[PATCH 5/9] nvme/040: create an authenticated nvmeof-tcp connection
Sagi Grimberg
sagi at grimberg.me
Mon Nov 22 00:57:00 PST 2021
On 11/22/21 9:55 AM, Hannes Reinecke wrote:
> Signed-off-by: Hannes Reinecke <hare at suse.de>
> ---
> tests/nvme/040 | 64 ++++++++++++++++++++++++++++++++++++++++++++++
> tests/nvme/040.out | 6 +++++
> 2 files changed, 70 insertions(+)
> create mode 100644 tests/nvme/040
> create mode 100644 tests/nvme/040.out
>
> diff --git a/tests/nvme/040 b/tests/nvme/040
> new file mode 100644
> index 0000000..9c2eb07
> --- /dev/null
> +++ b/tests/nvme/040
> @@ -0,0 +1,64 @@
> +#!/bin/bash
> +# SPDX-License-Identifier: GPL-3.0+
> +# Copyright (C) 2021 Hannes Reinecke, SUSE Labs
> +#
> +# Test nvme over tcp authentication
> +
> +. tests/nvme/rc
> +
> +DESCRIPTION="Create authenticated TCP connection via localhost"
> +QUICK=1
> +
> +requires() {
> + _nvme_requires
> + _have_modules loop
> + _require_nvme_trtype_is_fabrics
> +}
> +
> +
> +test() {
> + local port
> + local genctr
> + local subsys="blktests-subsystem-"
> + local hostid="$(uuidgen)"
> + local hostnqn="nqn.2014-08.org.nvmexpress:uuid:${hostid}"
> + local scratch="/tmp/blktest-ns1.img"
> + local nvme_trtype="tcp"
Why is this tcp specific? what prevents this from passing with
loop/rdma?
AFAICT the rest of the tests are not tcp specific either, nor
is inband auth in general...
I think we should have the tests run with a user-defind nvme_trtype.
> + local hostkey
> +
> + echo "Running ${TEST_NAME}"
> +
> + hostkey="$(nvme gen-dhchap-key -n ${subsys}1 2> /dev/null)"
> + if [ $? -ne 0 ] ; then
> + echo "nvme gen-dhchap-key command missing"
> + return 1
> + fi
I think that this belongs in nvme/rc
> +
> + _setup_nvmet
> +
> + truncate -s 512M "${scratch}"
> +
> + port="$(_create_nvmet_port "${nvme_trtype}")"
> +
> + _create_nvmet_subsystem "${subsys}1" "${scratch}"
> + _add_nvmet_subsys_to_port "${port}" "${subsys}1"
> + _create_nvmet_host "${subsys}1" "${hostnqn}"
> + _set_nvmet_hostkey "${hostnqn}" "${hostkey}"
Can you comment that hash/dhgrp are used with their default values.
> +
> + nvme connect -t "${nvme_trtype}" -n "${subsys}1" \
> + -a "${def_traddr}" -s "${def_trsvcid}" -S "${hostkey}" \
> + --hostnqn="${hostnqn}" --hostid="${hostid}"
> +
> + nvme list-subsys
Why not just look in the connect retcode? why do you need the
list-subsys output?
> +
> + nvme disconnect -n "${subsys}1"
> +
> + _remove_nvmet_subsystem_from_port "${port}" "${subsys}1"
> + _remove_nvmet_subsystem "${subsys}1"
> +
> + _remove_nvmet_port "${port}"
> +
> + rm ${scratch}
> +
> + echo "Test complete"
> +}
> diff --git a/tests/nvme/040.out b/tests/nvme/040.out
> new file mode 100644
> index 0000000..b1c6825
> --- /dev/null
> +++ b/tests/nvme/040.out
> @@ -0,0 +1,6 @@
> +Running nvme/040
> +nvme-subsys0 - NQN=blktests-subsystem-1
> +\
> + +- nvme0 tcp traddr=127.0.0.1,trsvcid=4420 live
> +NQN:blktests-subsystem-1 disconnected 1 controller(s)
> +Test complete
>
More information about the Linux-nvme
mailing list