xref: /linux/net/ceph/auth_x.h (revision e58e871becec2d3b04ed91c0c16fe8deac9c9dfa)
1 #ifndef _FS_CEPH_AUTH_X_H
2 #define _FS_CEPH_AUTH_X_H
3 
4 #include <linux/rbtree.h>
5 
6 #include <linux/ceph/auth.h>
7 
8 #include "crypto.h"
9 #include "auth_x_protocol.h"
10 
11 /*
12  * Handle ticket for a single service.
13  */
14 struct ceph_x_ticket_handler {
15 	struct rb_node node;
16 	unsigned int service;
17 
18 	struct ceph_crypto_key session_key;
19 	bool have_key;
20 
21 	u64 secret_id;
22 	struct ceph_buffer *ticket_blob;
23 
24 	unsigned long renew_after, expires;
25 };
26 
27 #define CEPHX_AU_ENC_BUF_LEN	128  /* big enough for encrypted blob */
28 
29 struct ceph_x_authorizer {
30 	struct ceph_authorizer base;
31 	struct ceph_crypto_key session_key;
32 	struct ceph_buffer *buf;
33 	unsigned int service;
34 	u64 nonce;
35 	u64 secret_id;
36 	char enc_buf[CEPHX_AU_ENC_BUF_LEN] __aligned(8);
37 };
38 
39 struct ceph_x_info {
40 	struct ceph_crypto_key secret;
41 
42 	bool starting;
43 	u64 server_challenge;
44 
45 	unsigned int have_keys;
46 	struct rb_root ticket_handlers;
47 
48 	struct ceph_x_authorizer auth_authorizer;
49 };
50 
51 int ceph_x_init(struct ceph_auth_client *ac);
52 
53 #endif
54 
55