Presentation is loading. Please wait.

Presentation is loading. Please wait.

Condor Week 2007Glidein Factories - by I. Sfiligoi1 Condor Week 2007 Glidein Factories (and in particular, the glideinWMS) by Igor Sfiligoi.

Published byJudith Carter Modified over 8 years ago

Similar presentations

Presentation on theme: "Condor Week 2007Glidein Factories - by I. Sfiligoi1 Condor Week 2007 Glidein Factories (and in particular, the glideinWMS) by Igor Sfiligoi."— Presentation transcript:

1 Condor Week 2007Glidein Factories - by I. Sfiligoi1 Condor Week 2007 Glidein Factories (and in particular, the glideinWMS) by Igor Sfiligoi

2 Condor Week 2007Glidein Factories - by I. Sfiligoi2 Anybody heard of “The Grid”? ● “The Grid” is the current way forward in most sciences – Certainly in High Energy Physics (and in particular CMS) Grid Sites ● “The Grid” is the sum of “Grid Sites”, each offering a moderate amount of (mostly) computing resources – Each site has a standard “Gatekeeper”, responsible for regulating access to the site (How the “Gatekeeper” handles the computing resources, is anyone's guess) As in Open Science Grid and European Grid for E-Science

3 Condor Week 2007Glidein Factories - by I. Sfiligoi3 Dear public, “The Grid” And “The User” “The Grid” is not an easy place to live in!

4 Condor Week 2007Glidein Factories - by I. Sfiligoi4 Compare this to Condor ● A single system from the user point of view – User submits to a local scheduler – Condor does all the magic Legenda: Central manager Execute node Submit node and user(s)

5 Condor Week 2007Glidein Factories - by I. Sfiligoi5 So let Condor manage “The Grid”! Life is good again!

6 Condor Week 2007Glidein Factories - by I. Sfiligoi6 So let Condor manage “The Grid”! Life is good again! But how do we get here?

7 Condor Week 2007Glidein Factories - by I. Sfiligoi7 The answer: Condor glide-ins Legenda: Central manager Execute daemon Submit node and user(s) Gatekeeper Worker node

8 Condor Week 2007Glidein Factories - by I. Sfiligoi8 The answer: Condor glide-ins Legenda: Central manager Execute daemon Submit node and user(s) Gatekeeper Worker node

9 Condor Week 2007Glidein Factories - by I. Sfiligoi9 What exactly is “a glidein”? ● “A glidein” is just a regular condor_startd daemon, submitted as a Grid job ● The glidein-Grid job needs to: – validate the worker node (for example against memory and disk problems) – discover or fetch the condor binaries – configure the Condor daemons – start the Condor daemons ● For simple use-cases, you can use condor_glidein

10 Condor Week 2007Glidein Factories - by I. Sfiligoi10 The glidein factory Grid Sites ● Needs to know how to submit to the “Grid Sites” –... how to obtain the list of sites – For each site: ● how to talk to the “Gatekeeper” ● what is the configuration of the site (network,security, software, etc.) ● Needs to know when to submit new glideins – Slots are not free – Resources not used by my pool could be used by others ● Submit only if users need more resources (modulo speculative submissions) ● Submit only to sites who declare that can run at least a subset of user jobs

11 Condor Week 2007Glidein Factories - by I. Sfiligoi11 glideinWMS The glideinWMS ● A glidein-based Workload Management System (WMS) developed for USCMS – Derived from the CDF GlideCAF (Presented at CondorWeek2006) – But meant to be generic enough to support different communities ● Uses the dividi-et-impera approach Grid Sites – Glidein Factories know how to submit to the Grid Sites – VO * Frontends monitor jobs and direct the factories ● Condor Collector used for message passing http://home.fnal.gov/~sfiligoi/glideinWMS/ * VO = Virtual Organization ~ Condor Pool

12 Condor Week 2007Glidein Factories - by I. Sfiligoi12 glideinWMS The glideinWMS http://home.fnal.gov/~sfiligoi/glideinWMS/ Legenda: Central manager Execute daemon Submit node and user(s) Gatekeeper Worker node WMS Legenda: Collector Glidein factory VO frontend

13 Condor Week 2007Glidein Factories - by I. Sfiligoi13 glideinWMS The glideinWMS http://home.fnal.gov/~sfiligoi/glideinWMS/ WMS Legenda: Collector Glidein factory VO frontend Legenda: Central manager Execute daemon Submit node and user(s) Gatekeeper Worker node

14 Condor Week 2007Glidein Factories - by I. Sfiligoi14 glideinWMS The glideinWMS http://home.fnal.gov/~sfiligoi/glideinWMS/ WMS Legenda: Collector Glidein factory VO frontend Legenda: Central manager Execute daemon Submit node and user(s) Gatekeeper Worker node

15 Condor Week 2007Glidein Factories - by I. Sfiligoi15 glideinWMS glideinWMS internals Factory Name Attributes Count jobs that match factory attributes Keep requested idle glideins in the queue G Factory Name Requested idle glideins Legenda: G Condor-G scheduler Everything else like previous slide More details in the backup slides

16 Condor Week 2007Glidein Factories - by I. Sfiligoi16 glideinWMS glideinWMS internals ● Glidein startup script simply loads other scripts – HTTP used for network transfers (cacheable, works when no privacy issues) signature.sha1 file.lst condor_bin.tgz configs.cfg validate.sh myscript.sh start_condor.sh Worker Node Web Server Web Cache glidein_startup load file list execute scripts Erro rs? Startd Ye s No This batch slot would not be able to run a user job load files Startup script + arguments All files signed See backup slides for text description. Downloaded scripts do all the real work

17 Condor Week 2007Glidein Factories - by I. Sfiligoi17 Network security concerns ● Traffic on WAN insecure by definition ● Using x509 (GSI) service proxies for authentication ● Condor tools securing communication between ● VO Frontend and Glidein Factory ● Startd and Collector/Schedd ● Condor supports integrity checks to prevent data tampering and encryption for privacy ● HTTP-accessed data checked via SHA1 checksums (no privacy possible here)

18 Condor Week 2007Glidein Factories - by I. Sfiligoi18 Security on the Worker Nodes ● Glide-in Condor not running as a privileged user – Cannot change UID without help from the system – Condor daemons not protected from user jobs ● Open Science Grid (OSG) starting to deploy gLExec on its worker nodes – A x509-based Apache-suexec derivative – Condor can use the service proxy to run the user job under a different UID – Same security as if Condor running as root

19 Condor Week 2007Glidein Factories - by I. Sfiligoi19 Working over Firewalls ● Condor is based on the peer-to-peer principle – Needs two-way network traffic Grid Sites ● Most Grid Sites behind firewalls – Most have only outgoing connectivity – Some only proxied traffic ● Condor GCB can help at such sites – See GCB talks for more details ● VPNs could be another option, but are less trivial to use in user- space

20 Condor Week 2007Glidein Factories - by I. Sfiligoi20 Conclusion ● “The Grid” has a lot of resources (even for free) – Why not use them? ● Glideins allow you to use those resources without a single change in your jobs – You can even submit standard universe jobs! ● glideinWMS ● glideinWMS can help you automatize the maintenance of a glidein pool – Let me know if you are interested sfiligoi@fnal.gov http://home.fnal.gov/~sfiligoi/glideinWMS/

21 Condor Week 2007Glidein Factories - by I. Sfiligoi21 Glidein Factories Backup slides

22 Condor Week 2007Glidein Factories - by I. Sfiligoi22 VO Frontend ClassAd Costumize the submitted glideins. GlideParamXXX must match the names published by the factory Due to Condor limitations, define also GlideinMyType MyType=”glideclient” Name=”reqX@client” ClientName=”client” ReqName=”reqX” ReqGlidein=”entry@factory” ReqIdleGlideins=nr ReqMaxRun=nr ReqMaxSubmitXHour=nr GlideinParamWWW=”val1”... GlideinParamZZZ=”valY” GlideinMonitorNNN=”valN”... GlideinMonitorMMM=”valM” Published classad Target a specific Entry Point Request a steady stream of glideins starting Monitoring data like: Idle=”546”, Running=”222”

23 Condor Week 2007Glidein Factories - by I. Sfiligoi23 Glidein Factory ClassAd Due to Condor limitations, define also GlideinMyType Parameters set glidein parameter defaults like: CONDOR_HOST=”UNDEFINED”,SEC_DEFAULT_ENCRYPTION=OPTIONAL MinDisk=16G, CheckFilesExist=”/tmp/CMS,$DATA/OSG” MyType=”glidefactory” Name=”entry@factory” FactoryName=”factory” GlideinName=”entry” Attribute1=”...”... AttributeN=”...” GlideinParamXXX=”val1”... GlideinParamYYY=”valZ” GlideinMonitorNNN=”valN”... GlideinMonitorMMM=”valM” Published classad Attributes that describe the glidein like: ARCH=”INTEL”, MaxHours=72, Site=”Florida” Monitoring data like: TotalStatusIdle=”234”, TotalStatusRunning=”1356” TotalRequestedIdle=”50”

24 Condor Week 2007Glidein Factories - by I. Sfiligoi24 glideinWMS glideinWMS internals Factory Collector Factory Schedd-G Query WMS Collector Frontend Attributes Submit glideins Query Factory Schedd Count Idle Glideins Publish entry point WMS Collector 1 2 3 ● Glidein Factory essentially a publish-read-submit loop Details about ClassAd content in the backup slides

25 Condor Week 2007Glidein Factories - by I. Sfiligoi25 glideinWMS glideinWMS internals Query Schedd(s) Query WMS Collector Match and count Jobs Attributes Factories Attributes Nr jobs x Factory Publish requests VO Collector VO Schedd 1 1 2 ● VO Frontend acts as a matchmaker WMS Collector Details about ClassAd content in the backup slides

26 Condor Week 2007Glidein Factories - by I. Sfiligoi26 Glidein details ● Dummy startup script ● Just loads other files and execute the ones marked as executable ● File transfer implemented using HTTP ● Easy cacheable, standard tools available (Squid) ● Proven to scale, widely used in Industry ● All sensitive file transfers signed (SHA1) ● Prevent tampering, as HTTP travels in clear

27 Condor Week 2007Glidein Factories - by I. Sfiligoi27 Glidein details ● Standard sanity checks provided – Disk space constraints – Node blacklisting ● Generic Condor configure and startup script provided, too ● Factory admins can easily add their own customization scripts (both for checks and configs) – Allowing Frontends to add custom scripts envisioned, but not yet implemented

28 Condor Week 2007Glidein Factories - by I. Sfiligoi28 Condor 2 3 4 5 One way firewall Reuse the permanent connection 1 Open a permanent connection

29 Condor Week 2007Glidein Factories - by I. Sfiligoi29 glideinWMS glideinWMS support ● glideinWMS ● glideinWMS developed by and for the CMS collaboration – No funding to support other users ● However: – Having other users would bring in new ideas ● Best-effort support will always be there for everybody – Collaboration with other groups welcome ● both for development and support

Download ppt "Condor Week 2007Glidein Factories - by I. Sfiligoi1 Condor Week 2007 Glidein Factories (and in particular, the glideinWMS) by Igor Sfiligoi."

Similar presentations

Jaime Frey Computer Sciences Department University of Wisconsin-Madison OGF 19 Condor Software Forum Routing.

Jaime Frey Computer Sciences Department University of Wisconsin-Madison OGF 19 Condor Software Forum Routing.
Building a secure Condor ® pool in an open academic environment Bruce Beckles University of Cambridge Computing Service.

Building a secure Condor ® pool in an open academic environment Bruce Beckles University of Cambridge Computing Service.
Dan Bradley Computer Sciences Department University of Wisconsin-Madison Schedd On The Side.

Dan Bradley Computer Sciences Department University of Wisconsin-Madison Schedd On The Side.
ANTHONY TIRADANI AND THE GLIDEINWMS TEAM glideinWMS in the Cloud.

ANTHONY TIRADANI AND THE GLIDEINWMS TEAM glideinWMS in the Cloud.
Efficiently Sharing Common Data HTCondor Week 2015 Zach Miller Center for High Throughput Computing Department of Computer Sciences.

Efficiently Sharing Common Data HTCondor Week 2015 Zach Miller Center for High Throughput Computing Department of Computer Sciences.
First steps implementing a High Throughput workload management system Massimo Sgaravatto INFN Padova

First steps implementing a High Throughput workload management system Massimo Sgaravatto INFN Padova
Evaluation of the Globus GRAM Service Massimo Sgaravatto INFN Padova.

Evaluation of the Globus GRAM Service Massimo Sgaravatto INFN Padova.
Zach Miller Condor Project Computer Sciences Department University of Wisconsin-Madison Flexible Data Placement Mechanisms in Condor.

Zach Miller Condor Project Computer Sciences Department University of Wisconsin-Madison Flexible Data Placement Mechanisms in Condor.
SCD FIFE Workshop - GlideinWMS Overview GlideinWMS Overview FIFE Workshop (June 04, 2013) - Parag Mhashilkar Why GlideinWMS? GlideinWMS Architecture Summary.

SCD FIFE Workshop - GlideinWMS Overview GlideinWMS Overview FIFE Workshop (June 04, 2013) - Parag Mhashilkar Why GlideinWMS? GlideinWMS Architecture Summary.
Track 1: Cluster and Grid Computing NBCR Summer Institute Session 2.2: Cluster and Grid Computing: Case studies Condor introduction August 9, 2006 Nadya.

Track 1: Cluster and Grid Computing NBCR Summer Institute Session 2.2: Cluster and Grid Computing: Case studies Condor introduction August 9, 2006 Nadya.
OSG Site Provide one or more of the following capabilities: – access to local computational resources using a batch queue – interactive access to local.

OSG Site Provide one or more of the following capabilities: – access to local computational resources using a batch queue – interactive access to local.
0Gold 11 0Gold 11 LapLink Gold 11 Firewall Service How Connections are Created A Detailed Overview for the IT Manager.

0Gold 11 0Gold 11 LapLink Gold 11 Firewall Service How Connections are Created A Detailed Overview for the IT Manager.
BaBar MC production BaBar MC production software VU (Amsterdam University) A lot of computers EDG testbed (NIKHEF) Jobs Results The simple question:

BaBar MC production BaBar MC production software VU (Amsterdam University) A lot of computers EDG testbed (NIKHEF) Jobs Results The simple question:
1 Evolution of OSG to support virtualization and multi-core applications (Perspective of a Condor Guy) Dan Bradley University of Wisconsin Workshop on.

1 Evolution of OSG to support virtualization and multi-core applications (Perspective of a Condor Guy) Dan Bradley University of Wisconsin Workshop on.
Campus Grids Report OSG Area Coordinator’s Meeting Dec 15, 2010 Dan Fraser (Derek Weitzel, Brian Bockelman)

Campus Grids Report OSG Area Coordinator’s Meeting Dec 15, 2010 Dan Fraser (Derek Weitzel, Brian Bockelman)
CHEP 2003Stefan Stonjek1 Physics with SAM-Grid Stefan Stonjek University of Oxford CHEP 2003 25 th March 2003 San Diego.

CHEP 2003Stefan Stonjek1 Physics with SAM-Grid Stefan Stonjek University of Oxford CHEP th March 2003 San Diego.
Use of Condor on the Open Science Grid Chris Green, OSG User Group / FNAL Condor Week, April 30 2008.

Use of Condor on the Open Science Grid Chris Green, OSG User Group / FNAL Condor Week, April
Evolution of the Open Science Grid Authentication Model Kevin Hill Fermilab OSG Security Team.

Evolution of the Open Science Grid Authentication Model Kevin Hill Fermilab OSG Security Team.
Condor: High-throughput Computing From Clusters to Grid Computing P. Kacsuk – M. Livny MTA SYTAKI – Univ. of Wisconsin-Madison

Condor: High-throughput Computing From Clusters to Grid Computing P. Kacsuk – M. Livny MTA SYTAKI – Univ. of Wisconsin-Madison
Mar 28, 20071/18 The OSG Resource Selection Service (ReSS) Gabriele Garzoglio OSG Resource Selection Service (ReSS) Don Petravick for Gabriele Garzoglio.

Mar 28, 20071/18 The OSG Resource Selection Service (ReSS) Gabriele Garzoglio OSG Resource Selection Service (ReSS) Don Petravick for Gabriele Garzoglio.

Similar presentations

Ads by Google