On Thu, Jun 30, 2022 at 02:14:00AM -0700, Chaitanya Kulkarni wrote: > This adds support for the REQ_OP_VERIFY. In this version we add IMO, VERIFY is a useless command. The history of storage is full of devices which simply lie. Since there's no way for the host to check if the device did any work, cheap devices may simply implement it as a NOOP. Even expensive devices where there's an ironclad legal contract between the vendor and customer may have bugs that result in only some of the bytes being VERIFYed. We shouldn't support it. Now, everything you say about its value (not consuming bus bandwidth) is true, but the device should provide the host with proof-of-work. I'd suggest calculating some kind of checksum, even something like a SHA-1 of the contents would be worth having. It doesn't need to be crypto-secure; just something the host can verify the device didn't spoof.
