Asterisk - The Open Source Telephony Project GIT-master-27fb039
Loading...
Searching...
No Matches
res_pjsip_stir_shaken.c
Go to the documentation of this file.
1/*
2 * Asterisk -- An open source telephony toolkit.
3 *
4 * Copyright (C) 2020, Sangoma Technologies Corporation
5 *
6 * Ben Ford <bford@sangoma.com>
7 *
8 * See http://www.asterisk.org for more information about
9 * the Asterisk project. Please do not directly contact
10 * any of the maintainers of this project for assistance;
11 * the project provides a web site, mailing lists and IRC
12 * channels for your use.
13 *
14 * This program is free software, distributed under the terms of
15 * the GNU General Public License Version 2. See the LICENSE file
16 * at the top of the source tree.
17 */
18
19/*** MODULEINFO
20 <depend>pjproject</depend>
21 <depend>res_pjsip</depend>
22 <depend>res_pjsip_session</depend>
23 <depend>res_stir_shaken</depend>
24 <support_level>core</support_level>
25 ***/
26
27#include "asterisk.h"
28
29#define _TRACE_PREFIX_ "pjss",__LINE__, ""
30
31#include "asterisk/callerid.h"
32#include "asterisk/res_pjsip.h"
33#include "asterisk/res_pjsip_session.h"
34#include "asterisk/module.h"
35#include "asterisk/rtp_engine.h"
36#include "asterisk/datastore.h"
37
38#include "res_stir_shaken/stir_shaken.h"
39
40static const pj_str_t identity_hdr_str = { "Identity", 8 };
41static const pj_str_t date_hdr_str = { "Date", 4 };
42
43/* Response codes from RFC8224 */
54
55#define SIP_RESPONSE_CODE_OK_STR "OK"
56/* Response strings from RFC8224 */
57#define SIP_RESPONSE_CODE_STALE_DATE_STR "Stale Date"
58#define SIP_RESPONSE_CODE_USE_IDENTITY_HEADER_STR "Use Identity Header"
59#define SIP_RESPONSE_CODE_ANONYMITY_DISALLOWED_STR "Anonymity Disallowed"
60#define SIP_RESPONSE_CODE_BAD_IDENTITY_INFO_STR "Bad Identity Info"
61#define SIP_RESPONSE_CODE_UNSUPPORTED_CREDENTIAL_STR "Unsupported Credential"
62#define SIP_RESPONSE_CODE_INVALID_IDENTITY_HEADER_STR "Invalid Identity Header"
63#define SIP_RESPONSE_CODE_INTERNAL_ERROR_STR "Internal Error"
64
65#define response_to_str(_code) \
66case _code: \
67 return _code ## _STR;
68
84
85#define translate_code(_vs_rc, _sip_rc) \
86case AST_STIR_SHAKEN_VS_ ## _vs_rc: \
87 return SIP_RESPONSE_CODE_ ## _sip_rc;
88
89static enum sip_response_code vs_code_to_sip_code(
90 enum ast_stir_shaken_vs_response_code vs_rc)
91{
92 /*
93 * We want to use a switch/case statement here because
94 * it'll spit out an error if VS codes are added to the
95 * enum but aren't present here.
96 */
97 switch (vs_rc) {
98 translate_code(SUCCESS, OK)
99 translate_code(DISABLED, OK)
100 translate_code(INVALID_ARGUMENTS, INTERNAL_ERROR)
101 translate_code(INTERNAL_ERROR, INTERNAL_ERROR)
102 translate_code(NO_IDENTITY_HDR, USE_IDENTITY_HEADER)
103 translate_code(NO_DATE_HDR, STALE_DATE)
104 translate_code(DATE_HDR_PARSE_FAILURE, STALE_DATE)
105 translate_code(DATE_HDR_EXPIRED, STALE_DATE)
106 translate_code(NO_JWT_HDR, INVALID_IDENTITY_HEADER)
107 translate_code(INVALID_OR_NO_X5U, INVALID_IDENTITY_HEADER)
108 translate_code(CERT_CACHE_MISS, INVALID_IDENTITY_HEADER)
109 translate_code(CERT_CACHE_INVALID, INVALID_IDENTITY_HEADER)
110 translate_code(CERT_CACHE_EXPIRED, INVALID_IDENTITY_HEADER)
111 translate_code(CERT_RETRIEVAL_FAILURE, BAD_IDENTITY_INFO)
112 translate_code(CERT_CONTENTS_INVALID, UNSUPPORTED_CREDENTIAL)
113 translate_code(CERT_NOT_TRUSTED, UNSUPPORTED_CREDENTIAL)
114 translate_code(CERT_DATE_INVALID, UNSUPPORTED_CREDENTIAL)
115 translate_code(CERT_NO_TN_AUTH_EXT, UNSUPPORTED_CREDENTIAL)
116 translate_code(CERT_NO_SPC_IN_TN_AUTH_EXT, UNSUPPORTED_CREDENTIAL)
117 translate_code(NO_RAW_KEY, UNSUPPORTED_CREDENTIAL)
118 translate_code(SIGNATURE_VALIDATION, INVALID_IDENTITY_HEADER)
119 translate_code(NO_IAT, INVALID_IDENTITY_HEADER)
120 translate_code(IAT_EXPIRED, STALE_DATE)
121 translate_code(INVALID_OR_NO_PPT, INVALID_IDENTITY_HEADER)
122 translate_code(INVALID_OR_NO_ALG, INVALID_IDENTITY_HEADER)
123 translate_code(INVALID_OR_NO_TYP, INVALID_IDENTITY_HEADER)
124 translate_code(INVALID_OR_NO_ATTEST, INVALID_IDENTITY_HEADER)
125 translate_code(NO_ORIGID, INVALID_IDENTITY_HEADER)
126 translate_code(NO_ORIG_TN, INVALID_IDENTITY_HEADER)
127 translate_code(NO_DEST_TN, INVALID_IDENTITY_HEADER)
128 translate_code(INVALID_HEADER, INVALID_IDENTITY_HEADER)
129 translate_code(INVALID_GRANT, INVALID_IDENTITY_HEADER)
130 translate_code(INVALID_OR_NO_GRANTS, INVALID_IDENTITY_HEADER)
131 translate_code(CID_ORIG_TN_MISMATCH, INVALID_IDENTITY_HEADER)
132 translate_code(INVALID_OR_NO_CID, ANONYMITY_DISALLOWED)
133 translate_code(RESPONSE_CODE_MAX, INVALID_IDENTITY_HEADER)
134 }
135
136 return 500;
137}
138
144
145static void reject_incoming_call(struct ast_sip_session *session,
146 enum sip_response_code response_code)
147{
148 ast_sip_session_terminate(session, response_code);
149 ast_hangup(session->channel);
150}
151
152static enum process_failure_rc process_failure(struct ast_stir_shaken_vs_ctx *ctx,
153 const char *caller_id, struct ast_sip_session *session,
154 pjsip_rx_data *rdata, enum ast_stir_shaken_vs_response_code vs_rc)
155{
156 enum sip_response_code response_code = vs_code_to_sip_code(vs_rc);
157 pj_str_t response_str;
158 const char *response_string =
159 sip_response_code_to_str(response_code);
160 enum stir_shaken_failure_action_enum failure_action =
161 ast_stir_shaken_vs_get_failure_action(ctx);
162 const char *tag = ast_sip_session_get_name(session);
163 SCOPE_ENTER(1, "%s: FA: %d RC: %d\n", tag,
164 failure_action, response_code);
165
166 pj_cstr(&response_str, response_string);
167
168 if (failure_action == stir_shaken_failure_action_REJECT_REQUEST) {
169 reject_incoming_call(session, response_code);
170 SCOPE_EXIT_RTN_VALUE(PROCESS_FAILURE_REJECT,
171 "%s: Rejecting request and terminating session\n",
172 tag);
173 }
174
175 ast_stir_shaken_vs_ctx_set_response_code(ctx, vs_rc);
176 ast_stir_shaken_add_result_to_channel(ctx);
177
178 if (failure_action == stir_shaken_failure_action_CONTINUE_RETURN_REASON) {
179 int rc = ast_sip_session_add_reason_header(session,
180 ast_stir_shaken_vs_get_use_rfc9410_responses(ctx) ? "STIR" : "SIP",
181 response_code, response_str.ptr);
182 if (rc != 0) {
183 SCOPE_EXIT_RTN_VALUE(PROCESS_FAILURE_SYSTEM_FAILURE,
184 "%s: Failed to add Reason header\n", tag);
185 }
186 SCOPE_EXIT_RTN_VALUE(PROCESS_FAILURE_CONTINUE,
187 "%s: Attaching reason code to session\n", tag);
188 }
189 SCOPE_EXIT_RTN_VALUE(PROCESS_FAILURE_CONTINUE,
190 "%s: Continuing\n", tag);
191}
192
193/*!
194 * \internal
195 * \brief Session supplement callback on an incoming INVITE request
196 *
197 * When we receive an INVITE, check it for STIR/SHAKEN information and
198 * decide what to do from there
199 *
200 * \param session The session that has received an INVITE
201 * \param rdata The incoming INVITE
202 */
203static int stir_shaken_incoming_request(struct ast_sip_session *session, pjsip_rx_data *rdata)
204{
205 RAII_VAR(struct ast_stir_shaken_vs_ctx *, ctx, NULL, ao2_cleanup);
206 RAII_VAR(char *, header, NULL, ast_free);
207 RAII_VAR(char *, payload, NULL, ast_free);
208 char *identity_hdr_val;
209 char *date_hdr_val;
210 char *caller_id = session->id.number.str;
211 const char *session_name = ast_sip_session_get_name(session);
212 struct ast_channel *chan = session->channel;
213 enum ast_stir_shaken_vs_response_code vs_rc;
214 enum process_failure_rc p_rc;
215 SCOPE_ENTER(1, "%s: Enter\n", session_name);
216
217 if (!session) {
218 SCOPE_EXIT_LOG_RTN_VALUE(1, LOG_ERROR, "No session\n");
219 }
220 if (!session->channel) {
221 SCOPE_EXIT_LOG_RTN_VALUE(1, LOG_ERROR, "%s: No channel\n", session_name);
222 }
223 if (!rdata) {
224 SCOPE_EXIT_LOG_RTN_VALUE(1, LOG_ERROR, "%s: No rdata\n", session_name);
225 }
226
227 /* Check if this is a reinvite. If it is, we don't need to do anything */
228 if (rdata->msg_info.to->tag.slen) {
229 SCOPE_EXIT_RTN_VALUE(0, "%s: Reinvite. No action needed\n", session_name);
230 }
231
232 /*
233 * Shortcut: If there's no profile name just bail now.
234 */
235 if (ast_strlen_zero(session->endpoint->stir_shaken_profile)) {
236 SCOPE_EXIT_RTN_VALUE(0, "%s: No profile name on endpoint. No action needed\n", session_name);
237 }
238
239 vs_rc = ast_stir_shaken_vs_ctx_create(caller_id, chan,
240 session->endpoint->stir_shaken_profile,
241 session_name, &ctx);
242 if (vs_rc == AST_STIR_SHAKEN_VS_DISABLED) {
243 SCOPE_EXIT_RTN_VALUE(0, "%s: VS Disabled\n", session_name);
244 } else if (vs_rc != AST_STIR_SHAKEN_VS_SUCCESS) {
245 reject_incoming_call(session, 500);
246 SCOPE_EXIT_RTN_VALUE(1, "%s: Unable to create context. Call terminated\n",
247 session_name);
248 }
249
250 if (ast_strlen_zero(ast_stir_shaken_vs_get_caller_id(ctx))) {
251 p_rc = process_failure(ctx, caller_id, session, rdata,
252 AST_STIR_SHAKEN_VS_INVALID_OR_NO_CID);
253 if (p_rc == PROCESS_FAILURE_CONTINUE) {
254 SCOPE_EXIT_RTN_VALUE(0, "%s: Invalid or no callerid found. Call continuing\n",
255 session_name);
256 }
257 SCOPE_EXIT_LOG_RTN_VALUE(1, LOG_ERROR, "%s: Invalid or no callerid found. Call terminated\n",
258 session_name);
259 }
260
261 identity_hdr_val = ast_sip_rdata_get_header_value(rdata, identity_hdr_str);
262 if (ast_strlen_zero(identity_hdr_val)) {
263 p_rc = process_failure(ctx, caller_id, session, rdata,
264 AST_STIR_SHAKEN_VS_NO_IDENTITY_HDR);
265 if (p_rc == PROCESS_FAILURE_CONTINUE) {
266 SCOPE_EXIT_RTN_VALUE(0, "%s: No Identity header found. Call continuing\n",
267 session_name);
268 }
269 SCOPE_EXIT_LOG_RTN_VALUE(1, LOG_ERROR, "%s: No Identity header found. Call terminated\n",
270 session_name);
271 }
272
273 vs_rc = ast_stir_shaken_vs_ctx_add_identity_hdr(ctx, identity_hdr_val);
274 if (vs_rc != AST_STIR_SHAKEN_VS_SUCCESS) {
275 reject_incoming_call(session, 500);
276 SCOPE_EXIT_LOG_RTN_VALUE(1, LOG_ERROR, "%s: Unable to add Identity header. Call terminated.\n",
277 session_name);
278 }
279
280 date_hdr_val = ast_sip_rdata_get_header_value(rdata, date_hdr_str);
281 if (!ast_strlen_zero(date_hdr_val)) {
282 vs_rc = ast_stir_shaken_vs_ctx_add_date_hdr(ctx, date_hdr_val);
283 if (vs_rc != AST_STIR_SHAKEN_VS_SUCCESS) {
284 reject_incoming_call(session, 500);
285 SCOPE_EXIT_LOG_RTN_VALUE(1, LOG_ERROR, "%s: Unable to add Date header. Call terminated.\n",
286 session_name);
287 }
288 }
289
290 vs_rc = ast_stir_shaken_vs_verify(ctx);
291 if (vs_rc != AST_STIR_SHAKEN_VS_SUCCESS) {
292 p_rc = process_failure(ctx, caller_id, session, rdata, vs_rc);
293 if (p_rc == PROCESS_FAILURE_CONTINUE) {
294 SCOPE_EXIT_RTN_VALUE(0, "%s: Verification failed. Call continuing\n",
295 session_name);
296 }
297 SCOPE_EXIT_LOG_RTN_VALUE(1, LOG_ERROR, "%s: Verification failed. Call terminated\n",
298 session_name);
299
300 }
301
302 ast_stir_shaken_add_result_to_channel(ctx);
303
304 SCOPE_EXIT_RTN_VALUE(0, "Passed\n");
305}
306
307static void add_fingerprints_if_present(struct ast_sip_session *session,
308 struct ast_stir_shaken_as_ctx *ctx)
309{
310 struct ast_sip_session_media_state *ms = session->pending_media_state;
311 struct ast_sip_session_media *m = NULL;
312 struct ast_rtp_engine_dtls *d = NULL;
313 enum ast_rtp_dtls_hash h;
314 int i;
315 const char *tag = ast_sip_session_get_name(session);
316 size_t count = AST_VECTOR_SIZE(&ms->sessions);
317 SCOPE_ENTER(4, "%s: Check %zu media sessions for fingerprints\n",
318 tag, count);
319
320 if (!ast_stir_shaken_as_ctx_wants_fingerprints(ctx)) {
321 SCOPE_EXIT_RTN("%s: Fingerprints not needed\n", tag);
322 }
323
324 for (i = 0; i < count; i++) {
325 const char *f;
326
327 m = AST_VECTOR_GET(&ms->sessions, i);
328 if (!m|| !m->rtp) {
329 ast_trace(1, "Session: %d: No session or rtp instance\n", i);
330 continue;
331 }
332 d = ast_rtp_instance_get_dtls(m->rtp);
333 h = d->get_fingerprint_hash(m->rtp);
334 f = d->get_fingerprint(m->rtp);
335
336 ast_stir_shaken_as_ctx_add_fingerprint(ctx,
337 h == AST_RTP_DTLS_HASH_SHA256 ? "sha-256" : "sha-1", f);
338 }
339 SCOPE_EXIT_RTN("%s: Done\n", tag);
340}
341
342static char *get_dest_tn(pjsip_tx_data *tdata, const char *tag)
343{
344 pjsip_fromto_hdr *to;
345 pjsip_sip_uri *uri;
346 char *dest_tn = NULL;
347 SCOPE_ENTER(4, "%s: Enter\n", tag);
348
349 to = pjsip_msg_find_hdr(tdata->msg, PJSIP_H_TO, NULL);
350 if (!to) {
351 SCOPE_EXIT_RTN_VALUE(NULL, "%s: Failed to find To header\n", tag);
352 }
353
354 uri = pjsip_uri_get_uri(to->uri);
355 if (!uri) {
356 SCOPE_EXIT_RTN_VALUE(NULL,
357 "%s: Failed to retrieve URI from To header\n", tag);
358 }
359
360 dest_tn = ast_malloc(uri->user.slen + 1);
361 if (!dest_tn) {
362 SCOPE_EXIT_RTN_VALUE(NULL,
363 "%s: Failed to allocate memory for dest_tn\n", tag);
364 }
365
366 ast_copy_pj_str(dest_tn, &uri->user, uri->user.slen + 1);
367
368 SCOPE_EXIT_RTN_VALUE(dest_tn, "%s: Done\n", tag);
369}
370
371static void add_date_header(const struct ast_sip_session *session, pjsip_tx_data *tdata)
372{
373 pjsip_fromto_hdr *old_date;
374 const char *session_name = ast_sip_session_get_name(session);
375 SCOPE_ENTER(1, "%s: Enter\n", session_name);
376
377 old_date = pjsip_msg_find_hdr_by_name(tdata->msg, &date_hdr_str, NULL);
378 if (old_date) {
379 SCOPE_EXIT_RTN("Found existing Date header, no need to add one\n");
380 }
381
382 ast_sip_add_date_header(tdata);
383 SCOPE_EXIT_RTN("Done\n");
384}
385
386static void stir_shaken_outgoing_request(struct ast_sip_session *session,
387 pjsip_tx_data *tdata)
388{
389 struct ast_party_id effective_id;
390 struct ast_party_id connected_id;
391 pjsip_generic_string_hdr *old_identity;
392 pjsip_generic_string_hdr *identity_hdr;
393 pj_str_t identity_val;
394 char *dest_tn;
395 char *identity_str;
396 struct ast_stir_shaken_as_ctx *ctx = NULL;
397 enum ast_stir_shaken_as_response_code as_rc;
398 const char *session_name = ast_sip_session_get_name(session);
399 struct stir_shaken_attestation_ds *attestation_ds;
400
401 SCOPE_ENTER(1, "%s: Enter\n", session_name);
402
403 if (!session) {
404 SCOPE_EXIT_LOG_RTN(LOG_ERROR, "No session\n");
405 }
406 if (!session->channel) {
407 SCOPE_EXIT_LOG_RTN(LOG_ERROR, "%s: No channel\n", session_name);
408 }
409 if (!tdata) {
410 SCOPE_EXIT_LOG_RTN(LOG_ERROR, "%s: No tdata\n", session_name);
411 }
412
413 ast_channel_lock(session->channel);
414 attestation_ds = ast_stir_shaken_get_attestation_datastore(session->channel);
415 if (attestation_ds && attestation_ds->suppress) {
416 ast_channel_unlock(session->channel);
417 SCOPE_EXIT_RTN("Attestation suppressed by dialplan\n");
418 }
419 ast_channel_unlock(session->channel);
420
421 old_identity = pjsip_msg_find_hdr_by_name(tdata->msg, &identity_hdr_str, NULL);
422 if (old_identity) {
423 SCOPE_EXIT_RTN("Found an existing Identity header\n");
424 }
425
426 dest_tn = get_dest_tn(tdata, session_name);
427 if (!dest_tn) {
428 SCOPE_EXIT_LOG_RTN(LOG_ERROR, "%s: Unable to find destination tn\n",
429 session_name);
430 }
431
432 ast_party_id_init(&connected_id);
433 ast_channel_lock(session->channel);
434 effective_id = ast_channel_connected_effective_id(session->channel);
435 ast_party_id_copy(&connected_id, &effective_id);
436 ast_channel_unlock(session->channel);
437
438 if (!ast_sip_can_present_connected_id(session, &connected_id)) {
439 ast_free(dest_tn);
440 ast_party_id_free(&connected_id);
441 SCOPE_EXIT_RTN("Unable to get caller id\n");
442 }
443
444 as_rc = ast_stir_shaken_as_ctx_create(connected_id.number.str,
445 dest_tn, session->channel,
446 session->endpoint->stir_shaken_profile,
447 session_name, &ctx);
448
449 ast_free(dest_tn);
450 ast_party_id_free(&connected_id);
451
452 if (as_rc == AST_STIR_SHAKEN_AS_DISABLED) {
453 SCOPE_EXIT_RTN("%s: AS Disabled\n", session_name);
454 } else if (as_rc != AST_STIR_SHAKEN_AS_SUCCESS) {
455 SCOPE_EXIT_RTN("%s: Unable to create context\n",
456 session_name);
457 }
458
459 add_date_header(session, tdata);
460 add_fingerprints_if_present(session, ctx);
461
462 as_rc = ast_stir_shaken_attest(ctx, &identity_str);
463 if (as_rc != AST_STIR_SHAKEN_AS_SUCCESS) {
464 ao2_cleanup(ctx);
465 SCOPE_EXIT_LOG(LOG_ERROR,
466 "%s: Failed to create attestation\n", session_name);
467 }
468
469 ast_trace(1, "%s: Identity header: %s\n", session_name, identity_str);
470 identity_val = pj_str(identity_str);
471 identity_hdr = pjsip_generic_string_hdr_create(tdata->pool, &identity_hdr_str, &identity_val);
472 ast_free(identity_str);
473 if (!identity_hdr) {
474 ao2_cleanup(ctx);
475 SCOPE_EXIT_LOG_RTN(LOG_ERROR,
476 "%s: Unable to create Identity header\n", session_name);
477 }
478
479 pjsip_msg_add_hdr(tdata->msg, (pjsip_hdr *)identity_hdr);
480
481 ao2_cleanup(ctx);
482 SCOPE_EXIT_RTN("Done\n");
483}
484
485static struct ast_sip_session_supplement stir_shaken_supplement = {
486 .method = "INVITE",
487 .priority = AST_SIP_SUPPLEMENT_PRIORITY_CHANNEL + 1, /* Run AFTER channel creation */
488 .incoming_request = stir_shaken_incoming_request,
489 .outgoing_request = stir_shaken_outgoing_request,
490};
491
492static int unload_module(void)
493{
494 ast_sip_session_unregister_supplement(&stir_shaken_supplement);
495 return 0;
496}
497
503
504#undef AST_BUILDOPT_SUM
505#define AST_BUILDOPT_SUM ""
506
507AST_MODULE_INFO(ASTERISK_GPL_KEY, AST_MODFLAG_GLOBAL_SYMBOLS | AST_MODFLAG_LOAD_ORDER, "PJSIP STIR/SHAKEN Module for Asterisk",
508 .support_level = AST_MODULE_SUPPORT_CORE,
509 .load = load_module,
510 .unload = unload_module,
511 .load_pri = AST_MODPRI_DEFAULT,
512 .requires = "res_pjsip,res_pjsip_session,res_stir_shaken",
513);
asterisk.h
Asterisk main include file. File version handling, generic pbx functions.
session
static struct ast_mansession session
ast_free
#define ast_free(a)
Definition astmm.h:180
ast_malloc
#define ast_malloc(len)
A wrapper for malloc()
Definition astmm.h:191
ao2_cleanup
#define ao2_cleanup(obj)
Definition astobj2.h:1934
callerid.h
CallerID (and other GR30) management and generation Includes code and algorithms from the Zapata libr...
ast_party_id_init
void ast_party_id_init(struct ast_party_id *init)
Initialize the given party id structure.
Definition channel.c:1743
ast_hangup
void ast_hangup(struct ast_channel *chan)
Hang up a channel.
Definition channel.c:2538
ast_channel_lock
#define ast_channel_lock(chan)
Definition channel.h:2982
ast_party_id_free
void ast_party_id_free(struct ast_party_id *doomed)
Destroy the party id contents.
Definition channel.c:1797
ast_party_id_copy
void ast_party_id_copy(struct ast_party_id *dest, const struct ast_party_id *src)
Copy the source party id information to the destination party id.
Definition channel.c:1751
ast_channel_connected_effective_id
struct ast_party_id ast_channel_connected_effective_id(struct ast_channel *chan)
Definition channel_internal_api.c:767
ast_channel_unlock
#define ast_channel_unlock(chan)
Definition channel.h:2983
datastore.h
Asterisk datastore objects.
SCOPE_EXIT_LOG
#define SCOPE_EXIT_LOG(__log_level,...)
Definition include/asterisk/logger.h:1047
SCOPE_EXIT_RTN
#define SCOPE_EXIT_RTN(...)
Definition include/asterisk/logger.h:1032
SCOPE_EXIT_RTN_VALUE
#define SCOPE_EXIT_RTN_VALUE(__return_value,...)
Definition include/asterisk/logger.h:1036
SCOPE_EXIT_LOG_RTN_VALUE
#define SCOPE_EXIT_LOG_RTN_VALUE(__value, __log_level,...)
Definition include/asterisk/logger.h:1059
SCOPE_ENTER
#define SCOPE_ENTER(level,...)
Definition include/asterisk/logger.h:1008
SCOPE_EXIT_LOG_RTN
#define SCOPE_EXIT_LOG_RTN(__log_level,...)
Definition include/asterisk/logger.h:1053
ast_trace
#define ast_trace(level,...)
Definition include/asterisk/logger.h:999
LOG_ERROR
#define LOG_ERROR
Definition include/asterisk/logger.h:291
module.h
Asterisk module definitions.
AST_MODFLAG_LOAD_ORDER
@ AST_MODFLAG_LOAD_ORDER
Definition module.h:331
AST_MODFLAG_GLOBAL_SYMBOLS
@ AST_MODFLAG_GLOBAL_SYMBOLS
Definition module.h:330
AST_MODULE_INFO
#define AST_MODULE_INFO(keystr, flags_to_set, desc, fields...)
Definition module.h:557
AST_MODPRI_DEFAULT
@ AST_MODPRI_DEFAULT
Definition module.h:346
AST_MODULE_SUPPORT_CORE
@ AST_MODULE_SUPPORT_CORE
Definition module.h:121
ASTERISK_GPL_KEY
#define ASTERISK_GPL_KEY
The text the key() function should return.
Definition module.h:46
AST_MODULE_LOAD_SUCCESS
@ AST_MODULE_LOAD_SUCCESS
Definition module.h:70
res_pjsip.h
ast_sip_rdata_get_header_value
char * ast_sip_rdata_get_header_value(pjsip_rx_data *rdata, const pj_str_t str)
Get a specific header value from rdata.
Definition res_pjsip.c:345
ast_sip_add_date_header
void ast_sip_add_date_header(pjsip_tx_data *tdata)
Adds a Date header to the tdata, formatted like: Date: Wed, 01 Jan 2021 14:53:01 GMT.
Definition res_pjsip.c:90
AST_SIP_SUPPLEMENT_PRIORITY_CHANNEL
@ AST_SIP_SUPPLEMENT_PRIORITY_CHANNEL
Definition res_pjsip.h:3339
ast_copy_pj_str
void ast_copy_pj_str(char *dest, const pj_str_t *src, size_t size)
Copy a pj_str_t into a standard character buffer.
Definition res_pjsip.c:2201
SUCCESS
@ SUCCESS
Definition res_pjsip_notify.c:826
res_pjsip_session.h
ast_sip_can_present_connected_id
int ast_sip_can_present_connected_id(const struct ast_sip_session *session, const struct ast_party_id *id)
Determines if the Connected Line info can be presented for this session.
Definition res_pjsip_session.c:131
ast_sip_session_register_supplement
#define ast_sip_session_register_supplement(supplement)
Definition res_pjsip_session.h:618
ast_sip_session_unregister_supplement
void ast_sip_session_unregister_supplement(struct ast_sip_session_supplement *supplement)
Unregister a an supplement to SIP session processing.
Definition pjsip_session.c:63
ast_sip_session_add_reason_header
int ast_sip_session_add_reason_header(struct ast_sip_session *session, const char *protocol, int code, const char *text)
Adds a Reason header in the next reponse to an incoming INVITE.
Definition pjsip_session_reason_header.c:123
ast_sip_session_terminate
void ast_sip_session_terminate(struct ast_sip_session *session, int response)
Terminate a session and, if possible, send the provided response code.
Definition res_pjsip_session.c:3471
ast_sip_session_get_name
const char * ast_sip_session_get_name(const struct ast_sip_session *session)
Get the channel or endpoint name associated with the session.
Definition res_pjsip_session.c:117
process_failure_rc
process_failure_rc
Definition res_pjsip_stir_shaken.c:139
PROCESS_FAILURE_SYSTEM_FAILURE
@ PROCESS_FAILURE_SYSTEM_FAILURE
Definition res_pjsip_stir_shaken.c:142
PROCESS_FAILURE_CONTINUE
@ PROCESS_FAILURE_CONTINUE
Definition res_pjsip_stir_shaken.c:140
PROCESS_FAILURE_REJECT
@ PROCESS_FAILURE_REJECT
Definition res_pjsip_stir_shaken.c:141
reject_incoming_call
static void reject_incoming_call(struct ast_sip_session *session, enum sip_response_code response_code)
Definition res_pjsip_stir_shaken.c:145
vs_code_to_sip_code
static enum sip_response_code vs_code_to_sip_code(enum ast_stir_shaken_vs_response_code vs_rc)
Definition res_pjsip_stir_shaken.c:89
stir_shaken_outgoing_request
static void stir_shaken_outgoing_request(struct ast_sip_session *session, pjsip_tx_data *tdata)
Definition res_pjsip_stir_shaken.c:386
stir_shaken_incoming_request
static int stir_shaken_incoming_request(struct ast_sip_session *session, pjsip_rx_data *rdata)
Definition res_pjsip_stir_shaken.c:203
identity_hdr_str
static const pj_str_t identity_hdr_str
Definition res_pjsip_stir_shaken.c:40
add_date_header
static void add_date_header(const struct ast_sip_session *session, pjsip_tx_data *tdata)
Definition res_pjsip_stir_shaken.c:371
sip_response_code
sip_response_code
Definition res_pjsip_stir_shaken.c:44
SIP_RESPONSE_CODE_USE_IDENTITY_HEADER
@ SIP_RESPONSE_CODE_USE_IDENTITY_HEADER
Definition res_pjsip_stir_shaken.c:47
SIP_RESPONSE_CODE_INTERNAL_ERROR
@ SIP_RESPONSE_CODE_INTERNAL_ERROR
Definition res_pjsip_stir_shaken.c:52
SIP_RESPONSE_CODE_ANONYMITY_DISALLOWED
@ SIP_RESPONSE_CODE_ANONYMITY_DISALLOWED
Definition res_pjsip_stir_shaken.c:48
SIP_RESPONSE_CODE_INVALID_IDENTITY_HEADER
@ SIP_RESPONSE_CODE_INVALID_IDENTITY_HEADER
Definition res_pjsip_stir_shaken.c:51
SIP_RESPONSE_CODE_UNSUPPORTED_CREDENTIAL
@ SIP_RESPONSE_CODE_UNSUPPORTED_CREDENTIAL
Definition res_pjsip_stir_shaken.c:50
SIP_RESPONSE_CODE_BAD_IDENTITY_INFO
@ SIP_RESPONSE_CODE_BAD_IDENTITY_INFO
Definition res_pjsip_stir_shaken.c:49
SIP_RESPONSE_CODE_STALE_DATE
@ SIP_RESPONSE_CODE_STALE_DATE
Definition res_pjsip_stir_shaken.c:46
SIP_RESPONSE_CODE_OK
@ SIP_RESPONSE_CODE_OK
Definition res_pjsip_stir_shaken.c:45
response_to_str
#define response_to_str(_code)
Definition res_pjsip_stir_shaken.c:65
process_failure
static enum process_failure_rc process_failure(struct ast_stir_shaken_vs_ctx *ctx, const char *caller_id, struct ast_sip_session *session, pjsip_rx_data *rdata, enum ast_stir_shaken_vs_response_code vs_rc)
Definition res_pjsip_stir_shaken.c:152
stir_shaken_supplement
static struct ast_sip_session_supplement stir_shaken_supplement
Definition res_pjsip_stir_shaken.c:485
sip_response_code_to_str
static const char * sip_response_code_to_str(enum sip_response_code code)
Definition res_pjsip_stir_shaken.c:69
load_module
static int load_module(void)
Definition res_pjsip_stir_shaken.c:498
unload_module
static int unload_module(void)
Definition res_pjsip_stir_shaken.c:492
get_dest_tn
static char * get_dest_tn(pjsip_tx_data *tdata, const char *tag)
Definition res_pjsip_stir_shaken.c:342
date_hdr_str
static const pj_str_t date_hdr_str
Definition res_pjsip_stir_shaken.c:41
translate_code
#define translate_code(_vs_rc, _sip_rc)
Definition res_pjsip_stir_shaken.c:85
add_fingerprints_if_present
static void add_fingerprints_if_present(struct ast_sip_session *session, struct ast_stir_shaken_as_ctx *ctx)
Definition res_pjsip_stir_shaken.c:307
ast_stir_shaken_get_attestation_datastore
struct stir_shaken_attestation_ds * ast_stir_shaken_get_attestation_datastore(struct ast_channel *chan)
Definition res_stir_shaken.c:314
ast_stir_shaken_vs_ctx_add_date_hdr
enum ast_stir_shaken_vs_response_code ast_stir_shaken_vs_ctx_add_date_hdr(struct ast_stir_shaken_vs_ctx *ctx, const char *date_hdr)
Add the received Date header value to the VS context.
Definition verification.c:614
ast_stir_shaken_add_result_to_channel
int ast_stir_shaken_add_result_to_channel(struct ast_stir_shaken_vs_ctx *ctx)
Add a STIR/SHAKEN verification result to a channel.
Definition res_stir_shaken.c:83
ast_stir_shaken_vs_get_caller_id
const char * ast_stir_shaken_vs_get_caller_id(struct ast_stir_shaken_vs_ctx *ctx)
Get caller_id from context.
Definition verification.c:634
ast_stir_shaken_as_ctx_add_fingerprint
enum ast_stir_shaken_as_response_code ast_stir_shaken_as_ctx_add_fingerprint(struct ast_stir_shaken_as_ctx *ctx, const char *alg, const char *fingerprint)
Add DTLS fingerprints to AS context.
Definition attestation.c:206
ast_stir_shaken_as_response_code
ast_stir_shaken_as_response_code
Definition res_stir_shaken.h:62
AST_STIR_SHAKEN_AS_DISABLED
@ AST_STIR_SHAKEN_AS_DISABLED
Definition res_stir_shaken.h:64
AST_STIR_SHAKEN_AS_SUCCESS
@ AST_STIR_SHAKEN_AS_SUCCESS
Definition res_stir_shaken.h:63
ast_stir_shaken_vs_get_failure_action
enum stir_shaken_failure_action_enum ast_stir_shaken_vs_get_failure_action(struct ast_stir_shaken_vs_ctx *ctx)
Get failure_action from context.
Definition verification.c:622
ast_stir_shaken_as_ctx_create
enum ast_stir_shaken_as_response_code ast_stir_shaken_as_ctx_create(const char *caller_id, const char *dest_tn, struct ast_channel *chan, const char *profile_name, const char *tag, struct ast_stir_shaken_as_ctx **ctxout)
Create Attestation Service Context.
Definition attestation.c:66
ast_stir_shaken_vs_verify
enum ast_stir_shaken_vs_response_code ast_stir_shaken_vs_verify(struct ast_stir_shaken_vs_ctx *ctx)
Perform incoming call verification.
Definition verification.c:895
ast_stir_shaken_vs_get_use_rfc9410_responses
int ast_stir_shaken_vs_get_use_rfc9410_responses(struct ast_stir_shaken_vs_ctx *ctx)
Get use_rfc9410_responses from context.
Definition verification.c:628
ast_stir_shaken_vs_ctx_create
enum ast_stir_shaken_vs_response_code ast_stir_shaken_vs_ctx_create(const char *caller_id, struct ast_channel *chan, const char *profile_name, const char *tag, struct ast_stir_shaken_vs_ctx **ctxout)
Create Verification Service context.
Definition verification.c:659
ast_stir_shaken_vs_ctx_add_identity_hdr
enum ast_stir_shaken_vs_response_code ast_stir_shaken_vs_ctx_add_identity_hdr(struct ast_stir_shaken_vs_ctx *ctx, const char *identity_hdr)
Add the received Identity header value to the VS context.
Definition verification.c:606
ast_stir_shaken_vs_response_code
ast_stir_shaken_vs_response_code
Definition res_stir_shaken.h:23
AST_STIR_SHAKEN_VS_SUCCESS
@ AST_STIR_SHAKEN_VS_SUCCESS
Definition res_stir_shaken.h:24
AST_STIR_SHAKEN_VS_NO_IDENTITY_HDR
@ AST_STIR_SHAKEN_VS_NO_IDENTITY_HDR
Definition res_stir_shaken.h:28
AST_STIR_SHAKEN_VS_DISABLED
@ AST_STIR_SHAKEN_VS_DISABLED
Definition res_stir_shaken.h:25
AST_STIR_SHAKEN_VS_INVALID_OR_NO_CID
@ AST_STIR_SHAKEN_VS_INVALID_OR_NO_CID
Definition res_stir_shaken.h:58
ast_stir_shaken_attest
enum ast_stir_shaken_as_response_code ast_stir_shaken_attest(struct ast_stir_shaken_as_ctx *ctx, char **header)
Attest and return Identity header value.
Definition attestation.c:364
ast_stir_shaken_as_ctx_wants_fingerprints
int ast_stir_shaken_as_ctx_wants_fingerprints(struct ast_stir_shaken_as_ctx *ctx)
Indicates if the AS context needs DTLS fingerprints.
Definition attestation.c:200
ast_stir_shaken_vs_ctx_set_response_code
void ast_stir_shaken_vs_ctx_set_response_code(struct ast_stir_shaken_vs_ctx *ctx, enum ast_stir_shaken_vs_response_code vs_rc)
Sets response code on VS context.
Definition verification.c:640
stir_shaken_failure_action_enum
stir_shaken_failure_action_enum
Definition res_stir_shaken.h:79
stir_shaken_failure_action_CONTINUE_RETURN_REASON
@ stir_shaken_failure_action_CONTINUE_RETURN_REASON
Definition res_stir_shaken.h:87
stir_shaken_failure_action_REJECT_REQUEST
@ stir_shaken_failure_action_REJECT_REQUEST
Definition res_stir_shaken.h:85
NULL
#define NULL
Definition resample.c:96
rtp_engine.h
Pluggable RTP Architecture.
ast_rtp_dtls_hash
ast_rtp_dtls_hash
DTLS fingerprint hashes.
Definition rtp_engine.h:578
AST_RTP_DTLS_HASH_SHA256
@ AST_RTP_DTLS_HASH_SHA256
Definition rtp_engine.h:579
ast_rtp_instance_get_dtls
struct ast_rtp_engine_dtls * ast_rtp_instance_get_dtls(struct ast_rtp_instance *instance)
Obtain a pointer to the DTLS support present on an RTP instance.
Definition rtp_engine.c:3227
stir_shaken.h
ast_strlen_zero
static force_inline int attribute_pure ast_strlen_zero(const char *s)
Definition strings.h:65
ast_channel
Main Channel structure associated with a channel.
Definition channel_private.h:48
ast_party_id
Information needed to identify an endpoint in a call.
Definition channel.h:340
ast_party_id::number
struct ast_party_number number
Subscriber phone number.
Definition channel.h:344
ast_party_number::str
char * str
Subscriber phone number (Malloced)
Definition channel.h:293
ast_rtp_engine_dtls
Structure that represents the optional DTLS SRTP support within an RTP engine.
Definition rtp_engine.h:621
ast_sip_session_media_state
Structure which contains media state information (streams, sessions)
Definition res_pjsip_session.h:147
ast_sip_session_media_state::sessions
struct ast_sip_session_media_state::@282 sessions
Mapping of stream to media sessions.
ast_sip_session_media
A structure containing SIP session media information.
Definition res_pjsip_session.h:77
ast_sip_session_media::rtp
struct ast_rtp_instance * rtp
RTP instance itself.
Definition res_pjsip_session.h:79
ast_sip_session_supplement
A supplement to SIP message processing.
Definition res_pjsip_session.h:292
ast_sip_session_supplement::method
struct ast_module *const char * method
Definition res_pjsip_session.h:294
ast_sip_session
A structure describing a SIP session.
Definition res_pjsip_session.h:181
ast_stir_shaken_as_ctx
Definition attestation.h:24
ast_stir_shaken_vs_ctx
Definition verification.h:24
stir_shaken_attestation_ds
Definition stir_shaken.h:43
stir_shaken_attestation_ds::suppress
int suppress
Definition stir_shaken.h:45
d
static struct test_val d
Definition test_linkedlists.c:49
RAII_VAR
#define RAII_VAR(vartype, varname, initval, dtor)
Declare a variable that will call a destructor function when it goes out of scope.
Definition utils.h:981
AST_VECTOR_SIZE
#define AST_VECTOR_SIZE(vec)
Get the number of elements in a vector.
Definition vector.h:620
AST_VECTOR_GET
#define AST_VECTOR_GET(vec, idx)
Get an element from a vector.
Definition vector.h:691
Generated on Wed Oct 29 2025 20:04:28 for Asterisk - The Open Source Telephony Project by doxygen 1.9.8