From 483eb2f56657e8e7f419ab1a4fab8dce9ade8609 Mon Sep 17 00:00:00 2001
From: Daniel Baumann <daniel.baumann@progress-linux.org>
Date: Sat, 27 Apr 2024 20:24:20 +0200
Subject: Adding upstream version 14.2.21.

Signed-off-by: Daniel Baumann <daniel.baumann@progress-linux.org>
---
 src/auth/AuthRegistry.h | 73 +++++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 73 insertions(+)
 create mode 100644 src/auth/AuthRegistry.h

(limited to 'src/auth/AuthRegistry.h')

diff --git a/src/auth/AuthRegistry.h b/src/auth/AuthRegistry.h
new file mode 100644
index 00000000..ce55dca0
--- /dev/null
+++ b/src/auth/AuthRegistry.h
@@ -0,0 +1,73 @@
+// -*- mode:C++; tab-width:8; c-basic-offset:2; indent-tabs-mode:t -*-
+// vim: ts=8 sw=2 smarttab
+
+#pragma once
+
+#include <map>
+#include <vector>
+
+#include "AuthAuthorizeHandler.h"
+#include "AuthMethodList.h"
+#include "common/ceph_mutex.h"
+#include "common/ceph_context.h"
+#include "common/config_cacher.h"
+
+class AuthRegistry : public md_config_obs_t {
+  CephContext *cct;
+  ceph::mutex lock = ceph::make_mutex("AuthRegistry::lock");
+
+  std::map<int,AuthAuthorizeHandler*> authorize_handlers;
+
+  bool _no_keyring_disabled_cephx = false;
+
+  // CEPH_AUTH_*
+  std::vector<uint32_t> cluster_methods;
+  std::vector<uint32_t> service_methods;
+  std::vector<uint32_t> client_methods;
+
+  // CEPH_CON_MODE_*
+  std::vector<uint32_t> mon_cluster_modes;
+  std::vector<uint32_t> mon_service_modes;
+  std::vector<uint32_t> mon_client_modes;
+  std::vector<uint32_t> cluster_modes;
+  std::vector<uint32_t> service_modes;
+  std::vector<uint32_t> client_modes;
+
+  void _parse_method_list(const string& str, std::vector<uint32_t> *v);
+  void _parse_mode_list(const string& str, std::vector<uint32_t> *v);
+  void _refresh_config();
+
+public:
+  AuthRegistry(CephContext *cct);
+  ~AuthRegistry();
+
+  void refresh_config() {
+    std::scoped_lock l(lock);
+    _refresh_config();
+  }
+
+  void get_supported_methods(int peer_type,
+			     std::vector<uint32_t> *methods,
+			     std::vector<uint32_t> *modes=nullptr);
+  bool is_supported_method(int peer_type, int method);
+  bool any_supported_methods(int peer_type);
+
+  void get_supported_modes(int peer_type,
+			   uint32_t auth_method,
+			   std::vector<uint32_t> *modes);
+
+  uint32_t pick_mode(int peer_type,
+		     uint32_t auth_method,
+		     const std::vector<uint32_t>& preferred_modes);
+
+  AuthAuthorizeHandler *get_handler(int peer_type, int method);
+
+  const char** get_tracked_conf_keys() const override;
+  void handle_conf_change(const ConfigProxy& conf,
+                          const std::set<std::string>& changed) override;
+
+  bool no_keyring_disabled_cephx() {
+    std::scoped_lock l(lock);
+    return _no_keyring_disabled_cephx;
+  }
+};
-- 
cgit v1.2.3