Эхлэл Бүгдийг харах Тусламж
Нэвтрэх
SoftwareDesign
/
csu3_am335x
8
0
Салаа 0
Файлууд Асуудлууд 0 Хуулах хүсэлтүүд 0 Мэдлэгийн сан
Салаа: master
Салаанууд Тагууд
csu3_am335x
/
board-support
/
linux-4.9.59+gitAUTOINC+a75d8e9305-ga75d8e9305
/
include
/
linux
/
ceph
/
auth.h

auth.h 4.5 KB
Байнгын холболт Түүх Анхны өгөгдөл

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142 
  1. #ifndef _FS_CEPH_AUTH_H
    2. 

  2. #define _FS_CEPH_AUTH_H
    3. 

  3. 

  4. #include <linux/ceph/types.h>
    5. 

  5. #include <linux/ceph/buffer.h>
    6. 

  6. 

  7. /*
    8. 

  8.  * Abstract interface for communicating with the authenticate module.
    9. 

  9.  * There is some handshake that takes place between us and the monitor
    10. 

  10.  * to acquire the necessary keys.  These are used to generate an
    11. 

  11.  * 'authorizer' that we use when connecting to a service (mds, osd).
    12. 

  12.  */
    13. 

  13. 

  14. struct ceph_auth_client;
    15. 

  15. struct ceph_msg;
    16. 

  16. 

  17. struct ceph_authorizer {
    18. 

  18. 	void (*destroy)(struct ceph_authorizer *);
    19. 

  19. };
    20. 

  20. 

  21. struct ceph_auth_handshake {
    22. 

  22. 	struct ceph_authorizer *authorizer;
    23. 

  23. 	void *authorizer_buf;
    24. 

  24. 	size_t authorizer_buf_len;
    25. 

  25. 	void *authorizer_reply_buf;
    26. 

  26. 	size_t authorizer_reply_buf_len;
    27. 

  27. 	int (*sign_message)(struct ceph_auth_handshake *auth,
    28. 

  28. 			    struct ceph_msg *msg);
    29. 

  29. 	int (*check_message_signature)(struct ceph_auth_handshake *auth,
    30. 

  30. 				       struct ceph_msg *msg);
    31. 

  31. };
    32. 

  32. 

  33. struct ceph_auth_client_ops {
    34. 

  34. 	const char *name;
    35. 

  35. 

  36. 	/*
    37. 

  37. 	 * true if we are authenticated and can connect to
    38. 

  38. 	 * services.
    39. 

  39. 	 */
    40. 

  40. 	int (*is_authenticated)(struct ceph_auth_client *ac);
    41. 

  41. 

  42. 	/*
    43. 

  43. 	 * true if we should (re)authenticate, e.g., when our tickets
    44. 

  44. 	 * are getting old and crusty.
    45. 

  45. 	 */
    46. 

  46. 	int (*should_authenticate)(struct ceph_auth_client *ac);
    47. 

  47. 

  48. 	/*
    49. 

  49. 	 * build requests and process replies during monitor
    50. 

  50. 	 * handshake.  if handle_reply returns -EAGAIN, we build
    51. 

  51. 	 * another request.
    52. 

  52. 	 */
    53. 

  53. 	int (*build_request)(struct ceph_auth_client *ac, void *buf, void *end);
    54. 

  54. 	int (*handle_reply)(struct ceph_auth_client *ac, int result,
    55. 

  55. 			    void *buf, void *end);
    56. 

  56. 

  57. 	/*
    58. 

  58. 	 * Create authorizer for connecting to a service, and verify
    59. 

  59. 	 * the response to authenticate the service.
    60. 

  60. 	 */
    61. 

  61. 	int (*create_authorizer)(struct ceph_auth_client *ac, int peer_type,
    62. 

  62. 				 struct ceph_auth_handshake *auth);
    63. 

  63. 	/* ensure that an existing authorizer is up to date */
    64. 

  64. 	int (*update_authorizer)(struct ceph_auth_client *ac, int peer_type,
    65. 

  65. 				 struct ceph_auth_handshake *auth);
    66. 

  66. 	int (*verify_authorizer_reply)(struct ceph_auth_client *ac,
    67. 

  67. 				       struct ceph_authorizer *a, size_t len);
    68. 

  68. 	void (*invalidate_authorizer)(struct ceph_auth_client *ac,
    69. 

  69. 				      int peer_type);
    70. 

  70. 

  71. 	/* reset when we (re)connect to a monitor */
    72. 

  72. 	void (*reset)(struct ceph_auth_client *ac);
    73. 

  73. 

  74. 	void (*destroy)(struct ceph_auth_client *ac);
    75. 

  75. 

  76. 	int (*sign_message)(struct ceph_auth_handshake *auth,
    77. 

  77. 			    struct ceph_msg *msg);
    78. 

  78. 	int (*check_message_signature)(struct ceph_auth_handshake *auth,
    79. 

  79. 				       struct ceph_msg *msg);
    80. 

  80. };
    81. 

  81. 

  82. struct ceph_auth_client {
    83. 

  83. 	u32 protocol;           /* CEPH_AUTH_* */
    84. 

  84. 	void *private;          /* for use by protocol implementation */
    85. 

  85. 	const struct ceph_auth_client_ops *ops;  /* null iff protocol==0 */
    86. 

  86. 

  87. 	bool negotiating;       /* true if negotiating protocol */
    88. 

  88. 	const char *name;       /* entity name */
    89. 

  89. 	u64 global_id;          /* our unique id in system */
    90. 

  90. 	const struct ceph_crypto_key *key;     /* our secret key */
    91. 

  91. 	unsigned want_keys;     /* which services we want */
    92. 

  92. 

  93. 	struct mutex mutex;
    94. 

  94. };
    95. 

  95. 

  96. extern struct ceph_auth_client *ceph_auth_init(const char *name,
    97. 

  97. 					       const struct ceph_crypto_key *key);
    98. 

  98. extern void ceph_auth_destroy(struct ceph_auth_client *ac);
    99. 

  99. 

  100. extern void ceph_auth_reset(struct ceph_auth_client *ac);
    101. 

  101. 

  102. extern int ceph_auth_build_hello(struct ceph_auth_client *ac,
    103. 

  103. 				 void *buf, size_t len);
    104. 

  104. extern int ceph_handle_auth_reply(struct ceph_auth_client *ac,
    105. 

  105. 				  void *buf, size_t len,
    106. 

  106. 				  void *reply_buf, size_t reply_len);
    107. 

  107. int ceph_auth_entity_name_encode(const char *name, void **p, void *end);
    108. 

  108. 

  109. extern int ceph_build_auth(struct ceph_auth_client *ac,
    110. 

  110. 		    void *msg_buf, size_t msg_len);
    111. 

  111. 

  112. extern int ceph_auth_is_authenticated(struct ceph_auth_client *ac);
    113. 

  113. extern int ceph_auth_create_authorizer(struct ceph_auth_client *ac,
    114. 

  114. 				       int peer_type,
    115. 

  115. 				       struct ceph_auth_handshake *auth);
    116. 

  116. void ceph_auth_destroy_authorizer(struct ceph_authorizer *a);
    117. 

  117. extern int ceph_auth_update_authorizer(struct ceph_auth_client *ac,
    118. 

  118. 				       int peer_type,
    119. 

  119. 				       struct ceph_auth_handshake *a);
    120. 

  120. extern int ceph_auth_verify_authorizer_reply(struct ceph_auth_client *ac,
    121. 

  121. 					     struct ceph_authorizer *a,
    122. 

  122. 					     size_t len);
    123. 

  123. extern void ceph_auth_invalidate_authorizer(struct ceph_auth_client *ac,
    124. 

  124. 					    int peer_type);
    125. 

  125. 

  126. static inline int ceph_auth_sign_message(struct ceph_auth_handshake *auth,
    127. 

  127. 					 struct ceph_msg *msg)
    128. 

  128. {
    129. 

  129. 	if (auth->sign_message)
    130. 

  130. 		return auth->sign_message(auth, msg);
    131. 

  131. 	return 0;
    132. 

  132. }
    133. 

  133. 

  134. static inline
    135. 

  135. int ceph_auth_check_message_signature(struct ceph_auth_handshake *auth,
    136. 

  136. 				      struct ceph_msg *msg)
    137. 

  137. {
    138. 

  138. 	if (auth->check_message_signature)
    139. 

  139. 		return auth->check_message_signature(auth, msg);
    140. 

  140. 	return 0;
    141. 

  141. }
    142. 

  142. #endif
    143.