CREAM Proxy Error at GridFTP connexion
|Assigned To:||Schwarz Lionel||% Done:|
At job submission, JSAGA tries to connect to the GridFTP server with the VOMS proxy used to connect to Cream.
[2014-01-21 14:42:24,422] DEBUG org.globus.ftp.vanilla.FTPControlChannel : Control channel sending: AUTH GSSAPI
[2014-01-21 14:42:24,432] DEBUG org.globus.ftp.vanilla.FTPControlChannel : Control channel received: 334 Using authentication type; ADAT must follow.
[2014-01-21 14:42:26,885] DEBUG org.globus.ftp.vanilla.FTPControlChannel : Control channel received: 530-globus_xio: Authentication Error
530-globus_gsi_gssapi: Error with GSI proxy
530-globus_gsi_proxy: Error with X509 structure: Couldn't convert X509 proxy cert from DER encoded to internal form
530-OpenSSL Error: asn1_lib.c:150: in library: asn1 encoding routines, function ASN1_get_object: header too long
This happens with JDK 1.7.0_45 and later but not with 1.7.0_03
#11 Updated by Schwarz Lionel almost 7 years ago
- Status changed from In progress to Resolved
"jsse.enableCBCProtection" must be set to "false" at startup (done in SagaFactoryImpl).
The default value for this SP seems to have been changed from "false" to "true" between jdk7u3 and next.