Presentation is loading. Please wait.

Presentation is loading. Please wait.

August 04, 2004John Carrier, Adaptec1 One-Shot STags John Carrier Adaptec.

Published byLydia Heath Modified over 8 years ago

Similar presentations

Presentation on theme: "August 04, 2004John Carrier, Adaptec1 One-Shot STags John Carrier Adaptec."— Presentation transcript:

1 August 04, 2004John Carrier, Adaptec1 One-Shot STags John Carrier Adaptec

2 August 04, 2004John Carrier, Adaptec2 Agenda Problem Statement Proposals Recommendations

3 August 04, 2004John Carrier, Adaptec3 Problem Statement STags may be valid for more than one RDMA access, which may leave the ULP open to attack from the remote peer. The ULP may be especially vulnerable from attacks through RDMA Writes –The remote peer indicates completion of the RDMA through an RDMA Send type message. –When the local ULP receives this completion message, it may assume that it again has ownership of its sink buffer. –However, unless the STag itself is invalidated, the remote peer may overwrite the buffer even as the local ULP is processing its contents. This remote access may be inadvertent or deliberate. IPsec cannot address this problem because the error is generated by the connection peer, not a man in the middle.

4 August 04, 2004John Carrier, Adaptec4 RDMA Write with Explicit ULP Invalidation

5 August 04, 2004John Carrier, Adaptec5 Peer Attack of Data Sink Buffer

6 August 04, 2004John Carrier, Adaptec6 Proposed Solutions Caitlin Bestler proposed ‘one-shot’ STags as a means of limiting the scope of STags to a single RDMA transaction. Current architectures, however, enable persistent STags that may be used for multiple RDMA events. –Some protocols such as SCSI, will rely on persistent STags to enable targets to DMA data to initiator buffers in the way targets find most efficient (ie as it becomes available) Reflector discussions focused on mechanisms where the RNIC could invalidate the STag before the ULP processed the completion –Send & Invalidate –Receive & Invalidate –RDMA Write & Invalidate

7 August 04, 2004John Carrier, Adaptec7 Send & Invalidate DDP already includes a Send & Invalidate message that allows the remote peer to include an STag in a Send Message which the local RNIC can invalidate before the local ULP processes the completion. The original intent of this message was to reduce a roundtrip to the RNIC during completion processing. If the RNIC invalidated the STag, then the local peer would not have to write to the RNIC after receiving the completion. The mechanism, however, effectively closes remote access to the STag and removes the vulnerability to further attack from the remote peer.

8 August 04, 2004John Carrier, Adaptec8 Implicit Invalidation: Send & Invalidate

9 August 04, 2004John Carrier, Adaptec9 Receive & Invalidate Caitlin suggested that the local peer should be in control of invalidating its own STags. –Send & Invalidate leaves that control with the remote peer. –Unless the ULP explicitly describes the use of Send & Invalidate (as iSER does), it is possible that the message will not be used correctly and sink buffers will be vulnerable. For ULPs that know which untagged receive buffer will be used to complete an RDMA Write, Caitlin proposed a new mechanism where the ULP included an STag when it posted the receive buffer. When the RNIC consumes the untagged buffer, it retrieves the STag associated with it, and then invalidates the STag for the Data Sink buffer.

10 August 04, 2004John Carrier, Adaptec10 Implicit Invalidation: Receive & Invalidate

11 August 04, 2004John Carrier, Adaptec11 RDMA Write & Invalidate In both Send & Invalidate and Receive & Invalidate the RNIC invalidates the STag following an RDMA Send Message. It is possible to have the RNIC invalidate the STag following the RDMA Write Message. –The RNIC “knows” that a Write Message is complete –After ACKing the last byte of the message, it could invalidate the STag associated with the RDMA write. The problem with this proposal is that the remote peer may require multiple RDMA Writes to fill the Data Sink buffer. –iSER, for example, could not use this mechanism

12 August 04, 2004John Carrier, Adaptec12 Multiple Use of a Data Sink Stag

13 August 04, 2004John Carrier, Adaptec13 Recommendations Send & Invalidate is the only general purpose solution that can be validated on the wire Receive & Invalidate may be useful to specific classes of applications. –Two well known protocols (SDP, iSER), for example, do not have such tight control of receive resources as to be able to associate STags for an RDMA transaction with a specific untagged buffer to hold its completion. –Furthermore, enabling this mechanism requires a non-trivial change to the RNIC Interface in order for the RNIC to store a STags in a queue of STag buffer pointers. Write & Invalidate restricts use of RDMA Write

14 August 04, 2004John Carrier, Adaptec14 Discussion Are one-shot STags really necessary? Would it suffice to describe the pitfalls of not using Send&Invalidate?

Download ppt "August 04, 2004John Carrier, Adaptec1 One-Shot STags John Carrier Adaptec."

Similar presentations

IEEE 802.21 MEDIA INDEPENDENT HANDOVER DCN: 21-09-00xx-00-sec Title: Initiate An Exercise for Generating a 21a Document Date Submitted: September 21, 2009.

IEEE MEDIA INDEPENDENT HANDOVER DCN: xx-00-sec Title: Initiate An Exercise for Generating a 21a Document Date Submitted: September 21, 2009.
A Study of iSCSI Extensions for RDMA (iSER)

A Study of iSCSI Extensions for RDMA (iSER)
Contents Overview Data Information Frame Format Protocol

Contents Overview Data Information Frame Format Protocol
Computer Architecture

Computer Architecture
System Integration and Performance

System Integration and Performance
Doc.: IEEE 802.11-08/0836r2 Submission July 2008 Dan Harkins, Aruba NetworksSlide 1 Changes to SAE State Machine Date: 2008-07-13 Authors:

Doc.: IEEE /0836r2 Submission July 2008 Dan Harkins, Aruba NetworksSlide 1 Changes to SAE State Machine Date: Authors:
Lectures on File Management

Lectures on File Management
Dr. Rabie A. Ramadan Al-Azhar University Lecture 3

Dr. Rabie A. Ramadan Al-Azhar University Lecture 3
Multi-core systems System Architecture COMP25212 Daniel Goodman Advanced Processor Technologies Group.

Multi-core systems System Architecture COMP25212 Daniel Goodman Advanced Processor Technologies Group.
OFED TCP Port Mapper Proposal June 15, 2011. Overview Current NE020 Linux OFED driver uses host TCP/IP stack MAC and IP address for RDMA connections Hardware.

OFED TCP Port Mapper Proposal June 15, Overview Current NE020 Linux OFED driver uses host TCP/IP stack MAC and IP address for RDMA connections Hardware.
NAT Traversal for P2PSIP Philip Matthews Avaya. Peer X Peer Y Peer W 2. P2PSIP Network Establishing new Peer Protocol connection Peer Protocol messages.

NAT Traversal for P2PSIP Philip Matthews Avaya. Peer X Peer Y Peer W 2. P2PSIP Network Establishing new Peer Protocol connection Peer Protocol messages.
IWARP Update #OFADevWorkshop.

IWARP Update #OFADevWorkshop.
12/02/14 Chet Douglas, DCG Crystal Ridge PE SW Architecture

12/02/14 Chet Douglas, DCG Crystal Ridge PE SW Architecture
August 02, 2004Mallikarjun Chadalapaka, HP1 iSCSI/RDMA: Overview of DA and iSER Mallikarjun Chadalapaka HP.

August 02, 2004Mallikarjun Chadalapaka, HP1 iSCSI/RDMA: Overview of DA and iSER Mallikarjun Chadalapaka HP.
TMN Workshop Antwerp, 27 May1998 EURESCOM Project P710 “Security for the TMN X-interface” by Pål Kristiansen, Telenor R&D  The need for TMN security &

TMN Workshop Antwerp, 27 May1998 EURESCOM Project P710 “Security for the TMN X-interface” by Pål Kristiansen, Telenor R&D  The need for TMN security &
Research Agenda on Efficient and Robust Datapath Yingping Lu.

Research Agenda on Efficient and Robust Datapath Yingping Lu.
Service Broker Lesson 11. Skills Matrix Service Broker Service Broker, provides a solution to common problems with message delivery and consistency that.

Service Broker Lesson 11. Skills Matrix Service Broker Service Broker, provides a solution to common problems with message delivery and consistency that.
1 Shared-memory Architectures Adapted from a lecture by Ian Watson, University of Machester.

1 Shared-memory Architectures Adapted from a lecture by Ian Watson, University of Machester.
FreeRTOS.

FreeRTOS.
Designing Security In Web Applications Andrew Tomkowiak 10/8/2013 UW-Platteville Software Engineering Department

Designing Security In Web Applications Andrew Tomkowiak 10/8/2013 UW-Platteville Software Engineering Department

Similar presentations

Ads by Google