[PATCHv2 0/2] nvme: restrict authentication to the admin queue
hare at kernel.org
hare at kernel.org
Fri Jan 24 03:47:36 PST 2025
From: Hannes Reinecke <hare at kernel.org>
Hi all,
with secure concatenation the spec got more explicit to state that it
would be perfectly fine to implement authentication on the admin queue only.
But once a partner implemented that he found that re-authentication was
failing as we continue to start authentication on all queues.
So these two patches implement this functionalify, the first one on
the target (to have a testbed to test against), and the second one
to the host to have it fixed.
Patches are on top of my 'secure-concat.v14' branch on kernel.org.
As usual, comments and reviews are welcome.
Changes to the original submission:
- Rebased to nvme-6.14
Hannes Reinecke (2):
nvmet: Implement 'admin_only' authentication
nvme: Do not re-authenticate queues with no prior authentication
drivers/nvme/host/auth.c | 12 ++++++++++++
drivers/nvme/target/auth.c | 11 +++++++----
drivers/nvme/target/configfs.c | 24 ++++++++++++++++++++++++
drivers/nvme/target/fabrics-cmd-auth.c | 7 +++++++
drivers/nvme/target/fabrics-cmd.c | 4 ++--
drivers/nvme/target/nvmet.h | 2 ++
6 files changed, 54 insertions(+), 6 deletions(-)
--
2.35.3
More information about the Linux-nvme
mailing list