[PATCH 1/2] nvmet: Implement 'admin_only' authentication
Sagi Grimberg
sagi at grimberg.me
Tue Jan 28 00:11:20 PST 2025
> On 1/24/25 14:49, Sagi Grimberg wrote:
>>
>>
>>
>> On 24/01/2025 13:47, hare at kernel.org wrote:
>>> From: Hannes Reinecke <hare at kernel.org>
>>>
>>> The spec allows for authentication to run on admin queues only, and
>>> secure
>>> concatenation even requires it. So add a configfs attribute
>>> 'dhchap_admin_only'
>>> to the target configuration to allow for testing independently of
>>> secure
>>> concatenation.
>>
>> Why do we want it conditionally? why not always?
>
> Because we did support it originally, so I thought to play it safe.
> Plus it'll cause a regression with the host implementation if applied
> on its own.
>
> But if you say so ...
I'd like to avoid the extra configuration if possible, however we cannot
break
existing hosts.
Is there a way to not authenticate I/O queues but still allow it?
More information about the Linux-nvme
mailing list