libceph: message signature support

	return msg;

}

static int sign_message(struct ceph_connection *con, struct ceph_msg *msg)

{

       struct ceph_mds_session *s = con->private;

       struct ceph_auth_handshake *auth = &s->s_auth;

       return ceph_auth_sign_message(auth, msg);

}

static int check_message_signature(struct ceph_connection *con, struct ceph_msg *msg)

{

       struct ceph_mds_session *s = con->private;

       struct ceph_auth_handshake *auth = &s->s_auth;

       return ceph_auth_check_message_signature(auth, msg);

}

static const struct ceph_connection_operations mds_con_ops = {

	.get = con_get,

	.put = con_put,

	.invalidate_authorizer = invalidate_authorizer,

	.peer_reset = peer_reset,

	.alloc_msg = mds_alloc_msg,

	.sign_message = sign_message,

	.check_message_signature = check_message_signature,

};

/* eof */

struct ceph_auth_client;

struct ceph_authorizer;

struct ceph_msg;

struct ceph_auth_handshake {

	struct ceph_authorizer *authorizer;

	size_t authorizer_buf_len;

	void *authorizer_reply_buf;

	size_t authorizer_reply_buf_len;

	int (*sign_message)(struct ceph_auth_handshake *auth,

			    struct ceph_msg *msg);

	int (*check_message_signature)(struct ceph_auth_handshake *auth,

				       struct ceph_msg *msg);

};

struct ceph_auth_client_ops {

	void (*reset)(struct ceph_auth_client *ac);

	void (*destroy)(struct ceph_auth_client *ac);

	int (*sign_message)(struct ceph_auth_handshake *auth,

			    struct ceph_msg *msg);

	int (*check_message_signature)(struct ceph_auth_handshake *auth,

				       struct ceph_msg *msg);

};

struct ceph_auth_client {

extern void ceph_auth_invalidate_authorizer(struct ceph_auth_client *ac,

					    int peer_type);

static inline int ceph_auth_sign_message(struct ceph_auth_handshake *auth,

					 struct ceph_msg *msg)

{

	if (auth->sign_message)

		return auth->sign_message(auth, msg);

	return 0;

}

static inline

int ceph_auth_check_message_signature(struct ceph_auth_handshake *auth,

				      struct ceph_msg *msg)

{

	if (auth->check_message_signature)

		return auth->check_message_signature(auth, msg);

	return 0;

}

#endif

	 CEPH_FEATURE_PGPOOL3 |			\

	 CEPH_FEATURE_OSDENC |			\

	 CEPH_FEATURE_CRUSH_TUNABLES |		\

	 CEPH_FEATURE_MSG_AUTH |		\

	 CEPH_FEATURE_CRUSH_TUNABLES2 |		\

	 CEPH_FEATURE_REPLY_CREATE_INODE |	\

	 CEPH_FEATURE_OSDHASHPSPOOL |		\

	struct ceph_msg * (*alloc_msg) (struct ceph_connection *con,

					struct ceph_msg_header *hdr,

					int *skip);

	int (*sign_message) (struct ceph_connection *con, struct ceph_msg *msg);

	int (*check_message_signature) (struct ceph_connection *con,

					struct ceph_msg *msg);

};

/* use format string %s%d */

 */

struct ceph_msg {

	struct ceph_msg_header hdr;	/* header */

	union {

		struct ceph_msg_footer footer;		/* footer */

		struct ceph_msg_footer_old old_footer;	/* old format footer */

	};

	struct kvec front;              /* unaligned blobs of message */

	struct ceph_buffer *middle;

/*

 * follows data payload

 */

struct ceph_msg_footer_old {

	__le32 front_crc, middle_crc, data_crc;

	__u8 flags;

} __attribute__ ((packed));

struct ceph_msg_footer {

	__le32 front_crc, middle_crc, data_crc;

	// sig holds the 64 bits of the digital signature for the message PLR

	__le64  sig;

	__u8 flags;

} __attribute__ ((packed));

#define CEPH_MSG_FOOTER_COMPLETE  (1<<0)   /* msg wasn't aborted */

#define CEPH_MSG_FOOTER_NOCRC     (1<<1)   /* no data crc */

#define CEPH_MSG_FOOTER_SIGNED	  (1<<2)   /* msg was signed */

#endif