FAQ

Here you can find a list of frequently asked questions about JUDAC:

FAQ about Data Management

How to access largedata on a limited number of computes within your jobs?

On each system there is a number of 10 nodes inside the default batch partition where XCST storage resources ($DATA) can be accessed.

This is an example on how to get access to it within your jobs:

#!/bin/bash
#SBATCH --nodes=1
#SBATCH --time=00:10:00
#SBATCH --constraint=largedata

srun ./my-prog

What file system to use for different data?

In multiple GPFS file systems for different types of user data. Each file system has its own data policies.

$HOME

Acts as repository for the user’s personal data like the SSH key. There is a separate HOME folder for each HPC system and a shared folder which pointed on all systems to the same directory. Data within $HOME are backed up by ISP, see also
- How to restore a file from the $HOME directory?
$SCRATCH

Is bound to a compute project and acts as a temporary storage location with high I/O bandwidth. If the application is able to handle large files and I/O demands, $SCRATCH is the right file system to place them. Data within $SCRATCH is not backed up and daily cleanup is done.
- Normal files older than 90 days will be purged automatically. In reality modification and access date will be taken into account, but for performance reasons access date is not set automatically by the system but can be set by the user explicitly with
```
touch -a <filename>.
```
  Time stamps that are recorded with files can be easily listed by
```
stat <filename>.
```
- Empty directories, as they will arise amongst others due to deletion of old files, will be deleted after 3 days. This applies also to trees of empty directories which will be deleted recursively from bottom to top in one step.

$PROJECT

Data repository for a compute project. It’s lifetime is bound to the project lifetime. Data are backed up by ISP.
- How to restore a file from the $PROJECT directory?
$DATA

Belongs to a data project. This file system is designed to store a huge amount of data on disk based storage. The bandwidth is moderate. The file-system internal backup is realized with the GPFS snapshot feature. In addition the data is backed up by ISP on a weekly base. For more information, look at
- How to restore a file from the $DATA directory?
$LARGEDATA

Belongs to a data project. The storage cluster which is storing the data is deprecated. In H2/2026 it will be migrated to $DATA. The file-system internal backup is realized with the GPFS snapshot feature. In addition the data is backed up by ISP on a weekly base. For more information, look at
- How to restore a file from the $FASTDATA directory?
$ARCHIVE

Is bound to a data project and acts as storage for all files not in use for a longer time. Data are migrated to tape storage by ISP-HSM. It is recommended to use tar-files with a minimum size of of multiple Gigabytes and maximum of 8 TB. The background is that recalling/restoring files from tape is much more efficient using only a few large datastreams than thousends of small data streams. See also
All GPFS file systems are managed by quotas for disk space and/or number of files. See also
- What data quotas do exist and how to list usage?

What data quotas do exist and how to list usage?

For all data repositories the disk quota managing is enabled. The values are set to default values (defined by JSC) or depend on special requirements by the projects.

File System	Disk Space		Number of Files
	Soft Limit	Hard Limit	Soft Limit	Hard Limit
$HOME	20 GB	22 GB	80.000	82.000
$SCRATCH	90 TB	95 TB	4 Mio	4.4 Mio
$PROJECT	16 TB	17TB	3 Mio	3.1 Mio
$DATA	as granted to project	soft limit + up to 10% additional	as granted to project	soft limit + up to 10% additional
$LARGEDATA	as granted to project	soft limit + up to 10% additional	as granted to project	soft limit + up to 10% additional
$ARCHIVE	as granted to project	soft limit + up to 10% additional	as granted to project	soft limit + up to 10% additional

File size limit

Although the file size limit on operation system level e.g. at JUWELS or JURECA is set to unlimited (ulimit -f) the maximum file size can only be the GPFS group quota limit for the corresponding file system. The actual limits can be listed by jutil.

List data quota and usage by project or user

Members of a group/project can display the hard limits, quotas (soft limit) and usage by each user of the project using the jutil command.

jutil project dataquota -p <project name>

The quota information for the users are updated every 8 hours.

Recommendation for users with a lot of small files

Users with applications that create a lot of relatively small files should reorganize the data by collecting these files within tar-archives using the

tar -cvf archive-filename ...

command. The problem is really the number of files (inodes) that have to be managed by the underlying operating system and not the space they occupy in total. On the other hand please keep in mind the recommendations under File size limit.

How to modify the users’s environment.

When users login on an frontend node using the secure shell software a shell will be started and a set of environment variables will be exported. These are defined in system profiles. Each user can add/modify his environment by using his own profiles in his $HOME directory.

In the Jülich setup there will be a separate $HOME directory for each HPC system. Which means that the environment differs between JUWELS, JURECA; JUDAC; … and also the user can modify his own profiles for each system separately. Therefore a skeleton .bash_profile and .bashrc are placed in each $HOME directory when a user is joined to any HPC system.

.bash_profile:

# **************************************************
# bash environment file in $HOME
# Please see:
# http://www.fz-juelich.de/ias/jsc/EN/Expertise/D...
# for more information and possible modifications...
# **************************************************
# Get the aliases and functions: Copied from Cent...
if [ -f ~/.bashrc ]; then
   . ~/.bashrc
fi
export PS1="[\u@\h \W]$ "

.bashrc:

# **************************************************
# bash environment file in $HOME
# Please see:
# http://www.fz-juelich.de/ias/jsc/EN/Expertise/D...
# for more information and possible modifications...
# **************************************************
# Source global definitions: Copied from CentOS 7...
if [ -f /etc/bashrc ]; then
   . /etc/bashrc
fi

_images/HOMEstructure.png — Separate $HOME directory for each HPC system

E.g. on JUDAC user graf1 will see $HOME="/p/home/jusers/graf1/JUDAC". The profiles located here were used for login. Only the shared folder (link) points always to the same directory /p/home/jusers/graf1/shared.

Most side dependend variables are set automatically by the jutil env init command (system profile). The user can set the right core variables (PROJECT, ARCHIVE, …) by using

jutil env activate -p <project>

For more information look at the jutil command usage.

How to make the currently enabled budget visible:

If a user has to change his budget account during a login session it might be helpful to see the currently set budget account in his prompt to be sure to work on the correct budget.Therefore one should replace the current “export PS!=...” line in .bash_profile by:

prompt() {
PS1="[${BUDGET_ACCOUNTS:-\u}@\h \W]\$ "
}
PROMPT_COMMAND=prompt

This results in the following behaviour:

[user1@juwels07 ~]$ jutil env activate -p chpsadm
[hpsadm@juwels07 ~]$ jutil env activate -p cslfse
[slfse@juwels07 ~]$

How can I recall migrated data?

Normally migrated files are automatically recalled from ISP-HSM tape storage when the file is accessed on the login nodes of the HPC systems (e.g. JUWELS, JURECA, …) or the Data Access System (JUDAC).

For an explicit recall the native ISP-HSM command dsmrecall is not available. Please use

tail <filename>

or:

head <filename>

to start the recall process. These commands will not change any file attribute and the migrated version of the file as well as the backup version stay valid.

Warning

It is strongly recommended NOT to use

touch <filename>

because this changes the timestamp of the file, so a new backup copy must be created and the file has to be migrated again. These are two additional processes that waste compute resources, if the file is used read only by further processing.

How can I see which data is migrated?

There are two file systems which hold migrated data: /p/arch1 and /p/arch2.

These are so called archive file systems.
In principle all data in the file systems will be migrated to ISP-HSM tape storage in tape libraries.
Data is copied to ISP backup storage prior to migration.
Data are not quoted by storage but by the number of files per group/project. This is done because UNIX is still not able to handle millions of files in a file system with an acceptable performance.

The ISP-HSM native command dsmls, which shows if a file is migrated, is not available on any HPC system (e.g. JUWELS, JURECA, …) nor on the Data Access System (JUDAC). This command is only supported on the ISP-HSM node of the JUST storage cluster, that hosts the file systems for the HPC systems. However JUDAC is not open for user access.

Please use

ls -ls [mask | filename]

to list the files. Migrated files can be identified by a block count of 0 in the first column (-s option) and an arbitrary number of bytes in the sixth column (-l option).

-rw-r----- 1 user group 513307 Jan 22 2008 log1

-rw-r----- 1 user group 114 Jan 22 2008 log2

-rw-r----- 1 user group 273 Jan 22 2008 log3

-rw-r----- 1 user group 22893504 Jan 23 2008 log4

How to restore files?

All file systems except for $SCRATCH provide data protection mechanisms based on the IBM Storage Protect (ISP) and the Storage Scale (GPFS) snapshot technology.

Warning

There is currently no user-friendly GUI restore client available for the ISP backup. If you encounter a situation where the snapshot based backup is insufficient please reach out to application support

As backup frequency depends on the rate of changes in the data, a daily backup by ISP to tape for every project is not guaranteed. Therefore, an internal backup based on the snapshot feature from the file system (GPFS) is offered. The difference between the ISP backup and the snapshot based backup is that ISP acts on file changes while snapshots save the state at a certain point in time. Right now the following snapshots are configured:

daily backup	last three retention	today, just after midnight
weekly backup	last three retention	every Sunday, just after midnight
monthly backup	last three retention	every 1st day of month, just after midnight

The snapshots can be found in a special subdirectory of the project repository. E.g. for your files in $DATA go to

cd /p/data1/.snapshots

and list contents

/p/data1/.snapshots> ls
daily-20181129
daily-20181130
daily-20181203
weekly-20181118
weekly-20181125
weekly-20181202
monthly-20181001
monthly-20181101
monthly-20181201

In the subdirectory <type>-<YYYYMMDD> the file version which was valid at date DD.MM.YYYY can be retrieved using the same relative path as the actual file has within the $DATA folder for that project.

Similarly for $PROJECT and $HOME, the folder paths for the snapshots are /p/project1/.snapshots and /p/home/.snapshots respectively.

For $LARGEDATA specifically, the folder path for the snapshots is /p/largedata2/<project_name>/.snapshots.

Due to the fact that the snapshot is part of the file system, the data restore can be performed on any system where it is mounted.

Note

$ARCHIVE does not provide the snapshot backups. These data are protected by ISP only.

Linux commands to manage ACLs

command to list ACLs of a file/directory:
```
getfacl <file/directory>
```

Give user john1 read and write control to file example.txt. Also give user lucy1 the right to read this file:

setfacl -m u:john1:rw example.txt

setfacl -m u:lucy1:r example.txt

# file: example.txt
# owner: smith1
# group: cjsc
user::rw-
user:john1:rw-
user:lucy1:r--
group::---
mask::rw-
other::---

remove user john1 ACLs on example.txt:

setfacl -x u:john1 example.txt

# file: example.txt
# owner: smith1
# group: cjsc
user::rw-
user:lucy1:r--
group::---
mask::rw-
other::---

Allow users from group zam change to directory share:

setfacl -m g:zam:x share/

# file: share
# owner: smith1
# group: cjsc
user::rwx
group::---
group:zam:--x
mask::rw-
other::---

remove all ACLs from directory share:

setfacl -b share

# file: share
# owner: smith1
# group: cjsc
user::rwx
group::---
other::---

Further information (e.g. set ACLs recursively, setting default ACLs, inherit ACLs, …) can be found in the manual pages.

Which files have an access control list?

The command

ls -l

will show a “+” for every file that has ACL set, eg.

drwx------+ 2 john1 cjsc 32768 Feb 21 09:25 share

How to avoid multiple SSH connections on data transfer?

When transferring multiple files, it can be problematic to use a separate SSH connection for each transfer operation. The network firewall can block a large amount of independent simultaneous SSH connections. There are different options to avoid multiple SSH connections:

Use rsync or use scp with multiple files
```
rsync -avhzP local_folder/ username@host:remote_folder
```
rsync only copies new or changed files, this will reserve transfer bandwith.
```
scp -r local_folder/ username@host:remote_folder
```
will copy local_folder recursively.
Use tar-container to transfer less files

Creating a tar file and transfer it can be much faster compared to transferring all files separately:
```
tar -cf tar.file local_folder
```
The tar file creation, transmission and extraction process can also be done on the fly:
```
tar -c local_folder/ | ssh username@host \
'cd remote_folder; tar -x'
```
Use shared SSH connection

Shared SSH connections allow usage of the same connection multiple times:

Open master connection:
```
ssh -M -S /tmp/ssh_mux_%h_%p_%r username@host
```
Reuse connection:
```
ssh -S /tmp/ssh_mux_%h_%p_%r username@host
```
A shared connection can also be used when using scp:
```
scp -o 'ControlPath /tmp/ssh_mux_%h_%p_%r' \
local_folder username@host:remote_folder
```

How to ensure correct group ID for Your project data?

In our usage model all compute and data projects get a dedicated data repository in our global parallel file systems. The files stored into this directory belongs to the project. Therefore all files and sub-directory have to belong to project’s UNIX group. To ensure that all data automatically belongs to this group the project directory has the setGID bit in place. New files will inherit the project UNIX group by default and sub-directories will get the setGID bit, too. But users can overrule this default behavior (willingly or by accident).

To fix wrong group ownership on your files use

chown :<group> <target_file>
chown :zam /p/arch1/zam/calculation/output.txt

If you have a complete directory to fix use the recursive option:

chown -R -h :zam /p/arch1/zam/calculation

Note

On $ARCHIVE the quota usage is calculated on UNIX group base. Therefore nightly a recursive chown is performed on each project directory to apply the corresponding project group.

If the setGID bit is missing on a directory use

chmod g+s <target directory>
chmod g+s /p/arch1/zam/calculation

If the setGID bit is missing in a complete directory tree, use find to fix it for all sub-directories:

find /p/arch1/zam/calculation -type d -exec chmod g+s {} \;

Information about Maintenance JUNE 10-12, 2024

The 6th generation of JUST will replace JUST5. Further information about the introduced changes can be found here.

Furthermore we provide a best parctice guide to compare and migrate data here.