Re: [storm] iSER approach - update
Michael Ko <mkosjc@gmail.com> Fri, 04 May 2012 17:05 UTC
Return-Path: <mkosjc@gmail.com>
X-Original-To: storm@ietfa.amsl.com
Delivered-To: storm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DA0E621E802A for <storm@ietfa.amsl.com>; Fri, 4 May 2012 10:05:24 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.598
X-Spam-Level:
X-Spam-Status: No, score=-3.598 tagged_above=-999 required=5 tests=[AWL=-0.000, BAYES_00=-2.599, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 1YoAG6mbOEDr for <storm@ietfa.amsl.com>; Fri, 4 May 2012 10:05:24 -0700 (PDT)
Received: from mail-qa0-f49.google.com (mail-qa0-f49.google.com [209.85.216.49]) by ietfa.amsl.com (Postfix) with ESMTP id DA69221E801A for <storm@ietf.org>; Fri, 4 May 2012 10:05:23 -0700 (PDT)
Received: by qabj40 with SMTP id j40so1539554qab.15 for <storm@ietf.org>; Fri, 04 May 2012 10:05:23 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=14Sv7SqKpuqsttSgxblZPHpfV2d9GabwvhHS1UqXfSA=; b=BceZWfDF3ItC80yYY9RVg6Y5Ji/6QkvOqqQGvCNp10LPPVZj6Cfso6InaBSsazaN35 Ywz/E76323c0ABH/Y2Patd2Zzj/5Va0rAK1dYQuWDcQaWy4UN6RiEu12NULleaw3cJN/ XtANELE6SbuajqXLRxr8F0FnK+9wmJJgfWmI78ncMDJPQLjvWdOY2W4Gg4DlEa58nJrg YsTxzc/DqaU5L+DIUoCt4/fQ4VhVNb+6Mlr1rvCY8Afu9OS6AmMgoIZ3hRomrIz+g5C5 E8/mtVh3v79RSSecXdRjzjz6PD3F9DbzsXXeaWyhni3fYI1B2wgY++8uom9ZxHEyj3s0 +yJQ==
MIME-Version: 1.0
Received: by 10.224.217.138 with SMTP id hm10mr11142641qab.76.1336151123373; Fri, 04 May 2012 10:05:23 -0700 (PDT)
Received: by 10.229.133.194 with HTTP; Fri, 4 May 2012 10:05:23 -0700 (PDT)
In-Reply-To: <8D3D17ACE214DC429325B2B98F3AE71203D1120D@MX15A.corp.emc.com>
References: <8D3D17ACE214DC429325B2B98F3AE71203D1120D@MX15A.corp.emc.com>
Date: Fri, 04 May 2012 10:05:23 -0700
Message-ID: <CAP_=6dL=P6h8Aj_HasjjjyJaHZUhCc2arT4xa5Q0U8rHX7z_ww@mail.gmail.com>
From: Michael Ko <mkosjc@gmail.com>
To: david.black@emc.com
Content-Type: multipart/alternative; boundary="20cf3005dc0e132e2704bf38eda4"
Cc: storm@ietf.org
Subject: Re: [storm] iSER approach - update
X-BeenThere: storm@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Storage Maintenance WG <storm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/storm>, <mailto:storm-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/storm>
List-Post: <mailto:storm@ietf.org>
List-Help: <mailto:storm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/storm>, <mailto:storm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 04 May 2012 17:05:25 -0000
David, I agree with your summary. Mike On Thu, May 3, 2012 at 3:29 PM, <david.black@emc.com> wrote: > Attempting to summarize where we are ... the changes from my earlier > attempt > are: > - Dropped the MUST for error reporting by the receiver. > - Added a more general "SHOULD NOT use" to iii). > - Added caching discussion and need for yet more security considerations > text to v). > - Added a warning about relying on SendSE and SendInvSE at receiver - new > item > vi). > > Are we getting closer? Here's the new version: > > i) Some iSER implementations have not followed RFC 5046's strict > requirements > for use of SendSE, SendInv and SendInvSE; they use Send instead. > ii) For interoperability, iSER implementations SHOULD accept and correctly > process SendSE, SendInv and SendInvSE messages. > iii) SendSE, SendInv and SendInvSE are to be regarded as optimizations or > enhancements to the basic Send message, and their support may vary > by > RCaP protocol and specific implementation. In general, these > messages > SHOULD NOT be used, unless the RCaP requires support for them in all > implementations. If these messages are used, the implementation > SHOULD > be capable of reverting to use of Send in order to work with a > receiver > that does not support these message (and we need to note that > attempted > use of these messages with a peer that doesn't support them may > result > in a fatal error that closes the RCaP connection). A specific > instance > that needs to be noted is that these messages SHOULD NOT be used > with > the InfiniBand RCaP because InfiniBand does not require support for > them > in all cases. > iv) New iSER implementations SHOULD use Send (and not these three > additional > messages) unless there are compelling reasons for doing otherwise > (latter is implicit in use of "SHOULD", but worth saying explicitly, > IMHO). > v) Some new text will be needed (especially Security Considerations) to > make it clear that STag invalidation is the initiator's > responsibility > for security reasons, and the initiator cannot rely on the target > using an Invalidate version of Send - the initiator MUST check and > do its own invalidation as required. The initiator MAY choose to > cache > mappings (i.e., reuse STags) across I/Os for efficiency, but that > has > security consequences (exposes initiator memory to remote access for > longer) that have to be discussed in the new Security > Considerations text. > vi) Similarly, iSER implementations SHOULD NOT rely on events triggered by > SendSE and SendInvSE, as these messages may not be used. In > contrast > to invalidation, there are no security consequences in this aspect. > > Thanks, > --David > ---------------------------------------------------- > David L. Black, Distinguished Engineer > EMC Corporation, 176 South St., Hopkinton, MA 01748 > +1 (508) 293-7953 FAX: +1 (508) 293-7786 > david.black@emc.com Mobile: +1 (978) 394-7754 > ---------------------------------------------------- > > > _______________________________________________ > storm mailing list > storm@ietf.org > https://www.ietf.org/mailman/listinfo/storm >
- [storm] iSER approach - update david.black
- Re: [storm] iSER approach - update Michael Ko
- [storm] iSER approach - update: Next Steps david.black
- Re: [storm] iSER approach - update: Next Steps Michael Ko
- [storm] iSER - new security text: Please review david.black
- Re: [storm] iSER - new security text: Please reviā¦ david.black