ceph: add support for auth_x authentication protocol
authorSage Weil <sage@newdream.net>
Wed, 3 Feb 2010 00:25:35 +0000 (16:25 -0800)
committerSage Weil <sage@newdream.net>
Thu, 11 Feb 2010 19:48:45 +0000 (11:48 -0800)
commitec0994e48ea2aebf62ff08376227f3a9ccf46262
treefdfd595b36619507d25a6b06e14b86db0ee3849a
parent07c8739c521cb029d0f3549556aae2d304513978
ceph: add support for auth_x authentication protocol

The auth_x protocol implements support for a kerberos-like mutual
authentication infrastructure used by Ceph.  We do not simply use vanilla
kerberos because of scalability and performance issues when dealing with
a large cluster of nodes providing a single logical service.

Auth_x provides mutual authentication of client and server and protects
against replay and man in the middle attacks.  It does not encrypt
the full session over the wire, however, so data payload may still be
snooped.

Signed-off-by: Yehuda Sadeh <yehuda@hq.newdream.net>
Signed-off-by: Sage Weil <sage@newdream.net>
fs/ceph/Makefile
fs/ceph/auth.c
fs/ceph/auth_x.c [new file with mode: 0644]
fs/ceph/auth_x.h [new file with mode: 0644]
fs/ceph/auth_x_protocol.h [new file with mode: 0644]