Re: [HTCondor-users] SECMAN: Error sending response classad to

[Todd Tannenbaum <tannenba@xxxxxxxxxxx>]

Hi Vikrant,

Just a quick observation on the below: From what you provided, it looks like you are using HTCondor v8.5.x.  HTCondor v8.5.x is nearly six years old and no longer supported.  It is a somewhat large ask to request people spend time troubleshooting when there is a decent chance the problem is related to an issue that was fixed many years ago...  Please seriously consider upgrading to the current stable series (v8.8.x) if possible.  (I do realize that is not always possible in embedded environments, or if you must support old operating systems....)

best regards,
Todd


On 4/14/2021 6:23 AM, ervikrant06@xxxxxxxxx wrote:

Hello Experts, 

In one of our submit node while submitting the batch we see the following error: snippet captured from SchedLog file. Not using any condor python binding simply calling condor_submit for submitting the jobs. Machine is not overloaded. This is happening very often. 

Obfuscated is the sched IP.

04/14/21 07:09:23 (pid:830409) SECMAN: Error sending response classad to <xx.xx.xxx.xx:17323>!
NewSession = "YES"
Subsystem = "TOOL"
AuthMethods = "FS,KERBEROS,GSI"
CryptoMethods = "3DES,BLOWFISH"
Authentication = "OPTIONAL"
Integrity = "OPTIONAL"
Command = 516
Encryption = "OPTIONAL"
ServerPid = 2800527
SessionDuration = "60"
OutgoingNegotiation = "PREFERRED"
Enact = "NO"
SessionLease = 3600
RemoteVersion = "$CondorVersion: 8.5.8 Dec 13 2016 BuildID: 390781 $"

Nothing fancy in configuration. 

# condor_config_val -dump | grep SEC
DCSTATISTICS_WINDOW_SECONDS =
ENCRYPT_SECRETS = true
IGNORE_ATTEMPTS_TO_SET_SECURE_JOB_ATTRS = true
SEC_CLAIMTOBE_INCLUDE_DOMAIN = false
SEC_CLAIMTOBE_USER =
SEC_DEBUG_PRINT_KEYS = false
SEC_DEFAULT_AUTHENTICATION_TIMEOUT = 20
SEC_ENABLE_MATCH_PASSWORD_AUTHENTICATION = true
SEC_INVALIDATE_SESSIONS_VIA_TCP = true
SEC_PASSWORD_DOMAIN =
SEC_PASSWORD_FILE =
SEC_SESSION_DURATION_SLOP = 20
SEC_TCP_SESSION_TIMEOUT = 20
SECURE_JOB_ATTRS =
STATISTICS_WINDOW_SECONDS = 1200
SYSTEM_SECURE_JOB_ATTRS = x509userProxySubject x509UserProxyEmail x509UserProxyVOName x509UserProxyFirstFQAN x509UserProxyFQAN

It seems to be a local sched issue, nothing interesting in negotiator logs. 

Any thoughts? what could be causing it. 

Thanks & Regards,

Vikrant Aggarwal

_______________________________________________
HTCondor-users mailing list
To unsubscribe, send a message to htcondor-users-request@xxxxxxxxxxx with a
subject: Unsubscribe
You can also unsubscribe by visiting
https://lists.cs.wisc.edu/mailman/listinfo/htcondor-users

The archives can be found at:
https://lists.cs.wisc.edu/archive/htcondor-users/

-- 
Todd Tannenbaum <tannenba@xxxxxxxxxxx>  University of Wisconsin-Madison
Center for High Throughput Computing    Department of Computer Sciences
Calendar: https://tinyurl.com/yd55mtgd  1210 W. Dayton St. Rm #4257
Phone: (608) 263-7132                   Madison, WI 53706-1685