a computer, cause the computer to perform the method of storing management data described in the first aspect above.
  • a computer program product comprising instructions which, when run on a computer, cause the computer to perform the method of storing management data as described in the first aspect above.
  • the distributed cloud data center includes a plurality of area units, and when the first management database node in the first area unit acquires the updated management data, after the update is stored in the management data link of the first area unit Management data, and instructing the second management database node to store the updated management data in the management data link of the second area unit. Therefore, in the present application, when the first management database node stores the updated management data, the management database node of the other regional unit will also store the updated management data to implement the management database node of each regional unit. Management data is stored and the stored management data is consistent.
  • management data is stored in each area unit, so that each of the area units can acquire management data from its own management data chain, which improves the efficiency of the area unit to obtain management data.
  • management data is stored in the management data link of each area unit, there is no possibility that other area units cannot obtain management data.
  • 1A is a schematic structural diagram of a blockchain according to an embodiment of the present application.
  • FIG. 1B is a schematic diagram of a P2P network provided by an embodiment of the present application.
  • 2A is a schematic diagram of a distributed cloud data center provided by an embodiment of the present application.
  • 2B is a schematic diagram of another distributed cloud data center provided by an embodiment of the present application.
  • FIG. 3 is a schematic structural diagram of a computer device according to an embodiment of the present application.
  • FIG. 4 is a flowchart of a method for storing management data provided by an embodiment of the present application.
  • FIG. 5 is a flowchart of another storage method for managing data according to an embodiment of the present application.
  • FIG. 6 is a flowchart of another storage method for managing data according to an embodiment of the present application.
  • FIG. 7 is a flowchart of another storage method for managing data according to an embodiment of the present application.
  • FIG. 8 is a block diagram of a storage device for managing data according to an embodiment of the present application.
  • the present invention provides a distributed management database for a distributed cloud data center.
  • the distributed management database includes a plurality of management database nodes for storing management data of the distributed cloud data center.
  • Each regional unit of the distributed cloud data center has a management database node for storing the management data of the distributed cloud data center to the management data link corresponding to the management database node.
  • Each management data node corresponds to one management data link, and the management data stored in each management data link is disaster recovery.
  • the first management database node obtains the updated management data and stores it in the corresponding management data link, and then instructs the management database nodes of the remaining area units to store the updated management data, and each management data.
  • the updated management data of the chain storage is used for mutual disaster recovery backup.
  • each management database node contains a management data chain.
  • the management data chain is implemented by blockchain technology.
  • a blockchain is a distributed database formed by a peer-to-peer (P2P) network.
  • the network includes multiple nodes. Any two nodes are connected to each other. Each node maintains a growing number of nodes. And a chain of blocks arranged in order. Each block contains a timestamp and is connected to a block before it.
  • the blockchain itself has the property of preventing data from being modified, that is, once the data is recorded in the block, it cannot be returned for modification.
  • P2P networks and distributed timestamp servers a blockchain database can be managed automatically.
  • a blockchain is like an open, distributed general ledger that records transaction information efficiently, securely, and permanently.
  • a blockchain includes a plurality of blocks, and the plurality of blocks form a tree structure having at least one branch, each of which forms a tree structure.
  • the blocks are each a node in the tree structure.
  • the trust path of the blockchain (the path formed by the block identified by the grid box) has the largest number of nodes, starting from the first block (the block identified by the white box) and always connecting to the latest block, the others exist in The path formed by the block outside the trust path (the block identified by the diagonal stripe box) is an invalid path.
  • a block is a data structure that records transactions, consisting of a block body and a block header.
  • the block body is responsible for recording all transaction information for a period of time.
  • the block header includes: version number, parent block hash value, Merkle root, time stamp, difficulty value, random number.
  • the Merkle root is a value calculated by the hash value of all the transactions in the block body, which is used to check whether a transaction exists in the block.
  • the timestamp is used to record the generation time of the block.
  • the difficulty value indicates the difficulty target of the block workload proof.
  • the parent block hash value is used to implement the connection between the blocks, and the random number is used to implement the mining mechanism.
  • FIG. 1B is a schematic diagram of a P2P network provided by an embodiment of the present application, where multiple nodes are included in the network. If the current resource transfer between node A and node B, at this point, each node in the network can be accounted for by the following steps, that is, each node writes the transaction to itself. In the blockchain.
  • Node A uses the private key to sign a digital signature on the last transaction information of the resource to be transferred and the public key of Node B, and attach the signature to the end of the resource to be transferred to obtain a transaction order.
  • Node A broadcasts the transaction slip in the network.
  • Each node in the network acquires the right to generate a block according to the transaction order through the mining mechanism, that is, each node verifies the validity of the transaction ticket when the transaction order is detected, and the verification is effective. After that, start solving math problems.
  • the process of solving the problem is: finding a value such that the hash value of the previous block and the hash value calculated by the specified algorithm of the currently received transaction order satisfy the preset condition.
  • the block is generated according to the solution and the transaction order, and the generated block is broadcasted in the network.
  • FIG. 1B only six nodes are taken as an example, and FIG. 1B does not constitute a limitation on the number of nodes included in the P2P network provided by the embodiment of the present application.
  • FIG. 2A is a schematic diagram of a distributed cloud data center storing management data according to an embodiment of the present invention.
  • the distributed cloud data center includes multiple area units, and each area unit includes a management system and a service.
  • System and management database nodes, the management database nodes of each regional unit include management data links, and the management data chain is implemented by blockchain technology.
  • the service system and the management system of the distributed cloud data platform generate management data according to the needs of the service or read the management data through the management database node, and are used for services or functions such as virtual machine reconstruction and disaster recovery.
  • FIG. 2A only two area units are taken as an example, and FIG. 2A does not constitute a limitation on the number of area units in the distributed cloud data center provided by the embodiment of the present invention.
  • the management database node may further include a database access layer for providing an access interface to the management system or the business system access management database node. That is, the management system of each area unit is connected to its own management database node through the database access layer to realize the writing and reading of management data through the interaction of the management system and the management database node. That is, the database access layer of each area unit is used to provide access to the management database node, and the internal details of the management database node are shielded to realize that the data in the access management database node is transparent to the business system.
  • the management system of each regional unit is respectively connected with its own database access layer and business system, and the database access layer of each regional unit is connected with its own management data link, and the management data links of each regional unit are Connected through the first P2P network.
  • each regional unit provides an operation and operation operation portal for the user to perform operation and maintenance management, such as resource application, issuance, metering and accounting, resource statistics, alarm monitoring, system security deployment, and maintenance upgrade.
  • operation and maintenance management such as resource application, issuance, metering and accounting, resource statistics, alarm monitoring, system security deployment, and maintenance upgrade.
  • the management system may need to obtain management data, and the management system will access the database through the database. Obtain management data from the management data chain.
  • each regional unit is connected with its own business system for resource scheduling, metering and monitoring, and providing support for business activities.
  • the business system may also need to acquire management data, and the business system will send a data acquisition request to the management system to enable The management system obtains management data from the management data link through the database access layer, and returns the acquired management data to the business system.
  • the management data chain of each area unit includes a plurality of first blocks, and the plurality of first blocks are connected to each other to form a first tree structure having at least one branch, and the plurality of first blocks are respectively
  • the nodes in the first shape structure, each of the first blocks is used to store management data updated at the corresponding time stamp. That is, the management database node of each area unit is used to store management data, and the management data is stored by managing the management data chain in the database node.
  • the management database node of each area unit further includes a database cache, and the database access layer of each area unit is also respectively connected to its own database cache.
  • the database cache is used to cache the latest management data.
  • each regional unit in the distributed cloud data center further includes a disaster recovery management system, and the disaster recovery management system of each regional unit is respectively connected to its own management system and service system, and each The disaster recovery management systems of the regional units are connected through a network.
  • the disaster recovery management system of each regional unit is responsible for disaster recovery management of its own business system. Therefore, the functions of the disaster recovery management system mainly include:
  • the disaster recovery management system needs to interact with the management system to obtain management information, mainly information of the service virtual machine, such as specifications, mirroring, volume information, and information about the tenant organization ownership;
  • the service disaster recovery management system also needs to interact with the peer service disaster recovery management system to cooperate.
  • the function of the disaster recovery management system provided by the embodiment of the present application is specifically described by taking the disaster recovery switchover and the disaster recovery switchback as an example.
  • the disaster recovery handover request is used to instruct the first area unit to process the service of the third regional unit that fails.
  • the first area unit is any area unit in the cloud data center.
  • the disaster recovery management system of the first area unit receives the disaster recovery switching request
  • the disaster recovery switching request is forwarded to the management system of the first area unit
  • the management system of the first area unit is managed from the first area unit.
  • the management data of the first regional unit is processed by the management system of the first regional unit to reconstruct the service virtual machine for processing the service of the third regional unit.
  • the disaster recovery switching request is triggered by the administrator through a preset operation, that is, after the third regional unit fails, the management personnel can implement disaster recovery switching through the disaster recovery management system of the first regional unit to implement The traffic of the third regional unit is processed by the first regional unit.
  • the management system of the first area unit processes the acquired management data to rebuild the service virtual machine.
  • the management system of the first area unit sends the acquired management data to the disaster recovery management system of the first area unit.
  • the disaster management system of the first area unit processes the received management data, and sends the processed management data to the service system of the first area unit, where the service system of the first area unit is based on the first area unit
  • the disaster recovery management system processes the management data to reconstruct the business virtual machine.
  • the service system of the first area unit After the disaster recovery management system of the first area unit receives the disaster recovery switching request, the service system of the first area unit finally performs the reconstruction of the service virtual machine according to the received management data to process the third area unit. Business.
  • the disaster recovery switchback request is sent to the management system of the first regional unit, and the disaster recovery switchback request is used for Instructing the first area unit to reprocess the service
  • the management system of the first area unit acquires management data from the management database node of the first area unit, and the management system of the first area unit processes the acquired management data to reconstruct the service virtual machine For processing the services of the first area unit.
  • the disaster recovery switchback request is triggered by the administrator through a preset operation, that is, after the failure of the first regional unit, the management personnel can implement the disaster recovery and backoff through the disaster recovery management system of the first regional unit. So that the first area unit can resume processing the service.
  • the management system of the first area unit processes the acquired management data to rebuild the service virtual machine, which has been described in detail in the process of disaster recovery switching, and will not be further described herein.
  • the implementation of the management system of the first area unit to obtain the management data from the management database node of the first area unit has also been described in detail in the above-mentioned disaster recovery switching, and will not be explained here.
  • the nodes in the network have the tree structure of the blockchain after confirming the effective block.
  • the path of the most node is used as the trust path, and the valid block is added at the end of the trust path.
  • the trust path containing the most nodes in the blockchain can also be called the longest chain in the blockchain, which is not limited by the present invention. Therefore, in the distributed cloud data center shown in FIG. 2A above, management data is acquired from the end block of the trust path of the management data link each time the management data needs to be acquired from the management data link. That is, in the distributed cloud data center shown in FIG. 2A, the management data link determines the path containing the most nodes as the trust path by default, that is, the longest chain is determined as the trust chain.
  • the regional unit may need to restore the management data to the management data at a certain historical moment at a certain time, that is, the regional unit needs to modify its own management data chain according to the actual situation. Therefore, in the embodiment of the present application, the blockchain of the related art is modified so that it can no longer trust only the path containing the most nodes, but can flexibly specify the path of the trust to meet the distributed cloud data center. Demand. At this time, since the management data link no longer only trusts the path containing the most nodes, when the management data link needs to acquire management data, it needs to inform which data path of the management data chain is the trust path. Specifically, in the embodiment of the present application, the trust path in the management data chain is indicated by setting a change audit data chain in the management database node.
  • FIG. 2B is a schematic diagram of another distributed cloud data center storing management data according to an embodiment of the present application.
  • the distributed cloud data center includes multiple area units, and each area unit includes a management system.
  • the business system and management database nodes, and the management database nodes of each regional unit include a management data link and a change audit data link.
  • FIG. 2B only two area units are taken as an example, and FIG. 2B does not constitute a limitation on the number of area units in the distributed cloud data center provided by the embodiment of the present application.
  • the management database node of the distributed cloud data center shown in FIG. 2B also includes a database access layer.
  • the function of the database access layer is the same as that of the database access layer in the distributed cloud data center shown in FIG. 2A, and will not be elaborated in detail.
  • the management system of each regional unit is connected with its own database access layer and business system, and the database access layer of each regional unit is connected with its own management data link and change audit data link, and the management data link of each regional unit.
  • the first P2P network is connected to each other, and the change audit data links of the respective area units are connected through the second P2P network.
  • the change audit data chain of each area unit includes a plurality of second blocks, and the plurality of second blocks are interconnected to form a second tree structure having at least one branch, and the plurality of second blocks are respectively Is the node in the second tree structure.
  • Each of the first block and each of the second blocks has a corresponding timestamp, and each of the second blocks is used to indicate that the end block of the trust path in the data chain is managed at the corresponding timestamp.
  • management system, the business system, and the management data link in the distributed cloud data center shown in FIG. 2B have the same functions as the management system, the business system, and the management data link in the distributed cloud data center shown in FIG. 2A. This is not elaborated.
  • the distributed cloud data center may further include a database cache and a disaster recovery management system, and the connection relationship between the database cache and the disaster recovery management system in the distributed cloud data center shown in FIG. 2B
  • the functions and functions are the same as those of the database cache and disaster recovery management system in the distributed cloud data center shown in FIG. 2A, and will not be elaborated here.
  • the infrastructure and software system of the distributed cloud data center are usually divided into administrative domains.
  • business domain The service domain is composed of computing, network, and storage resources in a pooled manner by the service system of each regional unit, and provides service services for end users, such as cloud host services, physical machine services, storage services, and network services.
  • the management domain is composed of the management system and management data of each regional unit, and supports the normal development of cloud data center operations and operation and maintenance activities, including service opening and metering, identity authentication of users' use resources, and security guarantees.
  • the first block and the second block are the names used in the embodiments of the present application according to the functions of the related modules. In actual applications, other names may be used according to the functions of the related modules, and the embodiments of the present application are not specifically limited herein.
  • FIG. 3 is a schematic structural diagram of a computer device according to an embodiment of the present application.
  • the area unit in FIG. 2A or FIG. 2B can be implemented by the computer device shown in FIG.
  • the computer device includes at least one processor 301, a communication bus 302, a memory 303, and at least one communication interface 304.
  • the processor 301 can be a general purpose central processing unit (CPU), a microprocessor, an application-specific integrated circuit (ASIC), or one or more integrated systems for controlling the execution of the program of the present application. Circuit.
  • CPU general purpose central processing unit
  • ASIC application-specific integrated circuit
  • Communication bus 302 can include a path for communicating information between the components described above.
  • the memory 303 can be a read-only memory (ROM) or other type of static storage device that can store static information and instructions, a random access memory (RAM) or other type that can store information and instructions.
  • the dynamic storage device can also be an Electrically Erasable Programmable Read-Only Memory (EEPROM), a Compact Disc Read-Only Memory (CD-ROM) or other optical disc storage, and a disc storage device. (including compact discs, laser discs, optical discs, digital versatile discs, Blu-ray discs, etc.), magnetic disk storage media or other magnetic storage devices, or can be used to carry or store desired program code in the form of instructions or data structures and can be Any other medium accessed, but is not limited to this.
  • Memory 303 may be present independently and coupled to processor 301 via communication bus 302. The memory 303 can also be integrated with the processor 301.
  • the communication interface 304 uses devices such as any transceiver for communicating with other devices or communication networks, such as Ethernet, Radio Access Network (RAN), Wireless Local Area Networks (WLAN), and the like.
  • devices such as any transceiver for communicating with other devices or communication networks, such as Ethernet, Radio Access Network (RAN), Wireless Local Area Networks (WLAN), and the like.
  • RAN Radio Access Network
  • WLAN Wireless Local Area Networks
  • processor 301 may include one or more CPUs, such as CPU0 and CPU1 shown in FIG.
  • a computer device can include multiple processors, such as processor 301 and processor 305 shown in FIG. Each of these processors can be a single-CPU processor or a multi-core processor.
  • a processor herein may refer to one or more devices, circuits, and/or processing cores for processing data, such as computer program instructions.
  • the computer device may further include an output device 306 and an input device 307.
  • Output device 306 is in communication with processor 301 and can display information in a variety of ways.
  • the output device 306 can be a liquid crystal display (LCD), a light emitting diode (LED) display device, a cathode ray tube (CRT) display device, or a projector.
  • Input device 307 is in communication with processor 301 and can receive user input in a variety of ways.
  • input device 307 can be a mouse, keyboard, touch screen device, or sensing device, and the like.
  • the computer device described above may be a general purpose computer device or a special purpose computer device.
  • the computer device may be a desktop computer, a portable computer, a network server, a personal digital assistant (PDA), a mobile phone, a tablet computer, a wireless terminal device, a communication device, or an embedded device.
  • PDA personal digital assistant
  • the embodiments of the present application do not limit the type of computer equipment.
  • the memory 303 is used to store program code for executing the solution of the present application, and is controlled by the processor 301 for execution.
  • the processor 301 is configured to execute the program code 308 stored in the memory 303.
  • One or more software modules may be included in program code 308.
  • the area unit shown in FIG. 2A or 2B can determine data for developing an application by the processor 301 and one or more of the program codes 308 in the memory 303.
  • FIG. 4 is a flowchart of a method for storing management data according to an embodiment of the present application. The method is applied to the distributed cloud data center of FIG. 2A. As shown in FIG. 4, the method includes the following steps:
  • Step 401 The first management database node acquires the updated management data, and stores the updated management data in the management data link of the first area unit, where the first management database node is the first area unit of the plurality of area units. Have a management database node.
  • the first area unit is any one of the plurality of area units, and the management data link in the area unit is used to store management data, so when the first management database node of the first area unit receives the management data,
  • the updated management data can be stored in its own management data chain.
  • each of the plurality of first blocks includes one management data
  • the management data chain of each area unit is a tree structure
  • the plurality of first blocks are respectively nodes in the first tree structure, and therefore, the first management database node can store the updated management data in the management data link of the first area unit.
  • the first management database node generates a new first block, the new first block includes the updated management data, and the first management database node adds the new first block as the first trust path.
  • the last first block, the first trust path having the most nodes in the management data chain of the first area unit.
  • the default trust path in the management data link is the path containing the most nodes in the distributed cloud data center shown in FIG. 2A
  • the generated first block may be added to the end of the path with the most nodes in its own management data chain.
  • the first management database node of the first area unit obtains the updated management data by: when the management data link of the first area unit acquires the transaction order carrying the management data through the mining mechanism, the transaction order is carried
  • the management data is determined as the updated management data
  • the transaction data is generated by the management data link of the second area unit according to the updated management data and broadcasted in the first P2P network, and the second area unit is the first area unit. Any area unit other than .
  • the transaction ticket broadcasted by the management data link of the second area unit is a transaction ticket after being signed by the private key. Therefore, when the first unit area unit receives the transaction order, the public key verification signature is also required. Validity to determine the validity of the transaction, and after determining that the transaction is valid, perform the step of generating a first block based on the transaction.
  • the management data chain of the second regional unit when the management database node of each regional unit further includes a database cache, the management data chain of the second regional unit generates a transaction order according to the updated management data:
  • the management system of the second area unit receives multiple configuration requests triggered by the user through a preset operation, and the management system of the second area unit acquires for any one configuration request.
  • the configuration information carried by the configuration request is sent to the service system of the second area unit, and the service system of the second area unit performs the relevant configuration according to the configuration information, and when the implementation is completed, the second area unit is implemented.
  • the management system responds to the configuration result, and the management system of the second area unit writes the configuration information corresponding to the configuration result to the database cache through the database access layer of the second area unit according to the configuration result.
  • the management system of the second area unit When the management system of the second area unit receives the configuration result for all configuration requests, displaying the received configuration result, when receiving the acceptance pass information for the configuration result triggered by the preset operation, determining that the configuration is completed, and Obtaining all configuration information cached in the database cache of the second area unit by the database access layer of the second area unit, and packaging all the acquired configuration information to obtain the management data after the update, and then according to the management data after the update Generate a transaction order and sign the transaction with a private key.
  • the first block in the management data chain is divided according to the granularity of the delivery behavior, and the delivery behavior includes any behavior of updating the management data, for example, the expansion and management of the management data. Data upgrades or modifications to management data.
  • the preset operation may be a click operation, a selection operation, or a voice operation.
  • the management database node of each area unit further includes a database cache
  • the management database node of the first area unit adds the generated first block to the end of the trust path of the management data link of the own area
  • the obtained management data is cached in the database cache.
  • the management data link of the first area unit sends the acquired management data to the database access layer of the first area unit, and the database access layer of the first area unit writes the management data to the database cache of the first area unit.
  • the first first block in the management data chain of the first area unit is obtained according to the factory configuration data set by the publisher of the distributed cloud data center. That is, in the initialization state, the management data chain of the first area unit generates the first first block based on the management data at the time of initialization.
  • the management data at the time of initialization is the factory configuration data set by the publisher of the distributed cloud data center.
  • Step 402 The first management database node instructs the second management database node to store the updated management data in a management data link of the second area unit, where the second area unit is other than the first area unit among the plurality of area units. Any of the area units, the second area unit has a second management database node, and the management data links of the different area units of the plurality of area units are used for mutual disaster recovery backup.
  • the first management database node instructs the second management database node to store the updated management data in the management data link of the second area unit, that is, the first management database node instructs the second management database node to The first block is added as the last first block in the second trust path.
  • the first management database node implements step 402 by broadcasting: the first management database node of the first area unit broadcasts the generated new first block in the first P2P network, so that the first area unit is The management database node of each of the area units adds the generated new first block to the end of the path of the management node of the management node having the most nodes, wherein the first P2P network is connected to the plurality of area units A network of management data links for each regional unit.
  • each area unit of the distributed cloud data center shares a set of management data, it is necessary to ensure the consistency of data stored in the management data link in each area unit. Therefore, after the management database node of the first area unit generates the new first block, the generated new first block needs to be transmitted in the first P2P network, so that other area units will generate the new one.
  • the first block joins the end of the path with the most nodes of its own management data chain to achieve the purpose of updating the management data chain of other area units.
  • the distributed cloud data center includes a plurality of area units.
  • the management data link in the first area unit stores the The updated management data, and instructing the second management database node to store the updated management data in the management data link of the second area unit. Therefore, in the present application, when the first management database node stores the updated management data, the management database node of the other regional unit will also store the updated management data to implement the management database node of each regional unit. Management data is stored and the stored management data is consistent.
  • management data is stored in each area unit, so that each of the area units can acquire management data from its own management data chain, which improves the efficiency of the area unit to obtain management data.
  • management data is stored in the management data link of each area unit, there is no possibility that other area units cannot obtain management data.
  • FIG. 5 is a flowchart of another method for storing management data provided in an embodiment of the present application, which is applied to the distributed cloud data center shown in FIG. 2A, and the storage data storage method shown in FIG. 5 is used in FIG.
  • the storage method of the management data shown is further explained. Specifically, as shown in FIG. 5, the method includes the following steps:
  • Step 501 The first management database node acquires the updated management data, and stores the updated management data in the management data link of the first area unit, where the first management database node is the first area unit of the plurality of area units. Have a management database node.
  • the implementation of the step 501 is basically the same as the implementation of the step 401 in the embodiment shown in FIG. 4, and will not be described in detail again.
  • Step 502 The first management database node instructs the second management database node to store the updated management data in the management data link of the second area unit, where the second area unit is other than the first area unit of the plurality of area units. Any of the area units, the second area unit has a second management database node, and the management data links of the different area units of the plurality of area units are used for mutual disaster recovery backup.
  • step 502 is basically the same as the implementation of step 402 in the embodiment shown in FIG. 4, and will not be elaborated in the same time.
  • the above steps 501 to 502 are used to explain the process of generating the management data chain of a certain area unit of the distributed cloud data center shown in FIG. 2A.
  • the following step 503 is used to explain how to read management data from the management data link of a regional unit of the distributed cloud data center.
  • Step 503 The first management database node of the first area unit receives the management data read request, and reads the management data in the block at the end of the trust path of the management data link of the own.
  • Step 503 can be implemented by the following steps 5031 to 5033:
  • Step 5031 When the service system of the first area unit receives the management data read request, forward the management data read request to the management system of the first area unit.
  • the management data read request is triggered by the user.
  • the distributed cloud data center shown in FIG. 2A or FIG. 2B knows that the service system of each regional unit is not connected to the management database node, but is each The management system of the area unit is connected to the management database node. Therefore, when the service system of the first area unit receives the management data read request, the management data read request needs to be forwarded to the management system of the first area unit.
  • Step 5032 The management system of the first area unit acquires management data from the first management database node of the first area unit.
  • step 5032 is: when the management system of the first area unit receives the management data read request, the management system of the first area unit sends a management data request message to the database access layer of the first area unit, The database access layer of the first area unit receives the management data request message, and determines the management data according to the management data link of the first area unit, and the database access layer of the first area unit transmits the determined management data to the management system of the first area unit.
  • the management database node of each area unit when the management database node of each area unit further includes a database cache, the management database node of the first area unit reads the management data in the generated first block of the end of the trust path of the management data link of the first area unit.
  • the management database node of the first area unit determines whether the management data is stored in its own database cache, and if so, the first management database node of the first area unit obtains the management data from its own database cache, and if not, the first The first management database node of a zone unit performs the step of reading the management data in the first block generated at the end of the path of the management node of the own management data chain.
  • the database access layer of the first area unit may first determine whether the management data is stored in the database cache of the first area unit, and if so, from the first area.
  • the management data is obtained in the database cache of the unit; if not, the step of determining the management data according to the management data link of the first area unit and the change audit data chain is performed.
  • the management system of the first area unit acquires management data through the database access layer of the first area unit, and the database access layer of the first area unit determines the database cache before acquiring the management data from the management data link. Whether the management data is stored to improve the efficiency of obtaining the management data. If the database access layer of the first area unit does not obtain the management data from the database cache of the first area unit, the management data is obtained from the management data link.
  • the implementation manner of determining the management data by the database access layer of the first area unit according to the management data link of the first area unit may be: the database access layer of the first area unit forwards the management data to the management data link of the first area unit. Requesting, when the management data link of the first area unit receives the management data read request, the management data link of the first area unit searches for the first block of the end of the path with the most nodes, and the first block from the search The management data is acquired in the block, and the management data link of the first area unit sends the acquired management data to the database access layer of the first area unit.
  • Step 5033 The management system of the first area unit sends the acquired management data to the service system of the first area unit.
  • the management system of the first area unit When the management system of the first area unit receives the management data sent by the database access layer of the first area unit, the management system of the first area unit sends the received management data to the service system of the first area unit to complete the reading. The process of managing data.
  • step 503 is used to explain how to read the management data from the cloud distributed data center shown in FIG. 2A.
  • the regional unit may be caused.
  • the following step 504 is used to explain how to recover the management data link of the area unit.
  • Step 504 After the first regional unit fails to cause a problem in its management data link, the first management database node of the first regional unit receives the data recovery request, and rejoins its management data link to the first P2P network, and The block information is reloaded in the first P2P network, and a data recovery confirmation message is returned.
  • step 504 can be implemented by the following steps:
  • the data recovery request is sent to the database access layer of the first area unit, and the data recovery request is used to indicate the reloading
  • the data link is managed, and the database access layer of the first area unit receives the data recovery request and sends a network join request to the management data link of the first area unit.
  • the data recovery request is triggered by the administrator by a preset operation, that is, after the first area unit fails, when the manager needs to restore the first area unit, the data recovery request may be triggered by a preset operation.
  • the management data link of the first area unit may not be in the first P2P network when the first area unit fails, the management data link of the first area unit is first added to the first area through the network join request.
  • the P2P network to recover the block data in the management data link of the first area unit.
  • the management data link of the first area unit receives the network join request, rejoins the first P2P network, and reloads the block information from the first P2P network, and after obtaining each of its own blocks, the first area unit
  • the database access layer sends a first network join confirmation message.
  • the management data link of the first area unit receives the network join request, and the method of rejoining the first P2P network is: the management data link of the first area unit broadcasts a network join request in the first P2P network, and the network join request Carrying the identity information of the first area unit, when the other area units in the first P2P network receive the network join request, verify the identity information of the first area unit, and broadcast the verification result to determine whether to allow the first The zone unit joins the first P2P network.
  • the implementation manner of reloading the block information from the first P2P network by the first area unit may be: the management data link of the first area unit sends a management data link acquisition request to the management data link of any other area unit in the first P2P network.
  • the management data link of the other area unit receives the management data link acquisition request, the block in the chain of the first area unit is sent to the management data link of the first area unit, so that the management data link of the first area unit can obtain each Block.
  • the database access layer of the first area unit receives the first network join confirmation message and transmits a data recovery confirmation message to the management system of the first area unit.
  • the database access layer of the first area unit When the database access layer of the first area unit receives the first network join confirmation message sent by the management data link of the first area unit, determining that the data of the management data link of the current first area unit is restored, therefore, the first area unit
  • the database access layer may send a data recovery confirmation message to the management system of the first regional unit.
  • each regional unit further includes a database cache
  • the stored management data in the database cache of the first regional unit may have expired, and therefore, when the first region When the data in the management data link of the unit is restored, the latest management data can be re-stored in the database cache of the first area unit.
  • the database access layer of the first area unit determines whether management data is stored in the database cache of the first area unit, and if not, determines management data according to the management data link of the first area unit, and writes the determined management data. Enter the database cache of the first zone unit.
  • the database access layer of the first area unit has been explained in detail in step 504 according to the management data link of the first area unit and the determination management data, and the description will not be repeated here.
  • the distributed cloud data center includes a plurality of area units.
  • the management data link in the first area unit stores the The updated management data, and instructing the second management database node to store the updated management data in the management data link of the second area unit. Therefore, in the present application, when the first management database node stores the updated management data, the management database node of the other regional unit will also store the updated management data to implement the management database node of each regional unit. Management data is stored and the stored management data is consistent.
  • management data is stored in each area unit, so that each of the area units can acquire management data from its own management data chain, which improves the efficiency of the area unit to obtain management data.
  • management data is stored in the management data link of each area unit, there is no possibility that other area units cannot obtain management data.
  • FIG. 6 is a flowchart of another method for storing management data according to an embodiment of the present disclosure. The method is applied to the distributed cloud data center of FIG. 2B. As shown in FIG. 6, the method includes the following steps:
  • Step 601 The first management database node of the first area unit acquires the updated management data, and generates a new first block according to the updated management data, where the first area unit is any one of the plurality of area units. unit.
  • the new first block is generated according to the updated management data, that is, the generated new first block includes the updated management data.
  • the implementation manner of obtaining the updated management data by the first management database node and the implementation manner of generating the new first block have been explained in detail in the steps in the embodiment of FIG. 4, and will not be further explained herein.
  • Step 602 The first management database node of the first area unit stores the generated first block.
  • the trust path of the management data link is no longer the default path with the most nodes, but the specified trust path. Therefore, when the first management database node of the first area unit generates the first block, After that, the current first trust path needs to be determined by changing the audit data chain, and the first block is added to the end of the first trust path in its own management data chain.
  • step 602 the first management database node determines the first trust path according to the third trust path in the change audit data chain of the first area unit, and the change audit data of the third trust path in the first area unit There are the most nodes in the chain and the new first block is added as the last first block in the first trust path.
  • the information of the current trust path in the data chain of the audit management chain is changed, and the credibility of the information of the audit chain itself is still determined by the method of trusting only the path with the most nodes. And the operation of writing the trust path is completed internally by the system, thereby effectively ensuring the credibility of the trust path information. That is, the third trust path has the most nodes in the change audit data chain of the first area unit.
  • the trust path information in the management data chain is recorded by changing the blocks in the audit data chain. Therefore, before the management data link of the first area unit adds the generated first block to the end of its own trust path, the management data link of the first area unit determines the first area unit through the database access layer of the first area unit Change the end block of the path with the most nodes in the audit data chain, and determine its own trust path according to the end block of the path with the most nodes in the audit data link of the first area unit.
  • the first management database node may determine that the first trust path is implemented according to the third trust path in the change audit data link of the first area unit, that the management data link of the first area unit may be to the first area unit.
  • the database access layer sends a trust path read request, and when the database access layer of the first area unit receives the trust path read request, the trust path read request is sent to the change audit data chain of the first area unit.
  • the change audit data link of the first area unit receives the trust path read request, the second block of the end of the path with the most nodes is determined from the second block at the end of the path with the most nodes.
  • the database access layer of the first area unit transmits the received identifier of the first block to the management data chain of the first area unit.
  • the management data link of the first area unit receives the identifier of the first block, the identifier of the end block is searched from the data link of the first area as the path of the identifier of the first block, and the found path is determined as The first trust path.
  • the management database node of each area unit further includes a database cache
  • the management database node of the first area unit adds the generated first block to the end of the first trust path of the management data link of the own area
  • the received management data can also be cached in the database cache.
  • the management data link of the first area unit transmits the received management data to the database access layer of the first area unit, and the database access layer of the first area unit writes the management data to the database cache of the first area unit.
  • the first first block in the management data chain of the first area unit is obtained according to the factory configuration data set by the publisher of the distributed cloud data center. That is, in the initialization state, the management data chain of the first area unit generates the first first block based on the management data at the time of initialization. And the management data link of the first area unit sends a second update request to the change audit data link of the first area unit by using the database access layer of the first area unit, and the change audit data link of the first area unit receives the second update request, and A first second block is generated, and the first second block is used to indicate that the end block of the trust path in the management data chain of the first area unit is the first first block.
  • the management data at the time of initialization is the factory configuration data set by the publisher of the distributed cloud data center.
  • the management data chain may generate a first update request and implement an update to the change audit data chain by the following step 603 according to the first update request.
  • Step 603 The first management database node of the first area unit sends a first update request to its own change audit data link, and adds a second block at the end of the path with the most nodes in the change audit data link of its own.
  • the second block is used to indicate that the end block of the trust path in the management data chain of the first area unit is the generated first block.
  • the implementation of the step 603 may be: the management data link of the first area unit sends a first update request to the database access layer of the first area unit, where the first update request carries the first block generated in step 601. logo.
  • the first update request is sent to the change audit data chain of the first area unit.
  • the change audit data link of the first area unit receives the first update request, and adds a second block in the path that has the most node, and the currently added second block is used to indicate the management data of the current first area unit.
  • the end block of the trust path in the chain is the first block generated.
  • the first update request carries the identifier of the first block generated in step 601
  • the change audit data link of the first area unit receives the first update request, according to the first area carried in the first update request
  • the identifier of the block generates a second block
  • the generated second block is added to the end of the path having the most nodes, and the generated second block stores the identifier of the first block generated in step 601.
  • Step 604 The first management database node of the first area unit broadcasts the generated first block in the first P2P network, so that the management database node of each area unit except the first area unit will generate The first block is added to the end of the trust path of its own management data link, and the management database node of each area unit other than the first area unit adds a second in the path with the most nodes in the change audit data link. Block.
  • each area unit of the distributed cloud data center shares a set of management data, it is necessary to ensure the consistency of the management data link in each area unit and the data stored in the change audit data link. Therefore, after the management data link of the first area unit generates the first block, the generated first block needs to be transmitted in the first P2P network, so that the other area units update their management data link according to step 604. Change the audit data chain.
  • the change audit data link of the other area unit adds the second block in the path with the most nodes and the change audit data link of the first area adds the second in the path with the most nodes of the own area.
  • the implementation of the blocks is basically the same and will not be elaborated here.
  • the distributed cloud data center includes a plurality of regional units, and the management database nodes of each regional unit include a management data link and a change audit data link.
  • the first area unit obtains the updated management data, generates a first block according to the updated management data, and determines a first trust path of the management data chain according to the change audit data chain, and then according to the first trust path.
  • the first block is stored in the management data chain.
  • the management database node of the first area unit broadcasts the generated first block in the first P2P network, so that the management database node of each area unit other than the first area unit will generate the first block Join the end of the trust path of your own management data link.
  • management data is stored in each area unit, so that each of the area units can obtain management data from its own management data chain, thereby improving the efficiency of obtaining the management data by the area unit. .
  • management data is stored in the management data link of each area unit, there is no possibility that other area units cannot obtain management data.
  • FIG. 7 is a flowchart of another method for storing management data according to an embodiment of the present application, which is applied to the distributed cloud data center shown in FIG. 2B, and the method for storing management data shown in FIG. 7 is used for FIG. 6
  • the method of storing management data is further illustrated. Specifically, as shown in FIG. 6, the method includes the following steps:
  • Step 701 The first management database node of the first area unit acquires the updated management data, and generates a first block according to the updated management data, where the first area unit is any one of the plurality of area units.
  • step 701 is basically the same as the implementation manner of step 601 in the embodiment shown in FIG. 6, and will not be elaborated in the same time.
  • Step 702 The first management database node of the first area unit stores the generated first block.
  • step 702 is basically the same as the implementation of step 602 in the embodiment shown in FIG. 6, and will not be described in detail again.
  • Step 703 The first management database node of the first area unit sends a first update request to its own change audit data link, and adds a second block to the end of the path with the most nodes of its own change audit data link.
  • the second block is used to indicate that the end block of the trust path in the management data chain of the first area unit is the generated first block.
  • step 703 is basically the same as the implementation manner of step 603 in the embodiment shown in FIG. 6, and will not be elaborated in the same time.
  • Step 704 The first management database node of the first area unit broadcasts the generated first block in the first P2P network, so that the management database node of each area unit except the first area unit will generate The first block is added to the end of the trust path of its own management data link, and the management database node of each area unit other than the first area unit is added to the path with the most nodes in the change audit data chain. Second block.
  • step 704 is basically the same as the implementation of step 604 in the embodiment shown in FIG. 6, and will not be elaborated in the second.
  • the above steps 701 to 704 are used to explain how to determine the management data link and change audit data chain of each area unit, that is, to explain the management data chain and change audit data link write management to each area unit.
  • the process of data The following is a description of the management data link of the regional unit and the application of the change audit data link.
  • the application of the management data link and the change audit data link for the regional unit include the following two aspects:
  • step 705 is used to explain how to read the management data from the management data link of the regional unit and the change audit data chain
  • steps 706 and 707 are used to explain how to manage the data link and change according to the regional unit.
  • the audit data link performs management data recovery.
  • Step 705 Acquire management data when the first management database node of the first area unit receives the management data read request.
  • the first management database node of the first area unit receives the management data read request, and determines the end block of the path with the most nodes in the change audit data chain of the first area unit, and the first area of the first area unit
  • the management database node determines the trusted road hole in the management data chain according to the end block of the path with the most nodes in the audit data chain of the change, and the first management database node of the first area unit has its own management data link.
  • the first block at the end of the path of the most node reads the management data. That is, the first management database node determines the first trust path according to the third trust path, and reads the management data in the last first block in the first trust path.
  • the foregoing process may be implemented by the following steps 7051 to 7053:
  • Step 7051 When the service system of the first area unit receives the management data read request, forward the management data read request to the management system of the first area unit.
  • the management data read request is triggered by the user, and the distributed cloud data center shown in FIG. 2B knows that the service system of each regional unit is not connected to the management database node, but by each regional unit.
  • the management system is connected to the management database node. Therefore, when the service system of the first area unit receives the management data read request, the management data read request needs to be forwarded to the management system of the first area unit.
  • Step 7052 The management system of the first area unit acquires management data from the management database node of the first area unit.
  • step 7052 is: when the management system of the first area unit receives the management data read request, the management system of the first area unit sends the management data read to the database access layer of the first area unit. Requesting, the database access layer of the first area unit receives the management data read request, and determines management data according to the management data link of the first area unit and the change audit data chain, and the database access layer of the first area unit is directed to the first area unit The management system sends the determined management data.
  • each regional unit further includes a database cache
  • the database access layer of the first regional unit determines the management data according to the management data link of the first regional unit and the change audit data chain
  • the management system of the first area unit acquires management data through the database access layer of the first area unit, and the database access layer of the first area unit obtains management data from the management data link and the change audit data chain.
  • the management data is stored in the database cache to improve the efficiency of obtaining the management data. If the database access layer of the first area unit does not obtain the management data from the database cache of the first area unit, then the management data link is Obtain management data in the change audit data chain.
  • the implementation manner of determining the management data by the database access layer of the first area unit according to the management data link of the first area unit and the change audit data link may be: changing the audit data of the database access layer of the first area unit to the first area unit.
  • the chain sends a trust path read request
  • the change audit data link of the first area unit receives the trust path read request, and searches for the end second block of the path with the most nodes
  • the change audit data chain of the first area unit is based on Finding the second block, determining an identifier of the first block at the end of the trust path of the management data link of the first area unit, and transmitting the identifier of the first block at the end of the trust path to the first area unit a database access layer
  • the database access layer of the first area unit sends the identifier of the first block at the end of the trust path to the management data link of the first area unit
  • the management data link of the first area unit is based on the end of the trust path
  • the identifier of a block finds the
  • the database access layer of the first area unit first determines the trust path in the management data of the first area unit through the change audit data chain of the first area unit, and then obtains the management from the management data link according to the determined trust chain. Data to ensure the credibility of the acquired management data.
  • Step 7053 The management system of the first area unit sends the acquired management data to the service system of the first area unit.
  • the management system of the first area unit When the management system of the first area unit receives the management data sent by the database access layer of the first area unit, the management system of the first area unit sends the received management data to the service system of the first area unit to complete the reading. The process of managing data.
  • Step 706 After the first regional unit fails to cause a problem in its management data link, when the first management database node of the first regional unit receives the first type of data recovery request, the first management database node of the first regional unit Perform data recovery.
  • the first management database node of the first regional unit receives the first type of data recovery request, and rejoins its own management data link to the first P2P network. Reloading the block information from the first P2P network, and rejoining the change audit data link of the first P2P network to the second P2P network, reloading the block information from the second P2P network, and the first management database node of the first area unit Returns a data recovery confirmation message.
  • the database access layer of the first area unit receives the first type of data recovery request, and respectively manages the data link to the first area unit and changes the audit data link. Send a network join request.
  • the first type of data recovery request is triggered by a preset operation by the administrator, that is, after the first area unit fails, when the manager needs to restore the first area unit, the first operation may be triggered by a preset operation.
  • Class data recovery request is triggered by a preset operation by the administrator, that is, after the first area unit fails, when the manager needs to restore the first area unit, the first operation may be triggered by a preset operation.
  • the first regional unit may be added to the first P2P network and the second P2P network.
  • the management data link and the change audit data link of a regional unit are rejoined to the first P2P network and the second P2P network to restore the management data link of the first area unit and change the block data in the audit data chain.
  • the management data link of the first area unit receives the network join request, rejoins the first P2P network, and reloads the block information from the first P2P network, and after obtaining each of its own blocks, the first area unit
  • the database access layer sends a first network join confirmation message
  • the change audit data link of the first area unit receives the network join request, rejoins the second P2P network, and reloads the block information from the second P2P network, and obtains each of its own
  • the block sends a second network join confirmation message to the database access layer of the first area unit.
  • the management data link of the first area unit receives the network join request, and the method of rejoining the first P2P network is: the management data link of the first area unit broadcasts a network join request in the first P2P network, and the network join request Carrying the identity information of the first area unit, when the other area units in the first P2P network receive the network join request, verify the identity information of the first area unit, and broadcast the verification result to determine whether to allow the first The zone unit joins the first P2P network.
  • the implementation manner of reloading the block information from the first P2P network by the first area unit may be: the management data link of the first area unit sends a management data link acquisition request to the management data link of any other area unit in the first P2P network.
  • the management data link of the other area unit receives the management data link acquisition request, the block in the chain of the first area unit is sent to the management data link of the first area unit, so that the management data link of the first area unit can obtain each Block.
  • the manner in which the first area unit reloads the block information from the second P2P network may be: the change audit data link of the first area unit sends the change audit data to the change audit data link of any other area unit in the second P2P network.
  • the chain acquisition request when the change audit data link of the other area unit receives the change audit data link acquisition request, sends the block in the chain of the first area unit to the change audit data chain of the first area unit, so that the first area unit Each block can be obtained by changing the audit data chain.
  • the database access layer of the first area unit receives the first network join confirmation message and the second network join confirmation message, and sends a data recovery confirmation message to the management system of the first area unit.
  • the database access layer of the first area unit When the database access layer of the first area unit receives the first network join confirmation message sent by the management data link of the first area unit and the second network join confirmation message sent by the change audit data link of the first area unit, determining the current The management data link of the first area unit and the data in the change audit data chain are restored. Therefore, the database access layer of the first area unit can transmit a data recovery confirmation message to the management system of the first area unit.
  • each regional unit further includes a database cache
  • the stored management data in the database cache of the first regional unit may have expired, and therefore, when the first region
  • the latest management data can be re-stored in the database cache of the first area unit.
  • the database access layer of the first area unit determines whether management data is stored in the database cache of the first area unit, and if not, determines management data according to the management data link of the first area unit and the change audit data link, and The determined management data is written into the database cache of the first area unit.
  • the database access layer of the first area unit determines the management data according to the management data link of the first area unit and the change audit data link. The detailed description is in step 705, and the description is not repeated here.
  • the process of restoring the management data link and the change audit data link in the management database node in the first area is referred to as the first type of data recovery.
  • the first type of data recovery may be applied to the disaster recovery and back-cutting process, or may be applied to a scenario where the device or system corresponding to the area unit fails and the locally stored management data is damaged.
  • the following step 707 is used to introduce the second type of data recovery provided by the embodiment of the present application, and the second type of data recovery is applied to a logic error scenario.
  • the logical error scenario refers to a scenario in which the management data is configured to an incorrect value according to a normal configuration process due to an intentional or unintentional error.
  • the configuration process since the configuration process is normal, the current valid data of all the regional units is configured. Wrong data.
  • Step 707 When the first management database node of the first area unit receives the second type data recovery request, the first management database node of the first area unit performs data recovery, and the second type of data recovery request is used to indicate that the time is to be specified.
  • the management data is determined to be valid management data.
  • the implementation manner of the data recovery by the management database node of the first area unit may be: the first management database node acquires the specified time carried in the data recovery request, and the first management database node is in the first area unit according to the specified time Querying, in the data link, a first block whose query timestamp matches the specified time, the first management database node generates a new second block according to the first block found, and adds the new second block And being the last second block in the third trust path, the new second block is configured to reset the first trust path according to the first block that is found.
  • the management system of the first area unit receives the second type of data recovery request
  • the second type of data recovery request is sent to the database access layer of the first area unit, and the database access layer of the first area unit is according to the specified time
  • querying from the management data link of the first area unit, the first block whose timestamp matches the specified time, and the database access layer of the first area unit changes the audit data to the first area unit according to the first block that is found.
  • the chain sends a trust path reset request
  • the change audit data link of the first area unit receives the trust path reset request, and adds a second block at the end of the path with the most nodes, and the currently added second block
  • the end block for indicating the trust path of the current management data link is the first block of the search
  • the change audit data chain of the first area unit sends a trust path reset confirmation message to the database access layer of the first area unit, first
  • the database access layer of the regional unit receives the trust chain reset confirmation message and sends data recovery to the management system of the first regional unit Confirmation message.
  • the database access layer of the first area unit queries the first block that matches the timestamp and the specified time from the management data link of the first area unit according to the specified time: the database access layer direction of the first area unit
  • the management data link of the first area unit sends a block query request, and the block query request carries the specified time.
  • the management data link of the first area unit receives the block query request, according to the specified time from the chain of the own And searching for the first block whose timestamp matches the specified time, and sending the identifier of the found first block to the database access layer of the first area unit.
  • the database access layer of the first area unit carries the identifier of the first block that is found to the trust path reset request sent by the change audit data link of the first area unit, so that the change of the first area unit is audited.
  • the data chain stores the identity of the first block into the newly added second block.
  • the change audit data link of the first regional unit adds one at the end of its own path with the most nodes.
  • the change audit data link of the first area unit broadcasts the currently added second block in the second P2P network, so that each area unit except the first area unit will be newly added.
  • the second block is added to the end of the path with the most nodes of its own change audit data chain to enable reconfiguration of valid data for all area units.
  • the management database node of each area unit further includes a database cache
  • the second type of data recovery when the second type of data recovery is performed, it indicates that the data stored in the current database cache is also erroneous data, and therefore, the database access layer of the first area unit
  • the management data in the first block found Before sending the data recovery confirmation message to the management system of the first area unit, the management data in the first block found may also be determined, and the determined management data is written into the database cache of the first area unit, so that the first The management data in the database cache of the zone unit is updated.
  • the distributed cloud data center includes a plurality of regional units, and the management database nodes of each regional unit include a management data link and a change audit data link.
  • the first area unit obtains the updated management data, generates a first block according to the updated management data, and determines a first trust path of the management data chain according to the change audit data chain, and then according to the first trust path.
  • the first block is stored in the management data chain.
  • the management database node of the first area unit broadcasts the generated first block in the first P2P network, so that the management database node of each area unit other than the first area unit will generate the first block Join the end of the trust path of your own management data link.
  • management data is stored in each area unit, so that each of the area units can obtain management data from its own management data chain, thereby improving the efficiency of obtaining the management data by the area unit. .
  • management data is stored in the management data link of each area unit, there is no possibility that other area units cannot obtain management data.
  • an embodiment of the present application provides a storage device 800 for managing data, which is applied to a first management database node in a distributed cloud data center, where the first management database node is a first region of multiple regional units.
  • the management database node of the unit, the distributed cloud data center includes a plurality of area units.
  • the device includes a first storage module 801 and a second storage module 802:
  • the first storage module 801 is configured to perform step 401 in the embodiment of FIG. 4 or step 501 in the embodiment of FIG. 5;
  • the first storage module 802 is configured to perform step 402 in the embodiment of FIG. 4 or step 502 in the embodiment of FIG. 5;
  • the management data chain of each area unit includes a plurality of first blocks, each of the plurality of first blocks includes one management data, and the management data chain of each area unit is a tree structure, the plurality of first blocks are respectively nodes in the first tree structure;
  • the first storage module 801 includes:
  • a generating unit configured to generate a new first block, where the new first block includes the updated management data
  • Adding a unit configured to add the new first block as the last first block in the first trust path
  • the second storage module includes:
  • an indicating unit configured to instruct the second management database node to add the new first block as the last first block in the second trust path.
  • the first trust path has the most node in the management data link of the first area unit
  • the second trust path has the most management data chain of the second area unit where the second management database node is located. node.
  • each area unit further includes a change audit data chain, and the change audit data chain of each area unit includes a plurality of second blocks, and the plurality of second blocks are interconnected to form a first branch having at least one branch a two-tree structure, wherein the plurality of second blocks are nodes in the second tree structure;
  • the first storage module 801 further includes:
  • a determining unit configured to determine the first trust path according to the third trust path in the change audit data chain of the first area unit, where the third trust path has the most nodes in the change audit data chain of the first area unit.
  • the device further includes:
  • a first receiving module configured to receive a management data read request, determine the first trust path according to the third trust path, and read the updated management data in a last block of the first trust path .
  • each first block has a timestamp, and a timestamp of each first block is used to indicate a time corresponding to the management data thereon;
  • the device 800 also includes:
  • a second receiving module configured to receive a data recovery request, to obtain a specified time carried in the data recovery request, where the data recovery request is used to indicate that the management data at the specified time is determined as valid management data
  • a querying module configured to query, in the management data link of the first area unit, a first block whose timestamp matches the specified time according to the specified time;
  • a generating module configured to generate a new second block according to the first block found, and add the new second block as the last second block in the third trust path, the new The second block is configured to reset the first trust path according to the first block that is found.
  • the distributed cloud data center includes a plurality of area units.
  • the management data link in the first area unit stores the The updated management data, and instructing the second management database node to store the updated management data in the management data link of the second area unit. Therefore, in the present application, when the first management database node stores the updated management data, the management database node of the other regional unit will also store the updated management data to implement the management database node of each regional unit. Management data is stored and the stored management data is consistent.
  • management data is stored in each area unit, so that each of the area units can acquire management data from its own management data chain, which improves the efficiency of the area unit to obtain management data.
  • management data is stored in the management data link of each area unit, there is no possibility that other area units cannot obtain management data.
  • the storage device for managing data provided by the foregoing embodiment is only illustrated by the division of the foregoing functional modules. In actual applications, the functions may be assigned differently according to needs.
  • the function module is completed, that is, the internal structure of the device is divided into different functional modules to complete all or part of the functions described above.
  • the storage device for managing data and the method for storing management data provided by the foregoing embodiments are in the same concept, and the specific implementation process is described in detail in the method embodiment, and details are not described herein again.
  • the computer program product includes one or more computer instructions.
  • the computer can be a general purpose computer, a special purpose computer, a computer network, or other programmable device.
  • the computer instructions can be stored in a computer readable storage medium or transferred from one computer readable storage medium to another computer readable storage medium, for example, the computer instructions can be from a website site, computer, server or data center Transfer to another website site, computer, server, or data center by wire (eg, coaxial cable, fiber optic, Digital Subscriber Line (DSL)) or wireless (eg, infrared, wireless, microwave, etc.).
  • the computer readable storage medium can be any available media that can be accessed by a computer or a data storage device such as a server, data center, or the like that includes one or more available media.
  • the usable medium may be a magnetic medium (for example, a floppy disk, a hard disk, a magnetic tape), an optical medium (for example, a digital versatile disc (DVD)), or a semiconductor medium (for example, a solid state disk (SSD)). )Wait.
  • a magnetic medium for example, a floppy disk, a hard disk, a magnetic tape
  • an optical medium for example, a digital versatile disc (DVD)
  • DVD digital versatile disc
  • SSD solid state disk
  • a person skilled in the art may understand that all or part of the steps of implementing the above embodiments may be completed by hardware, or may be instructed by a program to execute related hardware, and the program may be stored in a computer readable storage medium.
  • the storage medium mentioned may be a read only memory, a magnetic disk or an optical disk or the like.

Abstract

A management data storage method and device, and a storage medium. The method comprises: when a first management database node in a first region unit acquires updated management data, storing the updated management data in a management data chain of the first region unit, and instructing a second management database node to store the updated management data in a management data chain of a second region unit. When a first management database node stores updated management data, the management database nodes in the other region units also store the updated management data, so that the management database node in each region unit stores the management data and the stored management data are consistent, each region unit can acquire the management data from its own management data chain subsequently, and the efficiency of the region units acquiring the management data can be improved.

Description

管理数据的存储方法、设备及存储介质Management method, device and storage medium for managing data 技术领域Technical field
本申请涉及信息处理技术领域,特别涉及一种管理数据的存储方法、设备及存储介质。The present application relates to the field of information processing technologies, and in particular, to a storage method, device, and storage medium for managing data.
背景技术Background technique
伴随着信息的增长,以及网络互连技术的发展,传统数据中心的规模越来越大,出现了跨地域的分布式云数据中心。目前,分布式云数据中心通常包括多个区域单元(Region),分布于多个地域,每个区域单元和一个地域对应,且每个区域单元用于管理本地域内的数据。另外,各个区域单元共用一套管理数据,该管理数据包括区域单元运行所必需的信息,比如身份认证数据和系统配置参数等。由于各个区域单元共用一套管理数据,因此如何对管理数据进行存储以实现该管理数据的全局共享变得越来越重要。With the growth of information and the development of network interconnection technologies, the scale of traditional data centers is growing, and distributed cloud data centers across regions have emerged. Currently, a distributed cloud data center usually includes a plurality of regional units distributed in a plurality of regions, each regional unit corresponding to one region, and each regional unit is used to manage data in the local domain. In addition, each area unit shares a set of management data including information necessary for the operation of the area unit, such as identity authentication data and system configuration parameters. Since each regional unit shares a set of management data, how to store management data to achieve global sharing of the management data becomes more and more important.
相关技术中,对于分布式云数据中心包括的多个区域单元,在该多个区域单元的某个区域单元中设置全球(Global)区域,在初始化时将管理数据存储至该全球区域中,其他区域单元可以通过访问该区域单元获取该管理数据,以实现管理数据的全局共享。之后,当需要对管理数据进行更新时,更新存储在全球区域中的管理数据,其他区域单元同样可以通过访问该区域单元获取更新之后的管理数据。In the related art, for a plurality of regional units included in the distributed cloud data center, a global region is set in a certain regional unit of the plurality of regional units, and management data is stored in the global region at initialization, and the like. The area unit can acquire the management data by accessing the area unit to implement global sharing of management data. Then, when the management data needs to be updated, the management data stored in the global area is updated, and other area units can also obtain the updated management data by accessing the area unit.
在上述方法中,由于将管理数据集中存储在分布式云数据中心的一个区域单元中,因此其他区域单元都必须从该区域单元中获取管理数据,从而导致获取管理数据的效率不高。另外,若存储管理数据的区域单元出现问题,将导致其他区域单元无法获取到管理数据。In the above method, since the management data is collectively stored in one area unit of the distributed cloud data center, other area units must acquire management data from the area unit, thereby resulting in inefficient acquisition of management data. In addition, if there is a problem with the area unit storing the management data, the other area units cannot obtain the management data.
发明内容Summary of the invention
为了解决相关技术中获取管理数据的效率不高的问题,本申请提供了一种管理数据的存储方法、设备及存储介质。所述技术方案如下:In order to solve the problem that the efficiency of obtaining management data in the related art is not high, the present application provides a storage method, device, and storage medium for managing data. The technical solution is as follows:
第一方面,提供一种管理数据的存储方法,应用于分布式云数据中心,该分布式云数据中心包括多个区域单元,该方法包括:In a first aspect, a storage method for managing data is provided, which is applied to a distributed cloud data center, where the distributed cloud data center includes a plurality of regional units, and the method includes:
第一管理数据库节点获取更新后的管理数据,并在第一区域单元的管理数据链存储该更新后的管理数据,该第一管理数据库节点为该多个区域单元中的第一区域单元所具有的管理数据库节点;The first management database node acquires the updated management data, and stores the updated management data in a management data link of the first area unit, where the first management database node has the first area unit of the plurality of area units Management database node;
该第一管理数据库节点指示第二管理数据库节点在第二区域单元的管理数据链中存储该更新后的管理数据,该第二区域单元为该多个区域单元中除了该第一区域单元之外的任一个区域单元,该第二区域单元具有该第二管理数据库节点,该多个区域单元中不同区域单元的管理数据链用于相互容灾备份。The first management database node instructs the second management database node to store the updated management data in a management data link of the second area unit, where the second area unit is other than the first area unit Any of the area units, the second area unit having the second management database node, and the management data links of the different area units of the plurality of area units are used for mutual disaster recovery backup.
在本申请中,分布式云数据中心包括多个区域单元,当第一区域单元中的第一管理数据库节点获取到更新后的管理数据时,在第一区域单元的管理数据链存储该更新后的管理数据,并指示第二管理数据库节点在第二区域单元的管理数据链中存储该更 新后的管理数据。由此可知,在本申请中,当第一管理数据库节点存储更新后的管理数据时,其他区域单元的管理数据库节点也将存储更新后的管理数据,以实现每个区域单元的管理数据库节点中都存储有管理数据,且存储的管理数据一致。也即,在本申请中,每个区域单元中都存储有管理数据,以便于后续每个区域单元可以从自身的管理数据链中获取管理数据,提高了区域单元导致获取管理数据的效率。另外,若某个区域单元出现问题,由于每个区域单元的管理数据链中都存储有管理数据,因此不会出现其他区域单元无法获取到管理数据的情况。In the present application, the distributed cloud data center includes a plurality of area units, and when the first management database node in the first area unit acquires the updated management data, after the update is stored in the management data link of the first area unit Management data, and instructing the second management database node to store the updated management data in the management data link of the second area unit. Therefore, in the present application, when the first management database node stores the updated management data, the management database node of the other regional unit will also store the updated management data to implement the management database node of each regional unit. Management data is stored and the stored management data is consistent. That is, in the present application, management data is stored in each area unit, so that each of the area units can acquire management data from its own management data chain, which improves the efficiency of the area unit to obtain management data. In addition, if there is a problem with a certain area unit, since management data is stored in the management data link of each area unit, there is no possibility that other area units cannot obtain management data.
可选地,每个区域单元的管理数据链包括多个第一区块,该多个第一区块中的每个第一区块包括一个管理数据,每个区域单元的管理数据链为第一树形结构,该多个第一区块分别为该第一树形结构中的节点;Optionally, the management data chain of each area unit includes a plurality of first blocks, each of the plurality of first blocks includes one management data, and the management data chain of each area unit is a tree structure, the plurality of first blocks are respectively nodes in the first tree structure;
第一管理数据库节点在第一区域单元的管理数据链存储该更新后的管理数据,包括:The first management database node stores the updated management data in the management data link of the first area unit, including:
该第一管理数据库节点生成新的第一区块,该新的第一区块包括该更新后的管理数据;The first management database node generates a new first block, and the new first block includes the updated management data;
该第一管理数据库节点将该新的第一区块添加为第一信任路径中的最后一个第一区块;The first management database node adds the new first block as the last first block in the first trust path;
该第一管理数据库节点指示第二管理数据库节点在第二区域单元的管理数据链中存储该更新后的管理数据,包括:The first management database node instructs the second management database node to store the updated management data in the management data link of the second area unit, including:
该第一管理数据库节点指示该第二管理数据库节点将该新的第一区块添加为第二信任路径中的最后一个第一区块。The first management database node instructs the second management database node to add the new first block as the last first block in the second trust path.
具体地,为了便于高效管理管理数据,各个区域单元中的管理数据链是由多个区块组成的树形结构,树形结构中的每个节点为一个区块,每个区块包括一个管理数据,以便于后续可以根据区块获取对应的管理数据。Specifically, in order to facilitate efficient management of management data, the management data chain in each area unit is a tree structure composed of a plurality of blocks, each node in the tree structure is a block, and each block includes a management. Data so that subsequent management data can be obtained from the block.
可选地,该第一信任路径在该第一区域单元的管理数据链中拥有最多节点,该第二信任路径在该第二管理数据库节点所在的该第二区域单元的管理数据链中拥有最多节点。Optionally, the first trust path has the most node in the management data link of the first area unit, and the second trust path has the most management data chain of the second area unit where the second management database node is located. node.
实际应用中,为了提高管理数据链中的数据的可信度,对于任一区域单元,该区域单元的管理数据链中的信任路径为管理数据链中拥有最多节点的路径。也即,每个区域单元都将自身的管理数据链中拥有节点最多的路径确定为信任路径。In practical applications, in order to improve the credibility of data in the management data chain, for any regional unit, the trust path in the management data chain of the regional unit is the path with the most nodes in the management data chain. That is, each regional unit determines the path having the most nodes in its management data chain as the trust path.
可选地,每个区域单元还包括变更审计数据链,每个区域单元的变更审计数据链包括多个第二区块,该多个第二区块之间相互连接形成具有至少一个分支的第二树型结构,该多个第二区块分别为该第二树型结构中的节点;Optionally, each area unit further includes a change audit data chain, and the change audit data chain of each area unit includes a plurality of second blocks, and the plurality of second blocks are interconnected to form a first branch having at least one branch a two-tree structure, wherein the plurality of second blocks are nodes in the second tree structure;
第一管理数据库节点将该新的第一区块添加为第一信任路径中的最后一个第一区块,包括:The first management database node adds the new first block as the last first block in the first trust path, including:
该第一管理数据库节点根据该第一区域单元的变更审计数据链中的第三信任路径确定该第一信任路径,该第三信任路径在该第一区域单元的变更审计数据链中拥有最多节点。Determining, by the first management database node, the first trust path according to a third trust path in the change audit data chain of the first area unit, where the third trust path has the most node in the change audit data chain of the first area unit .
另外,在实际应用中,可能需要将当前的管理数据恢复至历史时刻的管理数据,也即需要重新定义管理数据链中的信任路径,此时,上述每个区域单元都将自身的管 理数据链中拥有节点最多的路径确定为信任路径的方法已经不适用于该场景。因此,在本申请中,可以为每个区域单元设置有变更审计数据链,该变更审计数据链中的区块用于指示管理数据链中的信任路径。In addition, in practical applications, it may be necessary to restore the current management data to the management data of the historical time, that is, the trust path in the management data chain needs to be redefined. At this time, each of the above regional units will have its own management data link. The method in which the path with the most nodes is determined to be the trusted path is not applicable to the scenario. Therefore, in the present application, a change audit data chain can be provided for each area unit, and the block in the change audit data chain is used to indicate the trust path in the management data link.
可选地,该方法还包括:Optionally, the method further includes:
该第一管理数据库节点接收管理数据读取请求,根据该第三信任路径确定该第一信任路径,并在该第一信任路径中的最后一个第一区块读取该更新后的管理数据。The first management database node receives the management data read request, determines the first trust path according to the third trust path, and reads the updated management data in the last first block in the first trust path.
当每个区域单元的管理数据库节点中还包括变更审计数据链时,当第一管理数据库节点需要获取管理数据时,需先通过变更审计数据链中的第三信任路径确定管理数据链中的第一信任路径,以通过第一信任路径获取管理数据。When the management database node of each area unit further includes a change audit data link, when the first management database node needs to obtain management data, the third trust path in the audit data chain is first determined to determine the number in the management data chain. A trust path to obtain management data through the first trust path.
可选地,每个第一区块具有时间戳,每个第一区块的时间戳用于指示其上管理数据对应的时刻;Optionally, each first block has a timestamp, and a timestamp of each first block is used to indicate a time corresponding to the management data thereon;
该方法还包括:The method also includes:
该第一管理数据库节点接收数据恢复请求,获取该数据恢复请求中携带的指定时刻,其中,该数据恢复请求用于指示将该指定时刻的管理数据确定为有效的管理数据;Receiving, by the first management database node, a data recovery request, where the specified time is carried in the data recovery request, where the data recovery request is used to indicate that the management data at the specified time is determined as valid management data;
该第一管理数据库节点根据该指定时刻,在该第一区域单元的管理数据链中查询时间戳与该指定时刻匹配的第一区块;Determining, by the first management database node, the first block whose timestamp matches the specified time in the management data link of the first area unit according to the specified time;
该第一管理数据库节点根据查找到的第一区块,生成新的第二区块,将该新的第二区块添加为该第三信任路径中的最后一个第二区块,该新的第二区块用于根据该查找到的第一区块重置该第一信任路径。The first management database node generates a new second block according to the first block found, and adds the new second block as the last second block in the third trust path, the new The second block is configured to reset the first trust path according to the first block that is found.
当每个区域单元的管理数据库节点中还包括变更审计数据链时,由于变更审计数据链中的区块用于指示管理数据链中的信任路径,因此,当需要将管理数据恢复至历史指定时刻时的管理数据时,只需在变更审计数据链中增加新的第二区块即可。When the management database node of each regional unit further includes a change audit data link, since the block in the change audit data chain is used to indicate the trust path in the management data link, when the management data needs to be restored to the historical designated time When managing data, simply add a new second block to the change audit data chain.
第二方面,提供了一种管理数据的存储设备,应用于分布式云数据中心中的第一管理数据库节点,该分布式云数据中心包括多个区域单元,该第一管理数据库节点为该多个区域单元中的第一区域单元所具有的管理数据库节点,该管理数据的存储具有实现上述第一方面中管理数据的存储方法行为的功能。该管理数据的存储设备包括至少一个模块,该至少一个模块用于实现上述第一方面所提供的管理数据的存储方法。In a second aspect, a storage device for managing data is provided, which is applied to a first management database node in a distributed cloud data center, where the distributed cloud data center includes a plurality of regional units, where the first management database node is The management database node of the first area unit among the area units has a function of realizing the storage method behavior of the management data in the first aspect described above. The storage device for managing data includes at least one module for implementing the storage method of the management data provided by the above first aspect.
第三方面,提供了一种管理数据的存储设备,该管理数据的存储设备的结构中包括处理器和存储器,该存储器用于存储支持管理数据的存储设备执行上述第一方面所提供的管理数据的存储方法的程序,以及存储用于实现上述第一方面所提供的管理数据的存储方法所涉及的数据。该处理器被配置为用于执行该存储器中存储的程序。该存储设备的操作设备还可以包括通信总线,该通信总线用于该处理器与存储器之间建立连接。A third aspect provides a storage device for managing data, where the storage device includes a processor and a memory for storing a storage device supporting the management data to execute the management data provided by the first aspect. The program of the storage method, and the data involved in storing the storage method for implementing the management data provided by the first aspect described above. The processor is configured to execute a program stored in the memory. The operating device of the storage device can also include a communication bus for establishing a connection between the processor and the memory.
第四方面,提供了一种计算机可读存储介质,所述计算机可读存储介质中存储有指令,当其在计算机上运行时,使得计算机执行上述第一方面所述的管理数据的存储方法。In a fourth aspect, there is provided a computer readable storage medium having stored therein instructions that, when run on a computer, cause the computer to perform the method of storing management data described in the first aspect above.
第五方面,提供了一种包含指令的计算机程序产品,当其在计算机上运行时,使得计算机执行上述第一方面所述的管理数据的存储方法。In a fifth aspect, there is provided a computer program product comprising instructions which, when run on a computer, cause the computer to perform the method of storing management data as described in the first aspect above.
上述第二方面、第三方面、第四方面和第五方面所获得的技术效果与第一方面中对应的技术手段获得的技术效果近似,在这里不再赘述。The technical effects obtained by the second aspect, the third aspect, the fourth aspect, and the fifth aspect are similar to those obtained by the corresponding technical means in the first aspect, and are not described herein again.
本申请提供的技术方案带来的有益效果是:The beneficial effects brought by the technical solutions provided by the present application are:
在本申请中,分布式云数据中心包括多个区域单元,当第一区域单元中的第一管理数据库节点获取到更新后的管理数据时,在第一区域单元的管理数据链存储该更新后的管理数据,并指示第二管理数据库节点在第二区域单元的管理数据链中存储该更新后的管理数据。由此可知,在本申请中,当第一管理数据库节点存储更新后的管理数据时,其他区域单元的管理数据库节点也将存储更新后的管理数据,以实现每个区域单元的管理数据库节点中都存储有管理数据,且存储的管理数据一致。也即,在本申请中,每个区域单元中都存储有管理数据,以便于后续每个区域单元可以从自身的管理数据链中获取管理数据,提高了区域单元导致获取管理数据的效率。另外,若某个区域单元出现问题,由于每个区域单元的管理数据链中都存储有管理数据,因此不会出现其他区域单元无法获取到管理数据的情况。In the present application, the distributed cloud data center includes a plurality of area units, and when the first management database node in the first area unit acquires the updated management data, after the update is stored in the management data link of the first area unit Management data, and instructing the second management database node to store the updated management data in the management data link of the second area unit. Therefore, in the present application, when the first management database node stores the updated management data, the management database node of the other regional unit will also store the updated management data to implement the management database node of each regional unit. Management data is stored and the stored management data is consistent. That is, in the present application, management data is stored in each area unit, so that each of the area units can acquire management data from its own management data chain, which improves the efficiency of the area unit to obtain management data. In addition, if there is a problem with a certain area unit, since management data is stored in the management data link of each area unit, there is no possibility that other area units cannot obtain management data.
附图说明DRAWINGS
图1A为本申请实施例提供的一种区块链的结构示意图;1A is a schematic structural diagram of a blockchain according to an embodiment of the present application;
图1B是本申请实施例提供的一种P2P网络示意图;1B is a schematic diagram of a P2P network provided by an embodiment of the present application;
图2A是本申请实施例提供的一种存分布式云数据中心的示意图;2A is a schematic diagram of a distributed cloud data center provided by an embodiment of the present application;
图2B是本申请实施例提供的另一种分布式云数据中心的示意图;2B is a schematic diagram of another distributed cloud data center provided by an embodiment of the present application;
图3是本申请实施例提供的一种计算机设备的结构示意图;3 is a schematic structural diagram of a computer device according to an embodiment of the present application;
图4是本申请实施例提供的一种管理数据的存储方法流程图;4 is a flowchart of a method for storing management data provided by an embodiment of the present application;
图5是本申请实施例提供的另一种管理数据的存储方法流程图;FIG. 5 is a flowchart of another storage method for managing data according to an embodiment of the present application;
图6是本申请实施例提供的另一种管理数据的存储方法流程图;FIG. 6 is a flowchart of another storage method for managing data according to an embodiment of the present application;
图7是本申请实施例提供的另一种管理数据的存储方法流程图;FIG. 7 is a flowchart of another storage method for managing data according to an embodiment of the present application;
图8是本申请实施例提供的一种管理数据的存储设备框图。FIG. 8 is a block diagram of a storage device for managing data according to an embodiment of the present application.
具体实施方式detailed description
为使本申请的目的、技术方案和优点更加清楚,下面将结合附图对本申请实施方式作进一步地详细描述。In order to make the objects, technical solutions and advantages of the present application more clear, the embodiments of the present application will be further described in detail below with reference to the accompanying drawings.
本发明提供一种用于分布式云数据中心的分布式管理数据库。该分布式管理数据库包括多个管理数据库节点,用于存储分布式云数据中心的管理数据。分布式云数据中心的每个区域单元均具有一个管理数据库节点,用于将分布式云数据中心的管理数据存储至管理数据库节点对应的管理数据链。每个管理数据节点对应一个管理数据链,各个管理数据链中存储的管理数据互为灾备。分布式云数据中心更新管理数据后,第一管理数据库节点获取更新后的管理数据,并存储至对应的管理数据链,随后指示其余区域单元的管理数据库节点存储更新后的管理数据,各管理数据链存储的更新后的管理数据用于相互容灾备份。The present invention provides a distributed management database for a distributed cloud data center. The distributed management database includes a plurality of management database nodes for storing management data of the distributed cloud data center. Each regional unit of the distributed cloud data center has a management database node for storing the management data of the distributed cloud data center to the management data link corresponding to the management database node. Each management data node corresponds to one management data link, and the management data stored in each management data link is disaster recovery. After the distributed cloud data center updates the management data, the first management database node obtains the updated management data and stores it in the corresponding management data link, and then instructs the management database nodes of the remaining area units to store the updated management data, and each management data. The updated management data of the chain storage is used for mutual disaster recovery backup.
在本发明的一个实施例中,每个管理数据库节点包含一个管理数据链。管理数据链由区块链技术实现。In one embodiment of the invention, each management database node contains a management data chain. The management data chain is implemented by blockchain technology.
为了后续便于说明,在此先对本申请实施例涉及的区块链技术进行解释说明。For the convenience of the following description, the blockchain technology related to the embodiment of the present application will be explained first.
区块链是根据对等(Peer to Peer,P2P)网络形成的一个分布式的数据库,网络中包括多个节点,任意两个节点之间相互连接,每个节点中维护了一个不断增长的、且按顺序排列的区块组成的链。每一个区块都包含了一个时间戳,并被连接到它之前的一个区块。根据设计,区块链本身具有防止数据被修改的特性,也即,一旦数据被记录在区块中,就不能再返回修改。在P2P网络和分布式时间戳服务器的帮助下,一个区块链数据库可以进行自动管理。区块链就像一个开放的、分布式的总账本,它可以高效地、安全地、永久地记录交易信息。A blockchain is a distributed database formed by a peer-to-peer (P2P) network. The network includes multiple nodes. Any two nodes are connected to each other. Each node maintains a growing number of nodes. And a chain of blocks arranged in order. Each block contains a timestamp and is connected to a block before it. Depending on the design, the blockchain itself has the property of preventing data from being modified, that is, once the data is recorded in the block, it cannot be returned for modification. With the help of P2P networks and distributed timestamp servers, a blockchain database can be managed automatically. A blockchain is like an open, distributed general ledger that records transaction information efficiently, securely, and permanently.
图1A为本申请实施例提供的一种区块链的结构示意图,如图1A所示,区块链包括多个区块,该多个区块形成具有至少一个分支的树形结构,每个区块分别为树形结构中的一个节点。区块链的信任路径(格子方框标识的区块构成的路径)拥有的节点最多,由第一个区块(白色方框标识的区块)开始一直连接到最新的区块,其他存在于信任路径之外区块(斜条纹方框标识的区块)构成的路径为无效路径。1A is a schematic structural diagram of a blockchain according to an embodiment of the present disclosure. As shown in FIG. 1A, a blockchain includes a plurality of blocks, and the plurality of blocks form a tree structure having at least one branch, each of which forms a tree structure. The blocks are each a node in the tree structure. The trust path of the blockchain (the path formed by the block identified by the grid box) has the largest number of nodes, starting from the first block (the block identified by the white box) and always connecting to the latest block, the others exist in The path formed by the block outside the trust path (the block identified by the diagonal stripe box) is an invalid path.
区块是一种记录交易的数据结构,由区块主体和区块头组成。区块主体负责记录前一段时间内的所有交易信息。区块头包括:版本号、父区块哈希值、Merkle根、时间戳、难度值、随机数。其中,Merkle根是由区块主体中所有交易的哈希值逐级两两哈希计算出的数值,用于检验一笔交易是否在该区块中存在。时间戳用于记录该区块的产生时间。难度值表示该区块工作量证明的难度目标。父区块哈希值用于实现区块之间的连接,随机数用于实现挖矿机制。A block is a data structure that records transactions, consisting of a block body and a block header. The block body is responsible for recording all transaction information for a period of time. The block header includes: version number, parent block hash value, Merkle root, time stamp, difficulty value, random number. Among them, the Merkle root is a value calculated by the hash value of all the transactions in the block body, which is used to check whether a transaction exists in the block. The timestamp is used to record the generation time of the block. The difficulty value indicates the difficulty target of the block workload proof. The parent block hash value is used to implement the connection between the blocks, and the random number is used to implement the mining mechanism.
接下来对区块链的工作原理进行介绍:Next, the working principle of the blockchain is introduced:
图1B是本申请实施例提供的一种P2P网络示意图,该网络中包括多个节点。假如当前节点A与节点B之间进行资源转移,此时可以通过以下几个步骤实现网络中的每个节点对此次交易进行记账,也即,每个节点都将此次交易写入自身的区块链中。FIG. 1B is a schematic diagram of a P2P network provided by an embodiment of the present application, where multiple nodes are included in the network. If the current resource transfer between node A and node B, at this point, each node in the network can be accounted for by the following steps, that is, each node writes the transaction to itself. In the blockchain.
(1)节点A利用私钥对要转移的资源的上一次交易信息和节点B的公钥签署一个数字签名,并将该签名附加在要转移的资源的末尾,得到交易单。(1) Node A uses the private key to sign a digital signature on the last transaction information of the resource to be transferred and the public key of Node B, and attach the signature to the end of the resource to be transferred to obtain a transaction order.
(2)节点A将该交易单在网络中进行广播。(2) Node A broadcasts the transaction slip in the network.
(3)网络中的每个节点通过挖矿机制获取根据该交易单中的生成区块的权利,也即,每个节点在检测到交易单时,通过公钥验证其有效性,在验证有效之后,开始解数学题。解题的过程为:寻找一个数值,使该数值与上一区块的哈希值以及目前收到的交易单通过指定算法计算得到的哈希值满足预设条件。(3) Each node in the network acquires the right to generate a block according to the transaction order through the mining mechanism, that is, each node verifies the validity of the transaction ticket when the transaction order is detected, and the verification is effective. After that, start solving math problems. The process of solving the problem is: finding a value such that the hash value of the previous block and the hash value calculated by the specified algorithm of the currently received transaction order satisfy the preset condition.
(4)若节点C解题成功,则根据题解和交易单生成区块,并在网络中广播生成的区块。(4) If the node C solves the problem successfully, the block is generated according to the solution and the transaction order, and the generated block is broadcasted in the network.
(5)除节点C之外的其他节点在检测到该生成的区块时,通过区块中的题解验证该区块的有效性,在确定该区块有效之后将该区块放入区块链的最长链的末端。(5) When the node other than the node C detects the generated block, the validity of the block is verified by the solution in the block, and the block is placed in the block after determining that the block is valid. The end of the longest chain of the chain.
需要说明的是,图1B中仅以6个节点为例进行说明,图1B并不构成对本申请实施例提供的P2P网络中包括的节点的个数的限制。It should be noted that, in FIG. 1B, only six nodes are taken as an example, and FIG. 1B does not constitute a limitation on the number of nodes included in the P2P network provided by the embodiment of the present application.
图2A是本发明实施例提供的一种存储管理数据的分布式云数据中心的示意图,如图2A所示,该分布式云数据中心包括多个区域单元,每个区域单元包括管理系统、业务系统和管理数据库节点,每个区域单元的管理数据库节点包括管理数据链,管理数据链由区块链技术实现。分布式云数据平台的业务系统和管理系统根据业务的需要,生成管理数据或通过管理数据库节点读取管理数据,用于虚拟机重建、容灾等业务或功能。需要说明的是,在图2A中仅以两个区域单元为例进行说明,图2A并不构成对本发明实施例提供的分布式云数据中心中的区域单元的个数的限制。2A is a schematic diagram of a distributed cloud data center storing management data according to an embodiment of the present invention. As shown in FIG. 2A, the distributed cloud data center includes multiple area units, and each area unit includes a management system and a service. System and management database nodes, the management database nodes of each regional unit include management data links, and the management data chain is implemented by blockchain technology. The service system and the management system of the distributed cloud data platform generate management data according to the needs of the service or read the management data through the management database node, and are used for services or functions such as virtual machine reconstruction and disaster recovery. It should be noted that, in FIG. 2A, only two area units are taken as an example, and FIG. 2A does not constitute a limitation on the number of area units in the distributed cloud data center provided by the embodiment of the present invention.
需要说明的是,管理数据库节点可以还包括数据库访问层,该数据库访问层用于对管理系统或业务系统访问管理数据库节点提供访问接口。也即,每个区域单元的管理系统通过数据库访问层与自身的管理数据库节点连接,以通过管理系统和管理数据库节点的交互实现管理数据的写入和读取。也即,每个区域单元的数据库访问层用于提供管理数据库节点的访问入口,屏蔽管理数据库节点的内部细节,以实现访问管理数据库节点内的数据是对业务系统透明的。It should be noted that the management database node may further include a database access layer for providing an access interface to the management system or the business system access management database node. That is, the management system of each area unit is connected to its own management database node through the database access layer to realize the writing and reading of management data through the interaction of the management system and the management database node. That is, the database access layer of each area unit is used to provide access to the management database node, and the internal details of the management database node are shielded to realize that the data in the access management database node is transparent to the business system.
如图2A所示,每个区域单元的管理系统分别与自身的数据库访问层和业务系统连接,每个区域单元的数据库访问层与自身的管理数据链连接,各个区域单元的管理数据链之间通过第一P2P网络连接。As shown in FIG. 2A, the management system of each regional unit is respectively connected with its own database access layer and business system, and the database access layer of each regional unit is connected with its own management data link, and the management data links of each regional unit are Connected through the first P2P network.
其中,每个区域单元的管理系统对外提供运营运维操作入口,供用户进行运行运维管理,如资源申请、发放、计量计费、资源统计、告警监督、系统安全部署以及维护升级等。The management system of each regional unit provides an operation and operation operation portal for the user to perform operation and maintenance management, such as resource application, issuance, metering and accounting, resource statistics, alarm monitoring, system security deployment, and maintenance upgrade.
具体地,在管理系统进行诸如资源申请、发放、计量计费、资源统计、告警监督、系统安全部署以及维护升级等操作时,管理系统可能需要获取管理数据,此时管理系统将通过数据库访问层从管理数据链中获取管理数据。Specifically, when the management system performs operations such as resource application, issuance, metering and billing, resource statistics, alarm monitoring, system security deployment, and maintenance upgrade, the management system may need to obtain management data, and the management system will access the database through the database. Obtain management data from the management data chain.
每个区域单元的管理系统与自身的业务系统连接,用于实现资源的调度、计量监控,以及提供业务活动的支持等。The management system of each regional unit is connected with its own business system for resource scheduling, metering and monitoring, and providing support for business activities.
具体地,在业务系统进行诸如资源的调度、计量监控,以及提供业务活动的支持等操作中时,业务系统也可能需要获取管理数据,此时业务系统将向管理系统发送数据获取请求,以使管理系统通过数据库访问层从管理数据链中获取管理数据,并将获取的管理数据返回给业务系统。Specifically, when the service system performs operations such as scheduling of resources, metering monitoring, and providing support for business activities, the business system may also need to acquire management data, and the business system will send a data acquisition request to the management system to enable The management system obtains management data from the management data link through the database access layer, and returns the acquired management data to the business system.
另外,每个区域单元的管理数据链包括多个第一区块,该多个第一区块之间相互连接形成具有至少一个分支的第一树型结构,该多个第一区块分别为第一形结构中的节点,每个第一区块用于存储在对应时间戳时更新的管理数据。也即,每个区域单元的管理数据库节点用于存储管理数据,且是通过管理数据库节点中的管理数据链来存储管理数据。In addition, the management data chain of each area unit includes a plurality of first blocks, and the plurality of first blocks are connected to each other to form a first tree structure having at least one branch, and the plurality of first blocks are respectively The nodes in the first shape structure, each of the first blocks is used to store management data updated at the corresponding time stamp. That is, the management database node of each area unit is used to store management data, and the management data is stored by managing the management data chain in the database node.
可选地,如图2A所示,每个区域单元的管理数据库节点还包括数据库缓存,每个区域单元的数据库访问层还分别与自身的数据库缓存连接。其中,数据库缓存用于缓存最新的管理数据。Optionally, as shown in FIG. 2A, the management database node of each area unit further includes a database cache, and the database access layer of each area unit is also respectively connected to its own database cache. Among them, the database cache is used to cache the latest management data.
可选地,如图2A所示,该分布式云数据中心中的每个区域单元还包括容灾管理系统,每个区域单元的容灾管理系统分别与自身的管理系统和业务系统连接,各个区域单元的容灾管理系统之间通过网络连接。Optionally, as shown in FIG. 2A, each regional unit in the distributed cloud data center further includes a disaster recovery management system, and the disaster recovery management system of each regional unit is respectively connected to its own management system and service system, and each The disaster recovery management systems of the regional units are connected through a network.
其中,每个区域单元的容灾管理系统用于负责对自身的业务系统进行容灾管理。因此,容灾管理系统的功能主要包括:The disaster recovery management system of each regional unit is responsible for disaster recovery management of its own business system. Therefore, the functions of the disaster recovery management system mainly include:
(1)对外提供业务容灾管理操作入口,供容灾管理员配置容灾策略、占位虚拟机、存储域网络(Storage Area Network,SAN)存储逻辑单元号(Logical Unit Number,LUN)映射关系等;在灾难发生时,触发容灾切换;灾难恢复后执行回切等;(1) Providing a service disaster recovery management operation entry for the disaster recovery administrator to configure a disaster recovery policy, a placeholder virtual machine, and a storage area network (SAN) storage logical unit number (LUN) mapping relationship. Wait; when disaster occurs, trigger disaster recovery switching; perform disaster recovery after disaster recovery;
(2)对接业务系统,实现对业务系统的容灾控制,如虚拟机按照设定顺序拉起,状态监控等;(2) docking the service system to achieve disaster recovery control of the service system, such as the virtual machine is pulled up in the set order, state monitoring, etc.;
(3)容灾管理系统需要与管理系统交互,以便获得管理信息,主要是业务虚拟机的信息,如规格、镜像、卷信息以及其租户组织归属等信息;(3) The disaster recovery management system needs to interact with the management system to obtain management information, mainly information of the service virtual machine, such as specifications, mirroring, volume information, and information about the tenant organization ownership;
(4)业务容灾管理系统还需要与对端业务容灾管理系统交互以便协同运作。(4) The service disaster recovery management system also needs to interact with the peer service disaster recovery management system to cooperate.
下面以容灾切换和容灾回切为例具体说明本申请实施例提供的容灾管理系统的功能。The function of the disaster recovery management system provided by the embodiment of the present application is specifically described by taking the disaster recovery switchover and the disaster recovery switchback as an example.
(1)容灾切换(1) Disaster recovery switch
当第一区域单元的容灾管理系统接收到容灾切换请求时,进行容灾切换,该容灾切换请求用于指示第一区域单元处理发生故障的第三区域单元的业务。其中,第一区域单元为云数据中心中任一区域单元。When the disaster recovery management system of the first area unit receives the disaster recovery handover request, the disaster recovery handover request is used to instruct the first area unit to process the service of the third regional unit that fails. The first area unit is any area unit in the cloud data center.
具体地,当第一区域单元的容灾管理系统接收到容灾切换请求时,将容灾切换请求转发至第一区域单元的管理系统,第一区域单元的管理系统从第一区域单元的管理数据库节点中获取管理数据,第一区域单元的管理系统对获取的管理数据进行处理,以重建业务虚拟机,用于处理所第三区域单元的业务。Specifically, when the disaster recovery management system of the first area unit receives the disaster recovery switching request, the disaster recovery switching request is forwarded to the management system of the first area unit, and the management system of the first area unit is managed from the first area unit. The management data of the first regional unit is processed by the management system of the first regional unit to reconstruct the service virtual machine for processing the service of the third regional unit.
需要说明的是,容灾切换请求由管理人员通过预设操作触发,也即,在第三区域单元发生故障后,管理人员可以通过第一区域单元的容灾管理系统实现容灾切换,以实现由第一区域单元处理第三区域单元的业务。It should be noted that the disaster recovery switching request is triggered by the administrator through a preset operation, that is, after the third regional unit fails, the management personnel can implement disaster recovery switching through the disaster recovery management system of the first regional unit to implement The traffic of the third regional unit is processed by the first regional unit.
其中,第一区域单元的管理系统对获取的管理数据进行处理,以重建业务虚拟机的实现方式为:第一区域单元的管理系统将获取的管理数据发送至第一区域单元的容灾管理系统,第一区域单元的的容灾管理系统对接收到的管理数据进行处理,并将处理之后的管理数据发送至第一区域单元的业务系统,第一区域单元的业务系统根据第一区域单元的的容灾管理系统处理之后的管理数据重建业务虚拟机。The management system of the first area unit processes the acquired management data to rebuild the service virtual machine. The management system of the first area unit sends the acquired management data to the disaster recovery management system of the first area unit. The disaster management system of the first area unit processes the received management data, and sends the processed management data to the service system of the first area unit, where the service system of the first area unit is based on the first area unit The disaster recovery management system processes the management data to reconstruct the business virtual machine.
也即,在第一区域单元的容灾管理系统接收到容灾切换请求之后,最终是由第一区域单元的业务系统根据接收到的管理数据进行业务虚拟机的重建,以处理第三区域单元的业务。That is, after the disaster recovery management system of the first area unit receives the disaster recovery switching request, the service system of the first area unit finally performs the reconstruction of the service virtual machine according to the received management data to process the third area unit. Business.
(2)容灾回切(2) Disaster recovery
在第一区域单元发生故障后,当第一区域单元的业务系统接收到容灾回切请求时,将容灾回切请求发送至第一区域单元的管理系统,该容灾回切请求用于指示第一区域单元重新处理业务,第一区域单元的管理系统从第一区域单元的管理数据库节点中获取管理数据,第一区域单元的管理系统对获取的管理数据进行处理,以重建业务虚拟机,用于处理第一区域单元的业务。After the first regional unit fails, when the service system of the first regional unit receives the disaster recovery switchback request, the disaster recovery switchback request is sent to the management system of the first regional unit, and the disaster recovery switchback request is used for Instructing the first area unit to reprocess the service, the management system of the first area unit acquires management data from the management database node of the first area unit, and the management system of the first area unit processes the acquired management data to reconstruct the service virtual machine For processing the services of the first area unit.
需要说明的是,容灾回切请求由管理人员通过预设操作触发,也即,在第一区域单元发生故障后,管理人员可以通过第一区域单元的容灾管理系统实现容灾回切,以 使第一区域单元可以重新开始处理业务。It should be noted that the disaster recovery switchback request is triggered by the administrator through a preset operation, that is, after the failure of the first regional unit, the management personnel can implement the disaster recovery and backoff through the disaster recovery management system of the first regional unit. So that the first area unit can resume processing the service.
其中,第一区域单元的管理系统对获取的管理数据进行处理,以重建业务虚拟机已在上述容灾切换的过程中进行了详细说明,在此不再展开阐述。第一区域单元的管理系统从第一区域单元的管理数据库节点中获取管理数据的实现方式同样已在上述容灾切换中已经进行了详细说明,在此也不再展开阐述。The management system of the first area unit processes the acquired management data to rebuild the service virtual machine, which has been described in detail in the process of disaster recovery switching, and will not be further described herein. The implementation of the management system of the first area unit to obtain the management data from the management database node of the first area unit has also been described in detail in the above-mentioned disaster recovery switching, and will not be explained here.
需要说明的是,在相关技术的区块链技术中,为了提升区块链被攻击和篡改的难度,网络中的节点在对有效区块确认之后,是将区块链的树形结构中具有最多节点的路径作为信任路径,并将有效区块添加在信任路径的末端。区块链中包含最多节点的信任路径也可以叫做区块链中的最长链,本发明对此不做限制。因此,在上述图2A所示的分布式云数据中心中,当每次需要从管理数据链中获取管理数据时,是从管理数据链的信任路径的末端区块中获取管理数据。也即是,在图2A所示的分布式云数据中心,管理数据链默认将包含最多节点的路径确定为信任路径,也即最长链确定为信任链。It should be noted that in the blockchain technology of the related art, in order to improve the difficulty of attacking and tampering the blockchain, the nodes in the network have the tree structure of the blockchain after confirming the effective block. The path of the most node is used as the trust path, and the valid block is added at the end of the trust path. The trust path containing the most nodes in the blockchain can also be called the longest chain in the blockchain, which is not limited by the present invention. Therefore, in the distributed cloud data center shown in FIG. 2A above, management data is acquired from the end block of the trust path of the management data link each time the management data needs to be acquired from the management data link. That is, in the distributed cloud data center shown in FIG. 2A, the management data link determines the path containing the most nodes as the trust path by default, that is, the longest chain is determined as the trust chain.
但是,在实际应用中,区域单元在某个时刻可能需要将管理数据恢复至某个历史时刻时的管理数据,也即,区域单元需要根据实际情况对自身的管理数据链进行修改。因此,在本申请实施例中,将相关技术的区块链进行改造,使其能够不再只信任包含最多节点的路径,而是可以灵活的指定其信任的路径,以满足分布式云数据中心的需求。此时,由于管理数据链不再只信任包含最多节点的路径,因此当管理数据链需要获取管理数据时,需要告知管理数据链哪条路径为信任路径。具体地,在本申请实施例中,通过在管理数据库节点中设置变更审计数据链来指示管理数据链中的信任路径。However, in practical applications, the regional unit may need to restore the management data to the management data at a certain historical moment at a certain time, that is, the regional unit needs to modify its own management data chain according to the actual situation. Therefore, in the embodiment of the present application, the blockchain of the related art is modified so that it can no longer trust only the path containing the most nodes, but can flexibly specify the path of the trust to meet the distributed cloud data center. Demand. At this time, since the management data link no longer only trusts the path containing the most nodes, when the management data link needs to acquire management data, it needs to inform which data path of the management data chain is the trust path. Specifically, in the embodiment of the present application, the trust path in the management data chain is indicated by setting a change audit data chain in the management database node.
图2B是本申请实施例提供的另一种存储管理数据的分布式云数据中心的示意图,如图2B所示,该分布式云数据中心包括多个区域单元,每个区域单元包括管理系统、业务系统和管理数据库节点,每个区域单元的管理数据库节点包括管理数据链和变更审计数据链。需要说明的是,在图2B中仅以两个区域单元为例进行说明,图2B并不构成对本申请实施例提供的分布式云数据中心中的区域单元的个数的限制。FIG. 2B is a schematic diagram of another distributed cloud data center storing management data according to an embodiment of the present application. As shown in FIG. 2B, the distributed cloud data center includes multiple area units, and each area unit includes a management system. The business system and management database nodes, and the management database nodes of each regional unit include a management data link and a change audit data link. It should be noted that, in FIG. 2B, only two area units are taken as an example, and FIG. 2B does not constitute a limitation on the number of area units in the distributed cloud data center provided by the embodiment of the present application.
和图2A所示的分布式云数据中心一样,图2B所示的分布式云数据中心的管理数据库节点也包括数据库访问层。其中,数据库访问层的功能和图2A所示的分布式云数据中心中的数据库访问层的功能一样,在次不再详细阐述。Like the distributed cloud data center shown in FIG. 2A, the management database node of the distributed cloud data center shown in FIG. 2B also includes a database access layer. The function of the database access layer is the same as that of the database access layer in the distributed cloud data center shown in FIG. 2A, and will not be elaborated in detail.
此时,每个区域单元的管理系统分别与自身的数据库访问层和业务系统连接,每个区域单元的数据库访问层与自身的管理数据链和变更审计数据链连接,各个区域单元的管理数据链之间通过第一P2P网络连接,各个区域单元的变更审计数据链之间通过第二P2P网络连接。At this time, the management system of each regional unit is connected with its own database access layer and business system, and the database access layer of each regional unit is connected with its own management data link and change audit data link, and the management data link of each regional unit. The first P2P network is connected to each other, and the change audit data links of the respective area units are connected through the second P2P network.
其中,每个区域单元的变更审计数据链包括多个第二区块,该多个第二区块之间相互连接形成具有至少一个分支的第二树型结构,该多个第二区块分别为第二树型结构中的节点。每个第一区块和每个第二区块均存在对应的时间戳,每个第二区块用于指示在对应的时间戳时管理数据链中的信任路径的末端区块。此时,当区域单元需要获取管理数据时,需要根据变更审计数据链确定管理数据链的信任路径,然后再根据确定的信任路径从管理数据链中获取管理数据。The change audit data chain of each area unit includes a plurality of second blocks, and the plurality of second blocks are interconnected to form a second tree structure having at least one branch, and the plurality of second blocks are respectively Is the node in the second tree structure. Each of the first block and each of the second blocks has a corresponding timestamp, and each of the second blocks is used to indicate that the end block of the trust path in the data chain is managed at the corresponding timestamp. At this time, when the area unit needs to acquire the management data, it is necessary to determine the trust path of the management data chain according to the change audit data chain, and then obtain the management data from the management data link according to the determined trust path.
另外,图2B所示的分布式云数据中心中的管理系统、业务系统以及管理数据链和图2A所示的分布式云数据中心中的管理系统、业务系统以及管理数据链的功能一样,在此不再详细阐述。In addition, the management system, the business system, and the management data link in the distributed cloud data center shown in FIG. 2B have the same functions as the management system, the business system, and the management data link in the distributed cloud data center shown in FIG. 2A. This is not elaborated.
可选地,如图2B所示,该分布式云数据中心还可以包括数据库缓存和容灾管理系统,且图2B所示的分布式云数据中心中的数据库缓存和容灾管理系统的连接关系和功能和图2A所示的分布式云数据中心中的数据库缓存和容灾管理系统的连接关系和功能一样,在此同样不再详细阐述。Optionally, as shown in FIG. 2B, the distributed cloud data center may further include a database cache and a disaster recovery management system, and the connection relationship between the database cache and the disaster recovery management system in the distributed cloud data center shown in FIG. 2B The functions and functions are the same as those of the database cache and disaster recovery management system in the distributed cloud data center shown in FIG. 2A, and will not be elaborated here.
最后需要说明的是,无论是上述图2A所示的分布式云数据中心,还是图2B所示的分布式云数据中心,该分布式云数据中心的基础设施和软件系统通常会划分为管理域和业务域。业务域由各个区域单元的业务系统以计算、网络、存储资源以池化的形式构成,为最终用户提供业务服务,如云主机服务、物理机服务、存储服务、网络服务等。Finally, it should be noted that whether it is the distributed cloud data center shown in FIG. 2A or the distributed cloud data center shown in FIG. 2B, the infrastructure and software system of the distributed cloud data center are usually divided into administrative domains. And business domain. The service domain is composed of computing, network, and storage resources in a pooled manner by the service system of each regional unit, and provides service services for end users, such as cloud host services, physical machine services, storage services, and network services.
而管理域则由各个区域单元的管理系统和管理数据构成,支撑云数据中心运营和运维活动的正常开展,包括服务的开通、计量,用户的使用资源的身份认证,安全保障等。The management domain is composed of the management system and management data of each regional unit, and supports the normal development of cloud data center operations and operation and maintenance activities, including service opening and metering, identity authentication of users' use resources, and security guarantees.
值得注意的是,在上述图2A所示的分布式云数据中心以及图2B所示的分布式云数据中心中,管理数据库节点、管理数据链、变更审计数据链、数据库访问层、数据库缓存、第一区块以及第二区块均是本申请实施例根据相关模块的功能采用的名称,实际应用中,也可以根据相关模块的功能采用其他名称,本申请实施例在此不做具体限定。It is worth noting that in the distributed cloud data center shown in FIG. 2A and the distributed cloud data center shown in FIG. 2B, the management database node, the management data link, the change audit data link, the database access layer, the database cache, The first block and the second block are the names used in the embodiments of the present application according to the functions of the related modules. In actual applications, other names may be used according to the functions of the related modules, and the embodiments of the present application are not specifically limited herein.
图3是本申请实施例提供的一种计算机设备的结构示意图。图2A或图2B中的区域单元可以通过图3所示的计算机设备来实现。参见图3,该计算机设备包括至少一个处理器301、通信总线302、存储器303以及至少一个通信接口304。FIG. 3 is a schematic structural diagram of a computer device according to an embodiment of the present application. The area unit in FIG. 2A or FIG. 2B can be implemented by the computer device shown in FIG. Referring to FIG. 3, the computer device includes at least one processor 301, a communication bus 302, a memory 303, and at least one communication interface 304.
处理器301可以是一个通用中央处理器(Central Processing Unit,CPU)、微处理器、特定应用集成电路(application-specific integrated circuit,ASIC)或一个或多个用于控制本申请方案程序执行的集成电路。The processor 301 can be a general purpose central processing unit (CPU), a microprocessor, an application-specific integrated circuit (ASIC), or one or more integrated systems for controlling the execution of the program of the present application. Circuit.
通信总线302可包括一通路,在上述组件之间传送信息。 Communication bus 302 can include a path for communicating information between the components described above.
存储器303可以是只读存储器(read-only memory,ROM)或可存储静态信息和指令的其它类型的静态存储设备,随机存取存储器(random access memory,RAM)或者可存储信息和指令的其它类型的动态存储设备,也可以是电可擦可编程只读存储器(Electrically Erasable Programmable Read-Only Memory,EEPROM)、只读光盘(Compact Disc Read-Only Memory,CD-ROM)或其它光盘存储、光碟存储(包括压缩光碟、激光碟、光碟、数字通用光碟、蓝光光碟等)、磁盘存储介质或者其它磁存储设备、或者能够用于携带或存储具有指令或数据结构形式的期望的程序代码并能够由计算机存取的任何其它介质,但不限于此。存储器303可以是独立存在,通过通信总线302与处理器301相连接。存储器303也可以和处理器301集成在一起。The memory 303 can be a read-only memory (ROM) or other type of static storage device that can store static information and instructions, a random access memory (RAM) or other type that can store information and instructions. The dynamic storage device can also be an Electrically Erasable Programmable Read-Only Memory (EEPROM), a Compact Disc Read-Only Memory (CD-ROM) or other optical disc storage, and a disc storage device. (including compact discs, laser discs, optical discs, digital versatile discs, Blu-ray discs, etc.), magnetic disk storage media or other magnetic storage devices, or can be used to carry or store desired program code in the form of instructions or data structures and can be Any other medium accessed, but is not limited to this. Memory 303 may be present independently and coupled to processor 301 via communication bus 302. The memory 303 can also be integrated with the processor 301.
通信接口304,使用任何收发器一类的设备,用于与其它设备或通信网络通信,如以太网,无线接入网(RAN),无线局域网(Wireless Local Area Networks,WLAN) 等。The communication interface 304 uses devices such as any transceiver for communicating with other devices or communication networks, such as Ethernet, Radio Access Network (RAN), Wireless Local Area Networks (WLAN), and the like.
在具体实现中,作为一种实施例,处理器301可以包括一个或多个CPU,例如图3中所示的CPU0和CPU1。In a particular implementation, as an embodiment, processor 301 may include one or more CPUs, such as CPU0 and CPU1 shown in FIG.
在具体实现中,作为一种实施例,计算机设备可以包括多个处理器,例如图3中所示的处理器301和处理器305。这些处理器中的每一个可以是一个单核(single-CPU)处理器,也可以是一个多核(multi-CPU)处理器。这里的处理器可以指一个或多个设备、电路、和/或用于处理数据(例如计算机程序指令)的处理核。In a particular implementation, as an embodiment, a computer device can include multiple processors, such as processor 301 and processor 305 shown in FIG. Each of these processors can be a single-CPU processor or a multi-core processor. A processor herein may refer to one or more devices, circuits, and/or processing cores for processing data, such as computer program instructions.
在具体实现中,作为一种实施例,计算机设备还可以包括输出设备306和输入设备307。输出设备306和处理器301通信,可以以多种方式来显示信息。例如,输出设备306可以是液晶显示器(liquid crystal display,LCD)、发光二级管(light emitting diode,LED)显示设备、阴极射线管(cathode ray tube,CRT)显示设备或投影仪(projector)等。输入设备307和处理器301通信,可以以多种方式接收用户的输入。例如,输入设备307可以是鼠标、键盘、触摸屏设备或传感设备等。In a specific implementation, as an embodiment, the computer device may further include an output device 306 and an input device 307. Output device 306 is in communication with processor 301 and can display information in a variety of ways. For example, the output device 306 can be a liquid crystal display (LCD), a light emitting diode (LED) display device, a cathode ray tube (CRT) display device, or a projector. . Input device 307 is in communication with processor 301 and can receive user input in a variety of ways. For example, input device 307 can be a mouse, keyboard, touch screen device, or sensing device, and the like.
上述的计算机设备可以是一个通用计算机设备或者是一个专用计算机设备。在具体实现中,计算机设备可以是台式机、便携式电脑、网络服务器、掌上电脑(Personal Digital Assistant,PDA)、移动手机、平板电脑、无线终端设备、通信设备或者嵌入式设备。本申请实施例不限定计算机设备的类型。The computer device described above may be a general purpose computer device or a special purpose computer device. In a specific implementation, the computer device may be a desktop computer, a portable computer, a network server, a personal digital assistant (PDA), a mobile phone, a tablet computer, a wireless terminal device, a communication device, or an embedded device. The embodiments of the present application do not limit the type of computer equipment.
其中,存储器303用于存储执行本申请方案的程序代码,并由处理器301来控制执行。处理器301用于执行存储器303中存储的程序代码308。程序代码308中可以包括一个或多个软件模块。图2A或图2B中所示的区域单元可以通过处理器301以及存储器303中的程序代码308中的一个或多个软件模块,来确定用于开发应用的数据。The memory 303 is used to store program code for executing the solution of the present application, and is controlled by the processor 301 for execution. The processor 301 is configured to execute the program code 308 stored in the memory 303. One or more software modules may be included in program code 308. The area unit shown in FIG. 2A or 2B can determine data for developing an application by the processor 301 and one or more of the program codes 308 in the memory 303.
图4是本申请实施例提供的一种管理数据的存储方法流程图,应用于图2A的分布式云数据中心中,如图4所示,该方法包括如下步骤:FIG. 4 is a flowchart of a method for storing management data according to an embodiment of the present application. The method is applied to the distributed cloud data center of FIG. 2A. As shown in FIG. 4, the method includes the following steps:
步骤401:第一管理数据库节点获取更新后的管理数据,并在第一区域单元的管理数据链存储该更新后的管理数据,第一管理数据库节点为多个区域单元中的第一区域单元所具有的管理数据库节点。Step 401: The first management database node acquires the updated management data, and stores the updated management data in the management data link of the first area unit, where the first management database node is the first area unit of the plurality of area units. Have a management database node.
其中,第一区域单元为该多个区域单元中任一区域单元,由于区域单元中的管理数据链用于存储管理数据,因此,当第一区域单元的第一管理数据库节点接收到管理数据时,可以将该更新后的管理数据存储至自身的管理数据链中。The first area unit is any one of the plurality of area units, and the management data link in the area unit is used to store management data, so when the first management database node of the first area unit receives the management data, The updated management data can be stored in its own management data chain.
具体地,由于每个区域单元的管理数据链包括多个第一区块,该多个第一区块中的每个第一区块包括一个管理数据,每个区域单元的管理数据链为第一树形结构,该多个第一区块分别为第一树形结构中的节点,因此,第一管理数据库节点在第一区域单元的管理数据链存储该更新后的管理数据的实现方式可以为:第一管理数据库节点生成新的第一区块,该新的第一区块包括该更新后的管理数据,该第一管理数据库节点将新的第一区块添加为第一信任路径中的最后一个第一区块,该第一信任路径在第一区域单元的管理数据链中拥有最多节点。Specifically, since the management data chain of each area unit includes a plurality of first blocks, each of the plurality of first blocks includes one management data, and the management data chain of each area unit is a tree structure, the plurality of first blocks are respectively nodes in the first tree structure, and therefore, the first management database node can store the updated management data in the management data link of the first area unit. The first management database node generates a new first block, the new first block includes the updated management data, and the first management database node adds the new first block as the first trust path. The last first block, the first trust path having the most nodes in the management data chain of the first area unit.
由于在图2A所示的分布式云数据中心中,管理数据链中默认的信任路径为包含最多节点的路径,因此,当第一区域单元的第一管理数据库节点在生成第一区块时, 可以将该生成的第一区块添加至自身的管理数据链中具有最多节点的路径的末端。Since the default trust path in the management data link is the path containing the most nodes in the distributed cloud data center shown in FIG. 2A, when the first management database node of the first area unit is generating the first block, The generated first block may be added to the end of the path with the most nodes in its own management data chain.
另外,第一区域单元的第一管理数据库节点获取更新后的管理数据的实现方式为:当第一区域单元的管理数据链通过挖矿机制获取到携带管理数据的交易单时,将交易单携带的管理数据确定为更新后的管理数据,该交易单为第二区域单元的管理数据链根据更新之后的管理数据生成并在第一P2P网络中广播的,第二区域单元为除第一区域单元之外的任一区域单元。In addition, the first management database node of the first area unit obtains the updated management data by: when the management data link of the first area unit acquires the transaction order carrying the management data through the mining mechanism, the transaction order is carried The management data is determined as the updated management data, and the transaction data is generated by the management data link of the second area unit according to the updated management data and broadcasted in the first P2P network, and the second area unit is the first area unit. Any area unit other than .
需要说明的是,第二区域单元的管理数据链广播的交易单是采用私钥签名之后的交易单,因此,当第一单元区域单元接收到该交易单时,还需采用公钥验证签名的有效性,以确定该交易单的有效性,在确定该交易单有效之后,再执行根据该交易单生成第一区块的步骤。It should be noted that the transaction ticket broadcasted by the management data link of the second area unit is a transaction ticket after being signed by the private key. Therefore, when the first unit area unit receives the transaction order, the public key verification signature is also required. Validity to determine the validity of the transaction, and after determining that the transaction is valid, perform the step of generating a first block based on the transaction.
其中,当每个区域单元的管理数据库节点还包括数据库缓存时,第二区域单元的管理数据链根据更新之后的管理数据生成交易单的实现方式为:Wherein, when the management database node of each regional unit further includes a database cache, the management data chain of the second regional unit generates a transaction order according to the updated management data:
当用户通过第二区域单元对管理数据进行更新时,第二区域单元的管理系统将接收到用户通过预设操作触发的多条配置请求,对于任意一条配置请求,第二区域单元的管理系统获取该配置请求携带的配置信息,并将该配置信息发送给第二区域单元的业务系统,第二区域单元的业务系统根据该配置信息进行相关配置的实施,并在完成实施时向第二区域单元的管理系统响应配置结果,第二区域单元的管理系统根据该配置结果将该配置结果对应的配置信息通过第二区域单元的数据库访问层写入数据库缓存。当第二区域单元的管理系统接收到针对所有配置请求的配置结果时,显示接收到的配置结果,当接收到用户通过预设操作触发的针对配置结果的验收通过信息时,确定配置完成,并通过第二区域单元的数据库访问层获取缓存在第二区域单元的数据库缓存中的所有配置信息,并将获取的所有的配置信息进行打包,得到更新之后的管理数据,然后根据更新之后的管理数据生成交易单,并采用私钥对该交易单进行签名。When the user updates the management data through the second area unit, the management system of the second area unit receives multiple configuration requests triggered by the user through a preset operation, and the management system of the second area unit acquires for any one configuration request. The configuration information carried by the configuration request is sent to the service system of the second area unit, and the service system of the second area unit performs the relevant configuration according to the configuration information, and when the implementation is completed, the second area unit is implemented. The management system responds to the configuration result, and the management system of the second area unit writes the configuration information corresponding to the configuration result to the database cache through the database access layer of the second area unit according to the configuration result. When the management system of the second area unit receives the configuration result for all configuration requests, displaying the received configuration result, when receiving the acceptance pass information for the configuration result triggered by the preset operation, determining that the configuration is completed, and Obtaining all configuration information cached in the database cache of the second area unit by the database access layer of the second area unit, and packaging all the acquired configuration information to obtain the management data after the update, and then according to the management data after the update Generate a transaction order and sign the transaction with a private key.
也即,在本申请实施例中,管理数据链中的第一区块是基于交付行为粒度划分的,该交付行为包括任何对管理数据进行更新的行为,比如,对管理数据的扩容、对管理数据的升级或对管理数据的改造等。That is, in the embodiment of the present application, the first block in the management data chain is divided according to the granularity of the delivery behavior, and the delivery behavior includes any behavior of updating the management data, for example, the expansion and management of the management data. Data upgrades or modifications to management data.
其中,预设操作可以为点击操作、选择操作或语音操作等。The preset operation may be a click operation, a selection operation, or a voice operation.
可选地,当每个区域单元的管理数据库节点还包括数据库缓存时,第一区域单元的管理数据库节点将生成的第一区块添加至自身的管理数据链的信任路径的末端之后,还可将获取到的管理数据缓存在数据库缓存中。具体地,第一区域单元的管理数据链将获取到的管理数据发送至第一区域单元的数据库访问层,第一区域单元的数据库访问层将该管理数据写入第一区域单元的数据库缓存。Optionally, when the management database node of each area unit further includes a database cache, the management database node of the first area unit adds the generated first block to the end of the trust path of the management data link of the own area, The obtained management data is cached in the database cache. Specifically, the management data link of the first area unit sends the acquired management data to the database access layer of the first area unit, and the database access layer of the first area unit writes the management data to the database cache of the first area unit.
另外,第一区域单元的管理数据链中第一个第一区块是根据分布式云数据中心的发行商设置的出厂配置数据得到的。也即,在初始化状态时,第一区域单元的管理数据链根据初始化时的管理数据生成第一个第一区块。In addition, the first first block in the management data chain of the first area unit is obtained according to the factory configuration data set by the publisher of the distributed cloud data center. That is, in the initialization state, the management data chain of the first area unit generates the first first block based on the management data at the time of initialization.
其中,初始化时的管理数据也即分布式云数据中心的发行商设置的出厂配置数据。The management data at the time of initialization is the factory configuration data set by the publisher of the distributed cloud data center.
步骤402:该第一管理数据库节点指示第二管理数据库节点在第二区域单元的管理数据链中存储该更新后的管理数据,第二区域单元为多个区域单元中除了第一区域单元之外的任一个区域单元,第二区域单元具有第二管理数据库节点,该多个区域单 元中不同区域单元的管理数据链用于相互容灾备份。Step 402: The first management database node instructs the second management database node to store the updated management data in a management data link of the second area unit, where the second area unit is other than the first area unit among the plurality of area units. Any of the area units, the second area unit has a second management database node, and the management data links of the different area units of the plurality of area units are used for mutual disaster recovery backup.
其中,该第一管理数据库节点指示第二管理数据库节点在第二区域单元的管理数据链中存储该更新后的管理数据,也即是,第一管理数据库节点指示第二管理数据库节点将该新的第一区块添加为第二信任路径中的最后一个第一区块。具体地,该第一管理数据库节点通过广播实现步骤402:该第一区域单元的第一管理数据库节点在第一P2P网络中广播该生成新的第一区块,以使除第一区域单元之外的每个区域单元的管理数据库节点将该生成的新的第一区块加入自身的管理数据链的具有最多节点的路径的末端,其中,第一P2P网络为连接该多个区域单元中的各个区域单元的管理数据链的网络。The first management database node instructs the second management database node to store the updated management data in the management data link of the second area unit, that is, the first management database node instructs the second management database node to The first block is added as the last first block in the second trust path. Specifically, the first management database node implements step 402 by broadcasting: the first management database node of the first area unit broadcasts the generated new first block in the first P2P network, so that the first area unit is The management database node of each of the area units adds the generated new first block to the end of the path of the management node of the management node having the most nodes, wherein the first P2P network is connected to the plurality of area units A network of management data links for each regional unit.
需要说明的是,由于分布式云数据中心的各个区域单元共用一套管理数据,因此,需保证各个区域单元中的管理数据链中存储的数据的一致性。因此,当第一区域单元的管理数据库节点在生成新的第一区块之后,还需在第一P2P网络中传输该生成的新的第一区块,以使其他区域单元将该生成的新的第一区块加入自身的管理数据链的具有最多节点的路径的末端,以实现对其他区域单元的管理数据链的更新的目的。It should be noted that, since each area unit of the distributed cloud data center shares a set of management data, it is necessary to ensure the consistency of data stored in the management data link in each area unit. Therefore, after the management database node of the first area unit generates the new first block, the generated new first block needs to be transmitted in the first P2P network, so that other area units will generate the new one. The first block joins the end of the path with the most nodes of its own management data chain to achieve the purpose of updating the management data chain of other area units.
在本申请实施例中,分布式云数据中心包括多个区域单元,当第一区域单元中的第一管理数据库节点获取到更新后的管理数据时,在第一区域单元的管理数据链存储该更新后的管理数据,并指示第二管理数据库节点在第二区域单元的管理数据链中存储该更新后的管理数据。由此可知,在本申请中,当第一管理数据库节点存储更新后的管理数据时,其他区域单元的管理数据库节点也将存储更新后的管理数据,以实现每个区域单元的管理数据库节点中都存储有管理数据,且存储的管理数据一致。也即,在本申请中,每个区域单元中都存储有管理数据,以便于后续每个区域单元可以从自身的管理数据链中获取管理数据,提高了区域单元导致获取管理数据的效率。另外,若某个区域单元出现问题,由于每个区域单元的管理数据链中都存储有管理数据,因此不会出现其他区域单元无法获取到管理数据的情况。In the embodiment of the present application, the distributed cloud data center includes a plurality of area units. When the first management database node in the first area unit obtains the updated management data, the management data link in the first area unit stores the The updated management data, and instructing the second management database node to store the updated management data in the management data link of the second area unit. Therefore, in the present application, when the first management database node stores the updated management data, the management database node of the other regional unit will also store the updated management data to implement the management database node of each regional unit. Management data is stored and the stored management data is consistent. That is, in the present application, management data is stored in each area unit, so that each of the area units can acquire management data from its own management data chain, which improves the efficiency of the area unit to obtain management data. In addition, if there is a problem with a certain area unit, since management data is stored in the management data link of each area unit, there is no possibility that other area units cannot obtain management data.
图5是本申请实施例提供的另一种管理数据的存储方法流程图,应用于图2A所示的分布式云数据中心中,且图5所示的管理数据的存储方法用于对图4所示的管理数据的存储方法进一步展开说明。具体地,如图5所示,该方法包括如下步骤:FIG. 5 is a flowchart of another method for storing management data provided in an embodiment of the present application, which is applied to the distributed cloud data center shown in FIG. 2A, and the storage data storage method shown in FIG. 5 is used in FIG. The storage method of the management data shown is further explained. Specifically, as shown in FIG. 5, the method includes the following steps:
步骤501:第一管理数据库节点获取更新后的管理数据,并在第一区域单元的管理数据链存储该更新后的管理数据,第一管理数据库节点为多个区域单元中的第一区域单元所具有的管理数据库节点。Step 501: The first management database node acquires the updated management data, and stores the updated management data in the management data link of the first area unit, where the first management database node is the first area unit of the plurality of area units. Have a management database node.
其中,步骤501的实现方式和图4所示的实施例中的步骤401的实现方式基本相同,在次不再详细阐述。The implementation of the step 501 is basically the same as the implementation of the step 401 in the embodiment shown in FIG. 4, and will not be described in detail again.
步骤502:该第一管理数据库节点指示第二管理数据库节点在第二区域单元的管理数据链中存储该更新后的管理数据,第二区域单元为多个区域单元中除了第一区域单元之外的任一个区域单元,第二区域单元具有第二管理数据库节点,该多个区域单元中不同区域单元的管理数据链用于相互容灾备份。Step 502: The first management database node instructs the second management database node to store the updated management data in the management data link of the second area unit, where the second area unit is other than the first area unit of the plurality of area units. Any of the area units, the second area unit has a second management database node, and the management data links of the different area units of the plurality of area units are used for mutual disaster recovery backup.
其中,步骤502的实现方式和图4所示的实施例中的步骤402的实现方式基本相同,在次同样不再详细阐述。The implementation of step 502 is basically the same as the implementation of step 402 in the embodiment shown in FIG. 4, and will not be elaborated in the same time.
上述步骤501至步骤502用于解释说明图2A所示的分布式云数据中心的某个区域单元的管理数据链的生成过程。下述步骤503用于解释说明如何从分布式云数据中心某个区域单元的管理数据链中读取管理数据。The above steps 501 to 502 are used to explain the process of generating the management data chain of a certain area unit of the distributed cloud data center shown in FIG. 2A. The following step 503 is used to explain how to read management data from the management data link of a regional unit of the distributed cloud data center.
步骤503:第一区域单元的第一管理数据库节点接收管理数据读取请求,在自身的管理数据链的信任路径的末端的区块读取管理数据。Step 503: The first management database node of the first area unit receives the management data read request, and reads the management data in the block at the end of the trust path of the management data link of the own.
其中步骤503可以通过下述步骤5031至步骤5033来实现:Step 503 can be implemented by the following steps 5031 to 5033:
步骤5031:当第一区域单元的业务系统接收到管理数据读取请求时,将管理数据读取请求转发给第一区域单元的管理系统。Step 5031: When the service system of the first area unit receives the management data read request, forward the management data read request to the management system of the first area unit.
其中,该管理数据读取请求由用户通过操作触发,由图2A或图2B所示的分布式云数据中心可知,每个区域单元的业务系统并不与管理数据库节点连接,而是由每个区域单元的管理系统与管理数据库节点连接,因此,当第一区域单元的业务系统接收到管理数据读取请求时,需将管理数据读取请求转发给第一区域单元的管理系统。The management data read request is triggered by the user. The distributed cloud data center shown in FIG. 2A or FIG. 2B knows that the service system of each regional unit is not connected to the management database node, but is each The management system of the area unit is connected to the management database node. Therefore, when the service system of the first area unit receives the management data read request, the management data read request needs to be forwarded to the management system of the first area unit.
步骤5032:第一区域单元的管理系统从第一区域单元的第一管理数据库节点中获取管理数据。Step 5032: The management system of the first area unit acquires management data from the first management database node of the first area unit.
具体地,步骤5032的实现方式为:当第一区域单元的管理系统接收到该管理数据读取请求时,第一区域单元的管理系统向第一区域单元的数据库访问层发送管理数据请求消息,第一区域单元的数据库访问层接收管理数据请求消息,并根据第一区域单元的管理数据链确定管理数据,第一区域单元的数据库访问层向第一区域单元的管理系统发送确定的管理数据。Specifically, the implementation of step 5032 is: when the management system of the first area unit receives the management data read request, the management system of the first area unit sends a management data request message to the database access layer of the first area unit, The database access layer of the first area unit receives the management data request message, and determines the management data according to the management data link of the first area unit, and the database access layer of the first area unit transmits the determined management data to the management system of the first area unit.
可选地,当每个区域单元的管理数据库节点还包括数据库缓存时,第一区域单元的管理数据库节点在自身的管理数据链的信任路径的末端的生成的第一区块读取该管理数据之前,第一区域单元的管理数据库节点确定自身的数据库缓存中是否存储有该管理数据,若是,第一区域单元的第一管理数据库节点从自身的数据库缓存中获取该管理数据,若否,第一区域单元的第一管理数据库节点再执行在自身的管理数据链的具有最多节点的路径末端的生成的第一区块读取该管理数据的步骤。Optionally, when the management database node of each area unit further includes a database cache, the management database node of the first area unit reads the management data in the generated first block of the end of the trust path of the management data link of the first area unit. Previously, the management database node of the first area unit determines whether the management data is stored in its own database cache, and if so, the first management database node of the first area unit obtains the management data from its own database cache, and if not, the first The first management database node of a zone unit performs the step of reading the management data in the first block generated at the end of the path of the management node of the own management data chain.
具体地,第一区域单元的数据库访问层根据第一区域单元的管理数据链确定管理数据之前,还可以先确定第一区域单元的数据库缓存中是否存储有管理数据,若是,则从第一区域单元的数据库缓存中获取管理数据;若否,则执行根据第一区域单元的管理数据链和变更审计数据链确定管理数据的步骤。Specifically, before the database access layer of the first area unit determines the management data according to the management data link of the first area unit, it may first determine whether the management data is stored in the database cache of the first area unit, and if so, from the first area. The management data is obtained in the database cache of the unit; if not, the step of determining the management data according to the management data link of the first area unit and the change audit data chain is performed.
也即,第一区域单元的管理系统是通过第一区域单元的数据库访问层获取管理数据的,而第一区域单元的数据库访问层在从管理数据链中获取管理数据之前,先确定数据库缓存中是否存储有管理数据,以提高获取管理数据的效率,若第一区域单元的数据库访问层没有从第一区域单元的数据库缓存中获取到管理数据,则再从管理数据链中获取管理数据。That is, the management system of the first area unit acquires management data through the database access layer of the first area unit, and the database access layer of the first area unit determines the database cache before acquiring the management data from the management data link. Whether the management data is stored to improve the efficiency of obtaining the management data. If the database access layer of the first area unit does not obtain the management data from the database cache of the first area unit, the management data is obtained from the management data link.
其中,第一区域单元的数据库访问层根据第一区域单元的管理数据链确定管理数据的实现方式可以为:第一区域单元的数据库访问层向第一区域单元的管理数据链转发管理数据去取请求,当第一区域单元的管理数据链接收到该管理数据读取请求时,第一区域单元的管理数据链查找具有最多节点的路径的末端的第一区块,并从查找到的第一区块中获取管理数据,第一区域单元的管理数据链将获取的管理数据发送至第 一区域单元的数据库访问层。The implementation manner of determining the management data by the database access layer of the first area unit according to the management data link of the first area unit may be: the database access layer of the first area unit forwards the management data to the management data link of the first area unit. Requesting, when the management data link of the first area unit receives the management data read request, the management data link of the first area unit searches for the first block of the end of the path with the most nodes, and the first block from the search The management data is acquired in the block, and the management data link of the first area unit sends the acquired management data to the database access layer of the first area unit.
步骤5033:第一区域单元的管理系统将获取的管理数据发送至第一区域单元的业务系统。Step 5033: The management system of the first area unit sends the acquired management data to the service system of the first area unit.
当第一区域单元的管理系统接收到第一区域单元的数据库访问层发送的管理数据,第一区域单元的管理系统将接收到的管理数据发送至第一区域单元的业务系统,以完成读取管理数据的过程。When the management system of the first area unit receives the management data sent by the database access layer of the first area unit, the management system of the first area unit sends the received management data to the service system of the first area unit to complete the reading. The process of managing data.
上述步骤503用于解释说明如何从图2A所示的云分布数据中心中读取管理数据,实际应用中,若分布式云数据中心的某个区域单元发生故障,则有可能导致该区域单元的管理数据链也出现问题,此时需要对该区域单元的管理数据链进行恢复。下述步骤504用于解释说明如何对区域单元的管理数据链进行恢复。The foregoing step 503 is used to explain how to read the management data from the cloud distributed data center shown in FIG. 2A. In actual application, if a certain regional unit of the distributed cloud data center fails, the regional unit may be caused. There is also a problem with managing the data link, in which case the management data link for the regional unit needs to be restored. The following step 504 is used to explain how to recover the management data link of the area unit.
步骤504:在第一区域单元发生故障导致自身的管理数据链出现问题后,第一区域单元的第一管理数据库节点接收数据恢复请求,将自身的管理数据链重新加入第一P2P网络,并从第一P2P网络中重新加载区块信息,返回数据恢复确认消息。Step 504: After the first regional unit fails to cause a problem in its management data link, the first management database node of the first regional unit receives the data recovery request, and rejoins its management data link to the first P2P network, and The block information is reloaded in the first P2P network, and a data recovery confirmation message is returned.
具体地,步骤504可以通过以下几个步骤实现:Specifically, step 504 can be implemented by the following steps:
(1)在第一区域单元发生故障后,当第一区域单元的管理系统接收到数据恢复请求时,将数据恢复请求发送至第一区域单元的数据库访问层,数据恢复请求用于指示重新加载管理数据链,第一区域单元的数据库访问层接收数据恢复请求,并向第一区域单元的管理数据链发送网络加入请求。(1) After the failure of the first area unit, when the management system of the first area unit receives the data recovery request, the data recovery request is sent to the database access layer of the first area unit, and the data recovery request is used to indicate the reloading The data link is managed, and the database access layer of the first area unit receives the data recovery request and sends a network join request to the management data link of the first area unit.
其中,数据恢复请求由管理人员通过预设操作触发,也即,在第一区域单元发生故障后,当管理人员需要恢复该第一区域单元时,可以通过预设操作触发该数据恢复请求。The data recovery request is triggered by the administrator by a preset operation, that is, after the first area unit fails, when the manager needs to restore the first area unit, the data recovery request may be triggered by a preset operation.
另外,由于第一区域单元在发生故障时,第一区域单元的管理数据链可能已经不在第一P2P网络中,因此,需先通过网络加入请求使第一区域单元的管理数据链重新加入第一P2P网络,以重新恢复第一区域单元的管理数据链中的区块数据。In addition, since the management data link of the first area unit may not be in the first P2P network when the first area unit fails, the management data link of the first area unit is first added to the first area through the network join request. The P2P network to recover the block data in the management data link of the first area unit.
(2)第一区域单元的管理数据链接收网络加入请求,重新加入第一P2P网络,并从第一P2P网络中重新加载区块信息,在得到自身的各个区块之后向第一区域单元的数据库访问层发送第一网络加入确认消息。(2) The management data link of the first area unit receives the network join request, rejoins the first P2P network, and reloads the block information from the first P2P network, and after obtaining each of its own blocks, the first area unit The database access layer sends a first network join confirmation message.
其中,第一区域单元的管理数据链接收网络加入请求,重新加入第一P2P网络的实现方式为:第一区域单元的管理数据链在第一P2P网路中广播网络加入请求,该网络加入请求携带第一区域单元的身份信息,当第一P2P网路中的其他区域单元接收到该网络加入请求时,对第一区域单元的身份信息进行验证,并广播验证结果,以确定是否允许第一区域单元加入第一P2P网路。The management data link of the first area unit receives the network join request, and the method of rejoining the first P2P network is: the management data link of the first area unit broadcasts a network join request in the first P2P network, and the network join request Carrying the identity information of the first area unit, when the other area units in the first P2P network receive the network join request, verify the identity information of the first area unit, and broadcast the verification result to determine whether to allow the first The zone unit joins the first P2P network.
第一区域单元从第一P2P网络中重新加载区块信息的实现方式可以为:第一区域单元的管理数据链向第一P2P网络中任意一个其他区域单元的管理数据链发送管理数据链获取请求,当其他区域单元的管理数据链接收到该管理数据链获取请求时,向第一区域单元的管理数据链发送自身的链条中的区块,以使第一区域单元的管理数据链可以得到各个区块。The implementation manner of reloading the block information from the first P2P network by the first area unit may be: the management data link of the first area unit sends a management data link acquisition request to the management data link of any other area unit in the first P2P network. When the management data link of the other area unit receives the management data link acquisition request, the block in the chain of the first area unit is sent to the management data link of the first area unit, so that the management data link of the first area unit can obtain each Block.
(3)第一区域单元的数据库访问层接收第一网络加入确认消息,并向第一区域单元的管理系统发送数据恢复确认消息。(3) The database access layer of the first area unit receives the first network join confirmation message and transmits a data recovery confirmation message to the management system of the first area unit.
当第一区域单元的数据库访问层接收到第一区域单元的管理数据链发送的第一网络加入确认消息时,确定当前第一区域单元的管理数据链的数据得到恢复,因此,第一区域单元的数据库访问层可以向第一区域单元的管理系统发送数据恢复确认消息。When the database access layer of the first area unit receives the first network join confirmation message sent by the management data link of the first area unit, determining that the data of the management data link of the current first area unit is restored, therefore, the first area unit The database access layer may send a data recovery confirmation message to the management system of the first regional unit.
进一步地,当每个区域单元的管理数据库节点还包括数据库缓存时,在第一区域单元发生故障时,第一区域单元的数据库缓存中的存储的管理数据可能已失效,因此,当第一区域单元的管理数据链中的数据得到恢复时,可以重新将最新的管理数据存储至第一区域单元的数据库缓存中。Further, when the management database node of each regional unit further includes a database cache, when the first regional unit fails, the stored management data in the database cache of the first regional unit may have expired, and therefore, when the first region When the data in the management data link of the unit is restored, the latest management data can be re-stored in the database cache of the first area unit.
具体地,第一区域单元的数据库访问层确定第一区域单元的数据库缓存中是否存储有管理数据,若否,则根据第一区域单元的管理数据链确定管理数据,并将确定的管理数据写入第一区域单元的数据库缓存中。Specifically, the database access layer of the first area unit determines whether management data is stored in the database cache of the first area unit, and if not, determines management data according to the management data link of the first area unit, and writes the determined management data. Enter the database cache of the first zone unit.
其中,第一区域单元的数据库访问层根据第一区域单元的管理数据链和确定管理数据在步骤504中已进行了详细解释说明,在此不再展开说明。The database access layer of the first area unit has been explained in detail in step 504 according to the management data link of the first area unit and the determination management data, and the description will not be repeated here.
在本申请实施例中,分布式云数据中心包括多个区域单元,当第一区域单元中的第一管理数据库节点获取到更新后的管理数据时,在第一区域单元的管理数据链存储该更新后的管理数据,并指示第二管理数据库节点在第二区域单元的管理数据链中存储该更新后的管理数据。由此可知,在本申请中,当第一管理数据库节点存储更新后的管理数据时,其他区域单元的管理数据库节点也将存储更新后的管理数据,以实现每个区域单元的管理数据库节点中都存储有管理数据,且存储的管理数据一致。也即,在本申请中,每个区域单元中都存储有管理数据,以便于后续每个区域单元可以从自身的管理数据链中获取管理数据,提高了区域单元导致获取管理数据的效率。另外,若某个区域单元出现问题,由于每个区域单元的管理数据链中都存储有管理数据,因此不会出现其他区域单元无法获取到管理数据的情况。In the embodiment of the present application, the distributed cloud data center includes a plurality of area units. When the first management database node in the first area unit obtains the updated management data, the management data link in the first area unit stores the The updated management data, and instructing the second management database node to store the updated management data in the management data link of the second area unit. Therefore, in the present application, when the first management database node stores the updated management data, the management database node of the other regional unit will also store the updated management data to implement the management database node of each regional unit. Management data is stored and the stored management data is consistent. That is, in the present application, management data is stored in each area unit, so that each of the area units can acquire management data from its own management data chain, which improves the efficiency of the area unit to obtain management data. In addition, if there is a problem with a certain area unit, since management data is stored in the management data link of each area unit, there is no possibility that other area units cannot obtain management data.
图6是本申请实施例提供的另一种存储管理数据的方法流程图,应用于图2B的分布式云数据中心中,如图6所示,该方法包括如下步骤:FIG. 6 is a flowchart of another method for storing management data according to an embodiment of the present disclosure. The method is applied to the distributed cloud data center of FIG. 2B. As shown in FIG. 6, the method includes the following steps:
步骤601:第一区域单元的第一管理数据库节点获取更新后的管理数据,根据该更新后的管理数据生成新的第一区块,该第一区域单元为多个区域单元中的任一区域单元。Step 601: The first management database node of the first area unit acquires the updated management data, and generates a new first block according to the updated management data, where the first area unit is any one of the plurality of area units. unit.
其中,根据该更新后的管理数据生成新的第一区块,也即是,生成的新的第一区块包括该更新后的管理数据。另外,第一管理数据库节点获取更新后的管理数据的实现方式以及生成新的第一区块的实现方式已经在图4实施例中的步骤中进行了详细解释,在此不再展开阐述。The new first block is generated according to the updated management data, that is, the generated new first block includes the updated management data. In addition, the implementation manner of obtaining the updated management data by the first management database node and the implementation manner of generating the new first block have been explained in detail in the steps in the embodiment of FIG. 4, and will not be further explained herein.
步骤602:该第一区域单元的第一管理数据库节点存储生成的第一区块。Step 602: The first management database node of the first area unit stores the generated first block.
在本申请实施例中,管理数据链的信任路径不再是默认的具有最多节点的路径,而是指定的信任路径,因此,当该第一区域单元的第一管理数据库节点生成第一区块之后,需要先通过变更审计数据链确定当前的第一信任路径,并将该第一区块添加至自身的管理数据链中第一信任路径的末端。In the embodiment of the present application, the trust path of the management data link is no longer the default path with the most nodes, but the specified trust path. Therefore, when the first management database node of the first area unit generates the first block, After that, the current first trust path needs to be determined by changing the audit data chain, and the first block is added to the end of the first trust path in its own management data chain.
具体地,步骤602的实现方式为:第一管理数据库节点根据第一区域单元的变更审计数据链中的第三信任路径确定第一信任路径,第三信任路径在第一区域单元的变 更审计数据链中拥有最多节点,并将该新的第一区块添加为第一信任路径中的最后一个第一区块。Specifically, the implementation of step 602 is: the first management database node determines the first trust path according to the third trust path in the change audit data chain of the first area unit, and the change audit data of the third trust path in the first area unit There are the most nodes in the chain and the new first block is added as the last first block in the first trust path.
需要说明的是,在本发明实施例中,采用变更审计链存储管理数据链中当前信任路径的信息,变更审计链自身信息的可信度仍采用只信任具有最多节点的路径的方法保证,获取和写入信任路径的操作由系统内部完成,从而有效保证信任路径条信息的可信度。也即是,第三信任路径在第一区域单元的变更审计数据链中拥有最多节点。It should be noted that, in the embodiment of the present invention, the information of the current trust path in the data chain of the audit management chain is changed, and the credibility of the information of the audit chain itself is still determined by the method of trusting only the path with the most nodes. And the operation of writing the trust path is completed internally by the system, thereby effectively ensuring the credibility of the trust path information. That is, the third trust path has the most nodes in the change audit data chain of the first area unit.
也即,在本发明实施例中,是由变更审计数据链中的区块来记录管理数据链中的信任路径信息。因此,当第一区域单元的管理数据链将生成的第一区块添加至自身的信任路径的末端之前,第一区域单元的管理数据链通过第一区域单元的数据库访问层确定第一区域单元的变更审计数据链中的具有最多节点的路径的末端区块,并根据第一区域单元的变更审计数据链中的具有最多节点的路径的末端区块确定自身的信任路径。That is, in the embodiment of the present invention, the trust path information in the management data chain is recorded by changing the blocks in the audit data chain. Therefore, before the management data link of the first area unit adds the generated first block to the end of its own trust path, the management data link of the first area unit determines the first area unit through the database access layer of the first area unit Change the end block of the path with the most nodes in the audit data chain, and determine its own trust path according to the end block of the path with the most nodes in the audit data link of the first area unit.
具体地,第一管理数据库节点根据第一区域单元的变更审计数据链中的第三信任路径确定第一信任路径的实现方式可以为:第一区域单元的管理数据链可以向第一区域单元的数据库访问层发送信任路径读取请求,当第一区域单元的数据库访问层接收到该信任路径读取请求时,将该信任路径读取请求发送至第一区域单元的变更审计数据链。当第一区域单元的变更审计数据链接收到该信任路径读取请求时,确定自身的具有最多节点的路径的末端的第二区块,从具有最多节点的路径的末端的第二区块中获取第一区域单元的管理数据链中的信任路径的末端的第一区块的标识,并将获取的第一区块的标识发送至第一区域单元的数据库访问层。第一区域单元的数据库访问层将接收到的第一区块的标识发送至第一区域单元的管理数据链。当第一区域单元的管理数据链接收到该第一区块的标识时,从自身的数据链中查找末端区块的标识为该第一区块的标识的路径,将查找到的路径确定为第一信任路径。Specifically, the first management database node may determine that the first trust path is implemented according to the third trust path in the change audit data link of the first area unit, that the management data link of the first area unit may be to the first area unit. The database access layer sends a trust path read request, and when the database access layer of the first area unit receives the trust path read request, the trust path read request is sent to the change audit data chain of the first area unit. When the change audit data link of the first area unit receives the trust path read request, the second block of the end of the path with the most nodes is determined from the second block at the end of the path with the most nodes. Obtaining an identifier of the first block at the end of the trust path in the management data chain of the first area unit, and transmitting the acquired identifier of the first block to the database access layer of the first area unit. The database access layer of the first area unit transmits the received identifier of the first block to the management data chain of the first area unit. When the management data link of the first area unit receives the identifier of the first block, the identifier of the end block is searched from the data link of the first area as the path of the identifier of the first block, and the found path is determined as The first trust path.
可选地,当每个区域单元的管理数据库节点还包括数据库缓存时,第一区域单元的管理数据库节点将生成的第一区块添加至自身的管理数据链的第一信任路径的末端之后,还可将接收到的管理数据缓存在数据库缓存中。具体地,第一区域单元的管理数据链将接收到的管理数据发送至第一区域单元的数据库访问层,第一区域单元的数据库访问层将该管理数据写入第一区域单元的数据库缓存。Optionally, when the management database node of each area unit further includes a database cache, the management database node of the first area unit adds the generated first block to the end of the first trust path of the management data link of the own area, The received management data can also be cached in the database cache. Specifically, the management data link of the first area unit transmits the received management data to the database access layer of the first area unit, and the database access layer of the first area unit writes the management data to the database cache of the first area unit.
另外,第一区域单元的管理数据链中第一个第一区块是根据分布式云数据中心的发行商设置的出厂配置数据得到的。也即,在初始化状态时,第一区域单元的管理数据链根据初始化时的管理数据生成第一个第一区块。且第一区域单元的管理数据链通过第一区域单元的数据库访问层向第一区域单元的变更审计数据链发送第二更新请求,第一区域单元的变更审计数据链接收第二更新请求,并生成第一个第二区块,第一个第二区块用于指示第一区域单元的管理数据链中信任路径的末端区块为第一个第一区块。In addition, the first first block in the management data chain of the first area unit is obtained according to the factory configuration data set by the publisher of the distributed cloud data center. That is, in the initialization state, the management data chain of the first area unit generates the first first block based on the management data at the time of initialization. And the management data link of the first area unit sends a second update request to the change audit data link of the first area unit by using the database access layer of the first area unit, and the change audit data link of the first area unit receives the second update request, and A first second block is generated, and the first second block is used to indicate that the end block of the trust path in the management data chain of the first area unit is the first first block.
其中,初始化时的管理数据也即分布式云数据中心的发行商设置的出厂配置数据。The management data at the time of initialization is the factory configuration data set by the publisher of the distributed cloud data center.
另外,当第一区域单元的管理数据链在信任路径的末端添加生成的第一区块之后,表明当前管理数据链中第一信任路径的末端的第一区块发生了变化,因此需要对变更审计数据链进行更新。具体地,管理数据链可以生成第一更新请求,并根据该第一更 新请求通过下述步骤603实现对变更审计数据链的更新。In addition, after the first data block of the first area unit adds the generated first block at the end of the trust path, it indicates that the first block of the end of the first trust path in the current management data chain has changed, and therefore needs to be changed. The audit data link is updated. Specifically, the management data chain may generate a first update request and implement an update to the change audit data chain by the following step 603 according to the first update request.
步骤603:第一区域单元的第一管理数据库节点向自身的变更审计数据链发送第一更新请求,并在自身的变更审计数据链具有最多节点的路径的末端新增第二区块,新增的第二区块用于指示第一区域单元的管理数据链中的信任路径的末端区块为该生成的第一区块。Step 603: The first management database node of the first area unit sends a first update request to its own change audit data link, and adds a second block at the end of the path with the most nodes in the change audit data link of its own. The second block is used to indicate that the end block of the trust path in the management data chain of the first area unit is the generated first block.
具体地,步骤603的实现方式可以为:第一区域单元的管理数据链向第一区域单元的数据库访问层发送第一更新请求,该第一更新请求携带步骤601中生成的第一区块的标识。当第一区域单元的数据库访问层接收到该第一更新请求时,将该第一更新请求发送至第一区域单元的变更审计数据链。第一区域单元的变更审计数据链接收第一更新请求,并在自身具有最多节点的路径中新增第二区块,当前新增的第二区块用于指示当前第一区域单元的管理数据链中的信任路径的末端区块为生成的第一区块。Specifically, the implementation of the step 603 may be: the management data link of the first area unit sends a first update request to the database access layer of the first area unit, where the first update request carries the first block generated in step 601. Logo. When the database access layer of the first area unit receives the first update request, the first update request is sent to the change audit data chain of the first area unit. The change audit data link of the first area unit receives the first update request, and adds a second block in the path that has the most node, and the currently added second block is used to indicate the management data of the current first area unit. The end block of the trust path in the chain is the first block generated.
由于第一更新请求携带步骤601中生成的第一区块的标识,因此,当第一区域单元的变更审计数据链接收到该第一更新请求时,根据第一更新请求中携带的第一区块的标识生成第二区块,并将生成的第二区块添加至自身具有最多节点的路径的末端,生成的第二区块中存储有步骤601中生成的第一区块的标识。Because the first update request carries the identifier of the first block generated in step 601, when the change audit data link of the first area unit receives the first update request, according to the first area carried in the first update request The identifier of the block generates a second block, and the generated second block is added to the end of the path having the most nodes, and the generated second block stores the identifier of the first block generated in step 601.
步骤604:第一区域单元的第一管理数据库节点在第一P2P网络中广播该生成的第一区块,以使除该第一区域单元之外的每个区域单元的管理数据库节点将生成的第一区块加入自身的管理数据链的信任路径的末端,并使该第一区域单元之外的每个区域单元的管理数据库节点在自身变更审计数据链具有最多节点的路径中新增第二区块。Step 604: The first management database node of the first area unit broadcasts the generated first block in the first P2P network, so that the management database node of each area unit except the first area unit will generate The first block is added to the end of the trust path of its own management data link, and the management database node of each area unit other than the first area unit adds a second in the path with the most nodes in the change audit data link. Block.
需要说明的是,由于分布式云数据中心的各个区域单元共用一套管理数据,因此,需保证各个区域单元中的管理数据链和变更审计数据链中存储的数据的一致性。因此,当第一区域单元的管理数据链在生成第一区块之后,还需在第一P2P网络中传输生成的第一区块,以使其他区域单元根据步骤604更新自身的管理数据链和变更审计数据链。It should be noted that, since each area unit of the distributed cloud data center shares a set of management data, it is necessary to ensure the consistency of the management data link in each area unit and the data stored in the change audit data link. Therefore, after the management data link of the first area unit generates the first block, the generated first block needs to be transmitted in the first P2P network, so that the other area units update their management data link according to step 604. Change the audit data chain.
其中,其他区域单元的变更审计数据链在自身的具有最多节点的路径中新增第二区块的实现方式和第一区域的变更审计数据链在自身的具有最多节点的路径中新增第二区块的实现方式基本相同,在此不再详细阐述。Wherein, the change audit data link of the other area unit adds the second block in the path with the most nodes and the change audit data link of the first area adds the second in the path with the most nodes of the own area. The implementation of the blocks is basically the same and will not be elaborated here.
在本申请实施例中,分布式云数据中心包括多个区域单元,每个区域单元的管理数据库节点包括管理数据链和变更审计数据链。当第一区域单元获取到更新后的管理数据时,根据该更新后的管理数据生成第一区块,并根据变更审计数据链确定管理数据链的第一信任路径,然后根据该第一信任路径将该第一区块存储至管理数据链中。之后,第一区域单元的管理数据库节点在第一P2P网络中广播生成的第一区块,以使除第一区域单元之外的每个区域单元的管理数据库节点将该生成的第一区块加入自身的管理数据链的信任路径的末端。也即,在本申请实施例中,每个区域单元中都存储有管理数据,以便于后续每个区域单元可以从自身的管理数据链中获取管理数据,提高了区域单元导致获取管理数据的效率。另外,若某个区域单元出现问题,由于每个区域单元的管理数据链中都存储有管理数据,因此不会出现其他区域单元无法获取到管理数据的情况。In the embodiment of the present application, the distributed cloud data center includes a plurality of regional units, and the management database nodes of each regional unit include a management data link and a change audit data link. When the first area unit obtains the updated management data, generates a first block according to the updated management data, and determines a first trust path of the management data chain according to the change audit data chain, and then according to the first trust path. The first block is stored in the management data chain. Thereafter, the management database node of the first area unit broadcasts the generated first block in the first P2P network, so that the management database node of each area unit other than the first area unit will generate the first block Join the end of the trust path of your own management data link. That is, in the embodiment of the present application, management data is stored in each area unit, so that each of the area units can obtain management data from its own management data chain, thereby improving the efficiency of obtaining the management data by the area unit. . In addition, if there is a problem with a certain area unit, since management data is stored in the management data link of each area unit, there is no possibility that other area units cannot obtain management data.
图7是本申请实施例提供的另一种存储管理数据的方法流程图,应用于图2B所示的分布式云数据中心中,且图7所示的存储管理数据的方法用于对图6所示的存储管理数据的方法进一步展开说明。具体地,如图6所示,该方法包括如下步骤:FIG. 7 is a flowchart of another method for storing management data according to an embodiment of the present application, which is applied to the distributed cloud data center shown in FIG. 2B, and the method for storing management data shown in FIG. 7 is used for FIG. 6 The method of storing management data is further illustrated. Specifically, as shown in FIG. 6, the method includes the following steps:
步骤701:第一区域单元的第一管理数据库节点获取更新后的管理数据,根据该更新后的管理数据生成第一区块,该第一区域单元为多个区域单元中的任一区域单元。Step 701: The first management database node of the first area unit acquires the updated management data, and generates a first block according to the updated management data, where the first area unit is any one of the plurality of area units.
其中,步骤701的实现方式和图6所示的实施例中的步骤601的实现方式基本相同,在次同样不再详细阐述。The implementation manner of step 701 is basically the same as the implementation manner of step 601 in the embodiment shown in FIG. 6, and will not be elaborated in the same time.
步骤702:该第一区域单元的第一管理数据库节点存储生成的第一区块。Step 702: The first management database node of the first area unit stores the generated first block.
其中,步骤702的实现方式和图6所示的实施例中的步骤602的实现方式基本相同,在次同样不再详细阐述。The implementation of step 702 is basically the same as the implementation of step 602 in the embodiment shown in FIG. 6, and will not be described in detail again.
步骤703:第一区域单元的第一管理数据库节点向自身的变更审计数据链发送第一更新请求,并在自身的变更审计数据链的具有最多节点的路径的末端新增第二区块,新增的第二区块用于指示第一区域单元的管理数据链中的信任路径的末端区块为该生成的第一区块。Step 703: The first management database node of the first area unit sends a first update request to its own change audit data link, and adds a second block to the end of the path with the most nodes of its own change audit data link. The second block is used to indicate that the end block of the trust path in the management data chain of the first area unit is the generated first block.
其中,步骤703的实现方式和图6所示的实施例中的步骤603的实现方式基本相同,在次同样不再详细阐述。The implementation manner of step 703 is basically the same as the implementation manner of step 603 in the embodiment shown in FIG. 6, and will not be elaborated in the same time.
步骤704:第一区域单元的第一管理数据库节点在第一P2P网络中广播该生成的第一区块,以使除该第一区域单元之外的每个区域单元的管理数据库节点将生成的第一区块加入自身的管理数据链的信任路径的末端,并使该第一区域单元之外的每个区域单元的管理数据库节点在自身变更审计数据链的具有最多节点的路径中新增第二区块。Step 704: The first management database node of the first area unit broadcasts the generated first block in the first P2P network, so that the management database node of each area unit except the first area unit will generate The first block is added to the end of the trust path of its own management data link, and the management database node of each area unit other than the first area unit is added to the path with the most nodes in the change audit data chain. Second block.
其中,步骤704的实现方式和图6所示的实施例中的步骤604的实现方式基本相同,在次同样不再详细阐述。The implementation of step 704 is basically the same as the implementation of step 604 in the embodiment shown in FIG. 6, and will not be elaborated in the second.
上述步骤701至步骤704用于解释说明如何确定每个区域单元的管理数据链和变更审计数据链,也即,用于解释说明向每个区域单元的管理数据链和变更审计数据链写入管理数据的过程。接下来针对区域单元的管理数据链和变更审计数据链的应用展开说明。其中,针对区域单元的管理数据链和变更审计数据链的应用包括以下两个方面:The above steps 701 to 704 are used to explain how to determine the management data link and change audit data chain of each area unit, that is, to explain the management data chain and change audit data link write management to each area unit. The process of data. The following is a description of the management data link of the regional unit and the application of the change audit data link. Among them, the application of the management data link and the change audit data link for the regional unit include the following two aspects:
(1)如何从区域单元的管理数据链和变更审计数据链中读取管理数据;(1) How to read management data from the management data link of the regional unit and the change audit data link;
(2)如何根据区域单元的管理数据链和变更审计数据链进行管理数据的恢复。(2) How to recover management data according to the management data link of the regional unit and the change audit data link.
其中,下述步骤705用于解释说明如何从区域单元的管理数据链和变更审计数据链中读取管理数据,下述步骤706和步骤707用于解释说明如何根据区域单元的管理数据链和变更审计数据链进行管理数据的恢复。Wherein, the following step 705 is used to explain how to read the management data from the management data link of the regional unit and the change audit data chain, and the following steps 706 and 707 are used to explain how to manage the data link and change according to the regional unit. The audit data link performs management data recovery.
步骤705:当第一区域单元的第一管理数据库节点接收管理数据读取请求,获取管理数据。Step 705: Acquire management data when the first management database node of the first area unit receives the management data read request.
在本申请实施例中,第一区域单元的第一管理数据库节点接收管理数据读取请求,确定自身的变更审计数据链中的具有最多节点的路径的末端区块,第一区域单元的第一管理数据库节点根据自身的变更审计数据链中的具有最多节点的路径的末端区块确定自身管理数据链中的信任路孔,第一区域单元的第一管理数据库节点在自身的管理 数据链的具有最多节点的路径末端的第一区块读取该管理数据。也即是,第一管理数据库节点根据第三信任路径确定第一信任路径,并在第一信任路径中的最后一个第一区块读取管理数据。In the embodiment of the present application, the first management database node of the first area unit receives the management data read request, and determines the end block of the path with the most nodes in the change audit data chain of the first area unit, and the first area of the first area unit The management database node determines the trusted road hole in the management data chain according to the end block of the path with the most nodes in the audit data chain of the change, and the first management database node of the first area unit has its own management data link. The first block at the end of the path of the most node reads the management data. That is, the first management database node determines the first trust path according to the third trust path, and reads the management data in the last first block in the first trust path.
具体地,上述过程可以通过下述步骤7051至步骤7053来实现:Specifically, the foregoing process may be implemented by the following steps 7051 to 7053:
步骤7051:当第一区域单元的业务系统接收到管理数据读取请求时,将管理数据读取请求转发给第一区域单元的管理系统。Step 7051: When the service system of the first area unit receives the management data read request, forward the management data read request to the management system of the first area unit.
其中,该管理数据读取请求由用户通过操作触发,由图2B所示的分布式云数据中心可知,每个区域单元的业务系统并不与管理数据库节点连接,而是由每个区域单元的管理系统与管理数据库节点连接,因此,当第一区域单元的业务系统接收到管理数据读取请求时,需将管理数据读取请求转发给第一区域单元的管理系统。The management data read request is triggered by the user, and the distributed cloud data center shown in FIG. 2B knows that the service system of each regional unit is not connected to the management database node, but by each regional unit. The management system is connected to the management database node. Therefore, when the service system of the first area unit receives the management data read request, the management data read request needs to be forwarded to the management system of the first area unit.
步骤7052:第一区域单元的管理系统从第一区域单元的管理数据库节点中获取管理数据。Step 7052: The management system of the first area unit acquires management data from the management database node of the first area unit.
具体地,步骤7052的实现方式为:当第一区域单元的管理系统接收到该管理数据读取请求时,第一区域单元的管理系统向第一区域单元的数据库访问层发送该管理数据读取请求,第一区域单元的数据库访问层接收该管理数据读取请求,并根据第一区域单元的管理数据链和变更审计数据链确定管理数据,第一区域单元的数据库访问层向第一区域单元的管理系统发送确定的管理数据。Specifically, the implementation of step 7052 is: when the management system of the first area unit receives the management data read request, the management system of the first area unit sends the management data read to the database access layer of the first area unit. Requesting, the database access layer of the first area unit receives the management data read request, and determines management data according to the management data link of the first area unit and the change audit data chain, and the database access layer of the first area unit is directed to the first area unit The management system sends the determined management data.
进一步地,当每个区域单元的管理数据库节点还包括数据库缓存时,第一区域单元的数据库访问层根据第一区域单元的管理数据链和变更审计数据链确定管理数据之前,还可以先确定第一区域单元的数据库缓存中是否存储有管理数据,若是,则从第一区域单元的数据库缓存中获取管理数据;若否,则执行根据第一区域单元的管理数据链和变更审计数据链确定管理数据的步骤。Further, when the management database node of each regional unit further includes a database cache, before the database access layer of the first regional unit determines the management data according to the management data link of the first regional unit and the change audit data chain, the first Whether the management data is stored in the database cache of the area unit, and if so, the management data is obtained from the database cache of the first area unit; if not, the management data chain and the change audit data chain according to the first area unit are determined to be managed. The steps of the data.
也即,第一区域单元的管理系统是通过第一区域单元的数据库访问层获取管理数据的,而第一区域单元的数据库访问层在从管理数据链和变更审计数据链中获取管理数据之前,先确定数据库缓存中是否存储有管理数据,以提高获取管理数据的效率,若第一区域单元的数据库访问层没有从第一区域单元的数据库缓存中获取到管理数据,则再从管理数据链和变更审计数据链中获取管理数据。That is, the management system of the first area unit acquires management data through the database access layer of the first area unit, and the database access layer of the first area unit obtains management data from the management data link and the change audit data chain. First, it is determined whether the management data is stored in the database cache to improve the efficiency of obtaining the management data. If the database access layer of the first area unit does not obtain the management data from the database cache of the first area unit, then the management data link is Obtain management data in the change audit data chain.
其中,第一区域单元的数据库访问层根据第一区域单元的管理数据链和变更审计数据链确定管理数据的实现方式可以为:第一区域单元的数据库访问层向第一区域单元的变更审计数据链发送信任路径读取请求,第一区域单元的变更审计数据链接收信任路径读取请求,并查找自身的具有最多节点的路径的末端第二区块,第一区域单元的变更审计数据链根据查找到的第二区块,确定第一区域单元的管理数据链的信任路径的末端的第一区块的标识,并将信任路径的末端的第一区块的标识发送至第一区域单元的数据库访问层,第一区域单元的数据库访问层将信任路径的末端的第一区块的标识发送至第一区域单元的管理数据链,第一区域单元的管理数据链根据信任路径的末端的第一区块的标识查找对应的第一区块,并从查找到的第一区块中获取管理数据,第一区域单元的管理数据链将获取的管理数据发送至第一区域单元的数据库访问层。The implementation manner of determining the management data by the database access layer of the first area unit according to the management data link of the first area unit and the change audit data link may be: changing the audit data of the database access layer of the first area unit to the first area unit. The chain sends a trust path read request, the change audit data link of the first area unit receives the trust path read request, and searches for the end second block of the path with the most nodes, and the change audit data chain of the first area unit is based on Finding the second block, determining an identifier of the first block at the end of the trust path of the management data link of the first area unit, and transmitting the identifier of the first block at the end of the trust path to the first area unit a database access layer, the database access layer of the first area unit sends the identifier of the first block at the end of the trust path to the management data link of the first area unit, and the management data link of the first area unit is based on the end of the trust path The identifier of a block finds the corresponding first block, and obtains management data from the first block found, Area management data link means transmits the acquired management data to the database access unit layer of the first region.
也即,第一区域单元的数据库访问层是先通过第一区域单元的变更审计数据链确定第一区域单元的管理数据中的信任路径,然后再根据确定的信任链从管理数据链中 获取管理数据,以保证获取到的管理数据的可信性。That is, the database access layer of the first area unit first determines the trust path in the management data of the first area unit through the change audit data chain of the first area unit, and then obtains the management from the management data link according to the determined trust chain. Data to ensure the credibility of the acquired management data.
步骤7053:第一区域单元的管理系统将获取的管理数据发送至第一区域单元的业务系统。Step 7053: The management system of the first area unit sends the acquired management data to the service system of the first area unit.
当第一区域单元的管理系统接收到第一区域单元的数据库访问层发送的管理数据,第一区域单元的管理系统将接收到的管理数据发送至第一区域单元的业务系统,以完成读取管理数据的过程。When the management system of the first area unit receives the management data sent by the database access layer of the first area unit, the management system of the first area unit sends the received management data to the service system of the first area unit to complete the reading. The process of managing data.
步骤706:在第一区域单元发生故障导致自身的管理数据链出现问题后,当第一区域单元的第一管理数据库节点接收第一类数据恢复请求时,第一区域单元的第一管理数据库节点进行数据恢复。Step 706: After the first regional unit fails to cause a problem in its management data link, when the first management database node of the first regional unit receives the first type of data recovery request, the first management database node of the first regional unit Perform data recovery.
也即,在第一区域单元发生故障导致自身的管理数据链出现问题后,第一区域单元的第一管理数据库节点接收第一类数据恢复请求,将自身的管理数据链重新加入第一P2P网络,从第一P2P网络中重新加载区块信息,并将自身的变更审计数据链重新加入第二P2P网络,从第二P2P网络中重新加载区块信息,第一区域单元的第一管理数据库节点返回数据恢复确认消息。That is, after the first regional unit fails to cause a problem in its management data link, the first management database node of the first regional unit receives the first type of data recovery request, and rejoins its own management data link to the first P2P network. Reloading the block information from the first P2P network, and rejoining the change audit data link of the first P2P network to the second P2P network, reloading the block information from the second P2P network, and the first management database node of the first area unit Returns a data recovery confirmation message.
具体地,上述过程可以通过以下几个步骤实现:Specifically, the above process can be implemented by the following steps:
(1)在第一区域单元发生故障后,当第一区域单元的管理系统接收到第一类数据恢复请求时,将第一类数据恢复请求发送至第一区域单元的数据库访问层,第一类数据恢复请求用于指示重新加载管理数据链和变更审计数据链,第一区域单元的数据库访问层接收第一类数据恢复请求,并分别向第一区域单元的管理数据链和变更审计数据链发送网络加入请求。(1) after the failure of the first area unit, when the management system of the first area unit receives the first type of data recovery request, the first type of data recovery request is sent to the database access layer of the first area unit, first The class data recovery request is used to indicate that the management data link is reloaded and the audit data chain is changed. The database access layer of the first area unit receives the first type of data recovery request, and respectively manages the data link to the first area unit and changes the audit data link. Send a network join request.
其中,第一类数据恢复请求由管理人员通过预设操作触发,也即,在第一区域单元发生故障后,当管理人员需要恢复该第一区域单元时,可以通过预设操作触发该第一类数据恢复请求。The first type of data recovery request is triggered by a preset operation by the administrator, that is, after the first area unit fails, when the manager needs to restore the first area unit, the first operation may be triggered by a preset operation. Class data recovery request.
另外,由于第一区域单元在发生故障时,第一区域单元的管理数据链和变更审计数据链可能已经不再第一P2P网络和第二P2P网络中,因此,需先通过网络加入请求使第一区域单元的管理数据链和变更审计数据链重新加入第一P2P网络和第二P2P网络,以重新恢复第一区域单元的管理数据链和变更审计数据链中的区块数据。In addition, since the management data link and the change audit data link of the first regional unit may no longer be in the first P2P network and the second P2P network, the first regional unit may be added to the first P2P network and the second P2P network. The management data link and the change audit data link of a regional unit are rejoined to the first P2P network and the second P2P network to restore the management data link of the first area unit and change the block data in the audit data chain.
(2)第一区域单元的管理数据链接收网络加入请求,重新加入第一P2P网络,并从第一P2P网络中重新加载区块信息,在得到自身的各个区块之后向第一区域单元的数据库访问层发送第一网络加入确认消息,第一区域单元的变更审计数据链接收网络加入请求,重新加入第二P2P网络,并从第二P2P网络中重新加载区块信息,在得到自身的各个区块之后向第一区域单元的数据库访问层发送第二网络加入确认消息。(2) The management data link of the first area unit receives the network join request, rejoins the first P2P network, and reloads the block information from the first P2P network, and after obtaining each of its own blocks, the first area unit The database access layer sends a first network join confirmation message, and the change audit data link of the first area unit receives the network join request, rejoins the second P2P network, and reloads the block information from the second P2P network, and obtains each of its own The block sends a second network join confirmation message to the database access layer of the first area unit.
其中,第一区域单元的管理数据链接收网络加入请求,重新加入第一P2P网络的实现方式为:第一区域单元的管理数据链在第一P2P网路中广播网络加入请求,该网络加入请求携带第一区域单元的身份信息,当第一P2P网路中的其他区域单元接收到该网络加入请求时,对第一区域单元的身份信息进行验证,并广播验证结果,以确定是否允许第一区域单元加入第一P2P网路。The management data link of the first area unit receives the network join request, and the method of rejoining the first P2P network is: the management data link of the first area unit broadcasts a network join request in the first P2P network, and the network join request Carrying the identity information of the first area unit, when the other area units in the first P2P network receive the network join request, verify the identity information of the first area unit, and broadcast the verification result to determine whether to allow the first The zone unit joins the first P2P network.
第一区域单元从第一P2P网络中重新加载区块信息的实现方式可以为:第一区域单元的管理数据链向第一P2P网络中任意一个其他区域单元的管理数据链发送管理数 据链获取请求,当其他区域单元的管理数据链接收到该管理数据链获取请求时,向第一区域单元的管理数据链发送自身的链条中的区块,以使第一区域单元的管理数据链可以得到各个区块。The implementation manner of reloading the block information from the first P2P network by the first area unit may be: the management data link of the first area unit sends a management data link acquisition request to the management data link of any other area unit in the first P2P network. When the management data link of the other area unit receives the management data link acquisition request, the block in the chain of the first area unit is sent to the management data link of the first area unit, so that the management data link of the first area unit can obtain each Block.
第一区域单元从第二P2P网络中重新加载区块信息的实现方式可以为:第一区域单元的变更审计数据链向第二P2P网络中任意一个其他区域单元的变更审计数据链发送变更审计数据链获取请求,当其他区域单元的变更审计数据链接收到该变更审计数据链获取请求时,向第一区域单元的变更审计数据链发送自身的链条中的区块,以使第一区域单元的变更审计数据链可以得到各个区块。The manner in which the first area unit reloads the block information from the second P2P network may be: the change audit data link of the first area unit sends the change audit data to the change audit data link of any other area unit in the second P2P network. The chain acquisition request, when the change audit data link of the other area unit receives the change audit data link acquisition request, sends the block in the chain of the first area unit to the change audit data chain of the first area unit, so that the first area unit Each block can be obtained by changing the audit data chain.
(3)第一区域单元的数据库访问层接收第一网络加入确认消息和第二网络加入确认消息,并向第一区域单元的管理系统发送数据恢复确认消息。(3) The database access layer of the first area unit receives the first network join confirmation message and the second network join confirmation message, and sends a data recovery confirmation message to the management system of the first area unit.
当第一区域单元的数据库访问层分别接收到第一区域单元的管理数据链发送的第一网络加入确认消息和第一区域单元的变更审计数据链发送的第二网络加入确认消息时,确定当前第一区域单元的管理数据链和变更审计数据链中的数据得到恢复,因此,第一区域单元的数据库访问层可以向第一区域单元的管理系统发送数据恢复确认消息。When the database access layer of the first area unit receives the first network join confirmation message sent by the management data link of the first area unit and the second network join confirmation message sent by the change audit data link of the first area unit, determining the current The management data link of the first area unit and the data in the change audit data chain are restored. Therefore, the database access layer of the first area unit can transmit a data recovery confirmation message to the management system of the first area unit.
进一步地,当每个区域单元的管理数据库节点还包括数据库缓存时,在第一区域单元发生故障时,第一区域单元的数据库缓存中的存储的管理数据可能已失效,因此,当第一区域单元的管理数据链和变更审计数据链中的数据得到恢复时,可以重新将最新的管理数据存储至第一区域单元的数据库缓存中。Further, when the management database node of each regional unit further includes a database cache, when the first regional unit fails, the stored management data in the database cache of the first regional unit may have expired, and therefore, when the first region When the management data link of the unit and the data in the change audit data link are restored, the latest management data can be re-stored in the database cache of the first area unit.
具体地,第一区域单元的数据库访问层确定第一区域单元的数据库缓存中是否存储有管理数据,若否,则根据第一区域单元的管理数据链和变更审计数据链确定管理数据,并将确定的管理数据写入第一区域单元的数据库缓存中。Specifically, the database access layer of the first area unit determines whether management data is stored in the database cache of the first area unit, and if not, determines management data according to the management data link of the first area unit and the change audit data link, and The determined management data is written into the database cache of the first area unit.
其中,第一区域单元的数据库访问层根据第一区域单元的管理数据链和变更审计数据链确定管理数据在步骤705中已进行了详细解释说明,在此不再展开说明。The database access layer of the first area unit determines the management data according to the management data link of the first area unit and the change audit data link. The detailed description is in step 705, and the description is not repeated here.
为了后续便于说明,将上述对第一区域中的管理数据库节点中的管理数据链和变更审计数据链进行恢复的过程称为第一类型的数据恢复。另外,该第一类型的数据恢复可以应用于容灾回切过程中,也可以应用于区域单元对应的设备或系统发生故障而导致本地存储的管理数据被损坏的场景中。For the convenience of description, the process of restoring the management data link and the change audit data link in the management database node in the first area is referred to as the first type of data recovery. In addition, the first type of data recovery may be applied to the disaster recovery and back-cutting process, or may be applied to a scenario where the device or system corresponding to the area unit fails and the locally stored management data is damaged.
下述步骤707用于介绍本申请实施例提供的第二类型数据恢复,该第二类型数据恢复应用于逻辑错误场景。其中,逻辑错误场景是指由于有意或无意的失误,管理数据被按照正常的配置流程配置成错误的值的场景,该场景下由于配置流程正常,所以全部区域单元的当前有效数据都会被配置成错误数据。该场景下,为了恢复到正确数据,必须从历史上某一正确的时刻进行恢复,具体可以通过下述步骤707实现。The following step 707 is used to introduce the second type of data recovery provided by the embodiment of the present application, and the second type of data recovery is applied to a logic error scenario. The logical error scenario refers to a scenario in which the management data is configured to an incorrect value according to a normal configuration process due to an intentional or unintentional error. In this scenario, since the configuration process is normal, the current valid data of all the regional units is configured. Wrong data. In this scenario, in order to restore the correct data, it is necessary to recover from a certain correct time in the history, which can be implemented by the following step 707.
步骤707:当第一区域单元的第一管理数据库节点接收第二类数据恢复请求时,第一区域单元的第一管理数据库节点进行数据恢复,第二类数据恢复请求用于指示将指定时刻时的管理数据确定为有效的管理数据。Step 707: When the first management database node of the first area unit receives the second type data recovery request, the first management database node of the first area unit performs data recovery, and the second type of data recovery request is used to indicate that the time is to be specified. The management data is determined to be valid management data.
其中,第一区域单元的管理数据库节点进行数据恢复的实现方式可以为:第一管理数据库节点获取数据恢复请求中携带的指定时刻,第一管理数据库节点根据该指定时刻,在第一区域单元的管理数据链中查询时间戳与该指定时刻匹配的第一区块,该第一管理数据库节点根据查找到的第一区块,生成新的第二区块,将该新的第二区块 添加为第三信任路径中的最后一个第二区块,该新的第二区块用于根据该查找到的第一区块重置第一信任路径。The implementation manner of the data recovery by the management database node of the first area unit may be: the first management database node acquires the specified time carried in the data recovery request, and the first management database node is in the first area unit according to the specified time Querying, in the data link, a first block whose query timestamp matches the specified time, the first management database node generates a new second block according to the first block found, and adds the new second block And being the last second block in the third trust path, the new second block is configured to reset the first trust path according to the first block that is found.
具体地,当第一区域单元的管理系统接收到第二类数据恢复请求时,将第二类数据恢复请求发送至第一区域单元的数据库访问层,第一区域单元的数据库访问层根据指定时刻,从第一区域单元的管理数据链中查询时间戳与指定时刻匹配的第一区块,第一区域单元的数据库访问层根据查找到的第一区块,向第一区域单元的变更审计数据链发送信任路径重置请求,第一区域单元的变更审计数据链接收信任路径重置请求,并在自身具有最多节点的路径的末端新增一个第二区块,当前新增的第二区块用于指示当前管理数据链的信任路径的末端区块为查找的第一区块,第一区域单元的变更审计数据链向第一区域单元的数据库访问层发送信任路径重置确认消息,第一区域单元的数据库访问层接收信任链重置确认消息,并向第一区域单元的管理系统发送数据恢复确认消息。Specifically, when the management system of the first area unit receives the second type of data recovery request, the second type of data recovery request is sent to the database access layer of the first area unit, and the database access layer of the first area unit is according to the specified time And querying, from the management data link of the first area unit, the first block whose timestamp matches the specified time, and the database access layer of the first area unit changes the audit data to the first area unit according to the first block that is found. The chain sends a trust path reset request, the change audit data link of the first area unit receives the trust path reset request, and adds a second block at the end of the path with the most nodes, and the currently added second block The end block for indicating the trust path of the current management data link is the first block of the search, and the change audit data chain of the first area unit sends a trust path reset confirmation message to the database access layer of the first area unit, first The database access layer of the regional unit receives the trust chain reset confirmation message and sends data recovery to the management system of the first regional unit Confirmation message.
其中,第一区域单元的数据库访问层根据指定时刻,从第一区域单元的管理数据链中查询时间戳与指定时刻匹配的第一区块的实现方式为:第一区域单元的数据库访问层向第一区域单元的管理数据链发送区块查询请求,该区块查询请求携带该指定时刻,当第一区域单元的管理数据链接收到该区块查询请求时,根据该指定时刻从自身的链条中查找时间戳与该指定时刻匹配的第一区块,并将查找到的第一区块的标识发送至第一区域单元的数据库访问层。The database access layer of the first area unit queries the first block that matches the timestamp and the specified time from the management data link of the first area unit according to the specified time: the database access layer direction of the first area unit The management data link of the first area unit sends a block query request, and the block query request carries the specified time. When the management data link of the first area unit receives the block query request, according to the specified time from the chain of the own And searching for the first block whose timestamp matches the specified time, and sending the identifier of the found first block to the database access layer of the first area unit.
此时,第一区域单元的数据库访问层向第一区域单元的变更审计数据链发送的信任路径重置请求中携带该查找到的第一区块的标识,以使第一区域单元的变更审计数据链将该第一区块的标识存储至新增的第二区块中。At this time, the database access layer of the first area unit carries the identifier of the first block that is found to the trust path reset request sent by the change audit data link of the first area unit, so that the change of the first area unit is audited. The data chain stores the identity of the first block into the newly added second block.
进一步地,由于在第二类型数据恢复中,全部区域单元的当前有效数据都会被配置成错误数据,因此,第一区域单元的变更审计数据链在自身的具有最多节点的路径的末端新增一个第二区块之后,第一区域单元的变更审计数据链在第二P2P网络中广播当前新增的第二区块,以使除第一区域单元之外的每个区域单元将当前新增的第二区块添加至自身的变更审计数据链的具有最多节点的路径的末端,以实现对全部区域单元的有效数据进行重新配置。Further, since the current valid data of all the regional units is configured as erroneous data in the second type of data recovery, the change audit data link of the first regional unit adds one at the end of its own path with the most nodes. After the second block, the change audit data link of the first area unit broadcasts the currently added second block in the second P2P network, so that each area unit except the first area unit will be newly added. The second block is added to the end of the path with the most nodes of its own change audit data chain to enable reconfiguration of valid data for all area units.
其中,当每个区域单元的管理数据库节点还包括数据库缓存时,在进行第二类型数据恢复时,表明当前数据库缓存中存储的数据也为错误的数据,因此,第一区域单元的数据库访问层向第一区域单元的管理系统发送数据恢复确认消息之前,还可以确定查找到的第一区块中的管理数据,并将确定的管理数据写入第一区域单元的数据库缓存,以使第一区域单元的数据库缓存中的管理数据得到更新。Wherein, when the management database node of each area unit further includes a database cache, when the second type of data recovery is performed, it indicates that the data stored in the current database cache is also erroneous data, and therefore, the database access layer of the first area unit Before sending the data recovery confirmation message to the management system of the first area unit, the management data in the first block found may also be determined, and the determined management data is written into the database cache of the first area unit, so that the first The management data in the database cache of the zone unit is updated.
在本申请实施例中,分布式云数据中心包括多个区域单元,每个区域单元的管理数据库节点包括管理数据链和变更审计数据链。当第一区域单元获取到更新后的管理数据时,根据该更新后的管理数据生成第一区块,并根据变更审计数据链确定管理数据链的第一信任路径,然后根据该第一信任路径将该第一区块存储至管理数据链中。之后,第一区域单元的管理数据库节点在第一P2P网络中广播生成的第一区块,以使除第一区域单元之外的每个区域单元的管理数据库节点将该生成的第一区块加入自身的管理数据链的信任路径的末端。也即,在本申请实施例中,每个区域单元中都存储 有管理数据,以便于后续每个区域单元可以从自身的管理数据链中获取管理数据,提高了区域单元导致获取管理数据的效率。另外,若某个区域单元出现问题,由于每个区域单元的管理数据链中都存储有管理数据,因此不会出现其他区域单元无法获取到管理数据的情况。In the embodiment of the present application, the distributed cloud data center includes a plurality of regional units, and the management database nodes of each regional unit include a management data link and a change audit data link. When the first area unit obtains the updated management data, generates a first block according to the updated management data, and determines a first trust path of the management data chain according to the change audit data chain, and then according to the first trust path. The first block is stored in the management data chain. Thereafter, the management database node of the first area unit broadcasts the generated first block in the first P2P network, so that the management database node of each area unit other than the first area unit will generate the first block Join the end of the trust path of your own management data link. That is, in the embodiment of the present application, management data is stored in each area unit, so that each of the area units can obtain management data from its own management data chain, thereby improving the efficiency of obtaining the management data by the area unit. . In addition, if there is a problem with a certain area unit, since management data is stored in the management data link of each area unit, there is no possibility that other area units cannot obtain management data.
参见图8,本申请实施例提供了一种管理数据的存储设备800,应用于分布式云数据中心中的第一管理数据库节点,该第一管理数据库节点为多个区域单元中的第一区域单元所具有的管理数据库节点,该分布式云数据中心包括多个区域单元,如图8所示,该设备包括第一存储模块801和第二存储模块802:Referring to FIG. 8 , an embodiment of the present application provides a storage device 800 for managing data, which is applied to a first management database node in a distributed cloud data center, where the first management database node is a first region of multiple regional units. The management database node of the unit, the distributed cloud data center includes a plurality of area units. As shown in FIG. 8, the device includes a first storage module 801 and a second storage module 802:
第一存储模块801,用于执行图4实施例中的步骤401或图5实施例中的步骤501;The first storage module 801 is configured to perform step 401 in the embodiment of FIG. 4 or step 501 in the embodiment of FIG. 5;
第一存储模块802,用于执行图4实施例中的步骤402或图5实施例中的步骤502;The first storage module 802 is configured to perform step 402 in the embodiment of FIG. 4 or step 502 in the embodiment of FIG. 5;
可选地,每个区域单元的管理数据链包括多个第一区块,该多个第一区块中的每个第一区块包括一个管理数据,每个区域单元的管理数据链为第一树形结构,该多个第一区块分别为该第一树形结构中的节点;Optionally, the management data chain of each area unit includes a plurality of first blocks, each of the plurality of first blocks includes one management data, and the management data chain of each area unit is a tree structure, the plurality of first blocks are respectively nodes in the first tree structure;
第一存储模块801包括:The first storage module 801 includes:
生成单元,用于生成新的第一区块,该新的第一区块包括该更新后的管理数据;a generating unit, configured to generate a new first block, where the new first block includes the updated management data;
添加单元,用于将该新的第一区块添加为第一信任路径中的最后一个第一区块;Adding a unit, configured to add the new first block as the last first block in the first trust path;
该第二存储模块包括:The second storage module includes:
指示单元,用于指示该第二管理数据库节点将该新的第一区块添加为第二信任路径中的最后一个第一区块。And an indicating unit, configured to instruct the second management database node to add the new first block as the last first block in the second trust path.
可选地,该第一信任路径在该第一区域单元的管理数据链中拥有最多节点,该第二信任路径在该第二管理数据库节点所在的该第二区域单元的管理数据链中拥有最多节点。Optionally, the first trust path has the most node in the management data link of the first area unit, and the second trust path has the most management data chain of the second area unit where the second management database node is located. node.
可选地,每个区域单元还包括变更审计数据链,每个区域单元的变更审计数据链包括多个第二区块,该多个第二区块之间相互连接形成具有至少一个分支的第二树型结构,该多个第二区块分别为该第二树型结构中的节点;Optionally, each area unit further includes a change audit data chain, and the change audit data chain of each area unit includes a plurality of second blocks, and the plurality of second blocks are interconnected to form a first branch having at least one branch a two-tree structure, wherein the plurality of second blocks are nodes in the second tree structure;
该第一存储模块801还包括:The first storage module 801 further includes:
确定单元,用于根据该第一区域单元的变更审计数据链中的第三信任路径确定该第一信任路径,该第三信任路径在该第一区域单元的变更审计数据链中拥有最多节点。And a determining unit, configured to determine the first trust path according to the third trust path in the change audit data chain of the first area unit, where the third trust path has the most nodes in the change audit data chain of the first area unit.
可选地,该设备还包括:Optionally, the device further includes:
第一接收模块,用于接收管理数据读取请求,根据该第三信任路径确定该第一信任路径,并在该第一信任路径中的最后一个第一区块读取该更新后的管理数据。a first receiving module, configured to receive a management data read request, determine the first trust path according to the third trust path, and read the updated management data in a last block of the first trust path .
可选地,每个第一区块具有时间戳,每个第一区块的时间戳用于指示其上管理数据对应的时刻;Optionally, each first block has a timestamp, and a timestamp of each first block is used to indicate a time corresponding to the management data thereon;
该设备800还包括:The device 800 also includes:
第二接收模块,用于接收数据恢复请求,获取该数据恢复请求中携带的指定时刻,其中,该数据恢复请求用于指示将该指定时刻的管理数据确定为有效的管理数据;a second receiving module, configured to receive a data recovery request, to obtain a specified time carried in the data recovery request, where the data recovery request is used to indicate that the management data at the specified time is determined as valid management data;
查询模块,用于根据该指定时刻,在该第一区域单元的管理数据链中查询时间戳与该指定时刻匹配的第一区块;a querying module, configured to query, in the management data link of the first area unit, a first block whose timestamp matches the specified time according to the specified time;
生成模块,用于根据查找到的第一区块,生成新的第二区块,将该新的第二区块添加为该第三信任路径中的最后一个第二区块,该新的第二区块用于根据该查找到的第一区块重置该第一信任路径。a generating module, configured to generate a new second block according to the first block found, and add the new second block as the last second block in the third trust path, the new The second block is configured to reset the first trust path according to the first block that is found.
在本申请实施例中,分布式云数据中心包括多个区域单元,当第一区域单元中的第一管理数据库节点获取到更新后的管理数据时,在第一区域单元的管理数据链存储该更新后的管理数据,并指示第二管理数据库节点在第二区域单元的管理数据链中存储该更新后的管理数据。由此可知,在本申请中,当第一管理数据库节点存储更新后的管理数据时,其他区域单元的管理数据库节点也将存储更新后的管理数据,以实现每个区域单元的管理数据库节点中都存储有管理数据,且存储的管理数据一致。也即,在本申请中,每个区域单元中都存储有管理数据,以便于后续每个区域单元可以从自身的管理数据链中获取管理数据,提高了区域单元导致获取管理数据的效率。另外,若某个区域单元出现问题,由于每个区域单元的管理数据链中都存储有管理数据,因此不会出现其他区域单元无法获取到管理数据的情况。In the embodiment of the present application, the distributed cloud data center includes a plurality of area units. When the first management database node in the first area unit obtains the updated management data, the management data link in the first area unit stores the The updated management data, and instructing the second management database node to store the updated management data in the management data link of the second area unit. Therefore, in the present application, when the first management database node stores the updated management data, the management database node of the other regional unit will also store the updated management data to implement the management database node of each regional unit. Management data is stored and the stored management data is consistent. That is, in the present application, management data is stored in each area unit, so that each of the area units can acquire management data from its own management data chain, which improves the efficiency of the area unit to obtain management data. In addition, if there is a problem with a certain area unit, since management data is stored in the management data link of each area unit, there is no possibility that other area units cannot obtain management data.
需要说明的是:上述实施例提供的管理数据的存储设备在进行管理数据的存储时,仅以上述各功能模块的划分进行举例说明,实际应用中,可以根据需要而将上述功能分配由不同的功能模块完成,即将设备的内部结构划分成不同的功能模块,以完成以上描述的全部或者部分功能。另外,上述实施例提供的管理数据的存储设备与管理数据的存储方法实施例属于同一构思,其具体实现过程详见方法实施例,这里不再赘述。It should be noted that, when storing the management data, the storage device for managing data provided by the foregoing embodiment is only illustrated by the division of the foregoing functional modules. In actual applications, the functions may be assigned differently according to needs. The function module is completed, that is, the internal structure of the device is divided into different functional modules to complete all or part of the functions described above. In addition, the storage device for managing data and the method for storing management data provided by the foregoing embodiments are in the same concept, and the specific implementation process is described in detail in the method embodiment, and details are not described herein again.
在上述实施例中,可以全部或部分地通过软件、硬件、固件或者其任意结合来实现。当使用软件实现时,可以全部或部分地以计算机程序产品的形式实现。所述计算机程序产品包括一个或多个计算机指令。在计算机上加载和执行所述计算机指令时,全部或部分地产生按照本申请实施例所述的流程或功能。所述计算机可以是通用计算机、专用计算机、计算机网络、或者其他可编程设备。所述计算机指令可以存储在计算机可读存储介质中,或者从一个计算机可读存储介质向另一个计算机可读存储介质传输,例如,所述计算机指令可以从一个网站站点、计算机、服务器或数据中心通过有线(例如:同轴电缆、光纤、数据用户线(Digital Subscriber Line,DSL))或无线(例如:红外、无线、微波等)方式向另一个网站站点、计算机、服务器或数据中心进行传输。所述计算机可读存储介质可以是计算机能够存取的任何可用介质或者是包含一个或多个可用介质集成的服务器、数据中心等数据存储设备。所述可用介质可以是磁性介质(例如:软盘、硬盘、磁带)、光介质(例如:数字通用光盘(Digital Versatile Disc,DVD))、或者半导体介质(例如:固态硬盘(Solid State Disk,SSD))等。In the above embodiments, it may be implemented in whole or in part by software, hardware, firmware, or any combination thereof. When implemented in software, it may be implemented in whole or in part in the form of a computer program product. The computer program product includes one or more computer instructions. When the computer instructions are loaded and executed on a computer, the processes or functions described in accordance with embodiments of the present application are generated in whole or in part. The computer can be a general purpose computer, a special purpose computer, a computer network, or other programmable device. The computer instructions can be stored in a computer readable storage medium or transferred from one computer readable storage medium to another computer readable storage medium, for example, the computer instructions can be from a website site, computer, server or data center Transfer to another website site, computer, server, or data center by wire (eg, coaxial cable, fiber optic, Digital Subscriber Line (DSL)) or wireless (eg, infrared, wireless, microwave, etc.). The computer readable storage medium can be any available media that can be accessed by a computer or a data storage device such as a server, data center, or the like that includes one or more available media. The usable medium may be a magnetic medium (for example, a floppy disk, a hard disk, a magnetic tape), an optical medium (for example, a digital versatile disc (DVD)), or a semiconductor medium (for example, a solid state disk (SSD)). )Wait.
本领域普通技术人员可以理解实现上述实施例的全部或部分步骤可以通过硬件来完成,也可以通过程序来指令相关的硬件完成,所述的程序可以存储于一种计算机可读存储介质中,上述提到的存储介质可以是只读存储器,磁盘或光盘等。A person skilled in the art may understand that all or part of the steps of implementing the above embodiments may be completed by hardware, or may be instructed by a program to execute related hardware, and the program may be stored in a computer readable storage medium. The storage medium mentioned may be a read only memory, a magnetic disk or an optical disk or the like.
以上所述为本申请提供的实施例,并不用以限制本申请,凡在本申请的精神和原则之内,所作的任何修改、等同替换、改进等,均应包含在本申请的保护范围之内。The above description of the embodiments of the present application is not intended to limit the application, and any modifications, equivalents, improvements, etc. made within the spirit and principles of the present application are included in the scope of the present application. Inside.

Claims (14)

  1. 一种管理数据的存储方法,其特征在于,应用于分布式云数据中心,所述分布式云数据中心包括多个区域单元,所述方法包括:A method for storing management data, characterized in that it is applied to a distributed cloud data center, the distributed cloud data center includes a plurality of area units, and the method includes:
    第一管理数据库节点获取更新后的管理数据,并在第一区域单元的管理数据链存储所述更新后的管理数据,所述第一管理数据库节点为所述多个区域单元中的第一区域单元所具有的管理数据库节点;The first management database node acquires the updated management data, and stores the updated management data in a management data link of the first area unit, where the first management database node is the first area of the plurality of area units The management database node that the unit has;
    所述第一管理数据库节点指示第二管理数据库节点在第二区域单元的管理数据链中存储所述更新后的管理数据,所述第二区域单元为所述多个区域单元中除了所述第一区域单元之外的任一个区域单元,所述第二区域单元具有所述第二管理数据库节点,所述多个区域单元中不同区域单元的管理数据链用于相互容灾备份。The first management database node instructs the second management database node to store the updated management data in a management data link of the second area unit, wherein the second area unit is the plurality of area units except the Any one of the area units except the area unit, the second area unit having the second management database node, and the management data chain of the different area units of the plurality of area units is used for mutual disaster recovery backup.
  2. 根据权利要求1所述的方法,其特征在于,每个区域单元的管理数据链包括多个第一区块,所述多个第一区块中的每个第一区块包括一个管理数据,每个区域单元的管理数据链为第一树形结构,所述多个第一区块分别为所述第一树形结构中的节点;The method according to claim 1, wherein the management data chain of each area unit comprises a plurality of first blocks, and each of the plurality of first blocks includes a management data. The management data chain of each area unit is a first tree structure, and the plurality of first blocks are respectively nodes in the first tree structure;
    所述第一管理数据库节点在第一区域单元的管理数据链存储所述更新后的管理数据,包括:The first management database node stores the updated management data in a management data link of the first area unit, including:
    所述第一管理数据库节点生成新的第一区块,所述新的第一区块包括所述更新后的管理数据;The first management database node generates a new first block, and the new first block includes the updated management data;
    所述第一管理数据库节点将所述新的第一区块添加为第一信任路径中的最后一个第一区块;The first management database node adds the new first block as the last first block in the first trust path;
    所述第一管理数据库节点指示第二管理数据库节点在第二区域单元的管理数据链中存储所述更新后的管理数据,包括:The first management database node instructs the second management database node to store the updated management data in the management data link of the second area unit, including:
    所述第一管理数据库节点指示所述第二管理数据库节点将所述新的第一区块添加为第二信任路径中的最后一个第一区块。The first management database node instructs the second management database node to add the new first block as the last first block in the second trust path.
  3. 根据权利要求2所述的方法,其特征在于,所述第一信任路径在所述第一区域单元的管理数据链中拥有最多节点,所述第二信任路径在所述第二管理数据库节点所在的所述第二区域单元的管理数据链中拥有最多节点。The method according to claim 2, wherein said first trust path has a maximum number of nodes in a management data chain of said first area unit, and said second trust path is located at said second management database node The second area unit has the most nodes in the management data chain.
  4. 根据权利要求2所述的方法,其特征在于,每个区域单元还包括变更审计数据链,每个区域单元的变更审计数据链包括多个第二区块,所述多个第二区块之间相互连接形成具有至少一个分支的第二树型结构,所述多个第二区块分别为所述第二树型结构中的节点;The method according to claim 2, wherein each of the area units further comprises a change audit data chain, and the change audit data chain of each area unit comprises a plurality of second blocks, and the plurality of second blocks Interconnected to form a second tree structure having at least one branch, the plurality of second blocks being nodes in the second tree structure, respectively;
    所述第一管理数据库节点将所述新的第一区块添加为第一信任路径中的最后一个第一区块之前,还包括:Before the first management database node adds the new first block as the last first block in the first trust path, the method further includes:
    所述第一管理数据库节点根据所述第一区域单元的变更审计数据链中的第三信任路径确定所述第一信任路径,所述第三信任路径在所述第一区域单元的变更审计数据链中拥有最多节点。Determining, by the first management database node, the first trust path according to a third trust path in the change audit data chain of the first area unit, where the third trust path changes audit data in the first area unit There are the most nodes in the chain.
  5. 根据权利要求4所述的方法,其特征在于,所述方法还包括:The method of claim 4, wherein the method further comprises:
    所述第一管理数据库节点接收管理数据读取请求,根据所述第三信任路径确定所述第一信任路径,并在所述第一信任路径中的最后一个第一区块读取所述更新后的管理数据。Receiving, by the first management database node, a management data read request, determining the first trust path according to the third trust path, and reading the update in a last first block in the first trust path Post management data.
  6. 根据权利要求4所述的方法,其特征在于,每个第一区块具有时间戳,每个第一区块的时间戳用于指示其上管理数据对应的时刻;The method according to claim 4, wherein each of the first blocks has a time stamp, and a timestamp of each of the first blocks is used to indicate a time at which the management data corresponds thereto;
    所述方法还包括:The method further includes:
    所述第一管理数据库节点接收数据恢复请求,获取所述数据恢复请求中携带的指定时刻,其中,所述数据恢复请求用于指示将所述指定时刻的管理数据确定为有效的管理数据;Receiving, by the first management database node, a data recovery request, where the specified time is carried in the data recovery request, where the data recovery request is used to indicate that the management data of the specified time is determined as valid management data;
    所述第一管理数据库节点根据所述指定时刻,在所述第一区域单元的管理数据链中查询时间戳与所述指定时刻匹配的第一区块;Determining, by the first management database node, the first block whose timestamp matches the specified time in the management data link of the first area unit according to the specified time;
    所述第一管理数据库节点根据查找到的第一区块,生成新的第二区块,将所述新的第二区块添加为所述第三信任路径中的最后一个第二区块,所述新的第二区块用于根据所述查找到的第一区块重置所述第一信任路径。The first management database node generates a new second block according to the first block that is found, and adds the new second block as the last second block in the third trust path. The new second block is configured to reset the first trust path according to the first block that is found.
  7. 一种管理数据的存储设备,其特征在于,应用于分布式云数据中心中的第一管理数据库节点,所述分布式云数据中心包括多个区域单元,所述第一管理数据库节点为多个区域单元中的第一区域单元所具有的管理数据库节点,所述设备包括:A storage device for managing data, characterized in that it is applied to a first management database node in a distributed cloud data center, the distributed cloud data center includes a plurality of regional units, and the first management database node is multiple a management database node that the first regional unit in the regional unit has, the device includes:
    第一存储模块,用于获取更新后的管理数据,并在第一区域单元的管理数据链存储所述更新后的管理数据,所述第一管理数据库节点为所述多个区域单元中的第一区域单元所具有的管理数据库节点;a first storage module, configured to acquire updated management data, and store the updated management data in a management data link of the first area unit, where the first management database node is the first one of the plurality of regional units a management database node that a regional unit has;
    第二存储模块,用于指示第二管理数据库节点在第二区域单元的管理数据链中存储所述更新后的管理数据,所述第二区域单元为所述多个区域单元中除了所述第一区域单元之外的任一个区域单元,所述第二区域单元具有所述第二管理数据库节点,所述多个区域单元中不同区域单元的管理数据链用于相互容灾备份。a second storage module, configured to instruct the second management database node to store the updated management data in a management data link of the second area unit, where the second area unit is the Any one of the area units except the area unit, the second area unit having the second management database node, and the management data chain of the different area units of the plurality of area units is used for mutual disaster recovery backup.
  8. 根据权利要求7中所述的设备,其特征在于,每个区域单元的管理数据链包括多个第一区块,所述多个第一区块中的每个第一区块包括一个管理数据,每个区域单元的管理数据链为第一树形结构,所述多个第一区块分别为所述第一树形结构中的节点;The apparatus according to claim 7, wherein the management data chain of each of the area units includes a plurality of first blocks, and each of the plurality of first blocks includes a management data The management data chain of each area unit is a first tree structure, and the plurality of first blocks are respectively nodes in the first tree structure;
    所述第一存储模块包括:The first storage module includes:
    生成单元,用于生成新的第一区块,所述新的第一区块包括所述更新后的管理数据;a generating unit, configured to generate a new first block, where the new first block includes the updated management data;
    添加单元,用于将所述新的第一区块添加为第一信任路径中的最后一个第一区块;Adding a unit, configured to add the new first block as the last first block in the first trust path;
    所述第二存储模块包括:The second storage module includes:
    指示单元,用于指示所述第二管理数据库节点将所述新的第一区块添加为第二信任路径中的最后一个第一区块。And an indicating unit, configured to instruct the second management database node to add the new first block as the last first block in the second trust path.
  9. 根据权利要求8中所述的设备,其特征在于,所述第一信任路径在所述第一区域单元的管理数据链中拥有最多节点,所述第二信任路径在所述第二管理数 据库节点所在的所述第二区域单元的管理数据链中拥有最多节点。The apparatus according to claim 8, wherein said first trust path has a maximum number of nodes in a management data chain of said first area unit, and said second trust path is in said second management database node The second area unit in which the second area unit has the most nodes in the management data chain.
  10. 根据权利要求8所述的设备,其特征在于,每个区域单元还包括变更审计数据链,每个区域单元的变更审计数据链包括多个第二区块,所述多个第二区块之间相互连接形成具有至少一个分支的第二树型结构,所述多个第二区块分别为所述第二树型结构中的节点;The device according to claim 8, wherein each of the area units further comprises a change audit data chain, and the change audit data chain of each area unit comprises a plurality of second blocks, and the plurality of second blocks Interconnected to form a second tree structure having at least one branch, the plurality of second blocks being nodes in the second tree structure, respectively;
    所述第一存储模块还包括:The first storage module further includes:
    确定单元,用于根据所述第一区域单元的变更审计数据链中的第三信任路径确定所述第一信任路径,所述第三信任路径在所述第一区域单元的变更审计数据链中拥有最多节点。a determining unit, configured to determine the first trust path according to a third trust path in the change audit data chain of the first area unit, where the third trust path is in a change audit data chain of the first area unit Has the most nodes.
  11. 根据权利要求10所述的设备,其特征在于,所述设备还包括:The device according to claim 10, wherein the device further comprises:
    第一接收模块,用于接收管理数据读取请求,根据所述第三信任路径确定所述第一信任路径,并在所述第一信任路径中的最后一个第一区块读取所述更新后的管理数据。a first receiving module, configured to receive a management data read request, determine the first trust path according to the third trust path, and read the update in a last first block in the first trust path Post management data.
  12. 根据权利要求10中所述的设备,其特征在于,每个第一区块具有时间戳,每个第一区块的时间戳用于指示其上管理数据对应的时刻;The device according to claim 10, wherein each of the first blocks has a time stamp, and a timestamp of each of the first blocks is used to indicate a time corresponding to the management data thereon;
    所述设备还包括:The device further includes:
    第二接收模块,用于接收数据恢复请求,获取所述数据恢复请求中携带的指定时刻,其中,所述数据恢复请求用于指示将所述指定时刻的管理数据确定为有效的管理数据;And a second receiving module, configured to receive a data recovery request, where the data recovery request is used to indicate that the management data of the specified time is determined as valid management data;
    查询模块,用于根据所述指定时刻,在所述第一区域单元的管理数据链中查询时间戳与所述指定时刻匹配的第一区块;a querying module, configured to query, in the management data link of the first area unit, a first block whose timestamp matches the specified time according to the specified time;
    生成模块,用于根据查找到的第一区块,生成新的第二区块,将所述新的第二区块添加为所述第三信任路径中的最后一个第二区块,所述新的第二区块用于根据所述查找到的第一区块重置所述第一信任路径。Generating a module, configured to generate a new second block according to the first block found, and add the new second block as a last second block in the third trust path, The new second block is configured to reset the first trust path according to the first block that is found.
  13. 一种管理数据的存储设备,其特征在于,应用于分布式云数据中心中的第一管理数据库节点,所述分布式云数据中心包括多个区域单元,所述第一管理数据库节点为所述多个区域单元中的第一区域单元所具有的管理数据库节点,所述设备包括存储器和处理器;A storage device for managing data, characterized by being applied to a first management database node in a distributed cloud data center, the distributed cloud data center comprising a plurality of regional units, wherein the first management database node is a management database node owned by a first one of the plurality of regional units, the device comprising a memory and a processor;
    所述处理器执行所述存储器中的计算机指令,用于实现权利要求1-6中任一项所述的方法。The processor executes computer instructions in the memory for implementing the method of any of claims 1-6.
  14. 一种计算机可读存储介质,所述计算机可读存储介质中存储有指令,当其在计算机上运行时,使得计算机执行权利要求1-6任一项所述的方法。A computer readable storage medium having stored therein instructions that, when executed on a computer, cause the computer to perform the method of any of claims 1-6.
PCT/CN2019/078825 2018-03-30 2019-03-20 Management data storage method and device, and storage medium WO2019184775A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201810292279.3A CN108616574B (en) 2018-03-30 2018-03-30 Management data storage method, device and storage medium
CN201810292279.3 2018-03-30

Publications (1)

Publication Number Publication Date
WO2019184775A1 true WO2019184775A1 (en) 2019-10-03

Family

ID=63659550

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2019/078825 WO2019184775A1 (en) 2018-03-30 2019-03-20 Management data storage method and device, and storage medium

Country Status (2)

Country Link
CN (1) CN108616574B (en)
WO (1) WO2019184775A1 (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111061735A (en) * 2019-12-13 2020-04-24 上海优扬新媒信息技术有限公司 Capacity expansion method and device based on single-chain block chain
CN112256667A (en) * 2020-09-16 2021-01-22 珠海市新德汇信息技术有限公司 Multi-biological characteristic normalization method

Families Citing this family (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108616574B (en) * 2018-03-30 2020-06-16 华为技术有限公司 Management data storage method, device and storage medium
CN109634679B (en) * 2018-10-16 2023-04-11 平安科技(深圳)有限公司 Block chain configuration updating method, device, equipment and storage medium
CN109600433B (en) * 2018-12-06 2022-03-29 北京磁云数字科技有限公司 Method and device for summarizing data in system
CN110287170B (en) * 2019-06-28 2021-05-11 杭州复杂美科技有限公司 Database upgrading method, state data calling method, device and storage medium
CN112099990A (en) * 2020-08-31 2020-12-18 新华三信息技术有限公司 Disaster recovery backup method, device, equipment and machine readable storage medium

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2017109140A1 (en) * 2015-12-22 2017-06-29 Bigchaindb Gmbh Decentralized, tamper-resistant, asset-oriented database system and method of recording a transaction
CN107657438A (en) * 2017-09-18 2018-02-02 联动优势科技有限公司 A kind of block chain generation method, data verification method, node and system
CN107846282A (en) * 2017-11-03 2018-03-27 法信公证云(厦门)科技有限公司 A kind of electronic data distribution keeping method and system based on block chain technology
CN108616574A (en) * 2018-03-30 2018-10-02 华为技术有限公司 Manage storage method, equipment and the storage medium of data

Family Cites Families (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9967334B2 (en) * 2015-03-02 2018-05-08 Dell Products Lp Computing device configuration and management using a secure decentralized transaction ledger
US9967096B2 (en) * 2016-05-23 2018-05-08 Accenture Global Solutions Limited Rewritable blockchain
CN107104816A (en) * 2017-03-07 2017-08-29 阿里巴巴集团控股有限公司 A kind of information change monitoring method and device
CN107273759B (en) * 2017-05-08 2020-07-14 上海点融信息科技有限责任公司 Method, apparatus, and computer-readable storage medium for protecting blockchain data
CN107276762B (en) * 2017-05-08 2019-08-30 飞天诚信科技股份有限公司 A kind of working method and device of multi-protocols block chain

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2017109140A1 (en) * 2015-12-22 2017-06-29 Bigchaindb Gmbh Decentralized, tamper-resistant, asset-oriented database system and method of recording a transaction
CN107657438A (en) * 2017-09-18 2018-02-02 联动优势科技有限公司 A kind of block chain generation method, data verification method, node and system
CN107846282A (en) * 2017-11-03 2018-03-27 法信公证云(厦门)科技有限公司 A kind of electronic data distribution keeping method and system based on block chain technology
CN108616574A (en) * 2018-03-30 2018-10-02 华为技术有限公司 Manage storage method, equipment and the storage medium of data

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111061735A (en) * 2019-12-13 2020-04-24 上海优扬新媒信息技术有限公司 Capacity expansion method and device based on single-chain block chain
CN111061735B (en) * 2019-12-13 2023-07-25 度小满科技(北京)有限公司 Capacity expansion method and device based on single-chain blockchain
CN112256667A (en) * 2020-09-16 2021-01-22 珠海市新德汇信息技术有限公司 Multi-biological characteristic normalization method
CN112256667B (en) * 2020-09-16 2024-03-22 珠海市新德汇信息技术有限公司 Multi-biological characteristic normalization method

Also Published As

Publication number Publication date
CN108616574A (en) 2018-10-02
CN108616574B (en) 2020-06-16

Similar Documents

Publication Publication Date Title
WO2019184775A1 (en) Management data storage method and device, and storage medium
CN110915166B (en) Block chain
US20220108285A1 (en) Methods and Systems for Object Validated Blockchain Accounts
EP3776208B1 (en) Runtime self-correction for blockchain ledgers
US11615195B2 (en) Systems and methods for providing multi-node resiliency for blockchain peers
WO2021036545A1 (en) Smart contract-based data processing method, and device and storage medium
US11055703B2 (en) Smart contract lifecycle management
CN111213340B (en) Selecting attestation delegation for cryptographic functions and making it secure
US10922303B1 (en) Early detection of corrupt data partition exports
US10819701B2 (en) Autonomous secrets management for a managed service identity
CN112840617B (en) Method and computing node for managing blockchain resources, computer readable medium
US10691790B2 (en) Autonomous secrets management for a temporary shared access signature service
WO2022121538A1 (en) Data synchronization method and system based on blockchain, and related device
US11689616B2 (en) Optimization of delivery of blocks
WO2018176265A1 (en) Access method for distributed storage system, related device and related system
JP6617253B1 (en) Document management system
US20200084041A1 (en) Automated Blockchain Protocol Update
JP2024505692A (en) Data processing methods, devices and computer equipment based on blockchain networks
CN112101942A (en) Transaction request processing method, system, device and equipment based on block chain
US20240015143A1 (en) Cross-regional replication of keys
JPWO2008056496A1 (en) Information management method and information processing apparatus
CN112445783A (en) Method, device and server for updating database
US20220382637A1 (en) Snapshotting hardware security modules and disk metadata stores
US11601262B2 (en) Distributed key management system
US20220035769A1 (en) Peer-to-peer global namespace for storage system metadata federations

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 19777959

Country of ref document: EP

Kind code of ref document: A1

122 Ep: pct application non-entry in european phase

Ref document number: 19777959

Country of ref document: EP

Kind code of ref document: A1