On Tue, Nov 24, 2015 at 09:07:41PM +0200, Matan Barak wrote: > IMHO, the user is entitles to choose any valid sgid_index for the > interface. Anything he chooses guaranteed to be valid (from security > perspective) No, the namespace patches will have to limit the sgid_indexes that can be used with a QP to those that fall within the namespace. This is another reason I don't like this approach for the kapi. > Why do we need to block users who use ibv_rc_pingpong and chose the > GID index correctly by hand? I'm not really concerned with user space, we are stuck with exporting the gid index there. > > OK. Change the gid cache so only a RDMA CM private API can return > > rocev2 gids. > > So you propose to block verbs applications from using the RoCE v2 GIDs? Why? Just the kernel consumers, so the in-kernel users are correct. Jason -- To unsubscribe from this list: send the line "unsubscribe linux-rdma" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html