Asterisk - The Open Source Telephony Project GIT-master-f36a736
Macros | Functions | Variables
profile_config.c File Reference
#include "asterisk.h"
#include "asterisk/cli.h"
#include "asterisk/sorcery.h"
#include "asterisk/acl.h"
#include "asterisk/stasis.h"
#include "asterisk/security_events.h"
#include "stir_shaken.h"
Include dependency graph for profile_config.c:

Go to the source code of this file.

Macros

#define CONFIG_TYPE   "profile"
 
#define DEFAULT_attest_level   attest_level_NOT_SET
 
#define DEFAULT_ca_file   NULL
 
#define DEFAULT_ca_path   NULL
 
#define DEFAULT_cert_cache_dir   NULL
 
#define DEFAULT_check_tn_cert_public_url   check_tn_cert_public_url_NOT_SET
 
#define DEFAULT_crl_file   NULL
 
#define DEFAULT_crl_path   NULL
 
#define DEFAULT_curl_timeout   0
 
#define DEFAULT_endpoint_behavior   endpoint_behavior_OFF
 
#define DEFAULT_load_system_certs   load_system_certs_NOT_SET
 
#define DEFAULT_max_cache_entry_age   0
 
#define DEFAULT_max_cache_size   0
 
#define DEFAULT_max_date_header_age   0
 
#define DEFAULT_max_iat_age   0
 
#define DEFAULT_private_key_file   NULL
 
#define DEFAULT_public_cert_url   NULL
 
#define DEFAULT_relax_x5u_path_restrictions   relax_x5u_path_restrictions_NOT_SET
 
#define DEFAULT_relax_x5u_port_scheme_restrictions   relax_x5u_port_scheme_restrictions_NOT_SET
 
#define DEFAULT_send_mky   send_mky_NOT_SET
 
#define DEFAULT_stir_shaken_failure_action   stir_shaken_failure_action_NOT_SET
 
#define DEFAULT_unknown_tn_attest_level   attest_level_NOT_SET
 
#define DEFAULT_untrusted_cert_file   NULL
 
#define DEFAULT_untrusted_cert_path   NULL
 
#define DEFAULT_use_rfc9410_responses   use_rfc9410_responses_NOT_SET
 

Functions

static char * cli_eprofile_show (struct ast_cli_entry *e, int cmd, struct ast_cli_args *a)
 
static char * cli_eprofile_show_all (struct ast_cli_entry *e, int cmd, struct ast_cli_args *a)
 
static char * cli_profile_show (struct ast_cli_entry *e, int cmd, struct ast_cli_args *a)
 
static char * cli_profile_show_all (struct ast_cli_entry *e, int cmd, struct ast_cli_args *a)
 
static struct profile_cfgcreate_effective_profile (struct profile_cfg *base_profile)
 
static int eprofile_apply (const struct ast_sorcery *sorcery, void *obj)
 
struct ao2_containereprofile_get_all (void)
 
struct profile_cfgeprofile_get_cfg (const char *id)
 
 generate_acfg_common_sorcery_handlers (profile_cfg)
 
 generate_sorcery_enum_from_str (profile_cfg,, endpoint_behavior, UNKNOWN)
 
 generate_sorcery_enum_from_str_ex (profile_cfg,, unknown_tn_attest_level, attest_level, UNKNOWN)
 
 generate_sorcery_enum_to_str (profile_cfg,, endpoint_behavior)
 
 generate_sorcery_enum_to_str_ex (profile_cfg,, unknown_tn_attest_level, attest_level)
 
 generate_vcfg_common_sorcery_handlers (profile_cfg)
 
static void * profile_alloc (const char *name)
 
static int profile_apply (const struct ast_sorcery *sorcery, void *obj)
 
static void profile_destructor (void *obj)
 
struct ao2_containerprofile_get_all (void)
 
struct profile_cfgprofile_get_cfg (const char *id)
 
int profile_load (void)
 
int profile_reload (void)
 
int profile_unload (void)
 

Variables

static struct ast_cli_entry stir_shaken_profile_cli []
 

Macro Definition Documentation

◆ CONFIG_TYPE

#define CONFIG_TYPE   "profile"

Definition at line 29 of file profile_config.c.

◆ DEFAULT_attest_level

#define DEFAULT_attest_level   attest_level_NOT_SET

Definition at line 56 of file profile_config.c.

◆ DEFAULT_ca_file

#define DEFAULT_ca_file   NULL

Definition at line 33 of file profile_config.c.

◆ DEFAULT_ca_path

#define DEFAULT_ca_path   NULL

Definition at line 34 of file profile_config.c.

◆ DEFAULT_cert_cache_dir

#define DEFAULT_cert_cache_dir   NULL

Definition at line 39 of file profile_config.c.

◆ DEFAULT_check_tn_cert_public_url

#define DEFAULT_check_tn_cert_public_url   check_tn_cert_public_url_NOT_SET

Definition at line 53 of file profile_config.c.

◆ DEFAULT_crl_file

#define DEFAULT_crl_file   NULL

Definition at line 35 of file profile_config.c.

◆ DEFAULT_crl_path

#define DEFAULT_crl_path   NULL

Definition at line 36 of file profile_config.c.

◆ DEFAULT_curl_timeout

#define DEFAULT_curl_timeout   0

Definition at line 41 of file profile_config.c.

◆ DEFAULT_endpoint_behavior

#define DEFAULT_endpoint_behavior   endpoint_behavior_OFF

Definition at line 31 of file profile_config.c.

◆ DEFAULT_load_system_certs

#define DEFAULT_load_system_certs   load_system_certs_NOT_SET

Definition at line 51 of file profile_config.c.

◆ DEFAULT_max_cache_entry_age

#define DEFAULT_max_cache_entry_age   0

Definition at line 44 of file profile_config.c.

◆ DEFAULT_max_cache_size

#define DEFAULT_max_cache_size   0

Definition at line 45 of file profile_config.c.

◆ DEFAULT_max_date_header_age

#define DEFAULT_max_date_header_age   0

Definition at line 43 of file profile_config.c.

◆ DEFAULT_max_iat_age

#define DEFAULT_max_iat_age   0

Definition at line 42 of file profile_config.c.

◆ DEFAULT_private_key_file

#define DEFAULT_private_key_file   NULL

Definition at line 54 of file profile_config.c.

◆ DEFAULT_public_cert_url

#define DEFAULT_public_cert_url   NULL

Definition at line 55 of file profile_config.c.

◆ DEFAULT_relax_x5u_path_restrictions

#define DEFAULT_relax_x5u_path_restrictions   relax_x5u_path_restrictions_NOT_SET

Definition at line 50 of file profile_config.c.

◆ DEFAULT_relax_x5u_port_scheme_restrictions

#define DEFAULT_relax_x5u_port_scheme_restrictions   relax_x5u_port_scheme_restrictions_NOT_SET

Definition at line 49 of file profile_config.c.

◆ DEFAULT_send_mky

#define DEFAULT_send_mky   send_mky_NOT_SET

Definition at line 58 of file profile_config.c.

◆ DEFAULT_stir_shaken_failure_action

#define DEFAULT_stir_shaken_failure_action   stir_shaken_failure_action_NOT_SET

Definition at line 47 of file profile_config.c.

◆ DEFAULT_unknown_tn_attest_level

#define DEFAULT_unknown_tn_attest_level   attest_level_NOT_SET

Definition at line 57 of file profile_config.c.

◆ DEFAULT_untrusted_cert_file

#define DEFAULT_untrusted_cert_file   NULL

Definition at line 37 of file profile_config.c.

◆ DEFAULT_untrusted_cert_path

#define DEFAULT_untrusted_cert_path   NULL

Definition at line 38 of file profile_config.c.

◆ DEFAULT_use_rfc9410_responses

#define DEFAULT_use_rfc9410_responses   use_rfc9410_responses_NOT_SET

Definition at line 48 of file profile_config.c.

Function Documentation

◆ cli_eprofile_show()

static char * cli_eprofile_show ( struct ast_cli_entry e,
int  cmd,
struct ast_cli_args a 
)
static

Definition at line 341 of file profile_config.c.

342{
343 struct profile_cfg *profile;
344 struct config_object_cli_data data = {
345 .title = "Effective Profile",
346 .object_type = config_object_type_profile,
347 };
348
349 switch(cmd) {
350 case CLI_INIT:
351 e->command = "stir_shaken show eprofile";
352 e->usage =
353 "Usage: stir_shaken show eprofile <id>\n"
354 " Show the stir/shaken eprofile settings for a given id\n";
355 return NULL;
356 case CLI_GENERATE:
357 if (a->pos == 3) {
358 return config_object_tab_complete_name(a->word, eprofile_get_all());
359 } else {
360 return NULL;
361 }
362 }
363
364 if (a->argc != 4) {
365 return CLI_SHOWUSAGE;
366 }
367
368 profile = eprofile_get_cfg(a->argv[3]);
369 if (!profile) {
370 ast_log(LOG_ERROR,"Effective Profile %s doesn't exist\n", a->argv[3]);
371 return CLI_FAILURE;
372 }
373 config_object_cli_show(profile, a, &data, 0);
374
375 ao2_cleanup(profile);
376
377 return CLI_SUCCESS;
378}
ast_log
#define ast_log
Definition: astobj2.c:42
ao2_cleanup
#define ao2_cleanup(obj)
Definition: astobj2.h:1934
CLI_SHOWUSAGE
#define CLI_SHOWUSAGE
Definition: cli.h:45
CLI_SUCCESS
#define CLI_SUCCESS
Definition: cli.h:44
CLI_INIT
@ CLI_INIT
Definition: cli.h:152
CLI_GENERATE
@ CLI_GENERATE
Definition: cli.h:153
CLI_FAILURE
#define CLI_FAILURE
Definition: cli.h:46
config_object_cli_show
int config_object_cli_show(void *obj, void *arg, void *data, int flags)
Output configuration settings to the Asterisk CLI.
Definition: common_config.c:172
config_object_tab_complete_name
char * config_object_tab_complete_name(const char *word, struct ao2_container *container)
Tab completion for name matching with STIR/SHAKEN CLI commands.
Definition: common_config.c:240
config_object_type_profile
@ config_object_type_profile
Definition: common_config.h:558
LOG_ERROR
#define LOG_ERROR
Definition: include/asterisk/logger.h:292
eprofile_get_cfg
struct profile_cfg * eprofile_get_cfg(const char *id)
Definition: profile_config.c:126
eprofile_get_all
struct ao2_container * eprofile_get_all(void)
Definition: profile_config.c:120
NULL
#define NULL
Definition: resample.c:96
ast_cli_entry::command
char * command
Definition: cli.h:186
ast_cli_entry::usage
const char * usage
Definition: cli.h:177
config_object_cli_data
Definition: common_config.h:562
config_object_cli_data::title
const char * title
Definition: common_config.h:563
profile_cfg
Profile configuration for stir/shaken.
Definition: common_config.h:417
a
static struct test_val a
Definition: test_linkedlists.c:46

References a, ao2_cleanup, ast_log, CLI_FAILURE, CLI_GENERATE, CLI_INIT, CLI_SHOWUSAGE, CLI_SUCCESS, ast_cli_entry::command, config_object_cli_show(), config_object_tab_complete_name(), config_object_type_profile, eprofile_get_all(), eprofile_get_cfg(), LOG_ERROR, NULL, config_object_cli_data::title, and ast_cli_entry::usage.

◆ cli_eprofile_show_all()

static char * cli_eprofile_show_all ( struct ast_cli_entry e,
int  cmd,
struct ast_cli_args a 
)
static

Definition at line 380 of file profile_config.c.

381{
382 struct ao2_container *container;
383 struct config_object_cli_data data = {
384 .title = "Effective Profile",
385 .object_type = config_object_type_profile,
386 };
387
388 switch(cmd) {
389 case CLI_INIT:
390 e->command = "stir_shaken show eprofiles";
391 e->usage =
392 "Usage: stir_shaken show eprofiles\n"
393 " Show all eprofiles for stir/shaken\n";
394 return NULL;
395 case CLI_GENERATE:
396 return NULL;
397 }
398
399 if (a->argc != 3) {
400 return CLI_SHOWUSAGE;
401 }
402
403 container = eprofile_get_all();
404 if (!container || ao2_container_count(container) == 0) {
405 ast_cli(a->fd, "No stir/shaken eprofiles found\n");
406 ao2_cleanup(container);
407 return CLI_SUCCESS;
408 }
409
410 ao2_callback_data(container, OBJ_NODATA, config_object_cli_show, a, &data);
411 ao2_ref(container, -1);
412
413 return CLI_SUCCESS;
414}
ao2_container_count
int ao2_container_count(struct ao2_container *c)
Returns the number of elements in a container.
Definition: astobj2_container.c:34
ao2_callback_data
#define ao2_callback_data(container, flags, cb_fn, arg, data)
Definition: astobj2.h:1723
ao2_ref
#define ao2_ref(o, delta)
Reference/unreference an object and return the old refcount.
Definition: astobj2.h:459
OBJ_NODATA
@ OBJ_NODATA
Definition: astobj2.h:1044
ast_cli
void ast_cli(int fd, const char *fmt,...)
Definition: clicompat.c:6
container
struct ao2_container * container
Definition: res_fax.c:501
ao2_container
Generic container type.
Definition: astobj2_container_private.h:270

References a, ao2_callback_data, ao2_cleanup, ao2_container_count(), ao2_ref, ast_cli(), CLI_GENERATE, CLI_INIT, CLI_SHOWUSAGE, CLI_SUCCESS, ast_cli_entry::command, config_object_cli_show(), config_object_type_profile, container, eprofile_get_all(), NULL, OBJ_NODATA, config_object_cli_data::title, and ast_cli_entry::usage.

◆ cli_profile_show()

static char * cli_profile_show ( struct ast_cli_entry e,
int  cmd,
struct ast_cli_args a 
)
static

Definition at line 266 of file profile_config.c.

267{
268 struct profile_cfg *profile;
269 struct config_object_cli_data data = {
270 .title = "Profile",
271 .object_type = config_object_type_profile,
272 };
273
274 switch(cmd) {
275 case CLI_INIT:
276 e->command = "stir_shaken show profile";
277 e->usage =
278 "Usage: stir_shaken show profile <id>\n"
279 " Show the stir/shaken profile settings for a given id\n";
280 return NULL;
281 case CLI_GENERATE:
282 if (a->pos == 3) {
283 return config_object_tab_complete_name(a->word, profile_get_all());
284 } else {
285 return NULL;
286 }
287 }
288
289 if (a->argc != 4) {
290 return CLI_SHOWUSAGE;
291 }
292
293 profile = profile_get_cfg(a->argv[3]);
294 if (!profile) {
295 ast_log(LOG_ERROR,"Profile %s doesn't exist\n", a->argv[3]);
296 return CLI_FAILURE;
297 }
298 config_object_cli_show(profile, a, &data, 0);
299
300 ao2_cleanup(profile);
301
302 return CLI_SUCCESS;
303}
profile_get_cfg
struct profile_cfg * profile_get_cfg(const char *id)
Definition: profile_config.c:112
profile_get_all
struct ao2_container * profile_get_all(void)
Definition: profile_config.c:106

References a, ao2_cleanup, ast_log, CLI_FAILURE, CLI_GENERATE, CLI_INIT, CLI_SHOWUSAGE, CLI_SUCCESS, ast_cli_entry::command, config_object_cli_show(), config_object_tab_complete_name(), config_object_type_profile, LOG_ERROR, NULL, profile_get_all(), profile_get_cfg(), config_object_cli_data::title, and ast_cli_entry::usage.

◆ cli_profile_show_all()

static char * cli_profile_show_all ( struct ast_cli_entry e,
int  cmd,
struct ast_cli_args a 
)
static

Definition at line 305 of file profile_config.c.

306{
307 struct ao2_container *container;
308 struct config_object_cli_data data = {
309 .title = "Profile",
310 .object_type = config_object_type_profile,
311 };
312
313 switch(cmd) {
314 case CLI_INIT:
315 e->command = "stir_shaken show profiles";
316 e->usage =
317 "Usage: stir_shaken show profiles\n"
318 " Show all profiles for stir/shaken\n";
319 return NULL;
320 case CLI_GENERATE:
321 return NULL;
322 }
323
324 if (a->argc != 3) {
325 return CLI_SHOWUSAGE;
326 }
327
328 container = profile_get_all();
329 if (!container || ao2_container_count(container) == 0) {
330 ast_cli(a->fd, "No stir/shaken profiles found\n");
331 ao2_cleanup(container);
332 return CLI_SUCCESS;
333 }
334
335 ao2_callback_data(container, OBJ_NODATA, config_object_cli_show, a, &data);
336 ao2_ref(container, -1);
337
338 return CLI_SUCCESS;
339}

References a, ao2_callback_data, ao2_cleanup, ao2_container_count(), ao2_ref, ast_cli(), CLI_GENERATE, CLI_INIT, CLI_SHOWUSAGE, CLI_SUCCESS, ast_cli_entry::command, config_object_cli_show(), config_object_type_profile, container, NULL, OBJ_NODATA, profile_get_all(), config_object_cli_data::title, and ast_cli_entry::usage.

◆ create_effective_profile()

static struct profile_cfg * create_effective_profile ( struct profile_cfg base_profile)
static

Definition at line 134 of file profile_config.c.

136{
137 struct profile_cfg *eprofile;
138 struct profile_cfg *existing_eprofile;
139 RAII_VAR(struct attestation_cfg*, acfg, as_get_cfg(), ao2_cleanup);
140 RAII_VAR(struct verification_cfg*, vcfg, vs_get_cfg(), ao2_cleanup);
141 const char *id = ast_sorcery_object_get_id(base_profile);
142 int rc = 0;
143
144 eprofile = ast_sorcery_alloc(get_sorcery(), "eprofile", id);
145 if (!eprofile) {
146 ast_log(LOG_ERROR, "%s: Unable to allocate memory for effective profile\n", id);
147 return NULL;
148 }
149
150 rc = vs_copy_cfg_common(id, &eprofile->vcfg_common,
151 &vcfg->vcfg_common);
152 if (rc != 0) {
153 ao2_cleanup(eprofile);
154 return NULL;
155 }
156
157 rc = vs_copy_cfg_common(id, &eprofile->vcfg_common,
158 &base_profile->vcfg_common);
159 if (rc != 0) {
160 ao2_cleanup(eprofile);
161 return NULL;
162 }
163
164 rc = as_copy_cfg_common(id, &eprofile->acfg_common,
165 &acfg->acfg_common);
166 if (rc != 0) {
167 ao2_cleanup(eprofile);
168 return NULL;
169 }
170
171 cfg_enum_copy_ex(eprofile, acfg, unknown_tn_attest_level,
172 attest_level_NOT_SET, attest_level_UNKNOWN);
173
174 rc = as_copy_cfg_common(id, &eprofile->acfg_common,
175 &base_profile->acfg_common);
176 if (rc != 0) {
177 ao2_cleanup(eprofile);
178 return NULL;
179 }
180
181 cfg_enum_copy_ex(eprofile, base_profile, unknown_tn_attest_level,
182 attest_level_NOT_SET, attest_level_UNKNOWN);
183
184
185 eprofile->endpoint_behavior = base_profile->endpoint_behavior;
186
187 if (eprofile->endpoint_behavior == endpoint_behavior_ON) {
188 if (acfg->global_disable && vcfg->global_disable) {
189 eprofile->endpoint_behavior = endpoint_behavior_OFF;
190 } else if (acfg->global_disable && !vcfg->global_disable) {
191 eprofile->endpoint_behavior = endpoint_behavior_VERIFY;
192 } else if (!acfg->global_disable && vcfg->global_disable) {
193 eprofile->endpoint_behavior = endpoint_behavior_ATTEST;
194 }
195 } else if (eprofile->endpoint_behavior == endpoint_behavior_ATTEST
196 && acfg->global_disable) {
197 eprofile->endpoint_behavior = endpoint_behavior_OFF;
198 } else if (eprofile->endpoint_behavior == endpoint_behavior_VERIFY
199 && vcfg->global_disable) {
200 eprofile->endpoint_behavior = endpoint_behavior_OFF;
201 }
202
203 existing_eprofile = ast_sorcery_retrieve_by_id(get_sorcery(), "eprofile", id);
204 if (existing_eprofile) {
205 ao2_cleanup(existing_eprofile);
206 ast_sorcery_update(get_sorcery(), eprofile);
207 } else {
208 ast_sorcery_create(get_sorcery(), eprofile);
209 }
210
211 /*
212 * This triggers eprofile_apply. We _could_ just call
213 * eprofile_apply directly but this seems more keeping
214 * with how sorcery works.
215 */
216 ast_sorcery_objectset_apply(get_sorcery(), eprofile, NULL);
217
218 return eprofile;
219}
as_get_cfg
struct attestation_cfg * as_get_cfg(void)
Definition: attestation_config.c:43
as_copy_cfg_common
int as_copy_cfg_common(const char *id, struct attestation_cfg_common *cfg_dst, struct attestation_cfg_common *cfg_src)
Definition: attestation_config.c:113
get_sorcery
struct ast_sorcery * get_sorcery(void)
Retrieve the stir/shaken sorcery context.
Definition: common_config.c:34
vs_get_cfg
struct verification_cfg * vs_get_cfg(void)
Definition: verification_config.c:54
vs_copy_cfg_common
int vs_copy_cfg_common(const char *id, struct verification_cfg_common *cfg_dst, struct verification_cfg_common *cfg_src)
Definition: verification_config.c:123
cfg_enum_copy_ex
#define cfg_enum_copy_ex(__cfg_dst, __cfg_src, __field, __not_set, __unknown)
cfg_enum_copy
Definition: common_config.h:275
ast_sorcery_object_get_id
const char * ast_sorcery_object_get_id(const void *object)
Get the unique identifier of a sorcery object.
Definition: sorcery.c:2317
ast_sorcery_create
int ast_sorcery_create(const struct ast_sorcery *sorcery, void *object)
Create and potentially persist an object using an available wizard.
Definition: sorcery.c:2062
ast_sorcery_retrieve_by_id
void * ast_sorcery_retrieve_by_id(const struct ast_sorcery *sorcery, const char *type, const char *id)
Retrieve an object using its unique identifier.
Definition: sorcery.c:1853
ast_sorcery_alloc
void * ast_sorcery_alloc(const struct ast_sorcery *sorcery, const char *type, const char *id)
Allocate an object.
Definition: sorcery.c:1744
ast_sorcery_update
int ast_sorcery_update(const struct ast_sorcery *sorcery, void *object)
Update an object.
Definition: sorcery.c:2150
ast_sorcery_objectset_apply
int ast_sorcery_objectset_apply(const struct ast_sorcery *sorcery, void *object, struct ast_variable *objectset)
Apply an object set (KVP list) to an object.
Definition: sorcery.c:1632
attestation_cfg
Definition: common_config.h:320
profile_cfg::endpoint_behavior
enum endpoint_behavior_enum endpoint_behavior
Definition: common_config.h:428
profile_cfg::acfg_common
struct attestation_cfg_common acfg_common
Definition: common_config.h:426
profile_cfg::eprofile
struct profile_cfg * eprofile
Definition: common_config.h:430
profile_cfg::unknown_tn_attest_level
enum attest_level_enum unknown_tn_attest_level
Definition: common_config.h:429
profile_cfg::vcfg_common
struct verification_cfg_common vcfg_common
Definition: common_config.h:427
verification_cfg
Definition: common_config.h:395
RAII_VAR
#define RAII_VAR(vartype, varname, initval, dtor)
Declare a variable that will call a destructor function when it goes out of scope.
Definition: utils.h:941

References profile_cfg::acfg_common, ao2_cleanup, as_copy_cfg_common(), as_get_cfg(), ast_log, ast_sorcery_alloc(), ast_sorcery_create(), ast_sorcery_object_get_id(), ast_sorcery_objectset_apply(), ast_sorcery_retrieve_by_id(), ast_sorcery_update(), cfg_enum_copy_ex, profile_cfg::endpoint_behavior, profile_cfg::eprofile, get_sorcery(), LOG_ERROR, NULL, RAII_VAR, profile_cfg::unknown_tn_attest_level, profile_cfg::vcfg_common, vs_copy_cfg_common(), and vs_get_cfg().

Referenced by profile_apply().

◆ eprofile_apply()

static int eprofile_apply ( const struct ast_sorcery sorcery,
void *  obj 
)
static

Definition at line 244 of file profile_config.c.

245{
246 struct profile_cfg *cfg = obj;
247 const char *id = ast_sorcery_object_get_id(cfg);
248
249 if (PROFILE_ALLOW_VERIFY(cfg) && !cfg->vcfg_common.tcs) {
250 ast_log(LOG_ERROR, "%s: Neither this profile nor default"
251 " verification options specify ca_file or ca_path\n", id);
252 return -1;
253 }
254
255 return 0;
256}
PROFILE_ALLOW_VERIFY
#define PROFILE_ALLOW_VERIFY(__profile)
Definition: common_config.h:445
verification_cfg_common::tcs
struct crypto_cert_store * tcs
Definition: common_config.h:370

References ast_log, ast_sorcery_object_get_id(), LOG_ERROR, PROFILE_ALLOW_VERIFY, verification_cfg_common::tcs, and profile_cfg::vcfg_common.

Referenced by profile_load().

◆ eprofile_get_all()

struct ao2_container * eprofile_get_all ( void  )

Definition at line 120 of file profile_config.c.

121{
122 return ast_sorcery_retrieve_by_fields(get_sorcery(), "eprofile",
123 AST_RETRIEVE_FLAG_MULTIPLE | AST_RETRIEVE_FLAG_ALL, NULL);
124}
AST_RETRIEVE_FLAG_MULTIPLE
@ AST_RETRIEVE_FLAG_MULTIPLE
Return all matching objects.
Definition: sorcery.h:120
AST_RETRIEVE_FLAG_ALL
@ AST_RETRIEVE_FLAG_ALL
Perform no matching, return all objects.
Definition: sorcery.h:123
ast_sorcery_retrieve_by_fields
void * ast_sorcery_retrieve_by_fields(const struct ast_sorcery *sorcery, const char *type, unsigned int flags, struct ast_variable *fields)
Retrieve an object or multiple objects using specific fields.
Definition: sorcery.c:1897

References AST_RETRIEVE_FLAG_ALL, AST_RETRIEVE_FLAG_MULTIPLE, ast_sorcery_retrieve_by_fields(), get_sorcery(), and NULL.

Referenced by cli_eprofile_show(), and cli_eprofile_show_all().

◆ eprofile_get_cfg()

struct profile_cfg * eprofile_get_cfg ( const char *  id)

Definition at line 126 of file profile_config.c.

127{
128 if (ast_strlen_zero(id)) {
129 return NULL;
130 }
131 return ast_sorcery_retrieve_by_id(get_sorcery(), "eprofile", id);
132}
ast_strlen_zero
static force_inline int attribute_pure ast_strlen_zero(const char *s)
Definition: strings.h:65

References ast_sorcery_retrieve_by_id(), ast_strlen_zero(), get_sorcery(), and NULL.

Referenced by ast_stir_shaken_as_ctx_create(), ast_stir_shaken_vs_ctx_create(), and cli_eprofile_show().

◆ generate_acfg_common_sorcery_handlers()

generate_acfg_common_sorcery_handlers ( profile_cfg  )

◆ generate_sorcery_enum_from_str()

generate_sorcery_enum_from_str ( profile_cfg  ,
endpoint_behavior  ,
UNKNOWN   
)

◆ generate_sorcery_enum_from_str_ex()

generate_sorcery_enum_from_str_ex ( profile_cfg  ,
unknown_tn_attest_level  ,
attest_level  ,
UNKNOWN   
)

◆ generate_sorcery_enum_to_str()

generate_sorcery_enum_to_str ( profile_cfg  ,
endpoint_behavior   
)

◆ generate_sorcery_enum_to_str_ex()

generate_sorcery_enum_to_str_ex ( profile_cfg  ,
unknown_tn_attest_level  ,
attest_level   
)

◆ generate_vcfg_common_sorcery_handlers()

generate_vcfg_common_sorcery_handlers ( profile_cfg  )

◆ profile_alloc()

static void * profile_alloc ( const char *  name)
static

Definition at line 73 of file profile_config.c.

74{
75 struct profile_cfg *profile;
76
77 profile = ast_sorcery_generic_alloc(sizeof(*profile), profile_destructor);
78 if (!profile) {
79 return NULL;
80 }
81
82 if (ast_string_field_init(profile, 2048)) {
83 ao2_ref(profile, -1);
84 return NULL;
85 }
86
87 /*
88 * The memory for the commons actually comes from cfg
89 * due to the weirdness of the STRFLDSET macro used with
90 * sorcery. We just use a token amount of memory in
91 * this call so the initialize doesn't fail.
92 */
93 if (ast_string_field_init(&profile->acfg_common, 8)) {
94 ao2_ref(profile, -1);
95 return NULL;
96 }
97
98 if (ast_string_field_init(&profile->vcfg_common, 8)) {
99 ao2_ref(profile, -1);
100 return NULL;
101 }
102
103 return profile;
104}
profile_destructor
static void profile_destructor(void *obj)
Definition: profile_config.c:60
ast_sorcery_generic_alloc
void * ast_sorcery_generic_alloc(size_t size, ao2_destructor_fn destructor)
Allocate a generic sorcery capable object.
Definition: sorcery.c:1728
ast_string_field_init
#define ast_string_field_init(x, size)
Initialize a field pool and fields.
Definition: stringfields.h:359

References profile_cfg::acfg_common, ao2_ref, ast_sorcery_generic_alloc(), ast_string_field_init, NULL, profile_destructor(), and profile_cfg::vcfg_common.

Referenced by profile_load().

◆ profile_apply()

static int profile_apply ( const struct ast_sorcery sorcery,
void *  obj 
)
static

Definition at line 221 of file profile_config.c.

222{
223 struct profile_cfg *cfg = obj;
224 const char *id = ast_sorcery_object_get_id(cfg);
225
226 if (PROFILE_ALLOW_ATTEST(cfg)
227 && as_check_common_config(id, &cfg->acfg_common) != 0) {
228 return -1;
229 }
230
231 if (PROFILE_ALLOW_VERIFY(cfg)
232 && vs_check_common_config(id, &cfg->vcfg_common) !=0) {
233 return -1;
234 }
235
236 cfg->eprofile = create_effective_profile(cfg);
237 if (!cfg->eprofile) {
238 return -1;
239 }
240
241 return 0;
242}
as_check_common_config
int as_check_common_config(const char *id, struct attestation_cfg_common *acfg_common)
Definition: attestation_config.c:139
PROFILE_ALLOW_ATTEST
#define PROFILE_ALLOW_ATTEST(__profile)
Definition: common_config.h:441
vs_check_common_config
int vs_check_common_config(const char *id, struct verification_cfg_common *vcfg_common)
Definition: verification_config.c:165
create_effective_profile
static struct profile_cfg * create_effective_profile(struct profile_cfg *base_profile)
Definition: profile_config.c:134

References profile_cfg::acfg_common, as_check_common_config(), ast_sorcery_object_get_id(), create_effective_profile(), profile_cfg::eprofile, PROFILE_ALLOW_ATTEST, PROFILE_ALLOW_VERIFY, profile_cfg::vcfg_common, and vs_check_common_config().

Referenced by profile_load().

◆ profile_destructor()

static void profile_destructor ( void *  obj)
static

Definition at line 60 of file profile_config.c.

61{
62 struct profile_cfg *cfg = obj;
63 ast_string_field_free_memory(cfg);
64
65 acfg_cleanup(&cfg->acfg_common);
66 vcfg_cleanup(&cfg->vcfg_common);
67
68 ao2_cleanup(cfg->eprofile);
69
70 return;
71}
acfg_cleanup
void acfg_cleanup(struct attestation_cfg_common *acfg_common)
Definition: attestation_config.c:68
vcfg_cleanup
void vcfg_cleanup(struct verification_cfg_common *cfg)
Definition: verification_config.c:76
ast_string_field_free_memory
#define ast_string_field_free_memory(x)
free all memory - to be called before destroying the object
Definition: stringfields.h:374

References acfg_cleanup(), profile_cfg::acfg_common, ao2_cleanup, ast_string_field_free_memory, profile_cfg::eprofile, vcfg_cleanup(), and profile_cfg::vcfg_common.

Referenced by profile_alloc().

◆ profile_get_all()

struct ao2_container * profile_get_all ( void  )

Definition at line 106 of file profile_config.c.

107{
108 return ast_sorcery_retrieve_by_fields(get_sorcery(), CONFIG_TYPE,
109 AST_RETRIEVE_FLAG_MULTIPLE | AST_RETRIEVE_FLAG_ALL, NULL);
110}
CONFIG_TYPE
#define CONFIG_TYPE
Definition: profile_config.c:29

References AST_RETRIEVE_FLAG_ALL, AST_RETRIEVE_FLAG_MULTIPLE, ast_sorcery_retrieve_by_fields(), CONFIG_TYPE, get_sorcery(), and NULL.

Referenced by cli_profile_show(), cli_profile_show_all(), and cli_verify_cert().

◆ profile_get_cfg()

struct profile_cfg * profile_get_cfg ( const char *  id)

Definition at line 112 of file profile_config.c.

113{
114 if (ast_strlen_zero(id)) {
115 return NULL;
116 }
117 return ast_sorcery_retrieve_by_id(get_sorcery(), CONFIG_TYPE, id);
118}

References ast_sorcery_retrieve_by_id(), ast_strlen_zero(), CONFIG_TYPE, get_sorcery(), and NULL.

Referenced by cli_profile_show(), and cli_verify_cert().

◆ profile_load()

int profile_load ( void  )

Definition at line 439 of file profile_config.c.

440{
441 struct ast_sorcery *sorcery = get_sorcery();
442 enum ast_sorcery_apply_result apply_rc;
443
444 /*
445 * eprofile MUST be registered first because profile needs it.
446 */
447 apply_rc = ast_sorcery_apply_default(sorcery, "eprofile", "memory", NULL);
448 if (apply_rc != AST_SORCERY_APPLY_SUCCESS) {
449 abort();
450 }
451 if (ast_sorcery_internal_object_register(sorcery, "eprofile",
452 profile_alloc, NULL, eprofile_apply)) {
453 ast_log(LOG_ERROR, "stir/shaken - failed to register '%s' sorcery object\n", "eprofile");
454 return -1;
455 }
456
457 ast_sorcery_object_field_register_nodoc(sorcery, "eprofile", "type", "", OPT_NOOP_T, 0, 0);
458 enum_option_register(sorcery, "eprofile", endpoint_behavior, _nodoc);
459 enum_option_register_ex(sorcery, "eprofile", unknown_tn_attest_level,
460 unknown_tn_attest_level, attest_level,_nodoc);
461
462 register_common_verification_fields(sorcery, profile_cfg, "eprofile", _nodoc);
463 register_common_attestation_fields(sorcery, profile_cfg, "eprofile", _nodoc);
464
465 /*
466 * Now we can do profile
467 */
468 ast_sorcery_apply_default(sorcery, CONFIG_TYPE, "config", "stir_shaken.conf,criteria=type=profile");
469 if (ast_sorcery_object_register(sorcery, CONFIG_TYPE, profile_alloc,
470 NULL, profile_apply)) {
471 ast_log(LOG_ERROR, "stir/shaken - failed to register '%s' sorcery object\n", CONFIG_TYPE);
472 return -1;
473 }
474
475 ast_sorcery_object_field_register(sorcery, CONFIG_TYPE, "type", "", OPT_NOOP_T, 0, 0);
476 enum_option_register(sorcery, CONFIG_TYPE, endpoint_behavior,);
477 enum_option_register_ex(sorcery, CONFIG_TYPE, unknown_tn_attest_level,
478 unknown_tn_attest_level, attest_level,);
479
480 register_common_verification_fields(sorcery, profile_cfg, CONFIG_TYPE,);
481 register_common_attestation_fields(sorcery, profile_cfg, CONFIG_TYPE,);
482
483 ast_sorcery_load_object(sorcery, CONFIG_TYPE);
484 ast_sorcery_load_object(sorcery, "eprofile");
485
486 ast_cli_register_multiple(stir_shaken_profile_cli,
487 ARRAY_LEN(stir_shaken_profile_cli));
488
489 return 0;
490}
ast_cli_register_multiple
#define ast_cli_register_multiple(e, len)
Register multiple commands.
Definition: cli.h:265
register_common_verification_fields
#define register_common_verification_fields(sorcery, object, CONFIG_TYPE, nodoc)
Definition: common_config.h:512
register_common_attestation_fields
#define register_common_attestation_fields(sorcery, object, CONFIG_TYPE, nodoc)
Definition: common_config.h:542
enum_option_register
#define enum_option_register(sorcery, CONFIG_TYPE, name, nodoc)
Definition: common_config.h:509
enum_option_register_ex
#define enum_option_register_ex(sorcery, CONFIG_TYPE, name, field, function_prefix, nodoc)
Definition: common_config.h:504
OPT_NOOP_T
@ OPT_NOOP_T
Type for a default handler that should do nothing.
Definition: config_options.h:399
eprofile_apply
static int eprofile_apply(const struct ast_sorcery *sorcery, void *obj)
Definition: profile_config.c:244
profile_alloc
static void * profile_alloc(const char *name)
Definition: profile_config.c:73
stir_shaken_profile_cli
static struct ast_cli_entry stir_shaken_profile_cli[]
Definition: profile_config.c:416
profile_apply
static int profile_apply(const struct ast_sorcery *sorcery, void *obj)
Definition: profile_config.c:221
sorcery
static struct ast_sorcery * sorcery
Definition: res_pjsip_phoneprov_provider.c:126
ast_sorcery_object_field_register_nodoc
#define ast_sorcery_object_field_register_nodoc(sorcery, type, name, default_val, opt_type, flags,...)
Register a field within an object without documentation.
Definition: sorcery.h:987
ast_sorcery_object_register
#define ast_sorcery_object_register(sorcery, type, alloc, transform, apply)
Register an object type.
Definition: sorcery.h:837
ast_sorcery_load_object
void ast_sorcery_load_object(const struct ast_sorcery *sorcery, const char *type)
Inform any wizards of a specific object type to load persistent objects.
Definition: sorcery.c:1393
ast_sorcery_internal_object_register
#define ast_sorcery_internal_object_register(sorcery, type, alloc, transform, apply)
Register an internal, hidden object type.
Definition: sorcery.h:867
ast_sorcery_object_field_register
#define ast_sorcery_object_field_register(sorcery, type, name, default_val, opt_type, flags,...)
Register a field within an object.
Definition: sorcery.h:955
ast_sorcery_apply_default
#define ast_sorcery_apply_default(sorcery, type, name, data)
Definition: sorcery.h:476
ast_sorcery_apply_result
ast_sorcery_apply_result
Definition: sorcery.h:423
AST_SORCERY_APPLY_SUCCESS
@ AST_SORCERY_APPLY_SUCCESS
Definition: sorcery.h:427
ast_sorcery
Full structure for sorcery.
Definition: sorcery.c:230
ARRAY_LEN
#define ARRAY_LEN(a)
Definition: utils.h:666

References ARRAY_LEN, ast_cli_register_multiple, ast_log, ast_sorcery_apply_default, AST_SORCERY_APPLY_SUCCESS, ast_sorcery_internal_object_register, ast_sorcery_load_object(), ast_sorcery_object_field_register, ast_sorcery_object_field_register_nodoc, ast_sorcery_object_register, CONFIG_TYPE, enum_option_register, enum_option_register_ex, eprofile_apply(), get_sorcery(), LOG_ERROR, NULL, OPT_NOOP_T, profile_alloc(), profile_apply(), register_common_attestation_fields, register_common_verification_fields, sorcery, and stir_shaken_profile_cli.

Referenced by common_config_load().

◆ profile_reload()

int profile_reload ( void  )

Definition at line 423 of file profile_config.c.

424{
425 struct ast_sorcery *sorcery = get_sorcery();
426 ast_sorcery_force_reload_object(sorcery, CONFIG_TYPE);
427 ast_sorcery_force_reload_object(sorcery, "eprofile");
428 return 0;
429}
ast_sorcery_force_reload_object
void ast_sorcery_force_reload_object(const struct ast_sorcery *sorcery, const char *type)
Inform any wizards of a specific object type to reload persistent objects even if no changes determin...
Definition: sorcery.c:1457

References ast_sorcery_force_reload_object(), CONFIG_TYPE, get_sorcery(), and sorcery.

Referenced by common_config_reload().

◆ profile_unload()

int profile_unload ( void  )

Definition at line 431 of file profile_config.c.

432{
433 ast_cli_unregister_multiple(stir_shaken_profile_cli,
434 ARRAY_LEN(stir_shaken_profile_cli));
435
436 return 0;
437}
ast_cli_unregister_multiple
int ast_cli_unregister_multiple(struct ast_cli_entry *e, int len)
Unregister multiple commands.
Definition: clicompat.c:30

References ARRAY_LEN, ast_cli_unregister_multiple(), and stir_shaken_profile_cli.

Referenced by common_config_unload().

Variable Documentation

◆ stir_shaken_profile_cli

struct ast_cli_entry stir_shaken_profile_cli[]
static

Definition at line 416 of file profile_config.c.

Referenced by profile_load(), and profile_unload().

Generated on Wed Dec 18 2024 20:04:42 for Asterisk - The Open Source Telephony Project by doxygen 1.9.4