<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=Content-Type content="text/html; charset=us-ascii">
<META content="MSHTML 6.00.2900.2722" name=GENERATOR></HEAD>
<BODY>
<DIV dir=ltr align=left><FONT face=Arial color=#0000ff
size=2></FONT> </DIV><BR>
<BLOCKQUOTE dir=ltr
style="PADDING-LEFT: 5px; MARGIN-LEFT: 5px; BORDER-LEFT: #0000ff 2px solid; MARGIN-RIGHT: 0px">
<DIV class=OutlookMessageHeader lang=en-us dir=ltr align=left>
<HR tabIndex=-1>
<FONT face=Tahoma size=2><B>From:</B> Renato Recio [mailto:recio@us.ibm.com]
<BR><B>Sent:</B> Friday, November 11, 2005 12:25 PM<BR><B>To:</B> Caitlin
Bestler<BR><B>Cc:</B> Kanevsky, Arkady; dat-discussions@yahoogroups.com; Sean
Hefty; openib-general@openib.org; swg@infinibandta.org<BR><B>Subject:</B> RE:
[swg] RE: [openib-general] RE: [dat-discussions] socket based connectionmodel
for IB proposal - round 3<BR></FONT><BR></DIV>
<DIV></DIV>
<P>Any active side QP can target a passive side CM QP (QP1 or redirected QPN).
However, due to the use of priviliged Q_Keys, only an active side priviliged
QP can target the passive side CM QP. <BR><BR>It seems to me that our proposal
of having the Service ID be generated by priviliged mode code, having a
Service ID associated with RDMA Services (e.g. iSER, NFSeR, ...), and having
priviliged mode code generate the first N bytes of the private data field
(i.e. the bytes in question); allows the passive side:
<UL>- Transport to validate an incoming CM message was generated by a
priviliged consumer; and<BR>- CM to know the Service ID and first N-bytes of
the private data field were generated by a priviliged
consumer.</UL></BLOCKQUOTE>
<DIV><BR dir=ltr><BR><SPAN class=063270921-11112005><FONT face=Arial
color=#0000ff size=2>How does this prevent a non-privileged client running on a
remote host with current</FONT></SPAN></DIV>
<DIV><SPAN class=063270921-11112005><FONT face=Arial color=#0000ff size=2>CM
software from generating a connection request to the targeted Service
ID</FONT></SPAN></DIV>
<DIV><SPAN class=063270921-11112005><FONT face=Arial color=#0000ff size=2>with
the entire private data coming from the non-privileged
consumer.</FONT></SPAN></DIV>
<DIV><SPAN class=063270921-11112005></SPAN> </DIV>
<DIV><SPAN class=063270921-11112005><FONT face=Arial color=#0000ff size=2>A
current CM does not know that the Service ID requires it
to generate/validate</FONT></SPAN></DIV>
<DIV><SPAN class=063270921-11112005><FONT face=Arial color=#0000ff size=2>any
portion of the private data.</FONT></SPAN></DIV>
<DIV><SPAN class=063270921-11112005></SPAN> </DIV>
<DIV><SPAN class=063270921-11112005><FONT face=Arial color=#0000ff size=2>A
current CM does not know how to use a later version number or to set
a</FONT></SPAN></DIV>
<DIV><SPAN class=063270921-11112005><FONT face=Arial color=#0000ff size=2>bit
that is currently defined as reserved.</FONT></SPAN></DIV>
<DIV><SPAN class=063270921-11112005> </SPAN></DIV></BODY></HTML>