xref: /OK3568_Linux_fs/kernel/net/ceph/auth_none.c (revision 4882a59341e53eb6f0b4789bf948001014eff981) 
1*4882a593Smuzhiyun // SPDX-License-Identifier: GPL-2.0
2*4882a593Smuzhiyun 
3*4882a593Smuzhiyun #include <linux/ceph/ceph_debug.h>
4*4882a593Smuzhiyun 
5*4882a593Smuzhiyun #include <linux/err.h>
6*4882a593Smuzhiyun #include <linux/module.h>
7*4882a593Smuzhiyun #include <linux/random.h>
8*4882a593Smuzhiyun #include <linux/slab.h>
9*4882a593Smuzhiyun 
10*4882a593Smuzhiyun #include <linux/ceph/decode.h>
11*4882a593Smuzhiyun #include <linux/ceph/auth.h>
12*4882a593Smuzhiyun 
13*4882a593Smuzhiyun #include "auth_none.h"
14*4882a593Smuzhiyun 
reset(struct ceph_auth_client * ac)15*4882a593Smuzhiyun static void reset(struct ceph_auth_client *ac)
16*4882a593Smuzhiyun {
17*4882a593Smuzhiyun 	struct ceph_auth_none_info *xi = ac->private;
18*4882a593Smuzhiyun 
19*4882a593Smuzhiyun 	xi->starting = true;
20*4882a593Smuzhiyun }
21*4882a593Smuzhiyun 
destroy(struct ceph_auth_client * ac)22*4882a593Smuzhiyun static void destroy(struct ceph_auth_client *ac)
23*4882a593Smuzhiyun {
24*4882a593Smuzhiyun 	kfree(ac->private);
25*4882a593Smuzhiyun 	ac->private = NULL;
26*4882a593Smuzhiyun }
27*4882a593Smuzhiyun 
is_authenticated(struct ceph_auth_client * ac)28*4882a593Smuzhiyun static int is_authenticated(struct ceph_auth_client *ac)
29*4882a593Smuzhiyun {
30*4882a593Smuzhiyun 	struct ceph_auth_none_info *xi = ac->private;
31*4882a593Smuzhiyun 
32*4882a593Smuzhiyun 	return !xi->starting;
33*4882a593Smuzhiyun }
34*4882a593Smuzhiyun 
should_authenticate(struct ceph_auth_client * ac)35*4882a593Smuzhiyun static int should_authenticate(struct ceph_auth_client *ac)
36*4882a593Smuzhiyun {
37*4882a593Smuzhiyun 	struct ceph_auth_none_info *xi = ac->private;
38*4882a593Smuzhiyun 
39*4882a593Smuzhiyun 	return xi->starting;
40*4882a593Smuzhiyun }
41*4882a593Smuzhiyun 
ceph_auth_none_build_authorizer(struct ceph_auth_client * ac,struct ceph_none_authorizer * au)42*4882a593Smuzhiyun static int ceph_auth_none_build_authorizer(struct ceph_auth_client *ac,
43*4882a593Smuzhiyun 					   struct ceph_none_authorizer *au)
44*4882a593Smuzhiyun {
45*4882a593Smuzhiyun 	void *p = au->buf;
46*4882a593Smuzhiyun 	void *const end = p + sizeof(au->buf);
47*4882a593Smuzhiyun 	int ret;
48*4882a593Smuzhiyun 
49*4882a593Smuzhiyun 	ceph_encode_8_safe(&p, end, 1, e_range);
50*4882a593Smuzhiyun 	ret = ceph_auth_entity_name_encode(ac->name, &p, end);
51*4882a593Smuzhiyun 	if (ret < 0)
52*4882a593Smuzhiyun 		return ret;
53*4882a593Smuzhiyun 
54*4882a593Smuzhiyun 	ceph_encode_64_safe(&p, end, ac->global_id, e_range);
55*4882a593Smuzhiyun 	au->buf_len = p - (void *)au->buf;
56*4882a593Smuzhiyun 	dout("%s built authorizer len %d\n", __func__, au->buf_len);
57*4882a593Smuzhiyun 	return 0;
58*4882a593Smuzhiyun 
59*4882a593Smuzhiyun e_range:
60*4882a593Smuzhiyun 	return -ERANGE;
61*4882a593Smuzhiyun }
62*4882a593Smuzhiyun 
build_request(struct ceph_auth_client * ac,void * buf,void * end)63*4882a593Smuzhiyun static int build_request(struct ceph_auth_client *ac, void *buf, void *end)
64*4882a593Smuzhiyun {
65*4882a593Smuzhiyun 	return 0;
66*4882a593Smuzhiyun }
67*4882a593Smuzhiyun 
68*4882a593Smuzhiyun /*
69*4882a593Smuzhiyun  * the generic auth code decode the global_id, and we carry no actual
70*4882a593Smuzhiyun  * authenticate state, so nothing happens here.
71*4882a593Smuzhiyun  */
handle_reply(struct ceph_auth_client * ac,int result,void * buf,void * end)72*4882a593Smuzhiyun static int handle_reply(struct ceph_auth_client *ac, int result,
73*4882a593Smuzhiyun 			void *buf, void *end)
74*4882a593Smuzhiyun {
75*4882a593Smuzhiyun 	struct ceph_auth_none_info *xi = ac->private;
76*4882a593Smuzhiyun 
77*4882a593Smuzhiyun 	xi->starting = false;
78*4882a593Smuzhiyun 	return result;
79*4882a593Smuzhiyun }
80*4882a593Smuzhiyun 
ceph_auth_none_destroy_authorizer(struct ceph_authorizer * a)81*4882a593Smuzhiyun static void ceph_auth_none_destroy_authorizer(struct ceph_authorizer *a)
82*4882a593Smuzhiyun {
83*4882a593Smuzhiyun 	kfree(a);
84*4882a593Smuzhiyun }
85*4882a593Smuzhiyun 
86*4882a593Smuzhiyun /*
87*4882a593Smuzhiyun  * build an 'authorizer' with our entity_name and global_id.  it is
88*4882a593Smuzhiyun  * identical for all services we connect to.
89*4882a593Smuzhiyun  */
ceph_auth_none_create_authorizer(struct ceph_auth_client * ac,int peer_type,struct ceph_auth_handshake * auth)90*4882a593Smuzhiyun static int ceph_auth_none_create_authorizer(
91*4882a593Smuzhiyun 	struct ceph_auth_client *ac, int peer_type,
92*4882a593Smuzhiyun 	struct ceph_auth_handshake *auth)
93*4882a593Smuzhiyun {
94*4882a593Smuzhiyun 	struct ceph_none_authorizer *au;
95*4882a593Smuzhiyun 	int ret;
96*4882a593Smuzhiyun 
97*4882a593Smuzhiyun 	au = kmalloc(sizeof(*au), GFP_NOFS);
98*4882a593Smuzhiyun 	if (!au)
99*4882a593Smuzhiyun 		return -ENOMEM;
100*4882a593Smuzhiyun 
101*4882a593Smuzhiyun 	au->base.destroy = ceph_auth_none_destroy_authorizer;
102*4882a593Smuzhiyun 
103*4882a593Smuzhiyun 	ret = ceph_auth_none_build_authorizer(ac, au);
104*4882a593Smuzhiyun 	if (ret) {
105*4882a593Smuzhiyun 		kfree(au);
106*4882a593Smuzhiyun 		return ret;
107*4882a593Smuzhiyun 	}
108*4882a593Smuzhiyun 
109*4882a593Smuzhiyun 	auth->authorizer = (struct ceph_authorizer *) au;
110*4882a593Smuzhiyun 	auth->authorizer_buf = au->buf;
111*4882a593Smuzhiyun 	auth->authorizer_buf_len = au->buf_len;
112*4882a593Smuzhiyun 	auth->authorizer_reply_buf = au->reply_buf;
113*4882a593Smuzhiyun 	auth->authorizer_reply_buf_len = sizeof (au->reply_buf);
114*4882a593Smuzhiyun 
115*4882a593Smuzhiyun 	return 0;
116*4882a593Smuzhiyun }
117*4882a593Smuzhiyun 
118*4882a593Smuzhiyun static const struct ceph_auth_client_ops ceph_auth_none_ops = {
119*4882a593Smuzhiyun 	.name = "none",
120*4882a593Smuzhiyun 	.reset = reset,
121*4882a593Smuzhiyun 	.destroy = destroy,
122*4882a593Smuzhiyun 	.is_authenticated = is_authenticated,
123*4882a593Smuzhiyun 	.should_authenticate = should_authenticate,
124*4882a593Smuzhiyun 	.build_request = build_request,
125*4882a593Smuzhiyun 	.handle_reply = handle_reply,
126*4882a593Smuzhiyun 	.create_authorizer = ceph_auth_none_create_authorizer,
127*4882a593Smuzhiyun };
128*4882a593Smuzhiyun 
ceph_auth_none_init(struct ceph_auth_client * ac)129*4882a593Smuzhiyun int ceph_auth_none_init(struct ceph_auth_client *ac)
130*4882a593Smuzhiyun {
131*4882a593Smuzhiyun 	struct ceph_auth_none_info *xi;
132*4882a593Smuzhiyun 
133*4882a593Smuzhiyun 	dout("ceph_auth_none_init %p\n", ac);
134*4882a593Smuzhiyun 	xi = kzalloc(sizeof(*xi), GFP_NOFS);
135*4882a593Smuzhiyun 	if (!xi)
136*4882a593Smuzhiyun 		return -ENOMEM;
137*4882a593Smuzhiyun 
138*4882a593Smuzhiyun 	xi->starting = true;
139*4882a593Smuzhiyun 
140*4882a593Smuzhiyun 	ac->protocol = CEPH_AUTH_NONE;
141*4882a593Smuzhiyun 	ac->private = xi;
142*4882a593Smuzhiyun 	ac->ops = &ceph_auth_none_ops;
143*4882a593Smuzhiyun 	return 0;
144*4882a593Smuzhiyun }
145