18c2ecf20Sopenharmony_ci/* SPDX-License-Identifier: GPL-2.0 */ 28c2ecf20Sopenharmony_ci#ifndef __FS_CEPH_AUTH_X_PROTOCOL 38c2ecf20Sopenharmony_ci#define __FS_CEPH_AUTH_X_PROTOCOL 48c2ecf20Sopenharmony_ci 58c2ecf20Sopenharmony_ci#define CEPHX_GET_AUTH_SESSION_KEY 0x0100 68c2ecf20Sopenharmony_ci#define CEPHX_GET_PRINCIPAL_SESSION_KEY 0x0200 78c2ecf20Sopenharmony_ci#define CEPHX_GET_ROTATING_KEY 0x0400 88c2ecf20Sopenharmony_ci 98c2ecf20Sopenharmony_ci/* common bits */ 108c2ecf20Sopenharmony_cistruct ceph_x_ticket_blob { 118c2ecf20Sopenharmony_ci __u8 struct_v; 128c2ecf20Sopenharmony_ci __le64 secret_id; 138c2ecf20Sopenharmony_ci __le32 blob_len; 148c2ecf20Sopenharmony_ci char blob[]; 158c2ecf20Sopenharmony_ci} __attribute__ ((packed)); 168c2ecf20Sopenharmony_ci 178c2ecf20Sopenharmony_ci 188c2ecf20Sopenharmony_ci/* common request/reply headers */ 198c2ecf20Sopenharmony_cistruct ceph_x_request_header { 208c2ecf20Sopenharmony_ci __le16 op; 218c2ecf20Sopenharmony_ci} __attribute__ ((packed)); 228c2ecf20Sopenharmony_ci 238c2ecf20Sopenharmony_cistruct ceph_x_reply_header { 248c2ecf20Sopenharmony_ci __le16 op; 258c2ecf20Sopenharmony_ci __le32 result; 268c2ecf20Sopenharmony_ci} __attribute__ ((packed)); 278c2ecf20Sopenharmony_ci 288c2ecf20Sopenharmony_ci 298c2ecf20Sopenharmony_ci/* authenticate handshake */ 308c2ecf20Sopenharmony_ci 318c2ecf20Sopenharmony_ci/* initial hello (no reply header) */ 328c2ecf20Sopenharmony_cistruct ceph_x_server_challenge { 338c2ecf20Sopenharmony_ci __u8 struct_v; 348c2ecf20Sopenharmony_ci __le64 server_challenge; 358c2ecf20Sopenharmony_ci} __attribute__ ((packed)); 368c2ecf20Sopenharmony_ci 378c2ecf20Sopenharmony_cistruct ceph_x_authenticate { 388c2ecf20Sopenharmony_ci __u8 struct_v; 398c2ecf20Sopenharmony_ci __le64 client_challenge; 408c2ecf20Sopenharmony_ci __le64 key; 418c2ecf20Sopenharmony_ci /* ticket blob */ 428c2ecf20Sopenharmony_ci} __attribute__ ((packed)); 438c2ecf20Sopenharmony_ci 448c2ecf20Sopenharmony_cistruct ceph_x_service_ticket_request { 458c2ecf20Sopenharmony_ci __u8 struct_v; 468c2ecf20Sopenharmony_ci __le32 keys; 478c2ecf20Sopenharmony_ci} __attribute__ ((packed)); 488c2ecf20Sopenharmony_ci 498c2ecf20Sopenharmony_cistruct ceph_x_challenge_blob { 508c2ecf20Sopenharmony_ci __le64 server_challenge; 518c2ecf20Sopenharmony_ci __le64 client_challenge; 528c2ecf20Sopenharmony_ci} __attribute__ ((packed)); 538c2ecf20Sopenharmony_ci 548c2ecf20Sopenharmony_ci 558c2ecf20Sopenharmony_ci 568c2ecf20Sopenharmony_ci/* authorize handshake */ 578c2ecf20Sopenharmony_ci 588c2ecf20Sopenharmony_ci/* 598c2ecf20Sopenharmony_ci * The authorizer consists of two pieces: 608c2ecf20Sopenharmony_ci * a - service id, ticket blob 618c2ecf20Sopenharmony_ci * b - encrypted with session key 628c2ecf20Sopenharmony_ci */ 638c2ecf20Sopenharmony_cistruct ceph_x_authorize_a { 648c2ecf20Sopenharmony_ci __u8 struct_v; 658c2ecf20Sopenharmony_ci __le64 global_id; 668c2ecf20Sopenharmony_ci __le32 service_id; 678c2ecf20Sopenharmony_ci struct ceph_x_ticket_blob ticket_blob; 688c2ecf20Sopenharmony_ci} __attribute__ ((packed)); 698c2ecf20Sopenharmony_ci 708c2ecf20Sopenharmony_cistruct ceph_x_authorize_b { 718c2ecf20Sopenharmony_ci __u8 struct_v; 728c2ecf20Sopenharmony_ci __le64 nonce; 738c2ecf20Sopenharmony_ci __u8 have_challenge; 748c2ecf20Sopenharmony_ci __le64 server_challenge_plus_one; 758c2ecf20Sopenharmony_ci} __attribute__ ((packed)); 768c2ecf20Sopenharmony_ci 778c2ecf20Sopenharmony_cistruct ceph_x_authorize_challenge { 788c2ecf20Sopenharmony_ci __u8 struct_v; 798c2ecf20Sopenharmony_ci __le64 server_challenge; 808c2ecf20Sopenharmony_ci} __attribute__ ((packed)); 818c2ecf20Sopenharmony_ci 828c2ecf20Sopenharmony_cistruct ceph_x_authorize_reply { 838c2ecf20Sopenharmony_ci __u8 struct_v; 848c2ecf20Sopenharmony_ci __le64 nonce_plus_one; 858c2ecf20Sopenharmony_ci} __attribute__ ((packed)); 868c2ecf20Sopenharmony_ci 878c2ecf20Sopenharmony_ci 888c2ecf20Sopenharmony_ci/* 898c2ecf20Sopenharmony_ci * encyption bundle 908c2ecf20Sopenharmony_ci */ 918c2ecf20Sopenharmony_ci#define CEPHX_ENC_MAGIC 0xff009cad8826aa55ull 928c2ecf20Sopenharmony_ci 938c2ecf20Sopenharmony_cistruct ceph_x_encrypt_header { 948c2ecf20Sopenharmony_ci __u8 struct_v; 958c2ecf20Sopenharmony_ci __le64 magic; 968c2ecf20Sopenharmony_ci} __attribute__ ((packed)); 978c2ecf20Sopenharmony_ci 988c2ecf20Sopenharmony_ci#endif 99