[PATCHv3 0/2] nvme: restrict authentication to the admin queue
Hannes Reinecke
hare at kernel.org
Tue Apr 22 02:15:54 PDT 2025
Hi all,
with secure concatenation the spec got more explicit to state that it
would be perfectly fine to implement authentication on the admin queue only.
But once a partner implemented that he found that re-authentication was
failing as we continue to start authentication on all queues.
So these two patches implement this functionalify, the first one to
modify the target to request authentication on the admin queue only,
and the second one to the host to not start authentication on I/O
queues during re-authentication if it wasn't requested initially.
As usual, comments and reviews are welcome.
Changes to the original submission:
- Rebased to nvme-6.14
Changes to v2:
- Include reviews from Sagi
- Drop the configfs attribute
Hannes Reinecke (2):
nvmet: Authenticate on admin queue only
nvme: Do not re-authenticate queues with no prior authentication
drivers/nvme/host/auth.c | 30 ++++++++++++++++++++++--------
drivers/nvme/target/auth.c | 9 ++++++---
drivers/nvme/target/fabrics-cmd.c | 4 ++--
3 files changed, 30 insertions(+), 13 deletions(-)
--
2.35.3
More information about the Linux-nvme
mailing list