• Ilya Dryomov's avatar
    libceph, ceph: incorporate nautilus cephx changes · 285ea34f
    Ilya Dryomov authored
    - request service tickets together with auth ticket.  Currently we get
      auth ticket via CEPHX_GET_AUTH_SESSION_KEY op and then request service
      tickets via CEPHX_GET_PRINCIPAL_SESSION_KEY op in a separate message.
      Since nautilus, desired service tickets are shared togther with auth
      ticket in CEPHX_GET_AUTH_SESSION_KEY reply.
    
    - propagate session key and connection secret, if any.  In preparation
      for msgr2, update handle_reply() and verify_authorizer_reply() auth
      ops to propagate session key and connection secret.  Since nautilus,
      if secure mode is negotiated, connection secret is shared either in
      CEPHX_GET_AUTH_SESSION_KEY reply (for mons) or in a final authorizer
      reply (for osds and mdses).
    Signed-off-by: default avatarIlya Dryomov <idryomov@gmail.com>
    285ea34f
crypto.h 1.08 KB