libceph: message signature support

Signed-off-by: Yan, Zheng <zyan@redhat.com>
author: Yan, Zheng <zyan@redhat.com> 2014-11-04 03:33:37 -0500
committer: Ilya Dryomov <idryomov@redhat.com> 2014-12-17 12:09:50 -0500
commit: 33d07337962c7bbd2fd5cf7f1106735c9507fbe2 (patch)
tree: 93a95e7d02db4d7ba7d282483e32fd0627a3c281 /net/ceph
parent: ae385eaf24dc39c1703049112e4265b9f93b7d86 (diff)
3 files changed, 103 insertions, 3 deletions
diff --git a/net/ceph/auth_x.c b/net/ceph/auth_x.c
index 77f3885c16bc..15845814a0f2 100644
--- a/net/ceph/auth_x.c
+++ b/net/ceph/auth_x.c
@@ -8,6 +8,7 @@
 #include <linux/ceph/decode.h>
 #include <linux/ceph/auth.h>
+#include <linux/ceph/messenger.h>
 #include "crypto.h"
 #include "auth_x.h"
@@ -567,6 +568,8 @@ static int ceph_x_create_authorizer(
        auth->authorizer_buf_len = au->buf->vec.iov_len;
        auth->authorizer_reply_buf = au->reply_buf;
        auth->authorizer_reply_buf_len = sizeof (au->reply_buf);
+        auth->sign_message = ac->ops->sign_message;
+        auth->check_message_signature = ac->ops->check_message_signature;
        return 0;
 }
@@ -667,6 +670,59 @@ static void ceph_x_invalidate_authorizer(struct ceph_auth_client *ac,
                memset(&th->validity, 0, sizeof(th->validity));
 }
+static int calcu_signature(struct ceph_x_authorizer *au,
+                           struct ceph_msg *msg, __le64 *sig)
+{
+        int ret;
+        char tmp_enc[40];
+        __le32 tmp[5] = {
+                16u, msg->hdr.crc, msg->footer.front_crc,
+                msg->footer.middle_crc, msg->footer.data_crc,
+        };
+        ret = ceph_x_encrypt(&au->session_key, &tmp, sizeof(tmp),
+                             tmp_enc, sizeof(tmp_enc));
+        if (ret < 0)
+                return ret;
+        *sig = *(__le64*)(tmp_enc + 4);
+        return 0;
+}
+static int ceph_x_sign_message(struct ceph_auth_handshake *auth,
+                               struct ceph_msg *msg)
+{
+        int ret;
+        if (!auth->authorizer)
+                return 0;
+        ret = calcu_signature((struct ceph_x_authorizer *)auth->authorizer,
+                              msg, &msg->footer.sig);
+        if (ret < 0)
+                return ret;
+        msg->footer.flags |= CEPH_MSG_FOOTER_SIGNED;
+        return 0;
+}
+static int ceph_x_check_message_signature(struct ceph_auth_handshake *auth,
+                                          struct ceph_msg *msg)
+{
+        __le64 sig_check;
+        int ret;
+        if (!auth->authorizer)
+                return 0;
+        ret = calcu_signature((struct ceph_x_authorizer *)auth->authorizer,
+                              msg, &sig_check);
+        if (ret < 0)
+                return ret;
+        if (sig_check == msg->footer.sig)
+                return 0;
+        if (msg->footer.flags & CEPH_MSG_FOOTER_SIGNED)
+                dout("ceph_x_check_message_signature %p has signature %llx "
+                     "expect %llx\n", msg, msg->footer.sig, sig_check);
+        else
+                dout("ceph_x_check_message_signature %p sender did not set "
+                     "CEPH_MSG_FOOTER_SIGNED\n", msg);
+        return -EBADMSG;
+}
 static const struct ceph_auth_client_ops ceph_x_ops = {
        .name = "x",
@@ -681,6 +737,8 @@ static const struct ceph_auth_client_ops ceph_x_ops = {
        .invalidate_authorizer = ceph_x_invalidate_authorizer,
        .reset =  ceph_x_reset,
        .destroy = ceph_x_destroy,
+        .sign_message = ceph_x_sign_message,
+        .check_message_signature = ceph_x_check_message_signature,
 };
diff --git a/net/ceph/messenger.c b/net/ceph/messenger.c
index 863d07ab2129..33a2f201e460 100644
--- a/net/ceph/messenger.c
+++ b/net/ceph/messenger.c
@@ -1196,8 +1196,18 @@ static void prepare_write_message_footer(struct ceph_connection *con)
        dout("prepare_write_message_footer %p\n", con);
        con->out_kvec_is_msg = true;
        con->out_kvec[v].iov_base = &m->footer;
-        con->out_kvec[v].iov_len = sizeof(m->footer);
+        if (con->peer_features & CEPH_FEATURE_MSG_AUTH) {
-        con->out_kvec_bytes += sizeof(m->footer);
+                if (con->ops->sign_message)
+                        con->ops->sign_message(con, m);
+                else
+                        m->footer.sig = 0;
+                con->out_kvec[v].iov_len = sizeof(m->footer);
+                con->out_kvec_bytes += sizeof(m->footer);
+        } else {
+                m->old_footer.flags = m->footer.flags;
+                con->out_kvec[v].iov_len = sizeof(m->old_footer);
+                con->out_kvec_bytes += sizeof(m->old_footer);
+        }
        con->out_kvec_left++;
        con->out_more = m->more_to_follow;
        con->out_msg_done = true;
@@ -2249,6 +2259,7 @@ static int read_partial_message(struct ceph_connection *con)
        int ret;
        unsigned int front_len, middle_len, data_len;
        bool do_datacrc = !con->msgr->nocrc;
+        bool need_sign = (con->peer_features & CEPH_FEATURE_MSG_AUTH);
        u64 seq;
        u32 crc;
@@ -2361,12 +2372,21 @@ static int read_partial_message(struct ceph_connection *con)
        }
        /* footer */
-        size = sizeof (m->footer);
+        if (need_sign)
+                size = sizeof(m->footer);
+        else
+                size = sizeof(m->old_footer);
        end += size;
        ret = read_partial(con, end, size, &m->footer);
        if (ret <= 0)
                return ret;
+        if (!need_sign) {
+                m->footer.flags = m->old_footer.flags;
+                m->footer.sig = 0;
+        }
        dout("read_partial_message got msg %p %d (%u) + %d (%u) + %d (%u)\n",
             m, front_len, m->footer.front_crc, middle_len,
             m->footer.middle_crc, data_len, m->footer.data_crc);
@@ -2390,6 +2410,12 @@ static int read_partial_message(struct ceph_connection *con)
                return -EBADMSG;
        }
+        if (need_sign && con->ops->check_message_signature &&
+            con->ops->check_message_signature(con, m)) {
+                pr_err("read_partial_message %p signature check failed\n", m);
+                return -EBADMSG;
+        }
        return 1; /* done! */
 }
diff --git a/net/ceph/osd_client.c b/net/ceph/osd_client.c
index 6f164289bde8..1f6c4055adaf 100644
--- a/net/ceph/osd_client.c
+++ b/net/ceph/osd_client.c
@@ -2920,6 +2920,20 @@ static int invalidate_authorizer(struct ceph_connection *con)
        return ceph_monc_validate_auth(&osdc->client->monc);
 }
+static int sign_message(struct ceph_connection *con, struct ceph_msg *msg)
+{
+        struct ceph_osd *o = con->private;
+        struct ceph_auth_handshake *auth = &o->o_auth;
+        return ceph_auth_sign_message(auth, msg);
+}
+static int check_message_signature(struct ceph_connection *con, struct ceph_msg *msg)
+{
+        struct ceph_osd *o = con->private;
+        struct ceph_auth_handshake *auth = &o->o_auth;
+        return ceph_auth_check_message_signature(auth, msg);
+}
 static const struct ceph_connection_operations osd_con_ops = {
        .get = get_osd_con,
        .put = put_osd_con,
@@ -2928,5 +2942,7 @@ static const struct ceph_connection_operations osd_con_ops = {
        .verify_authorizer_reply = verify_authorizer_reply,
        .invalidate_authorizer = invalidate_authorizer,
        .alloc_msg = alloc_msg,
+        .sign_message = sign_message,
+        .check_message_signature = check_message_signature,
        .fault = osd_reset,
 };
author	Yan, Zheng <zyan@redhat.com>	2014-11-04 03:33:37 -0500
committer	Ilya Dryomov <idryomov@redhat.com>	2014-12-17 12:09:50 -0500
commit	33d07337962c7bbd2fd5cf7f1106735c9507fbe2 (patch)
tree	93a95e7d02db4d7ba7d282483e32fd0627a3c281 /net/ceph
parent	ae385eaf24dc39c1703049112e4265b9f93b7d86 (diff)

diff --git a/net/ceph/auth_x.c b/net/ceph/auth_x.c index 77f3885c16bc..15845814a0f2 100644 --- a/net/ceph/auth_x.c +++ b/net/ceph/auth_x.c
@@ -8,6 +8,7 @@
8		8
9	#include <linux/ceph/decode.h>	9	#include <linux/ceph/decode.h>
10	#include <linux/ceph/auth.h>	10	#include <linux/ceph/auth.h>
		11	#include <linux/ceph/messenger.h>
11		12
12	#include "crypto.h"	13	#include "crypto.h"
13	#include "auth_x.h"	14	#include "auth_x.h"
@@ -567,6 +568,8 @@ static int ceph_x_create_authorizer(
567	auth->authorizer_buf_len = au->buf->vec.iov_len;	568	auth->authorizer_buf_len = au->buf->vec.iov_len;
568	auth->authorizer_reply_buf = au->reply_buf;	569	auth->authorizer_reply_buf = au->reply_buf;
569	auth->authorizer_reply_buf_len = sizeof (au->reply_buf);	570	auth->authorizer_reply_buf_len = sizeof (au->reply_buf);
		571	auth->sign_message = ac->ops->sign_message;
		572	auth->check_message_signature = ac->ops->check_message_signature;
570		573
571	return 0;	574	return 0;
572	}	575	}
@@ -667,6 +670,59 @@ static void ceph_x_invalidate_authorizer(struct ceph_auth_client *ac,
667	memset(&th->validity, 0, sizeof(th->validity));	670	memset(&th->validity, 0, sizeof(th->validity));
668	}	671	}
669		672
		673	static int calcu_signature(struct ceph_x_authorizer *au,
		674	struct ceph_msg msg, __le64 sig)
		675	{
		676	int ret;
		677	char tmp_enc[40];
		678	__le32 tmp[5] = {
		679	16u, msg->hdr.crc, msg->footer.front_crc,
		680	msg->footer.middle_crc, msg->footer.data_crc,
		681	};
		682	ret = ceph_x_encrypt(&au->session_key, &tmp, sizeof(tmp),
		683	tmp_enc, sizeof(tmp_enc));
		684	if (ret < 0)
		685	return ret;
		686	sig = (__le64*)(tmp_enc + 4);
		687	return 0;
		688	}
		689
		690	static int ceph_x_sign_message(struct ceph_auth_handshake *auth,
		691	struct ceph_msg *msg)
		692	{
		693	int ret;
		694	if (!auth->authorizer)
		695	return 0;
		696	ret = calcu_signature((struct ceph_x_authorizer *)auth->authorizer,
		697	msg, &msg->footer.sig);
		698	if (ret < 0)
		699	return ret;
		700	msg->footer.flags \|= CEPH_MSG_FOOTER_SIGNED;
		701	return 0;
		702	}
		703
		704	static int ceph_x_check_message_signature(struct ceph_auth_handshake *auth,
		705	struct ceph_msg *msg)
		706	{
		707	__le64 sig_check;
		708	int ret;
		709
		710	if (!auth->authorizer)
		711	return 0;
		712	ret = calcu_signature((struct ceph_x_authorizer *)auth->authorizer,
		713	msg, &sig_check);
		714	if (ret < 0)
		715	return ret;
		716	if (sig_check == msg->footer.sig)
		717	return 0;
		718	if (msg->footer.flags & CEPH_MSG_FOOTER_SIGNED)
		719	dout("ceph_x_check_message_signature %p has signature %llx "
		720	"expect %llx\n", msg, msg->footer.sig, sig_check);
		721	else
		722	dout("ceph_x_check_message_signature %p sender did not set "
		723	"CEPH_MSG_FOOTER_SIGNED\n", msg);
		724	return -EBADMSG;
		725	}
670		726
671	static const struct ceph_auth_client_ops ceph_x_ops = {	727	static const struct ceph_auth_client_ops ceph_x_ops = {
672	.name = "x",	728	.name = "x",
@@ -681,6 +737,8 @@ static const struct ceph_auth_client_ops ceph_x_ops = {
681	.invalidate_authorizer = ceph_x_invalidate_authorizer,	737	.invalidate_authorizer = ceph_x_invalidate_authorizer,
682	.reset = ceph_x_reset,	738	.reset = ceph_x_reset,
683	.destroy = ceph_x_destroy,	739	.destroy = ceph_x_destroy,
		740	.sign_message = ceph_x_sign_message,
		741	.check_message_signature = ceph_x_check_message_signature,
684	};	742	};
685		743
686		744


diff --git a/net/ceph/messenger.c b/net/ceph/messenger.c index 863d07ab2129..33a2f201e460 100644 --- a/net/ceph/messenger.c +++ b/net/ceph/messenger.c
@@ -1196,8 +1196,18 @@ static void prepare_write_message_footer(struct ceph_connection *con)
1196	dout("prepare_write_message_footer %p\n", con);	1196	dout("prepare_write_message_footer %p\n", con);
1197	con->out_kvec_is_msg = true;	1197	con->out_kvec_is_msg = true;
1198	con->out_kvec[v].iov_base = &m->footer;	1198	con->out_kvec[v].iov_base = &m->footer;
1199	con->out_kvec[v].iov_len = sizeof(m->footer);	1199	if (con->peer_features & CEPH_FEATURE_MSG_AUTH) {
1200	con->out_kvec_bytes += sizeof(m->footer);	1200	if (con->ops->sign_message)
		1201	con->ops->sign_message(con, m);
		1202	else
		1203	m->footer.sig = 0;
		1204	con->out_kvec[v].iov_len = sizeof(m->footer);
		1205	con->out_kvec_bytes += sizeof(m->footer);
		1206	} else {
		1207	m->old_footer.flags = m->footer.flags;
		1208	con->out_kvec[v].iov_len = sizeof(m->old_footer);
		1209	con->out_kvec_bytes += sizeof(m->old_footer);
		1210	}
1201	con->out_kvec_left++;	1211	con->out_kvec_left++;
1202	con->out_more = m->more_to_follow;	1212	con->out_more = m->more_to_follow;
1203	con->out_msg_done = true;	1213	con->out_msg_done = true;
@@ -2249,6 +2259,7 @@ static int read_partial_message(struct ceph_connection *con)
2249	int ret;	2259	int ret;
2250	unsigned int front_len, middle_len, data_len;	2260	unsigned int front_len, middle_len, data_len;
2251	bool do_datacrc = !con->msgr->nocrc;	2261	bool do_datacrc = !con->msgr->nocrc;
		2262	bool need_sign = (con->peer_features & CEPH_FEATURE_MSG_AUTH);
2252	u64 seq;	2263	u64 seq;
2253	u32 crc;	2264	u32 crc;
2254		2265
@@ -2361,12 +2372,21 @@ static int read_partial_message(struct ceph_connection *con)
2361	}	2372	}
2362		2373
2363	/* footer */	2374	/* footer */
2364	size = sizeof (m->footer);	2375	if (need_sign)
		2376	size = sizeof(m->footer);
		2377	else
		2378	size = sizeof(m->old_footer);
		2379
2365	end += size;	2380	end += size;
2366	ret = read_partial(con, end, size, &m->footer);	2381	ret = read_partial(con, end, size, &m->footer);
2367	if (ret <= 0)	2382	if (ret <= 0)
2368	return ret;	2383	return ret;
2369		2384
		2385	if (!need_sign) {
		2386	m->footer.flags = m->old_footer.flags;
		2387	m->footer.sig = 0;
		2388	}
		2389
2370	dout("read_partial_message got msg %p %d (%u) + %d (%u) + %d (%u)\n",	2390	dout("read_partial_message got msg %p %d (%u) + %d (%u) + %d (%u)\n",
2371	m, front_len, m->footer.front_crc, middle_len,	2391	m, front_len, m->footer.front_crc, middle_len,
2372	m->footer.middle_crc, data_len, m->footer.data_crc);	2392	m->footer.middle_crc, data_len, m->footer.data_crc);
@@ -2390,6 +2410,12 @@ static int read_partial_message(struct ceph_connection *con)
2390	return -EBADMSG;	2410	return -EBADMSG;
2391	}	2411	}
2392		2412
		2413	if (need_sign && con->ops->check_message_signature &&
		2414	con->ops->check_message_signature(con, m)) {
		2415	pr_err("read_partial_message %p signature check failed\n", m);
		2416	return -EBADMSG;
		2417	}
		2418
2393	return 1; /* done! */	2419	return 1; /* done! */
2394	}	2420	}
2395		2421


diff --git a/net/ceph/osd_client.c b/net/ceph/osd_client.c index 6f164289bde8..1f6c4055adaf 100644 --- a/net/ceph/osd_client.c +++ b/net/ceph/osd_client.c
@@ -2920,6 +2920,20 @@ static int invalidate_authorizer(struct ceph_connection *con)
2920	return ceph_monc_validate_auth(&osdc->client->monc);	2920	return ceph_monc_validate_auth(&osdc->client->monc);
2921	}	2921	}
2922		2922
		2923	static int sign_message(struct ceph_connection con, struct ceph_msg msg)
		2924	{
		2925	struct ceph_osd *o = con->private;
		2926	struct ceph_auth_handshake *auth = &o->o_auth;
		2927	return ceph_auth_sign_message(auth, msg);
		2928	}
		2929
		2930	static int check_message_signature(struct ceph_connection con, struct ceph_msg msg)
		2931	{
		2932	struct ceph_osd *o = con->private;
		2933	struct ceph_auth_handshake *auth = &o->o_auth;
		2934	return ceph_auth_check_message_signature(auth, msg);
		2935	}
		2936
2923	static const struct ceph_connection_operations osd_con_ops = {	2937	static const struct ceph_connection_operations osd_con_ops = {
2924	.get = get_osd_con,	2938	.get = get_osd_con,
2925	.put = put_osd_con,	2939	.put = put_osd_con,
@@ -2928,5 +2942,7 @@ static const struct ceph_connection_operations osd_con_ops = {
2928	.verify_authorizer_reply = verify_authorizer_reply,	2942	.verify_authorizer_reply = verify_authorizer_reply,
2929	.invalidate_authorizer = invalidate_authorizer,	2943	.invalidate_authorizer = invalidate_authorizer,
2930	.alloc_msg = alloc_msg,	2944	.alloc_msg = alloc_msg,
		2945	.sign_message = sign_message,
		2946	.check_message_signature = check_message_signature,
2931	.fault = osd_reset,	2947	.fault = osd_reset,
2932	};	2948	};