Dear all,
I'm trying to transfer some files using OGSA-DAI's activity
DeliverToGFT, that uses GridFTP. I get the following exception when
running my client:
uk.org.ogsadai.client.toolkit.exception.RequestCompletedWithErrorExcepti
on: [1227180377931:2]
uk.org.ogsadai.client.toolkit.REQUEST_COMPLETED_WITH_ERROR :
ogsadai-11db9866956
at
uk.org.ogsadai.client.toolkit.resource.BaseDataRequestExecutionResource.
checkSynchronousExecutionIsComplete(Unknown Source)
at
uk.org.ogsadai.client.toolkit.resource.BaseDataRequestExecutionResource.
execute(Unknown Source)
at
uk.org.ogsadai.client.toolkit.resource.BaseDataRequestExecutionResource.
execute(Unknown Source)
at
eu.beingrid.taf_grids.test.ogsa_dai.DeliverToGFTPTest.main(DeliverToGFTP
Test.java:61)
Request id="ogsadai-11db9866956"
Request
status="uk.org.ogsadai.resource.request.status.COMPLETED_WITH_ERROR"
Activity instanceName="uk.org.ogsadai.DeliverToGFTP-ogsadai-11db9a57d4b"
status="ERROR"
error trace:
uk.org.ogsadai.client.toolkit.property.convertor.ClientToolkitDAIExcepti
on: [1227180377899:0] uk.org.ogsadai.DELIVERY_ACTIVITY_FTP_EXCEPTION
uk.org.ogsadai.client.toolkit.property.convertor.ClientToolkitDAIExcepti
on: [1227180377899:1] uk.org.ogsadai.NON_OGSA_DAI_COMPLIANT_ERROR :
java.io.IOException, 530-globus_xio: Authentication Error
530-globus_gsi_callback_module: Could not verify credential
530-globus_gsi_callback_module: Error with signing policy
530-globus_gsi_callback_module: Error in OLD GAA code: CA policy
violation: <no reason given>
530 End.
And on OGSA-DAI server side I get this:
2008-11-20 12:26:17,259 WARN event.LoggingActivityListener
[pool-1-thread-8,warnExceptionAndChildren:?] #1227180377259:15# A
problem has occurred during processing of activity
uk.org.ogsadai.DeliverToGFTP with instance name
uk.org.ogsadai.DeliverToGFTP-ogsadai-11db9a57d4b.
2008-11-20 12:26:17,259 WARN event.LoggingActivityListener
[pool-1-thread-8,warnExceptionAndChildren:?] #1227180377259:15# The
activity encountered an error while interacting with an FTP server.
2008-11-20 12:26:17,259 WARN event.LoggingActivityListener
[pool-1-thread-8,warnExceptionAndChildren:?] #1227180377259:15#
java.io.IOException: 530-globus_xio:
Authentication Error
530-globus_gsi_callback_module: Could not verify credential
530-globus_gsi_callback_module: Error with signing policy
530-globus_gsi_callback_module: Error in OLD GAA code: CA policy
violation: <no reason given>
530 End.
2008-11-20 12:26:17,259 WARN encryption.XMLCipher
[ServiceThread-1,getInstance:
?] Algorithm non-standard, expected one of
http://www.w3.org/2001/04/xmlenc#tripledes-cbc
http://www.w3.org/2001/04/xmlenc#aes128-cbc
http://www.w3.org/2001/04/xmlenc#aes256-cbc
http://www.w3.org/2001/04/xmlenc#aes192-cbc
http://www.w3.org/2001/04/xmlenc#rsa-1_5
http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p
http://www.w3.org/2001/04/xmlenc#kw-tripledes
http://www.w3.org/2001/04/xmlenc#kw-aes128
http://www.w3.org/2001/04/xmlenc#kw-aes256
http://www.w3.org/2001/04/xmlenc#kw-aes192
I'm running OGSA-DAI 3.0 on GT 4 standalone container (Java WS Core
4.0.8) on Windows.
I did some tests with OGSA-DAI security that went ok (either transport
level and message level security) with some basic clients, so I know
that my OGSA-DAI security configuration is ok.
So I believe it has to be some GT4 authorization issue.
I'm using a host certificate that was singed using simpleCA. I created a
grid proxy with this host certificate, and I'm configuring OGSA-DAI to
use Host authorization, with GSI Secure Conversation Message Level
security, so that OGSA-DAI takes globus' delegated credentials.
What else should I check?
One thing I'm not sure whether I have correctly or not is the
grid-mapfile, but I couldn't find any tips on how to correctly configure
this on Windows.
Thanks in advance for your help!
Sandra
------------------------------------------------------------------
This e-mail and the documents attached are confidential and intended
solely for the addressee; it may also be privileged. If you receive
this e-mail in error, please notify the sender immediately and destroy it.
As its integrity cannot be secured on the Internet, the Atos Origin
group liability cannot be triggered for the message content. Although
the sender endeavours to maintain a computer virus-free network,
the sender does not warrant that this transmission is virus-free and
will not be liable for any damages resulting from any virus transmitted.
Este mensaje y los ficheros adjuntos pueden contener informacion confidencial
destinada solamente a la(s) persona(s) mencionadas anteriormente
pueden estar protegidos por secreto profesional.
Si usted recibe este correo electronico por error, gracias por informar
inmediatamente al remitente y destruir el mensaje.
Al no estar asegurada la integridad de este mensaje sobre la red, Atos Origin
no se hace responsable por su contenido. Su contenido no constituye ningun
compromiso para el grupo Atos Origin, salvo ratificacion escrita por ambas
partes.
Aunque se esfuerza al maximo por mantener su red libre de virus, el emisor
no puede garantizar nada al respecto y no sera responsable de cualesquiera
danos que puedan resultar de una transmision de virus.
------------------------------------------------------------------
