The IBA Protection Mechanisms

Refer to Table 16-1 on this page. IBA provides a number of mechanisms that prevent unauthorized operations from being performed. This chapter provides a detailed explanation of each of these mechanisms.

Table 16-1. Who Provides Protection from What?
ProblemHandled bySupport Required?
Unauthorized local access to a memory area.PDYes
Logic within HCA (e.g., a local QP) attempts unauthorized access to system memory.L_KeyYes
QP on remote CA attempts unauthorized RDMA or Atomic access to an area of CA's local memory.R_KeyYes, if RDMA and Atomic operations are supported.
Port's acceptance of packet from port that is not a member of the same partition.P_Key

  • For QPs: Yes, except for Raw Datagram QPs.

  • Optional for switches and routers.

Unauthorized SM attempts to access port's or device's configuration locations (i.e., its attributes).M_Key

  • Optional whether Master SM assigns M_Keys to ports. If it doesn't, ports do not check M_Key.

  • Based on setting of M_KeyProtectBits, port may or may not check M_Key before allowing SMP read attempt.

  • If M_Keys assigned, port must validate M_Key before allowing SMP write attempt.

Unauthorized Baseboard Manager (BM) attempts to access port's or device's configuration locations (i.e., its attributes).B_Key

  • Optional whether BM assigns B_Keys to ports. If it doesn't, ports do not check B_Key.

  • Based on setting of B_KeyProtectBit, port may or may not check B_Key before allowing BM read attempt.

  • If B_Keys assigned, port must validate B_Key before allowing BM write attempt.

Passing SM mastership to SM not authorized to manage this subnet.SM_KeyYes
Unauthorized access to a destination UD QP.PDYes
Acceptance of a datagram (by QP's RQ Logic) from unauthorized sender.Q_Key

  • Yes for RD and UD.

  • Not applicable for SMPs, but is applicable to GMPs.

  • On the sender's end, a RD QP isn't a member of the same RDD as the local EEC to whom it is passing a request packet to transmit.

  • On the receiving end, the EEC is not a member of the same RDD as the local RD QP to whom it passes a received request packet.

RDDYes for RD.

..................Content has been hidden....................

You can't read the all page of ebook, please click here login for view all page.
Reset
3.15.225.213