ceph: allow renewal of auth credentials

Add infrastructure to allow the mon_client to periodically renew its auth credentials. Also add a messenger callback that will force such a renewal if a peer rejects our authenticator. Signed-off-by: Yehuda Sadeh <yehuda@hq.newdream.net> Signed-off-by: Sage Weil <sage@newdream.net>
author: Sage Weil <sage@newdream.net> 2010-02-02 19:21:06 -0500
committer: Sage Weil <sage@newdream.net> 2010-02-10 18:04:47 -0500
commit: 9bd2e6f8ba71facf1cadb7154a7e0e4d345a6aba (patch)
tree: 1c1bb4d2f769eca05443b98334fe0fbdb3b977c2 /fs/ceph/mds_client.c
parent: 8b6e4f2d8b21c25225b1ce8d53a2e03b92cc8522 (diff)
1 files changed, 13 insertions, 0 deletions
diff --git a/fs/ceph/mds_client.c b/fs/ceph/mds_client.c
index 4e3e8b229e67..aa8506bad42d 100644
--- a/fs/ceph/mds_client.c
+++ b/fs/ceph/mds_client.c
@@ -2946,12 +2946,25 @@ static int verify_authorizer_reply(struct ceph_connection *con, int len)
        return ac->ops->verify_authorizer_reply(ac, s->s_authorizer, len);
 }
+static int invalidate_authorizer(struct ceph_connection *con)
+{
+        struct ceph_mds_session *s = con->private;
+        struct ceph_mds_client *mdsc = s->s_mdsc;
+        struct ceph_auth_client *ac = mdsc->client->monc.auth;
+        if (ac->ops->invalidate_authorizer)
+                ac->ops->invalidate_authorizer(ac, CEPH_ENTITY_TYPE_MDS);
+        return ceph_monc_validate_auth(&mdsc->client->monc);
+}
 const static struct ceph_connection_operations mds_con_ops = {
        .get = con_get,
        .put = con_put,
        .dispatch = dispatch,
        .get_authorizer = get_authorizer,
        .verify_authorizer_reply = verify_authorizer_reply,
+        .invalidate_authorizer = invalidate_authorizer,
        .peer_reset = peer_reset,
 };
author	Sage Weil <sage@newdream.net>	2010-02-02 19:21:06 -0500
committer	Sage Weil <sage@newdream.net>	2010-02-10 18:04:47 -0500
commit	9bd2e6f8ba71facf1cadb7154a7e0e4d345a6aba (patch)
tree	1c1bb4d2f769eca05443b98334fe0fbdb3b977c2 /fs/ceph/mds_client.c
parent	8b6e4f2d8b21c25225b1ce8d53a2e03b92cc8522 (diff)

diff --git a/fs/ceph/mds_client.c b/fs/ceph/mds_client.c index 4e3e8b229e67..aa8506bad42d 100644 --- a/fs/ceph/mds_client.c +++ b/fs/ceph/mds_client.c
@@ -2946,12 +2946,25 @@ static int verify_authorizer_reply(struct ceph_connection *con, int len)
2946	return ac->ops->verify_authorizer_reply(ac, s->s_authorizer, len);	2946	return ac->ops->verify_authorizer_reply(ac, s->s_authorizer, len);
2947	}	2947	}
2948		2948
		2949	static int invalidate_authorizer(struct ceph_connection *con)
		2950	{
		2951	struct ceph_mds_session *s = con->private;
		2952	struct ceph_mds_client *mdsc = s->s_mdsc;
		2953	struct ceph_auth_client *ac = mdsc->client->monc.auth;
		2954
		2955	if (ac->ops->invalidate_authorizer)
		2956	ac->ops->invalidate_authorizer(ac, CEPH_ENTITY_TYPE_MDS);
		2957
		2958	return ceph_monc_validate_auth(&mdsc->client->monc);
		2959	}
		2960
2949	const static struct ceph_connection_operations mds_con_ops = {	2961	const static struct ceph_connection_operations mds_con_ops = {
2950	.get = con_get,	2962	.get = con_get,
2951	.put = con_put,	2963	.put = con_put,
2952	.dispatch = dispatch,	2964	.dispatch = dispatch,
2953	.get_authorizer = get_authorizer,	2965	.get_authorizer = get_authorizer,
2954	.verify_authorizer_reply = verify_authorizer_reply,	2966	.verify_authorizer_reply = verify_authorizer_reply,
		2967	.invalidate_authorizer = invalidate_authorizer,
2955	.peer_reset = peer_reset,	2968	.peer_reset = peer_reset,
2956	};	2969	};
2957		2970