1 // SPDX-License-Identifier: GPL-2.0
2 
3 #include <linux/ceph/ceph_debug.h>
4 
5 #include <linux/err.h>
6 #include <linux/module.h>
7 #include <linux/random.h>
8 #include <linux/slab.h>
9 
10 #include <linux/ceph/decode.h>
11 #include <linux/ceph/auth.h>
12 
13 #include "auth_none.h"
14 
reset(struct ceph_auth_client * ac)15 static void reset(struct ceph_auth_client *ac)
16 {
17 	struct ceph_auth_none_info *xi = ac->private;
18 
19 	xi->starting = true;
20 }
21 
destroy(struct ceph_auth_client * ac)22 static void destroy(struct ceph_auth_client *ac)
23 {
24 	kfree(ac->private);
25 	ac->private = NULL;
26 }
27 
is_authenticated(struct ceph_auth_client * ac)28 static int is_authenticated(struct ceph_auth_client *ac)
29 {
30 	struct ceph_auth_none_info *xi = ac->private;
31 
32 	return !xi->starting;
33 }
34 
should_authenticate(struct ceph_auth_client * ac)35 static int should_authenticate(struct ceph_auth_client *ac)
36 {
37 	struct ceph_auth_none_info *xi = ac->private;
38 
39 	return xi->starting;
40 }
41 
ceph_auth_none_build_authorizer(struct ceph_auth_client * ac,struct ceph_none_authorizer * au)42 static int ceph_auth_none_build_authorizer(struct ceph_auth_client *ac,
43 					   struct ceph_none_authorizer *au)
44 {
45 	void *p = au->buf;
46 	void *const end = p + sizeof(au->buf);
47 	int ret;
48 
49 	ceph_encode_8_safe(&p, end, 1, e_range);
50 	ret = ceph_auth_entity_name_encode(ac->name, &p, end);
51 	if (ret < 0)
52 		return ret;
53 
54 	ceph_encode_64_safe(&p, end, ac->global_id, e_range);
55 	au->buf_len = p - (void *)au->buf;
56 	dout("%s built authorizer len %d\n", __func__, au->buf_len);
57 	return 0;
58 
59 e_range:
60 	return -ERANGE;
61 }
62 
build_request(struct ceph_auth_client * ac,void * buf,void * end)63 static int build_request(struct ceph_auth_client *ac, void *buf, void *end)
64 {
65 	return 0;
66 }
67 
68 /*
69  * the generic auth code decode the global_id, and we carry no actual
70  * authenticate state, so nothing happens here.
71  */
handle_reply(struct ceph_auth_client * ac,u64 global_id,void * buf,void * end,u8 * session_key,int * session_key_len,u8 * con_secret,int * con_secret_len)72 static int handle_reply(struct ceph_auth_client *ac, u64 global_id,
73 			void *buf, void *end, u8 *session_key,
74 			int *session_key_len, u8 *con_secret,
75 			int *con_secret_len)
76 {
77 	struct ceph_auth_none_info *xi = ac->private;
78 
79 	xi->starting = false;
80 	ceph_auth_set_global_id(ac, global_id);
81 	return 0;
82 }
83 
ceph_auth_none_destroy_authorizer(struct ceph_authorizer * a)84 static void ceph_auth_none_destroy_authorizer(struct ceph_authorizer *a)
85 {
86 	kfree(a);
87 }
88 
89 /*
90  * build an 'authorizer' with our entity_name and global_id.  it is
91  * identical for all services we connect to.
92  */
ceph_auth_none_create_authorizer(struct ceph_auth_client * ac,int peer_type,struct ceph_auth_handshake * auth)93 static int ceph_auth_none_create_authorizer(
94 	struct ceph_auth_client *ac, int peer_type,
95 	struct ceph_auth_handshake *auth)
96 {
97 	struct ceph_none_authorizer *au;
98 	int ret;
99 
100 	au = kmalloc(sizeof(*au), GFP_NOFS);
101 	if (!au)
102 		return -ENOMEM;
103 
104 	au->base.destroy = ceph_auth_none_destroy_authorizer;
105 
106 	ret = ceph_auth_none_build_authorizer(ac, au);
107 	if (ret) {
108 		kfree(au);
109 		return ret;
110 	}
111 
112 	auth->authorizer = (struct ceph_authorizer *) au;
113 	auth->authorizer_buf = au->buf;
114 	auth->authorizer_buf_len = au->buf_len;
115 	auth->authorizer_reply_buf = NULL;
116 	auth->authorizer_reply_buf_len = 0;
117 
118 	return 0;
119 }
120 
121 static const struct ceph_auth_client_ops ceph_auth_none_ops = {
122 	.reset = reset,
123 	.destroy = destroy,
124 	.is_authenticated = is_authenticated,
125 	.should_authenticate = should_authenticate,
126 	.build_request = build_request,
127 	.handle_reply = handle_reply,
128 	.create_authorizer = ceph_auth_none_create_authorizer,
129 };
130 
ceph_auth_none_init(struct ceph_auth_client * ac)131 int ceph_auth_none_init(struct ceph_auth_client *ac)
132 {
133 	struct ceph_auth_none_info *xi;
134 
135 	dout("ceph_auth_none_init %p\n", ac);
136 	xi = kzalloc(sizeof(*xi), GFP_NOFS);
137 	if (!xi)
138 		return -ENOMEM;
139 
140 	xi->starting = true;
141 
142 	ac->protocol = CEPH_AUTH_NONE;
143 	ac->private = xi;
144 	ac->ops = &ceph_auth_none_ops;
145 	return 0;
146 }
147