git://git.whamcloud.com - fs/lustre-release.git/commit

author	Jeremy Filizetti <jeremy.filizetti@gmail.com>
	Sun, 2 Oct 2016 19:40:24 +0000 (15:40 -0400)
committer	Oleg Drokin <oleg.drokin@intel.com>
	Wed, 26 Oct 2016 23:02:51 +0000 (23:02 +0000)
commit	2de43286f95281648881033062abf9503bd60541
tree	a476d1401299579a71f5fe8a67897ff83cf2f633	tree \| snapshot
parent	c7a757b151fd204e0bea8bc34e9e0c4e76445ba1	commit \| diff

LU-8590 gss: Move DH parameter generation out of upcall

This change adds the Diffie-Hellman parameter generation to the
lgss_sk utility prior to key loading. The parameters are now
persistent to prevent long DH parameter generation times which
can cause mount command and connection timeouts.

This is based on recommendations from Matt Wood at Intel's
security review.

Signed-off-by: Jeremy Filizetti <jeremy.filizetti@gmail.com>
Change-Id: Iba840168da533662ed8ec78004be9e4dc5369c68
Reviewed-on: http://review.whamcloud.com/23322
Tested-by: Jenkins
Tested-by: Maloo <hpdd-maloo@intel.com>
Reviewed-by: John L. Hammond <john.hammond@intel.com>
Reviewed-by: Andreas Dilger <andreas.dilger@intel.com>
Reviewed-by: Oleg Drokin <oleg.drokin@intel.com>

lustre/doc/Makefile.am		diff \| blob \| history
lustre/doc/lgss_sk.8		diff \| blob \| history
lustre/utils/gss/lgss_sk.c		diff \| blob \| history
lustre/utils/gss/lgss_sk_utils.c		diff \| blob \| history
lustre/utils/gss/sk_utils.c		diff \| blob \| history
lustre/utils/gss/sk_utils.h		diff \| blob \| history
lustre/utils/gss/svcgssd_proc.c		diff \| blob \| history
lustre/utils/mount_utils.c		diff \| blob \| history