WLCG DOMA BDT Meeting

Wednesday Sep 20, 2023, 4:30 PM → 5:30 PM Europe/Zurich

Brian Paul Bockelman (University of Wisconsin Madison (US)), Maria Arsuaga Rios (CERN), Petr Vokac (Czech Technical University in Prague (CZ))

Topic: WLCG DOMA BDT Meeting (twiki)

4:30 PM → 4:35 PM News

NOTES: possible topics for this meeting(s), please add topic that you would like to discuss here or better to the appropriate session. In case your topic might take significant time it's better to ask BDT coordinators to add dedicated section which will be visible also in meeting reminder email sent 24h before this meeting.

Possible topics to discuss

• Minimum required SE versions for transfers with tokens
  • dCache 8.2.22
    • transfer monitoring improvements in 9.x mentioned during July GDB (I missed details)
    • CMS is waiting for improvements for rejecting tokes without storage.* scopes
      • ideas how to configure dCache to support only scope based authorization mentioned last time
    • firefly support might become available early in the Autumn
  • XRootD 5.6.x
    • most recent recommended version not driven by improvements in token support but crypto changes required by EL9
  • EOS 5.1.(?)
  • StoRM 1.11.(?)
• archival metadata - standard for passing metadata to the tape storage (HTTP headers?)
  • dedicated May meeting of TAPE REST group to finalize and publish (CDS / Zenodo) TAPE REST API document
  • archival metadata headers discussion(?)
  • presentation from Julien next week in ATLAS S&C #75 Week
• HTTP-TPC protocol update#4
  • discussion issue#7058 stuck on XRootD
• HTTP-TPC include details about TCP re-transmits in performance markers
  • discussed RNTWG Packet Pacing WG
  • may be useful for FTS optimizer(?)
  • per-stream perfmarker information
    • similarly to the HTTP-TPC protocol update#4
  • getsockopt + TCP_INFO
• LHCb file access use cases - mail
• Improving transfer errors
  • gfal doesn't "just copy" files but there are many steps (e.g. stat) done before/after transfer
  • e.g. with wrong storage scopes user gets gfal-copy error: 1 (Operation not permitted) - DESTINATION OVERWRITE   HTTP 403 : Permission refused although it was called without -f parameter
  • would it be useful to report name of failed operation
• crypto issues with EL9 - are we ready on client & server side for new OS?
  • XRootD generate 512bit DH xrootd#2014
    • clients running on EL7 can't connect to EL9 XRootD servers
    • known issue xrootd#1556 since 2021
  • SHA1 & IGTF root CAs
    • all intermediate CAs already updated to SHA256+
    • all host certificates signed by SHA256+ since ~ 2016(?)
    • services moved to EL9 must apply `update-crypto-policies --set DEFAULT:SHA1`
      • our services often talk / get data from different part of our distributed system (e.g. ATLAS bitpanda monitoring talks with Rucio)
    • hardcoded SHA1 constants in our software (xrootd#2030, FTS-1918)

4:35 PM → 4:45 PM Tape REST access

Speaker: Mihai PATRASCOIU (CERN)

4:45 PM → 5:00 PM Transfers with tokens

Speakers: Petr Vokac (Czech Technical University in Prague (CZ)), Francesco Giacomini (INFN CNAF)

5:00 PM → 5:10 PM Packet marking

Speakers: Marian Babik (CERN), Shawn Mc Kee (University of Michigan (US))

5:10 PM → 5:25 PM WebDAV Error Message Improvement Project & unified error message format

Discuss with experts improvements in the error messages produced by failed transfers.
https://twiki.cern.ch/twiki/bin/view/LCG/WebdavErrorImprovement

Speaker: Stephan Lammel (Fermi National Accelerator Lab. (US))

5:25 PM → 5:30 PM AOB