INFSO-RI-508833 Enabling Grids for E-sciencE Experiences with LFC and comparison with RNS Erwin Laure Jean-Philippe.

Slides:



Advertisements
Similar presentations
Data Management Expert Panel - WP2. WP2 Overview.
Advertisements

Data Management Expert Panel. RLS Globus-EDG Replica Location Service u Joint Design in the form of the Giggle architecture u Reference Implementation.
DPM Name Server (DPNS) Namespace Authorization Location of physical files DPM Server Requests queuing and processing Space Management SRM Servers v1.1,
E-science grid facility for Europe and Latin America A Data Access Policy based on VOMS attributes in the Secure Storage Service Diego Scardaci.
MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 7 Configuring File Services in Windows Server 2008.
The LCG File Catalog (LFC) Jean-Philippe Baud – Sophie Lemaitre IT-GD, CERN May 2005.
E-science grid facility for Europe and Latin America Updates on Storage and Cataloguing Annamaria Muoio - INFN Tutorial for trainers 01/07/2008.
EGEE-II INFSO-RI Enabling Grids for E-sciencE gLite Data Management System Yaodong Cheng CC-IHEP, Chinese Academy.
DPM CCRC - 1 Research and developments DPM status and plans Jean-Philippe Baud.
INFSO-RI Enabling Grids for E-sciencE gLite Data Management Services - Overview Mike Mineter National e-Science Centre, Edinburgh.
LFC tutorial Jean-Philippe Baud, IT-GT, CERN July 2010.
EGEE-II INFSO-RI Enabling Grids for E-sciencE Data Grid Services/SRB/SRM & Practical Hai-Ning Wu Academia Sinica Grid Computing.
FP6−2004−Infrastructures−6-SSA E-infrastructure shared between Europe and Latin America Data Management Hands-on Claudio Cherubino.
The LCG File Catalog (LFC) Jean-Philippe Baud – Sophie Lemaitre IT-GD, CERN May 2005.
INFSO-RI Enabling Grids for E-sciencE Distributed Metadata with the AMGA Metadata Catalog Nuno Santos, Birger Koblitz 20 June 2006.
INFSO-RI Enabling Grids for E-sciencE AMGA Metadata Server - Metadata Services in gLite (+ ARDA DB Deployment Plans with Experiments)
Enabling Grids for E-sciencE EGEE-III INFSO-RI I. AMGA Overview What is AMGA Metadata Catalogue of EGEE’s gLite 3.1 Middleware Main Feature of.
INFSO-RI Enabling Grids for E-sciencE DPM Administration Jean-Philippe Baud (Sophie Lemaitre)
EGEE-III INFSO-RI Enabling Grids for E-sciencE Nov. 18, EGEE and gLite are registered trademarks gLite Middleware Usage Dusan.
EGEE-II INFSO-RI Enabling Grids for E-sciencE EGEE middleware: gLite Data Management EGEE Tutorial 23rd APAN Meeting, Manila Jan.
Enabling Grids for E-sciencE Introduction Data Management Jan Just Keijser Nikhef Grid Tutorial, November 2008.
EGEE-II INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks AMGA PHP API Claudio Cherubino INFN - Catania.
Page 1 Active Directory and DNS Lecture 2 Hassan Shuja 09/14/2004.
INFSO-RI Enabling Grids for E-sciencE OGSA DAI Data Access and Integration Marek Ciglan Institute of Informatics, Slovac Academy.
Replica Management Services in the European DataGrid Project Work Package 2 European DataGrid.
EGEE-II INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks VOMS Vincenzo Ciaschini EGEE/OSG Workshop.
INFSO-RI Enabling Grids for E-sciencE gLite Data Management and Interoperability Peter Kunszt (JRA1 DM Cluster) 2 nd EGEE Conference,
E-science grid facility for Europe and Latin America Data Management Services E2GRIS1 Rafael Silva – UFCG (Brazil) Universidade Federal.
© 2008 Open Grid Forum File Catalog Development in Japan e-Science Project GFS-WG, OGF24 Singapore Hideo Matsuda Osaka University.
INFSO-RI Enabling Grids for E-sciencE Installing a gLite VOMS server Joachim Flammer Integration Team, CERN EMBRACE Tutorial, Clermont-Ferrand.
Introduction to The Storage Resource.
INFSO-RI Enabling Grids for E-sciencE Αthanasia Asiki Computing Systems Laboratory, National Technical.
Managing Data DIRAC Project. Outline  Data management components  Storage Elements  File Catalogs  DIRAC conventions for user data  Data operation.
SEE-GRID-SCI Storage Element Installation and Configuration Branimir Ackovic Institute of Physics Serbia The SEE-GRID-SCI.
INFSO-RI Enabling Grids for E-sciencE Introduction Data Management Ron Trompert SARA Grid Tutorial, September 2007.
Enabling Grids for E-sciencE EGEE-II INFSO-RI Medical Data Manager 1 Dicom retrieval : overview of the DPM One command line to retrieve a file:
Database authentication in CORAL and COOL Database authentication in CORAL and COOL Giacomo Govi Giacomo Govi CERN IT/PSS CERN IT/PSS On behalf of the.
FP6−2004−Infrastructures−6-SSA E-infrastructure shared between Europe and Latin America gLite Data Management System Giuseppe Andronico.
1 AHM, 2–4 Sept 2003 e-Science Centre GRID Authorization Framework for CCLRC Data Portal Ananta Manandhar.
FP7-INFRA Enabling Grids for E-sciencE EGEE Induction Grid training for users, Institute of Physics Belgrade, Serbia Sep. 19, 2008.
EGEE-II INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks Data management in LCG and EGEE David Smith.
EGEE-II INFSO-RI Enabling Grids for E-sciencE Command Line Grid Programming Spiros Spirou Greek Application Support Team NCSR “Demokritos”
EGEE-II INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks gLite Data Management Components Presenter.
INFSO-RI Enabling Grids for E-sciencE SRMv2.2 in DPM Sophie Lemaitre Jean-Philippe.
INFSO-RI Enabling Grids for E-sciencE VOMS & MyProxy interaction Emidio Giorgio INFN NA4 Generic Applications Meeting 10 January.
EGEE-II INFSO-RI Enabling Grids for E-sciencE Data management in EGEE.
FP6−2004−Infrastructures−6-SSA E-infrastructure shared between Europe and Latin America Data Management Hands-on Juan Eduardo Murrieta.
Design of File System Directory Services Osamu Tatebe Grid Technology Research Center, AIST GFS-WG, GGF10 March 2004, Berlin GGF10 GFS-WG March 2004, Berlin.
EGEE-II INFSO-RI Enabling Grids for E-sciencE Architecture of LHC File Catalog Valeria Ardizzone INFN Catania – EGEE-II NA3/NA4.
The EPIKH Project (Exchange Programme to advance e-Infrastructure Know-How) Algiers, EUMED/Epikh Application Porting Tutorial, 2010/07/04.
INFSO-RI Enabling Grids for E-sciencE FiReMan Catalog installation Emidio Giorgio INFN EGEE tutorial, Rome
Introduction to Storage Element Hsin-Wei Wu Academia Sinica Grid Computing Center, Taiwan.
Security recommendations DPM Jean-Philippe Baud CERN/IT.
The EPIKH Project (Exchange Programme to advance e-Infrastructure Know-How) gLite Data Management Maha Metawei
FP6−2004−Infrastructures−6-SSA E-infrastructure shared between Europe and Latin America LFC Server Installation and Configuration.
Scuola Grid INFN, Trieste, 1-12 Dic Managing Confidential Data in the gLite Middleware – The Secure Storage.
2 nd EGEE/OSG Workshop Data Management in Production Grids 2 nd of series of EGEE/OSG workshops – 1 st on security at HPDC 2006 (Paris) Goal: open discussion.
EGEE-II INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks SE Security Rémi Mollon, Ákos Frohner EGEE'08,
Data Management & Information Systems
Enabling Grids for E-sciencE INFSO-RI Virtual Ids and VOMS integration DPM supports virual Ids and VOMS : –each user/group is internally mapped.
EGEE Data Management Services
Jean-Philippe Baud, IT-GD, CERN November 2007
LCG Storage Management Workshop, CERN, 7th April 2005
The lightweight Grid-enabled Disk Pool Manager (DPM)
Security and Replication of Metadata with AMGA
Java API del Logical File Catalog (LFC)
LFC Status and Futures INFN T1+T2 Cloud Workshop
Jean-Philippe Baud - Sophie Lemaitre IT-GD, CERN May 2005
INFNGRID Workshop – Bari, Italy, October 2004
Data Management system in gLite middleware
Presentation transcript:

INFSO-RI Enabling Grids for E-sciencE Experiences with LFC and comparison with RNS Erwin Laure Jean-Philippe Baud Akos Frohner

Enabling Grids for E-sciencE INFSO-RI OGF GFS-WG: LFC 2 LFC overview Hierarchical namespace POSIX like command line tools POSIX style permissions Virtual users and groups API comparison RNS add RNS list RNS move RNS query permissions in LFC bulk methods in LFC LFC Overview

Enabling Grids for E-sciencE INFSO-RI OGF GFS-WG: LFC 3 The LFC stores mappings between –Users’ file names and file locations on the Grid –Stores Permissions and –Ownership –Simple metadata Provides a hierarchical name space Supports GSI security model –Including VOMS based ACLs  Very fine grained control  Implementation based on virtual IDs –Soon: encrypted channels Simple DLI interface –Data Location Interface –GUID Location –Integration with WMS&RBs LCG “File” Catalog … File replica 2 GUID File replica 1 File replica m LFC file name 1 LFC file name n … “Replicas” are “Copies” All files are “Write Once” /grid /vo /data file

Enabling Grids for E-sciencE INFSO-RI OGF GFS-WG: LFC 4 MySQL and ORACLE back-ends –Ensures scalability and allows small scale deployment –Read only replication of catalogue is in production (using Oracle streams)‏ Multi-threaded C server –Supports multiple instances for load balancing Thread-safe C clients –Python & Perl bindings –No WS interfaces (apart from DLI) –Command line interface Supports sessions to avoid authentication costs –GSI is very expensive! Bulk methods to reduce the number of round trips – Under test by ATLAS --> 20 times faster Widely used in EGEE: –largest LFC instance contains 8 millions entries LFC

Enabling Grids for E-sciencE INFSO-RI OGF GFS-WG: LFC 5 How does it look ? Hierarchical namespace > lfc-ls -l /grid/dteam drwxrwxr-x Jun 09 11:11 tests > lfc-ls -l /grid/dteam/tests drwxrwxr-x Jun 09 11:15 tutorial > lfc-ls -l /grid/dteam/tests/tutorial drwxrwxr-x Jun 09 11:19 directory1 -rw-rw-r Jun 09 11:17 file rw-rw-r Jun 09 11:18 file.6009

Enabling Grids for E-sciencE INFSO-RI OGF GFS-WG: LFC 6 Using LFC From a UI (as a user)‏  export LFC_HOST=mylfc.domain.name  voms-proxy-init –voms myVO  lfc-ls /grid/myVO  lfc-mkdir /grid/myVO/test_dir  lfc-rm –R /grid/myVO/test_dir  lcg-cr --vo myVO –d mySE.domain.name file:/path/to/file

Enabling Grids for E-sciencE INFSO-RI OGF GFS-WG: LFC 7 Permissions Permissions/ownership  lfc-chmod  lfc-chown (only admin can use it)‏ Virtual uid, gid  lfc-ls –l …  lfc-enterusrmap, lfc-modifyusrmap, lfc-listusrmap  lfc-entergrpmap, lfc-modifygrpmap, lfc-listgrpmap POSIX ACLs  lfc-getacl, lfc-setacl Secondary groups via VOMS groups & roles

Enabling Grids for E-sciencE INFSO-RI OGF GFS-WG: LFC 8 DN: /DC=ch/DC=cern/OU=Organic Units/OU=Users/CN=erwin/CN=589293/CN=Erwin Laure LFC daemon LFC DB voms-proxy-init -voms dteam lfc-ls /grid/dteam/generated no need to create pool accounts no need to change the /etc/passwd file faster check on ACL than with string/pattern matching on DN/FQAN Does this DN exists in Cns_userinfo? No -> create it! Does this FQAN exists in Cns_groupinfo? No -> create it! DPNS DB Cns_userinfo 5428 /DC=ch/DC=cer/n../CN=589293/CN=Erwin Laure Cns_groupinfo 105 dteam Virtual users and groups

Enabling Grids for E-sciencE INFSO-RI OGF GFS-WG: LFC 9 LFC overview Hierarchical namespace POSIX like command line tools POSIX style permissions Virtual users and groups API comparison RNS add RNS list RNS move RNS query permissions performance improvements Comparison Overview

Enabling Grids for E-sciencE INFSO-RI OGF GFS-WG: LFC 10 RNS: add (string: entry_name, EndpointReferenceType: entry_reference)‏ LFC: lfc_mkdir (string path, mode_t)‏ lfc_mkdirg (string path, string guid, mode_t)‏ lfc_creatg (string path, string guid, mode_t)‏ lfc_addreplica (string path,...)‏ lfc_symlink (string srcpath, string dstpath)‏... /rns:add/entry_name ~ LFN /rns:add/entry_reference ~ replica or symlink RNS is missing the detailed attributes of the replicas. API: add

Enabling Grids for E-sciencE INFSO-RI OGF GFS-WG: LFC 11 RNS: list(string: entry_name_regexp)‏ LFC: lfc_DIR lfc_opendir...(string path)‏ dirent lfc_readdir... (lfc_DIR)‏ lfc_readdirc (), lfc_readdirg(), lfc_readdirx ()‏ lfc_readdirxc (), lfc_readdirxp (), lfc_readdirxr ()‏ lfc_rewinddir (lfc_DIR)‏ lfc_closedir (lfc_DIR)‏ lfc_filereplica lfc_listreplica (string, string, int, lfc_list)‏ lfc_filereplica lfc_listreplicax (string, string, string, int, lfc_list)‏ lfc_filereplicax lfc_listrepset (string, int, lfc_list)‏ The problematic part is listing directories recursively. API: list

Enabling Grids for E-sciencE INFSO-RI OGF GFS-WG: LFC 12 RNS: move (EndpointReferenceType: parent, string: entry_name)‏ LFC: lfc_rename(string src, string dst)‏ API: move

Enabling Grids for E-sciencE INFSO-RI OGF GFS-WG: LFC 13 RNS: query()‏ LFC: lfc_stat (string path, lfc_filestat)‏ lfc_statg (), lfc_statr (), lfc_statx (), lfc_lstat()‏ lfc_getlinks (string, string, int *, struct lfc_linkinfo[])‏ lfc_getreplica (string, string, string, int *, struct lfc_filereplica[])‏ lfc_getreplicas (int, string[], string, int *, lfc_filereplicas[])‏ lfc_getreplicasl (int, string[], string, int *, lfc_filereplicas[])‏ lfc_getreplicax (string, string, string, int *, lfc_filereplicax[])‏ The attributes of a namespace entry should be defined, allowing specialized queries and lookups. API: query

Enabling Grids for E-sciencE INFSO-RI OGF GFS-WG: LFC 14 RNS: remove (string: entry_name_regexp)‏ LFC: lfc_unlink (string)‏ lfc_undelete (string)‏ lfc_delcomment (string)‏ lfc_delete (string)‏ lfc_delfilesbyguid (int, string[], int, int *, int **)‏ lfc_delfilesbyname (int, string[], int, int *, int **)‏ lfc_delfilesbypattern (string, string, int, int *, struct lfc_filestatus **)‏ lfc_delreplica (string, struct lfc_fileid *, string)‏ lfc_delreplicas (int, string[], string, int *, int **)‏ lfc_rmdir (string)‏ API: remove

Enabling Grids for E-sciencE INFSO-RI OGF GFS-WG: LFC 15 LFC: bulk methods: cuts the round-trip time lfc_delreplicas(), lfc_delfilesbyguid(), lfc_delfilesbyname(), lfc_delfilesbypattern(), lfc_getreplicas(), lfc_getreplicasl() session: cuts the authentication time lfc_startsess(), lfc_endsess() transactions: cuts the authentication time, and provides roll-back for complex changes lfc_starttrans(), lfc_aborttrans(), lfc_endtrans()‏ API: performance improvements

Enabling Grids for E-sciencE INFSO-RI OGF GFS-WG: LFC 16 Posix style permission with grid credentials: lfc_access (string path, int)‏ lfc_chmod (string path, mode_t)‏ lfc_chown (string path, uid_t, gid_t)‏ lfc_getacl (string path, int nentries, lfc_acl[])‏ lfc_setacl (string path, int nentries, lfc_acl[])‏ Virtual users and groups (mapping to Posix numbers): lfc_entergrpmap (gid_t, string)lfc_getgrpbynam (string, gid_t *) lfc_getgrpbygid (gid_t, string)lfc_getgrpbygids (int, gid_t *, string[]) lfc_getgrpmap (int *, struct lfc_groupinfo **)‏ lfc_modifygrpmap (gid_t, string)lfc_rmgrpmap (gid_t, string)‏ lfc_enterusrmap (uid_t, string) lfc_getusrbynam (string, uid_t *) lfc_getusrbyuid (uid_t, string)‏ lfc_getusrmap (int *, struct lfc_userinfo **)‏ lfc_modifyusrmap (uid_t, string)lfc_rmusrmap (uid_t, string)‏ API: permissions

Enabling Grids for E-sciencE INFSO-RI OGF GFS-WG: LFC 17 Documentation Main LFC/DPM documentation page – LFC Admin Guide – Troubleshooting page –

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com. Inc. All rights reserved.