Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/sage/ceph-client

Pull Ceph fixes from Sage Weil: "There is a lifecycle fix in the auth code, a fix for a narrow race condition on map, and a helpful message in the log when there is a feature mismatch (which happens frequently now that the default server-side options have changed)" * 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/sage/ceph-client: rbd: report unsupported features to syslog rbd: fix rbd map vs notify races libceph: make authorizer destruction independent of ceph_auth_client
author: Linus Torvalds <torvalds@linux-foundation.org> 2016-04-28 21:59:24 -0400
committer: Linus Torvalds <torvalds@linux-foundation.org> 2016-04-28 21:59:24 -0400
commit: 6fa9bffbccb91e07519e1deb05e001d191f0df43 (patch)
tree: 2d631fb0cfd0af005ab04cf1dcbbec20ba414435 /net
parent: cf681c2ebcb502ced998ca0659b2907b9ad9daf9 (diff)
parent: d3767f0faeda5abdf205f947ae912d48dc70fa06 (diff)
6 files changed, 55 insertions, 55 deletions
diff --git a/net/ceph/auth.c b/net/ceph/auth.c
index 6b923bcaa2a4..2bc5965fdd1e 100644
--- a/net/ceph/auth.c
+++ b/net/ceph/auth.c
@@ -293,13 +293,9 @@ int ceph_auth_create_authorizer(struct ceph_auth_client *ac,
 }
 EXPORT_SYMBOL(ceph_auth_create_authorizer);
-void ceph_auth_destroy_authorizer(struct ceph_auth_client *ac,
+void ceph_auth_destroy_authorizer(struct ceph_authorizer *a)
-                                  struct ceph_authorizer *a)
 {
-        mutex_lock(&ac->mutex);
+        a->destroy(a);
-        if (ac->ops && ac->ops->destroy_authorizer)
-                ac->ops->destroy_authorizer(ac, a);
-        mutex_unlock(&ac->mutex);
 }
 EXPORT_SYMBOL(ceph_auth_destroy_authorizer);
diff --git a/net/ceph/auth_none.c b/net/ceph/auth_none.c
index 8c93fa8d81bc..5f836f02ae36 100644
--- a/net/ceph/auth_none.c
+++ b/net/ceph/auth_none.c
@@ -16,7 +16,6 @@ static void reset(struct ceph_auth_client *ac)
        struct ceph_auth_none_info *xi = ac->private;
        xi->starting = true;
-        xi->built_authorizer = false;
 }
 static void destroy(struct ceph_auth_client *ac)
@@ -39,6 +38,27 @@ static int should_authenticate(struct ceph_auth_client *ac)
        return xi->starting;
 }
+static int ceph_auth_none_build_authorizer(struct ceph_auth_client *ac,
+                                           struct ceph_none_authorizer *au)
+{
+        void *p = au->buf;
+        void *const end = p + sizeof(au->buf);
+        int ret;
+        ceph_encode_8_safe(&p, end, 1, e_range);
+        ret = ceph_entity_name_encode(ac->name, &p, end);
+        if (ret < 0)
+                return ret;
+        ceph_encode_64_safe(&p, end, ac->global_id, e_range);
+        au->buf_len = p - (void *)au->buf;
+        dout("%s built authorizer len %d\n", __func__, au->buf_len);
+        return 0;
+e_range:
+        return -ERANGE;
+}
 static int build_request(struct ceph_auth_client *ac, void *buf, void *end)
 {
        return 0;
@@ -57,32 +77,32 @@ static int handle_reply(struct ceph_auth_client *ac, int result,
        return result;
 }
+static void ceph_auth_none_destroy_authorizer(struct ceph_authorizer *a)
+{
+        kfree(a);
+}
 /*
- * build an 'authorizer' with our entity_name and global_id.  we can
+ * build an 'authorizer' with our entity_name and global_id.  it is
- * reuse a single static copy since it is identical for all services
+ * identical for all services we connect to.
- * we connect to.
 */
 static int ceph_auth_none_create_authorizer(
        struct ceph_auth_client *ac, int peer_type,
        struct ceph_auth_handshake *auth)
 {
-        struct ceph_auth_none_info *ai = ac->private;
+        struct ceph_none_authorizer *au;
-        struct ceph_none_authorizer *au = &ai->au;
-        void *p, *end;
        int ret;
-        if (!ai->built_authorizer) {
+        au = kmalloc(sizeof(*au), GFP_NOFS);
-                p = au->buf;
+        if (!au)
-                end = p + sizeof(au->buf);
+                return -ENOMEM;
-                ceph_encode_8(&p, 1);
-                ret = ceph_entity_name_encode(ac->name, &p, end - 8);
+        au->base.destroy = ceph_auth_none_destroy_authorizer;
-                if (ret < 0)
-                        goto bad;
+        ret = ceph_auth_none_build_authorizer(ac, au);
-                ceph_decode_need(&p, end, sizeof(u64), bad2);
+        if (ret) {
-                ceph_encode_64(&p, ac->global_id);
+                kfree(au);
-                au->buf_len = p - (void *)au->buf;
+                return ret;
-                ai->built_authorizer = true;
-                dout("built authorizer len %d\n", au->buf_len);
        }
        auth->authorizer = (struct ceph_authorizer *) au;
@@ -92,17 +112,6 @@ static int ceph_auth_none_create_authorizer(
        auth->authorizer_reply_buf_len = sizeof (au->reply_buf);
        return 0;
-bad2:
-        ret = -ERANGE;
-bad:
-        return ret;
-}
-static void ceph_auth_none_destroy_authorizer(struct ceph_auth_client *ac,
-                                      struct ceph_authorizer *a)
-{
-        /* nothing to do */
 }
 static const struct ceph_auth_client_ops ceph_auth_none_ops = {
@@ -114,7 +123,6 @@ static const struct ceph_auth_client_ops ceph_auth_none_ops = {
        .build_request = build_request,
        .handle_reply = handle_reply,
        .create_authorizer = ceph_auth_none_create_authorizer,
-        .destroy_authorizer = ceph_auth_none_destroy_authorizer,
 };
 int ceph_auth_none_init(struct ceph_auth_client *ac)
@@ -127,7 +135,6 @@ int ceph_auth_none_init(struct ceph_auth_client *ac)
                return -ENOMEM;
        xi->starting = true;
-        xi->built_authorizer = false;
        ac->protocol = CEPH_AUTH_NONE;
        ac->private = xi;
diff --git a/net/ceph/auth_none.h b/net/ceph/auth_none.h
index 059a3ce4b53f..62021535ae4a 100644
--- a/net/ceph/auth_none.h
+++ b/net/ceph/auth_none.h
@@ -12,6 +12,7 @@
 */
 struct ceph_none_authorizer {
+        struct ceph_authorizer base;
        char buf[128];
        int buf_len;
        char reply_buf[0];
@@ -19,8 +20,6 @@ struct ceph_none_authorizer {
 struct ceph_auth_none_info {
        bool starting;
-        bool built_authorizer;
-        struct ceph_none_authorizer au;   /* we only need one; it's static */
 };
 int ceph_auth_none_init(struct ceph_auth_client *ac);
diff --git a/net/ceph/auth_x.c b/net/ceph/auth_x.c
index 9e43a315e662..a0905f04bd13 100644
--- a/net/ceph/auth_x.c
+++ b/net/ceph/auth_x.c
@@ -565,6 +565,14 @@ static int ceph_x_handle_reply(struct ceph_auth_client *ac, int result,
        return -EAGAIN;
 }
+static void ceph_x_destroy_authorizer(struct ceph_authorizer *a)
+{
+        struct ceph_x_authorizer *au = (void *)a;
+        ceph_x_authorizer_cleanup(au);
+        kfree(au);
+}
 static int ceph_x_create_authorizer(
        struct ceph_auth_client *ac, int peer_type,
        struct ceph_auth_handshake *auth)
@@ -581,6 +589,8 @@ static int ceph_x_create_authorizer(
        if (!au)
                return -ENOMEM;
+        au->base.destroy = ceph_x_destroy_authorizer;
        ret = ceph_x_build_authorizer(ac, th, au);
        if (ret) {
                kfree(au);
@@ -643,16 +653,6 @@ static int ceph_x_verify_authorizer_reply(struct ceph_auth_client *ac,
        return ret;
 }
-static void ceph_x_destroy_authorizer(struct ceph_auth_client *ac,
-                                      struct ceph_authorizer *a)
-{
-        struct ceph_x_authorizer *au = (void *)a;
-        ceph_x_authorizer_cleanup(au);
-        kfree(au);
-}
 static void ceph_x_reset(struct ceph_auth_client *ac)
 {
        struct ceph_x_info *xi = ac->private;
@@ -770,7 +770,6 @@ static const struct ceph_auth_client_ops ceph_x_ops = {
        .create_authorizer = ceph_x_create_authorizer,
        .update_authorizer = ceph_x_update_authorizer,
        .verify_authorizer_reply = ceph_x_verify_authorizer_reply,
-        .destroy_authorizer = ceph_x_destroy_authorizer,
        .invalidate_authorizer = ceph_x_invalidate_authorizer,
        .reset =  ceph_x_reset,
        .destroy = ceph_x_destroy,
diff --git a/net/ceph/auth_x.h b/net/ceph/auth_x.h
index 40b1a3cf7397..21a5af904bae 100644
--- a/net/ceph/auth_x.h
+++ b/net/ceph/auth_x.h
@@ -26,6 +26,7 @@ struct ceph_x_ticket_handler {
 struct ceph_x_authorizer {
+        struct ceph_authorizer base;
        struct ceph_crypto_key session_key;
        struct ceph_buffer *buf;
        unsigned int service;
diff --git a/net/ceph/osd_client.c b/net/ceph/osd_client.c
index 32355d9d0103..40a53a70efdf 100644
--- a/net/ceph/osd_client.c
+++ b/net/ceph/osd_client.c
@@ -1087,10 +1087,8 @@ static void put_osd(struct ceph_osd *osd)
        dout("put_osd %p %d -> %d\n", osd, atomic_read(&osd->o_ref),
             atomic_read(&osd->o_ref) - 1);
        if (atomic_dec_and_test(&osd->o_ref)) {
-                struct ceph_auth_client *ac = osd->o_osdc->client->monc.auth;
                if (osd->o_auth.authorizer)
-                        ceph_auth_destroy_authorizer(ac, osd->o_auth.authorizer);
+                        ceph_auth_destroy_authorizer(osd->o_auth.authorizer);
                kfree(osd);
        }
 }
@@ -2984,7 +2982,7 @@ static struct ceph_auth_handshake *get_authorizer(struct ceph_connection *con,
        struct ceph_auth_handshake *auth = &o->o_auth;
        if (force_new && auth->authorizer) {
-                ceph_auth_destroy_authorizer(ac, auth->authorizer);
+                ceph_auth_destroy_authorizer(auth->authorizer);
                auth->authorizer = NULL;
        }
        if (!auth->authorizer) {
author	Linus Torvalds <torvalds@linux-foundation.org>	2016-04-28 21:59:24 -0400
committer	Linus Torvalds <torvalds@linux-foundation.org>	2016-04-28 21:59:24 -0400
commit	6fa9bffbccb91e07519e1deb05e001d191f0df43 (patch)
tree	2d631fb0cfd0af005ab04cf1dcbbec20ba414435 /net
parent	cf681c2ebcb502ced998ca0659b2907b9ad9daf9 (diff)
parent	d3767f0faeda5abdf205f947ae912d48dc70fa06 (diff)

diff --git a/net/ceph/auth.c b/net/ceph/auth.c index 6b923bcaa2a4..2bc5965fdd1e 100644 --- a/net/ceph/auth.c +++ b/net/ceph/auth.c
@@ -293,13 +293,9 @@ int ceph_auth_create_authorizer(struct ceph_auth_client *ac,
293	}	293	}
294	EXPORT_SYMBOL(ceph_auth_create_authorizer);	294	EXPORT_SYMBOL(ceph_auth_create_authorizer);
295		295
296	void ceph_auth_destroy_authorizer(struct ceph_auth_client *ac,	296	void ceph_auth_destroy_authorizer(struct ceph_authorizer *a)
297	struct ceph_authorizer *a)
298	{	297	{
299	mutex_lock(&ac->mutex);	298	a->destroy(a);
300	if (ac->ops && ac->ops->destroy_authorizer)
301	ac->ops->destroy_authorizer(ac, a);
302	mutex_unlock(&ac->mutex);
303	}	299	}
304	EXPORT_SYMBOL(ceph_auth_destroy_authorizer);	300	EXPORT_SYMBOL(ceph_auth_destroy_authorizer);
305		301


diff --git a/net/ceph/auth_none.c b/net/ceph/auth_none.c index 8c93fa8d81bc..5f836f02ae36 100644 --- a/net/ceph/auth_none.c +++ b/net/ceph/auth_none.c
@@ -16,7 +16,6 @@ static void reset(struct ceph_auth_client *ac)
16	struct ceph_auth_none_info *xi = ac->private;	16	struct ceph_auth_none_info *xi = ac->private;
17		17
18	xi->starting = true;	18	xi->starting = true;
19	xi->built_authorizer = false;
20	}	19	}
21		20
22	static void destroy(struct ceph_auth_client *ac)	21	static void destroy(struct ceph_auth_client *ac)
@@ -39,6 +38,27 @@ static int should_authenticate(struct ceph_auth_client *ac)
39	return xi->starting;	38	return xi->starting;
40	}	39	}
41		40
		41	static int ceph_auth_none_build_authorizer(struct ceph_auth_client *ac,
		42	struct ceph_none_authorizer *au)
		43	{
		44	void *p = au->buf;
		45	void *const end = p + sizeof(au->buf);
		46	int ret;
		47
		48	ceph_encode_8_safe(&p, end, 1, e_range);
		49	ret = ceph_entity_name_encode(ac->name, &p, end);
		50	if (ret < 0)
		51	return ret;
		52
		53	ceph_encode_64_safe(&p, end, ac->global_id, e_range);
		54	au->buf_len = p - (void *)au->buf;
		55	dout("%s built authorizer len %d\n", __func__, au->buf_len);
		56	return 0;
		57
		58	e_range:
		59	return -ERANGE;
		60	}
		61
42	static int build_request(struct ceph_auth_client ac, void buf, void *end)	62	static int build_request(struct ceph_auth_client ac, void buf, void *end)
43	{	63	{
44	return 0;	64	return 0;
@@ -57,32 +77,32 @@ static int handle_reply(struct ceph_auth_client *ac, int result,
57	return result;	77	return result;
58	}	78	}
59		79
		80	static void ceph_auth_none_destroy_authorizer(struct ceph_authorizer *a)
		81	{
		82	kfree(a);
		83	}
		84
60	/*	85	/*
61	* build an 'authorizer' with our entity_name and global_id. we can	86	* build an 'authorizer' with our entity_name and global_id. it is
62	* reuse a single static copy since it is identical for all services	87	* identical for all services we connect to.
63	* we connect to.
64	*/	88	*/
65	static int ceph_auth_none_create_authorizer(	89	static int ceph_auth_none_create_authorizer(
66	struct ceph_auth_client *ac, int peer_type,	90	struct ceph_auth_client *ac, int peer_type,
67	struct ceph_auth_handshake *auth)	91	struct ceph_auth_handshake *auth)
68	{	92	{
69	struct ceph_auth_none_info *ai = ac->private;	93	struct ceph_none_authorizer *au;
70	struct ceph_none_authorizer *au = &ai->au;
71	void p, end;
72	int ret;	94	int ret;
73		95
74	if (!ai->built_authorizer) {	96	au = kmalloc(sizeof(*au), GFP_NOFS);
75	p = au->buf;	97	if (!au)
76	end = p + sizeof(au->buf);	98	return -ENOMEM;
77	ceph_encode_8(&p, 1);	99
78	ret = ceph_entity_name_encode(ac->name, &p, end - 8);	100	au->base.destroy = ceph_auth_none_destroy_authorizer;
79	if (ret < 0)	101
80	goto bad;	102	ret = ceph_auth_none_build_authorizer(ac, au);
81	ceph_decode_need(&p, end, sizeof(u64), bad2);	103	if (ret) {
82	ceph_encode_64(&p, ac->global_id);	104	kfree(au);
83	au->buf_len = p - (void *)au->buf;	105	return ret;
84	ai->built_authorizer = true;
85	dout("built authorizer len %d\n", au->buf_len);
86	}	106	}
87		107
88	auth->authorizer = (struct ceph_authorizer *) au;	108	auth->authorizer = (struct ceph_authorizer *) au;
@@ -92,17 +112,6 @@ static int ceph_auth_none_create_authorizer(
92	auth->authorizer_reply_buf_len = sizeof (au->reply_buf);	112	auth->authorizer_reply_buf_len = sizeof (au->reply_buf);
93		113
94	return 0;	114	return 0;
95
96	bad2:
97	ret = -ERANGE;
98	bad:
99	return ret;
100	}
101
102	static void ceph_auth_none_destroy_authorizer(struct ceph_auth_client *ac,
103	struct ceph_authorizer *a)
104	{
105	/* nothing to do */
106	}	115	}
107		116
108	static const struct ceph_auth_client_ops ceph_auth_none_ops = {	117	static const struct ceph_auth_client_ops ceph_auth_none_ops = {
@@ -114,7 +123,6 @@ static const struct ceph_auth_client_ops ceph_auth_none_ops = {
114	.build_request = build_request,	123	.build_request = build_request,
115	.handle_reply = handle_reply,	124	.handle_reply = handle_reply,
116	.create_authorizer = ceph_auth_none_create_authorizer,	125	.create_authorizer = ceph_auth_none_create_authorizer,
117	.destroy_authorizer = ceph_auth_none_destroy_authorizer,
118	};	126	};
119		127
120	int ceph_auth_none_init(struct ceph_auth_client *ac)	128	int ceph_auth_none_init(struct ceph_auth_client *ac)
@@ -127,7 +135,6 @@ int ceph_auth_none_init(struct ceph_auth_client *ac)
127	return -ENOMEM;	135	return -ENOMEM;
128		136
129	xi->starting = true;	137	xi->starting = true;
130	xi->built_authorizer = false;
131		138
132	ac->protocol = CEPH_AUTH_NONE;	139	ac->protocol = CEPH_AUTH_NONE;
133	ac->private = xi;	140	ac->private = xi;


diff --git a/net/ceph/auth_none.h b/net/ceph/auth_none.h index 059a3ce4b53f..62021535ae4a 100644 --- a/net/ceph/auth_none.h +++ b/net/ceph/auth_none.h
@@ -12,6 +12,7 @@
12	*/	12	*/
13		13
14	struct ceph_none_authorizer {	14	struct ceph_none_authorizer {
		15	struct ceph_authorizer base;
15	char buf[128];	16	char buf[128];
16	int buf_len;	17	int buf_len;
17	char reply_buf[0];	18	char reply_buf[0];
@@ -19,8 +20,6 @@ struct ceph_none_authorizer {
19		20
20	struct ceph_auth_none_info {	21	struct ceph_auth_none_info {
21	bool starting;	22	bool starting;
22	bool built_authorizer;
23	struct ceph_none_authorizer au; /* we only need one; it's static */
24	};	23	};
25		24
26	int ceph_auth_none_init(struct ceph_auth_client *ac);	25	int ceph_auth_none_init(struct ceph_auth_client *ac);


diff --git a/net/ceph/auth_x.c b/net/ceph/auth_x.c index 9e43a315e662..a0905f04bd13 100644 --- a/net/ceph/auth_x.c +++ b/net/ceph/auth_x.c
@@ -565,6 +565,14 @@ static int ceph_x_handle_reply(struct ceph_auth_client *ac, int result,
565	return -EAGAIN;	565	return -EAGAIN;
566	}	566	}
567		567
		568	static void ceph_x_destroy_authorizer(struct ceph_authorizer *a)
		569	{
		570	struct ceph_x_authorizer au = (void )a;
		571
		572	ceph_x_authorizer_cleanup(au);
		573	kfree(au);
		574	}
		575
568	static int ceph_x_create_authorizer(	576	static int ceph_x_create_authorizer(
569	struct ceph_auth_client *ac, int peer_type,	577	struct ceph_auth_client *ac, int peer_type,
570	struct ceph_auth_handshake *auth)	578	struct ceph_auth_handshake *auth)
@@ -581,6 +589,8 @@ static int ceph_x_create_authorizer(
581	if (!au)	589	if (!au)
582	return -ENOMEM;	590	return -ENOMEM;
583		591
		592	au->base.destroy = ceph_x_destroy_authorizer;
		593
584	ret = ceph_x_build_authorizer(ac, th, au);	594	ret = ceph_x_build_authorizer(ac, th, au);
585	if (ret) {	595	if (ret) {
586	kfree(au);	596	kfree(au);
@@ -643,16 +653,6 @@ static int ceph_x_verify_authorizer_reply(struct ceph_auth_client *ac,
643	return ret;	653	return ret;
644	}	654	}
645		655
646	static void ceph_x_destroy_authorizer(struct ceph_auth_client *ac,
647	struct ceph_authorizer *a)
648	{
649	struct ceph_x_authorizer au = (void )a;
650
651	ceph_x_authorizer_cleanup(au);
652	kfree(au);
653	}
654
655
656	static void ceph_x_reset(struct ceph_auth_client *ac)	656	static void ceph_x_reset(struct ceph_auth_client *ac)
657	{	657	{
658	struct ceph_x_info *xi = ac->private;	658	struct ceph_x_info *xi = ac->private;
@@ -770,7 +770,6 @@ static const struct ceph_auth_client_ops ceph_x_ops = {
770	.create_authorizer = ceph_x_create_authorizer,	770	.create_authorizer = ceph_x_create_authorizer,
771	.update_authorizer = ceph_x_update_authorizer,	771	.update_authorizer = ceph_x_update_authorizer,
772	.verify_authorizer_reply = ceph_x_verify_authorizer_reply,	772	.verify_authorizer_reply = ceph_x_verify_authorizer_reply,
773	.destroy_authorizer = ceph_x_destroy_authorizer,
774	.invalidate_authorizer = ceph_x_invalidate_authorizer,	773	.invalidate_authorizer = ceph_x_invalidate_authorizer,
775	.reset = ceph_x_reset,	774	.reset = ceph_x_reset,
776	.destroy = ceph_x_destroy,	775	.destroy = ceph_x_destroy,


diff --git a/net/ceph/auth_x.h b/net/ceph/auth_x.h index 40b1a3cf7397..21a5af904bae 100644 --- a/net/ceph/auth_x.h +++ b/net/ceph/auth_x.h
@@ -26,6 +26,7 @@ struct ceph_x_ticket_handler {
26		26
27		27
28	struct ceph_x_authorizer {	28	struct ceph_x_authorizer {
		29	struct ceph_authorizer base;
29	struct ceph_crypto_key session_key;	30	struct ceph_crypto_key session_key;
30	struct ceph_buffer *buf;	31	struct ceph_buffer *buf;
31	unsigned int service;	32	unsigned int service;


diff --git a/net/ceph/osd_client.c b/net/ceph/osd_client.c index 32355d9d0103..40a53a70efdf 100644 --- a/net/ceph/osd_client.c +++ b/net/ceph/osd_client.c
@@ -1087,10 +1087,8 @@ static void put_osd(struct ceph_osd *osd)
1087	dout("put_osd %p %d -> %d\n", osd, atomic_read(&osd->o_ref),	1087	dout("put_osd %p %d -> %d\n", osd, atomic_read(&osd->o_ref),
1088	atomic_read(&osd->o_ref) - 1);	1088	atomic_read(&osd->o_ref) - 1);
1089	if (atomic_dec_and_test(&osd->o_ref)) {	1089	if (atomic_dec_and_test(&osd->o_ref)) {
1090	struct ceph_auth_client *ac = osd->o_osdc->client->monc.auth;
1091
1092	if (osd->o_auth.authorizer)	1090	if (osd->o_auth.authorizer)
1093	ceph_auth_destroy_authorizer(ac, osd->o_auth.authorizer);	1091	ceph_auth_destroy_authorizer(osd->o_auth.authorizer);
1094	kfree(osd);	1092	kfree(osd);
1095	}	1093	}
1096	}	1094	}
@@ -2984,7 +2982,7 @@ static struct ceph_auth_handshake get_authorizer(struct ceph_connection con,
2984	struct ceph_auth_handshake *auth = &o->o_auth;	2982	struct ceph_auth_handshake *auth = &o->o_auth;
2985		2983
2986	if (force_new && auth->authorizer) {	2984	if (force_new && auth->authorizer) {
2987	ceph_auth_destroy_authorizer(ac, auth->authorizer);	2985	ceph_auth_destroy_authorizer(auth->authorizer);
2988	auth->authorizer = NULL;	2986	auth->authorizer = NULL;
2989	}	2987	}
2990	if (!auth->authorizer) {	2988	if (!auth->authorizer) {