Xrootd Third Party Copy for the WLCG and HL-LHC
Creators
- Andrew Hanushevsky
- Gerardo Ganis
- Wei Yang
- Albert Rossi
- Andrea Manzi
- Brian Paul Bockelman
- Dmitry Litvintsev
- Elvin Alin Sindrilaru
- Fabrizio Furano
- George Patargias
- Hironori Ito
- Horst Severini
- Ian Johnson
- Katy Ellis
- Michal Kamil Simon
- Oliver Freyermuth
- Oliver Keeble
- Paul Millar
- Tigran Mkrtchyan
- Tim Adye
Description
A Third Party Copy (TPC) has existed in the pure XRootD storage environment for many years. However using XRootD TPC in the WLCG environment presents additional challenges due to the diversity of the storage systems involved such as EOS, dCache, DPM and ECHO, requiring that we carefully navigate the unique constraints imposed by these storage systems and their site-specific environments through customized configuration and software development. To support multi-tenant setups seen at many WLCG sites, X509 based authentication and authorization in XRootD was significantly improved to meet both security and functionality requirements. This paper presents architecture of the pull based TPC with optional X509 credential delegation and how it is implemented in native XRootD and dCache. The paper discusses technical requirements, challenges, design choices and implementation details in the WLCG storage systems, as well as in FTS/gfal2. It also outlines XRootD's plan to support newer TPC and security models such as token based authorization.
Files
CHEP2019_523.pdf
Files
(400.9 kB)
| Name | Size | Download all |
|---|---|---|
|
md5:209542bbfdce6bdd20419699dbf3aad5
|
400.9 kB | Preview Download |