The FreeRADIUS server $Id: 15bac2a4c627c01d1aa2047687b3418955ac7f00 $
Loading...
Searching...
No Matches
xlat_builtin.c
Go to the documentation of this file.
1/*
2 * This program is free software; you can redistribute it and/or modify
3 * it under the terms of the GNU General Public License as published by
4 * the Free Software Foundation; either version 2 of the License, or
5 * (at your option) any later version.
6 *
7 * This program is distributed in the hope that it will be useful,
8 * but WITHOUT ANY WARRANTY; without even the implied warranty of
9 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
10 * GNU General Public License for more details.
11 *
12 * You should have received a copy of the GNU General Public License
13 * along with this program; if not, write to the Free Software
14 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301, USA
15 */
16
17/**
18 * $Id: 5c4893883c1273767a97253fbec87bceb58671c0 $
19 *
20 * @file xlat_builtin.c
21 * @brief String expansion ("translation"). Baked in expansions.
22 *
23 * @copyright 2000,2006 The FreeRADIUS server project
24 * @copyright 2000 Alan DeKok (aland@freeradius.org)
25 */
26RCSID("$Id: 5c4893883c1273767a97253fbec87bceb58671c0 $")
27
28/**
29 * @defgroup xlat_functions xlat expansion functions
30 */
31#include <freeradius-devel/server/base.h>
32#include <freeradius-devel/server/tmpl_dcursor.h>
33#include <freeradius-devel/unlang/interpret.h>
34#include <freeradius-devel/unlang/xlat_priv.h>
35
36#include <freeradius-devel/unlang/xlat.h>
37#include <freeradius-devel/io/test_point.h>
38
39#include <freeradius-devel/util/base16.h>
40#include <freeradius-devel/util/dbuff.h>
41#include <freeradius-devel/util/dcursor.h>
42#include <freeradius-devel/util/pair.h>
43#include <freeradius-devel/util/table.h>
44
45#ifdef HAVE_OPENSSL_EVP_H
46# include <freeradius-devel/tls/openssl_user_macros.h>
47# include <openssl/evp.h>
48#endif
49
50#include <sys/stat.h>
51#include <fcntl.h>
52
53static char const hextab[] = "0123456789abcdef";
54static TALLOC_CTX *xlat_ctx;
55
56typedef struct {
57 fr_test_point_pair_decode_t *tp_decode;
58 fr_dict_t const *dict; //!< Restrict xlat to this namespace
59} xlat_pair_decode_uctx_t;
60
61/** Copy an argument from the input list to the output cursor.
62 *
63 * For now we just move it. This utility function will let us have
64 * value-box cursors as input arguments.
65 *
66 * @param[in] ctx talloc ctx
67 * @param[out] out where the value-box will be stored
68 * @param[in] in input value-box list
69 * @param[in] vb the argument to copy
70 */
71void xlat_arg_copy_out(TALLOC_CTX *ctx, fr_dcursor_t *out, fr_value_box_list_t *in, fr_value_box_t *vb)
72{
73 fr_value_box_list_remove(in, vb);
74 if (talloc_parent(vb) != ctx) {
75 (void) talloc_steal(ctx, vb);
76 }
77 fr_dcursor_append(out, vb);
78}
79
80/*
81 * Regular xlat functions
82 */
83static xlat_arg_parser_t const xlat_func_debug_args[] = {
84 { .single = true, .type = FR_TYPE_INT8 },
85 XLAT_ARG_PARSER_TERMINATOR
86};
87
88/** Dynamically change the debugging level for the current request
89 *
90 * Example:
91@verbatim
92%debug(3)
93@endverbatim
94 *
95 * @ingroup xlat_functions
96 */
97static xlat_action_t xlat_func_debug(TALLOC_CTX *ctx, fr_dcursor_t *out,
98 UNUSED xlat_ctx_t const *xctx,
99 request_t *request, fr_value_box_list_t *args)
100{
101 int level = 0;
102 fr_value_box_t *vb, *lvl_vb;
103
104 XLAT_ARGS(args, &lvl_vb);
105
106 /*
107 * Expand to previous (or current) level
108 */
109 MEM(vb = fr_value_box_alloc(ctx, FR_TYPE_INT8, NULL));
110 vb->vb_int8 = request->log.lvl;
111 fr_dcursor_append(out, vb);
112
113 /*
114 * Assume we just want to get the current value and NOT set it to 0
115 */
116 if (!lvl_vb) goto done;
117
118 level = lvl_vb->vb_int8;
119 if (level == 0) {
120 request->log.lvl = RAD_REQUEST_LVL_NONE;
121 } else {
122 if (level > L_DBG_LVL_MAX) level = L_DBG_LVL_MAX;
123 request->log.lvl = level;
124 }
125
126done:
127 return XLAT_ACTION_DONE;
128}
129
130
131static void xlat_debug_attr_vp(request_t *request, fr_pair_t const *vp,
132 fr_dict_attr_t const *da);
133
134static void xlat_debug_attr_list(request_t *request, fr_pair_list_t const *list,
135 fr_dict_attr_t const *parent)
136{
137 fr_pair_t *vp;
138
139 for (vp = fr_pair_list_next(list, NULL);
140 vp != NULL;
141 vp = fr_pair_list_next(list, vp)) {
142 xlat_debug_attr_vp(request, vp, parent);
143 }
144}
145
146
151
152static void xlat_debug_attr_vp(request_t *request, fr_pair_t const *vp,
153 fr_dict_attr_t const *parent)
154{
155 fr_dict_vendor_t const *vendor;
156 fr_table_num_ordered_t const *type;
157 size_t i;
158 ssize_t slen;
159 fr_sbuff_t sbuff;
160 char buffer[1024];
161
162 sbuff = FR_SBUFF_OUT(buffer, sizeof(buffer));
163
164 /*
165 * Squash the names down if necessary.
166 */
167 if (!RDEBUG_ENABLED3) {
168 slen = fr_pair_print_name(&sbuff, parent, &vp);
169 } else {
170 slen = fr_sbuff_in_sprintf(&sbuff, "%s %s ", vp->da->name, fr_tokens[vp->op]);
171 }
172 if (slen <= 0) return;
173
174 switch (vp->vp_type) {
175 case FR_TYPE_STRUCTURAL:
176 RIDEBUG2("%s{", buffer);
177 RINDENT();
178 xlat_debug_attr_list(request, &vp->vp_group, vp->da);
179 REXDENT();
180 RIDEBUG2("}");
181 break;
182
183 default:
184 RIDEBUG2("%s%pV", buffer, &vp->data);
185 }
186
187 if (!RDEBUG_ENABLED3) return;
188
189 RINDENT();
190 RIDEBUG3("da : %p", vp->da);
191 RIDEBUG3("is_raw : %pV", fr_box_bool(vp->vp_raw));
192 RIDEBUG3("is_unknown : %pV", fr_box_bool(vp->da->flags.is_unknown));
193
194 if (RDEBUG_ENABLED3) {
195 RIDEBUG3("parent : %s (%p)", vp->da->parent->name, vp->da->parent);
196 } else {
197 RIDEBUG2("parent : %s", vp->da->parent->name);
198 }
199 RIDEBUG3("attr : %u", vp->da->attr);
200 vendor = fr_dict_vendor_by_da(vp->da);
201 if (vendor) RIDEBUG2("vendor : %u (%s)", vendor->pen, vendor->name);
202 RIDEBUG3("type : %s", fr_type_to_str(vp->vp_type));
203
204 switch (vp->vp_type) {
205 case FR_TYPE_LEAF:
206 if (fr_box_is_variable_size(&vp->data)) {
207 RIDEBUG3("length : %zu", vp->vp_length);
208 }
209 RIDEBUG3("tainted : %pV", fr_box_bool(vp->data.tainted));
210 break;
211 default:
212 break;
213 }
214
215 if (!RDEBUG_ENABLED4) {
216 REXDENT();
217 return;
218 }
219
220 for (i = 0; i < fr_type_table_len; i++) {
221 int pad;
222
223 fr_value_box_t *dst = NULL;
224
225 type = &fr_type_table[i];
226
227 if ((fr_type_t) type->value == vp->vp_type) goto next_type;
228
229 /*
230 * Don't cast TO structural, or FROM structural types.
231 */
232 if (!fr_type_is_leaf(type->value) || !fr_type_is_leaf(vp->vp_type)) goto next_type;
233
234 MEM(dst = fr_value_box_acopy(NULL, &vp->data));
235
236 /* We expect some to fail */
237 if (fr_value_box_cast_in_place(dst, dst, type->value, NULL) < 0) {
238 goto next_type;
239 }
240
241 if ((pad = (11 - type->name.len)) < 0) pad = 0;
242
243 RINDENT();
244 RDEBUG4("as %s%*s: %pV", type->name.str, pad, " ", dst);
245 REXDENT();
246
247 next_type:
248 talloc_free(dst);
249 }
250
251 REXDENT();
252}
253
254/** Common function to move boxes from input list to output list
255 *
256 * This can be used to implement safe_for functions, as the xlat framework
257 * can be used for concatenation, casting, and marking up output boxes as
258 * safe_for.
259 */
260xlat_action_t xlat_transparent(TALLOC_CTX *ctx, fr_dcursor_t *out,
261 UNUSED xlat_ctx_t const *xctx,
262 UNUSED request_t *request, fr_value_box_list_t *args)
263{
264 fr_value_box_list_foreach(args, vb) {
265 xlat_arg_copy_out(ctx, out, args, vb);
266 }
267
268 return XLAT_ACTION_DONE;
269}
270
271/** Print out attribute info
272 *
273 * Prints out all instances of a current attribute, or all attributes in a list.
274 *
275 * At higher debugging levels, also prints out alternative decodings of the same
276 * value. This is helpful to determine types for unknown attributes of long
277 * passed vendors, or just crazy/broken NAS.
278 *
279 * This expands to a zero length string.
280 *
281 * Example:
282@verbatim
283%pairs.debug(&request)
284@endverbatim
285 *
286 * @ingroup xlat_functions
287 */
288static xlat_action_t xlat_func_pairs_debug(UNUSED TALLOC_CTX *ctx, UNUSED fr_dcursor_t *out,
289 UNUSED xlat_ctx_t const *xctx,
290 request_t *request, fr_value_box_list_t *args)
291{
292 fr_pair_t *vp;
293 fr_dcursor_t *cursor;
294 fr_value_box_t *in_head;
295
296 XLAT_ARGS(args, &in_head);
297
298 if (!RDEBUG_ENABLED2) return XLAT_ACTION_DONE; /* NOOP if debugging isn't enabled */
299
300 cursor = fr_value_box_get_cursor(in_head);
301
302 RDEBUG("Attributes matching \"%s\"", in_head->vb_cursor_name);
303
304 RINDENT();
305 for (vp = fr_dcursor_current(cursor);
306 vp;
307 vp = fr_dcursor_next(cursor)) {
308 xlat_debug_attr_vp(request, vp, NULL);
309 }
310 REXDENT();
311
312 return XLAT_ACTION_DONE;
313}
314
315#ifdef __clang__
316#pragma clang diagnostic ignored "-Wgnu-designator"
317#endif
318
319static const fr_sbuff_escape_rules_t xlat_filename_escape = {
320 .name = "filename",
321 .chr = '_',
322 .do_utf8 = true,
323 .do_hex = true,
324
325 .esc = {
326 [ 0x00 ... 0x2d ] = true, // special characters, but not '.'
327 [ 0x2f ] = true, // /
328 [ 0x3A ... 0x3f ] = true, // :;<=>?, but not "@"
329 [ 0x5b ... 0x5e ] = true, // [\]^
330 [ 0x60 ] = true, // back-tick
331 [ 0x7b ... 0xff ] = true, // {|}, and all chars which have high bit set, but aren't UTF-8
332 },
333};
334
335static const fr_sbuff_escape_rules_t xlat_filename_escape_dots = {
336 .name = "filename",
337 .chr = '_',
338 .do_utf8 = true,
339 .do_hex = true,
340
341 .esc = {
342 [ 0x00 ... 0x2f ] = true, // special characters, '.', '/', etc.
343 [ 0x3A ... 0x3f ] = true, // :;<=>?, but not "@"
344 [ 0x5b ... 0x5e ] = true, // [\]^
345 [ 0x60 ] = true, // back-tick
346 [ 0x7b ... 0xff ] = true, // {|}, and all chars which have high bit set, but aren't UTF-8
347 },
348};
349
350#define FR_FILENAME_SAFE_FOR ((uintptr_t) filename_xlat_escape)
351
352static int CC_HINT(nonnull(2,3)) filename_xlat_escape(UNUSED request_t *request, fr_value_box_t *vb, UNUSED void *uctx)
353{
354 fr_sbuff_t *out = NULL;
355 fr_value_box_entry_t entry;
356
357 FR_SBUFF_TALLOC_THREAD_LOCAL(&out, 256, 4096);
358
359 /*
360 * Integers are just numbers, so they don't need to be escaped.
361 *
362 * Except that FR_TYPE_INTEGER includes 'date' and 'time_delta', which is annoying.
363 *
364 * 'octets' get printed as hex, so they don't need to be escaped.
365 */
366 switch (vb->type) {
367 case FR_TYPE_BOOL:
368 case FR_TYPE_UINT8:
369 case FR_TYPE_UINT16:
370 case FR_TYPE_UINT32:
371 case FR_TYPE_UINT64:
372 case FR_TYPE_INT8:
373 case FR_TYPE_INT16:
374 case FR_TYPE_INT32:
375 case FR_TYPE_INT64:
376 case FR_TYPE_SIZE:
377 case FR_TYPE_OCTETS:
378 return 0;
379
380 case FR_TYPE_NON_LEAF:
381 fr_assert(0);
382 return -1;
383
384 case FR_TYPE_DATE:
385 case FR_TYPE_TIME_DELTA:
386 case FR_TYPE_IFID:
387 case FR_TYPE_ETHERNET:
388 case FR_TYPE_FLOAT32:
389 case FR_TYPE_FLOAT64:
390 case FR_TYPE_COMBO_IP_ADDR:
391 case FR_TYPE_COMBO_IP_PREFIX:
392 case FR_TYPE_IPV4_ADDR:
393 case FR_TYPE_IPV4_PREFIX:
394 case FR_TYPE_IPV6_ADDR:
395 case FR_TYPE_IPV6_PREFIX:
396 case FR_TYPE_ATTR:
397 /*
398 * Printing prefixes etc. does NOT result in the escape function being called! So
399 * instead, we cast the results to a string, and then escape the string.
400 */
401 if (fr_value_box_cast_in_place(vb, vb, FR_TYPE_STRING, NULL) < 0) return -1;
402
403 fr_value_box_print(out, vb, &xlat_filename_escape);
404 break;
405
406 case FR_TYPE_STRING:
407 /*
408 * Note that we set ".always_escape" in the function arguments, so that we get called for
409 * IP addresses. Otherwise, the xlat evaluator and/or the list_concat_as_string
410 * functions won't call us. And the expansion will return IP addresses with '/' in them.
411 * Which is not what we want.
412 */
413 if (fr_value_box_is_safe_for(vb, FR_FILENAME_SAFE_FOR)) return 1;
414
415 /*
416 * If the tainted string has a leading '.', then escape _all_ periods in it. This is so that we
417 * don't accidentally allow a "safe" value to end with '/', and then an "unsafe" value contains
418 * "..", and we now have a directory traversal attack.
419 *
420 * The escape rules will escape '/' in unsafe strings, so there's no possibility for an unsafe
421 * string to either end with a '/', or to contain "/.." itself.
422 *
423 * Allowing '.' in the middle of the string means we can have filenames based on realms, such as
424 * "log/aland@freeradius.org".
425 */
426 if (vb->vb_strvalue[0] == '.') {
427 fr_value_box_print(out, vb, &xlat_filename_escape_dots);
428 } else {
429 fr_value_box_print(out, vb, &xlat_filename_escape);
430 }
431
432 break;
433 }
434
435 entry = vb->entry;
436 fr_value_box_clear(vb);
437 (void) fr_value_box_bstrndup(vb, vb, NULL, fr_sbuff_start(out), fr_sbuff_used(out), false);
438 vb->entry = entry;
439
440 return 0;
441}
442
443static xlat_arg_parser_t const xlat_func_file_name_args[] = {
444 { .required = true, .concat = true, .type = FR_TYPE_STRING,
445 .func = filename_xlat_escape, .safe_for = FR_FILENAME_SAFE_FOR, .always_escape = true },
446 XLAT_ARG_PARSER_TERMINATOR
447};
448
449static xlat_arg_parser_t const xlat_func_file_name_count_args[] = {
450 { .required = true, .concat = true, .type = FR_TYPE_STRING,
451 .func = filename_xlat_escape, .safe_for = FR_FILENAME_SAFE_FOR, .always_escape = true },
452 { .required = false, .type = FR_TYPE_UINT32 },
453 XLAT_ARG_PARSER_TERMINATOR
454};
455
456
457static xlat_action_t xlat_func_file_exists(TALLOC_CTX *ctx, fr_dcursor_t *out,
458 UNUSED xlat_ctx_t const *xctx,
459 UNUSED request_t *request, fr_value_box_list_t *args)
460{
461 fr_value_box_t *dst, *vb;
462 char const *filename;
463 struct stat buf;
464
465 XLAT_ARGS(args, &vb);
466 fr_assert(vb->type == FR_TYPE_STRING);
467 filename = vb->vb_strvalue;
468
469 MEM(dst = fr_value_box_alloc(ctx, FR_TYPE_BOOL, NULL));
470 fr_dcursor_append(out, dst);
471
472 dst->vb_bool = (stat(filename, &buf) == 0);
473
474 return XLAT_ACTION_DONE;
475}
476
477
478static xlat_action_t xlat_func_file_head(TALLOC_CTX *ctx, fr_dcursor_t *out,
479 UNUSED xlat_ctx_t const *xctx,
480 request_t *request, fr_value_box_list_t *args)
481{
482 fr_value_box_t *dst, *vb;
483 char const *filename;
484 ssize_t len;
485 int fd;
486 char *p, buffer[256];
487
488 XLAT_ARGS(args, &vb);
489 fr_assert(vb->type == FR_TYPE_STRING);
490 filename = vb->vb_strvalue;
491
492 fd = open(filename, O_RDONLY);
493 if (fd < 0) {
494 REDEBUG3("Failed opening file %s - %s", filename, fr_syserror(errno));
495 return XLAT_ACTION_FAIL;
496 }
497
498 len = read(fd, buffer, sizeof(buffer));
499 if (len < 0) {
500 REDEBUG3("Failed reading file %s - %s", filename, fr_syserror(errno));
501 close(fd);
502 return XLAT_ACTION_FAIL;
503 }
504
505 /*
506 * Find the first CR/LF, but bail if we get any weird characters.
507 */
508 for (p = buffer; p < (buffer + len); p++) {
509 if ((*p == '\r') || (*p == '\n')) {
510 break;
511 }
512
513 if ((*p < ' ') && (*p != '\t')) {
514 invalid:
515 REDEBUG("Invalid text in file %s", filename);
516 close(fd);
517 return XLAT_ACTION_FAIL;
518 }
519 }
520
521 if ((p - buffer) > len) goto invalid;
522 close(fd);
523
524 MEM(dst = fr_value_box_alloc(ctx, FR_TYPE_STRING, NULL));
525 if (fr_value_box_bstrndup(dst, dst, NULL, buffer, p - buffer, false) < 0) {
526 talloc_free(dst);
527 return XLAT_ACTION_FAIL;
528 }
529
530 fr_dcursor_append(out, dst);
531
532 return XLAT_ACTION_DONE;
533}
534
535
536static xlat_action_t xlat_func_file_size(TALLOC_CTX *ctx, fr_dcursor_t *out,
537 UNUSED xlat_ctx_t const *xctx,
538 request_t *request, fr_value_box_list_t *args)
539{
540 fr_value_box_t *dst, *vb;
541 char const *filename;
542 struct stat buf;
543
544 XLAT_ARGS(args, &vb);
545 fr_assert(vb->type == FR_TYPE_STRING);
546 filename = vb->vb_strvalue;
547
548 if (stat(filename, &buf) < 0) {
549 REDEBUG3("Failed checking file %s - %s", filename, fr_syserror(errno));
550 return XLAT_ACTION_FAIL;
551 }
552
553 MEM(dst = fr_value_box_alloc(ctx, FR_TYPE_UINT64, NULL)); /* off_t is signed, but file sizes shouldn't be negative */
554 fr_dcursor_append(out, dst);
555
556 dst->vb_uint64 = buf.st_size;
557
558 return XLAT_ACTION_DONE;
559}
560
561
562static xlat_action_t xlat_func_file_tail(TALLOC_CTX *ctx, fr_dcursor_t *out,
563 UNUSED xlat_ctx_t const *xctx,
564 request_t *request, fr_value_box_list_t *args)
565{
566 fr_value_box_t *dst, *vb, *num = NULL;
567 char const *filename;
568 ssize_t len;
569 off_t offset;
570 int fd;
571 int crlf, stop = 1;
572 char *p, *end, *found, buffer[256];
573
574 XLAT_ARGS(args, &vb, &num);
575 fr_assert(vb->type == FR_TYPE_STRING);
576 filename = vb->vb_strvalue;
577
578 fd = open(filename, O_RDONLY);
579 if (fd < 0) {
580 REDEBUG3("Failed opening file %s - %s", filename, fr_syserror(errno));
581 return XLAT_ACTION_FAIL;
582 }
583
584 offset = lseek(fd, 0, SEEK_END);
585 if (offset < 0) {
586 REDEBUG3("Failed seeking to end of file %s - %s", filename, fr_syserror(errno));
587 goto fail;
588 }
589
590 if (offset > (off_t) sizeof(buffer)) {
591 offset -= sizeof(buffer);
592 } else {
593 offset = 0;
594 }
595
596 if (lseek(fd, offset, SEEK_SET) < 0) {
597 REDEBUG3("Failed seeking backwards from end of file %s - %s", filename, fr_syserror(errno));
598 goto fail;
599 }
600
601 len = read(fd, buffer, sizeof(buffer));
602 if (len < 0) {
603 fail:
604 REDEBUG3("Failed reading file %s - %s", filename, fr_syserror(errno));
605 close(fd);
606 return XLAT_ACTION_FAIL;
607 }
608 close(fd);
609
610 found = buffer;
611 end = buffer + len;
612
613 /*
614 * No data, OR just one CR / LF, we print it all out.
615 */
616 if (len <= 1) goto done;
617
618 /*
619 * Clamp number of lines to a reasonable value. They
620 * still all have to fit into 256 characters, though.
621 *
622 * @todo - have a large thread-local temporary buffer for this stuff.
623 */
624 if (num) {
625 fr_assert(num->type == FR_TYPE_GROUP);
626 fr_assert(fr_value_box_list_num_elements(&num->vb_group) == 1);
627
628 num = fr_value_box_list_head(&num->vb_group);
629 fr_assert(num->type == FR_TYPE_UINT32);
630
631 if (!num->vb_uint32) {
632 stop = 1;
633
634 } else if (num->vb_uint32 <= 16) {
635 stop = num->vb_uint64;
636
637 } else {
638 stop = 16;
639 }
640 } else {
641 stop = 1;
642 }
643
644 p = end - 1;
645 crlf = 0;
646
647 /*
648 * Skip any trailing CRLF first.
649 */
650 while (p > buffer) {
651 /*
652 * Could be CRLF, or just LF.
653 */
654 if (*p == '\n') {
655 end = p;
656 p--;
657 if (p == buffer) {
658 goto done;
659 }
660 if (*p >= ' ') {
661 break;
662 }
663 }
664
665 if (*p == '\r') {
666 end = p;
667 p--;
668 break;
669 }
670
671 /*
672 * We've found CR, LF, or CRLF. The previous
673 * thing is either raw text, or is another CR/LF.
674 */
675 break;
676 }
677
678 found = p;
679
680 while (p > buffer) {
681 crlf++;
682
683 /*
684 * If the current line is empty, we can stop.
685 */
686 if ((crlf == stop) && (*found < ' ')) {
687 found++;
688 goto done;
689 }
690
691 while (*p >= ' ') {
692 found = p;
693 p--;
694 if (p == buffer) {
695 found = buffer;
696 goto done;
697 }
698 }
699 if (crlf == stop) {
700 break;
701 }
702
703 /*
704 * Check again for CRLF.
705 */
706 if (*p == '\n') {
707 p--;
708 if (p == buffer) {
709 break;
710 }
711 if (*p >= ' ') {
712 continue;
713 }
714 }
715
716 if (*p == '\r') {
717 p--;
718 if (p == buffer) {
719 break;
720 }
721 continue;
722 }
723 }
724
725done:
726
727 /*
728 * @todo - return a _list_ of value-boxes, one for each line in the file.
729 * Which means chopping off each CRLF in the file
730 */
731
732 MEM(dst = fr_value_box_alloc(ctx, FR_TYPE_STRING, NULL));
733 if (fr_value_box_bstrndup(dst, dst, NULL, found, (size_t) (end - found), false) < 0) {
734 talloc_free(dst);
735 return XLAT_ACTION_FAIL;
736 }
737
738 fr_dcursor_append(out, dst);
739
740 return XLAT_ACTION_DONE;
741}
742
743static xlat_arg_parser_t const xlat_func_file_cat_args[] = {
744 { .required = true, .concat = true, .type = FR_TYPE_STRING,
745 .func = filename_xlat_escape, .safe_for = FR_FILENAME_SAFE_FOR, .always_escape = true },
746 { .required = true, .type = FR_TYPE_SIZE, .single = true },
747 XLAT_ARG_PARSER_TERMINATOR
748};
749
750static xlat_action_t xlat_func_file_cat(TALLOC_CTX *ctx, fr_dcursor_t *out,
751 UNUSED xlat_ctx_t const *xctx,
752 request_t *request, fr_value_box_list_t *args)
753{
754 fr_value_box_t *dst, *vb, *max_size;
755 char const *filename;
756 ssize_t len;
757 int fd;
758 struct stat buf;
759 uint8_t *buffer;
760
761 XLAT_ARGS(args, &vb, &max_size);
762 fr_assert(vb->type == FR_TYPE_STRING);
763 filename = vb->vb_strvalue;
764
765 fd = open(filename, O_RDONLY);
766 if (fd < 0) {
767 RPERROR("Failed opening file %s - %s", filename, fr_syserror(errno));
768 return XLAT_ACTION_FAIL;
769 }
770
771 if (fstat(fd, &buf) < 0) {
772 RPERROR("Failed checking file %s - %s", filename, fr_syserror(errno));
773 fail:
774 close(fd);
775 return XLAT_ACTION_FAIL;
776 }
777
778 if ((size_t)buf.st_size > max_size->vb_size) {
779 RPERROR("File larger than specified maximum (%"PRIu64" vs %zu)", buf.st_size, max_size->vb_size);
780 goto fail;
781 }
782
783 MEM(dst = fr_value_box_alloc(ctx, FR_TYPE_OCTETS, NULL));
784 fr_value_box_mem_alloc(dst, &buffer, dst, NULL, buf.st_size, true);
785
786 len = read(fd, buffer, buf.st_size);
787 if (len < 0) {
788 RPERROR("Failed reading file %s - %s", filename, fr_syserror(errno));
789 talloc_free(dst);
790 goto fail;
791 }
792 close(fd);
793
794 fr_dcursor_append(out, dst);
795
796 return XLAT_ACTION_DONE;
797}
798
799static xlat_action_t xlat_func_file_rm(TALLOC_CTX *ctx, fr_dcursor_t *out,
800 UNUSED xlat_ctx_t const *xctx,
801 request_t *request, fr_value_box_list_t *args)
802{
803 fr_value_box_t *dst, *vb;
804 char const *filename;
805
806 XLAT_ARGS(args, &vb);
807 fr_assert(vb->type == FR_TYPE_STRING);
808 filename = vb->vb_strvalue;
809
810 MEM(dst = fr_value_box_alloc(ctx, FR_TYPE_BOOL, NULL));
811 fr_dcursor_append(out, dst);
812
813 dst->vb_bool = (unlink(filename) == 0);
814 if (!dst->vb_bool) {
815 REDEBUG3("Failed unlinking file %s - %s", filename, fr_syserror(errno));
816 }
817
818 return XLAT_ACTION_DONE;
819}
820
821static xlat_action_t xlat_func_file_touch(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx,
822 request_t *request, fr_value_box_list_t *args)
823{
824 fr_value_box_t *dst, *vb;
825 char const *filename;
826 int fd;
827
828 XLAT_ARGS(args, &vb);
829 fr_assert(vb->type == FR_TYPE_STRING);
830 filename = vb->vb_strvalue;
831
832 MEM(dst = fr_value_box_alloc(ctx, FR_TYPE_BOOL, NULL));
833 fr_dcursor_append(out, dst);
834
835 fd = open(filename, O_CREAT | S_IRUSR | S_IWUSR, 0600);
836 if (fd == -1) {
837 dst->vb_bool = false;
838 REDEBUG3("Failed touching file %s - %s", filename, fr_syserror(errno));
839 }
840 dst->vb_bool = true;
841
842 close(fd);
843
844 return XLAT_ACTION_DONE;
845}
846
847static xlat_action_t xlat_func_file_mkdir(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx,
848 request_t *request, fr_value_box_list_t *args)
849{
850 fr_value_box_t *dst, *vb;
851 char const *dirname;
852
853 XLAT_ARGS(args, &vb);
854 fr_assert(vb->type == FR_TYPE_STRING);
855 dirname = vb->vb_strvalue;
856
857 MEM(dst = fr_value_box_alloc(ctx, FR_TYPE_BOOL, NULL));
858 fr_dcursor_append(out, dst);
859
860 dst->vb_bool = (fr_mkdir(NULL, dirname, -1, 0700, NULL, NULL) == 0);
861 if (!dst->vb_bool) {
862 REDEBUG3("Failed creating directory %s - %s", dirname, fr_syserror(errno));
863 }
864
865 return XLAT_ACTION_DONE;
866}
867
868static xlat_action_t xlat_func_file_rmdir(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx,
869 request_t *request, fr_value_box_list_t *args)
870{
871 fr_value_box_t *dst, *vb;
872 char const *dirname;
873
874 XLAT_ARGS(args, &vb);
875 fr_assert(vb->type == FR_TYPE_STRING);
876 dirname = vb->vb_strvalue;
877
878 MEM(dst = fr_value_box_alloc(ctx, FR_TYPE_BOOL, NULL));
879 fr_dcursor_append(out, dst);
880
881 dst->vb_bool = (rmdir(dirname) == 0);
882 if (!dst->vb_bool) {
883 REDEBUG3("Failed removing directory %s - %s", dirname, fr_syserror(errno));
884 }
885
886 return XLAT_ACTION_DONE;
887}
888
889static xlat_arg_parser_t const xlat_func_taint_args[] = {
890 { .required = true, .type = FR_TYPE_VOID },
891 { .variadic = XLAT_ARG_VARIADIC_EMPTY_KEEP, .type = FR_TYPE_VOID },
892 XLAT_ARG_PARSER_TERMINATOR
893};
894
895static xlat_action_t xlat_func_untaint(UNUSED TALLOC_CTX *ctx, fr_dcursor_t *out,
896 UNUSED xlat_ctx_t const *xctx,
897 UNUSED request_t *request, fr_value_box_list_t *in)
898{
899 fr_value_box_t *vb;
900
901 fr_value_box_list_untaint(in);
902 while ((vb = fr_value_box_list_pop_head(in)) != NULL) {
903 fr_dcursor_append(out, vb);
904 }
905
906 return XLAT_ACTION_DONE;
907}
908
909static xlat_action_t xlat_func_taint(UNUSED TALLOC_CTX *ctx, fr_dcursor_t *out,
910 UNUSED xlat_ctx_t const *xctx,
911 UNUSED request_t *request, fr_value_box_list_t *in)
912{
913 fr_value_box_t *vb;
914
915 while ((vb = fr_value_box_list_pop_head(in)) != NULL) {
916 fr_value_box_t *child;
917
918 fr_assert(vb->type == FR_TYPE_GROUP);
919
920 while ((child = fr_value_box_list_pop_head(&vb->vb_group)) != NULL) {
921 child->tainted = true;
922 fr_value_box_mark_unsafe(child);
923
924 fr_dcursor_append(out, child);
925 }
926 }
927
928 return XLAT_ACTION_DONE;
929}
930
931static xlat_arg_parser_t const xlat_func_explode_args[] = {
932 { .required = true, .type = FR_TYPE_STRING },
933 { .required = true, .concat = true, .type = FR_TYPE_STRING },
934 XLAT_ARG_PARSER_TERMINATOR
935};
936
937/** Split a string into multiple new strings based on a delimiter
938 *
939@verbatim
940%explode(<string>, <delim>)
941@endverbatim
942 *
943 * Example:
944@verbatim
945update request {
946 &Tmp-String-1 := "a,b,c"
947}
948"%concat(%explode(%{Tmp-String-1}, ','), '|')" == "a|b|c"g
949@endverbatim
950 *
951 * @ingroup xlat_functions
952 */
953static xlat_action_t xlat_func_explode(TALLOC_CTX *ctx, fr_dcursor_t *out,
954 UNUSED xlat_ctx_t const *xctx,
955 request_t *request, fr_value_box_list_t *args)
956{
957 fr_value_box_t *strings;
958 fr_value_box_list_t *list;
959 fr_value_box_t *delim_vb;
960 ssize_t delim_len;
961 char const *delim;
962 fr_value_box_t *string, *vb;
963
964 XLAT_ARGS(args, &strings, &delim_vb);
965
966 list = &strings->vb_group;
967
968 /* coverity[dereference] */
969 if (delim_vb->vb_length == 0) {
970 REDEBUG("Delimiter must be greater than zero characters");
971 return XLAT_ACTION_FAIL;
972 }
973
974 delim = delim_vb->vb_strvalue;
975 delim_len = delim_vb->vb_length;
976
977 while ((string = fr_value_box_list_pop_head(list))) {
978 fr_sbuff_t sbuff = FR_SBUFF_IN(string->vb_strvalue, string->vb_length);
979 fr_sbuff_marker_t m_start;
980
981 /*
982 * If the delimiter is not in the string, just move to the output
983 */
984 if (!fr_sbuff_adv_to_str(&sbuff, SIZE_MAX, delim, delim_len)) {
985 fr_dcursor_append(out, string);
986 continue;
987 }
988
989 fr_sbuff_set_to_start(&sbuff);
990 fr_sbuff_marker(&m_start, &sbuff);
991
992 while (fr_sbuff_remaining(&sbuff)) {
993 if (fr_sbuff_adv_to_str(&sbuff, SIZE_MAX, delim, delim_len)) {
994 /*
995 * If there's nothing before the delimiter skip
996 */
997 if (fr_sbuff_behind(&m_start) == 0) goto advance;
998
999 MEM(vb = fr_value_box_alloc_null(ctx));
1000 fr_value_box_bstrndup(vb, vb, NULL, fr_sbuff_current(&m_start),
1001 fr_sbuff_behind(&m_start), false);
1002 fr_value_box_safety_copy(vb, string);
1003 fr_dcursor_append(out, vb);
1004
1005 advance:
1006 fr_sbuff_advance(&sbuff, delim_len);
1007 fr_sbuff_set(&m_start, &sbuff);
1008 continue;
1009 }
1010
1011 fr_sbuff_set_to_end(&sbuff);
1012 MEM(vb = fr_value_box_alloc_null(ctx));
1013 fr_value_box_bstrndup(vb, vb, NULL, fr_sbuff_current(&m_start),
1014 fr_sbuff_behind(&m_start), false);
1015
1016 fr_value_box_safety_copy(vb, string);
1017 fr_dcursor_append(out, vb);
1018 break;
1019 }
1020 talloc_free(string);
1021 }
1022
1023 return XLAT_ACTION_DONE;
1024}
1025
1026/** Mark one or more attributes as immutable
1027 *
1028 * Example:
1029@verbatim
1030%pairs.immutable(request.State[*])
1031@endverbatim
1032 *
1033 * @ingroup xlat_functions
1034 */
1035static xlat_action_t xlat_func_immutable_attr(UNUSED TALLOC_CTX *ctx, UNUSED fr_dcursor_t *out,
1036 UNUSED xlat_ctx_t const *xctx,
1037 request_t *request, fr_value_box_list_t *args)
1038{
1039 fr_pair_t *vp;
1040 fr_dcursor_t *cursor;
1041 fr_value_box_t *in_head;
1042
1043 XLAT_ARGS(args, &in_head);
1044
1045 cursor = fr_value_box_get_cursor(in_head);
1046
1047 RDEBUG("Attributes matching \"%s\"", in_head->vb_cursor_name);
1048
1049 RINDENT();
1050 for (vp = fr_dcursor_current(cursor);
1051 vp;
1052 vp = fr_dcursor_next(cursor)) {
1053 fr_pair_set_immutable(vp);
1054 }
1055 REXDENT();
1056
1057 return XLAT_ACTION_DONE;
1058}
1059
1060static xlat_arg_parser_t const xlat_func_integer_args[] = {
1061 { .required = true, .single = true, .type = FR_TYPE_VOID },
1062 XLAT_ARG_PARSER_TERMINATOR
1063};
1064
1065/** Print data as integer, not as VALUE.
1066 *
1067 * Example:
1068@verbatim
1069update request {
1070 &Tmp-IP-Address-0 := "127.0.0.5"
1071}
1072%integer(%{Tmp-IP-Address-0}) == 2130706437
1073@endverbatim
1074 * @ingroup xlat_functions
1075 */
1076static xlat_action_t xlat_func_integer(TALLOC_CTX *ctx, fr_dcursor_t *out,
1077 UNUSED xlat_ctx_t const *xctx,
1078 request_t *request, fr_value_box_list_t *args)
1079{
1080 fr_value_box_t *in_vb;
1081 char const *p;
1082
1083 XLAT_ARGS(args, &in_vb);
1084
1085 fr_strerror_clear(); /* Make sure we don't print old errors */
1086
1087 fr_value_box_list_remove(args, in_vb);
1088
1089 switch (in_vb->type) {
1090 default:
1091 error:
1092 RPEDEBUG("Failed converting %pR (%s) to an integer", in_vb,
1093 fr_type_to_str(in_vb->type));
1094 talloc_free(in_vb);
1095 return XLAT_ACTION_FAIL;
1096
1097 case FR_TYPE_NUMERIC:
1098 /*
1099 * Ensure enumeration is NULL so that the integer
1100 * version of a box is returned
1101 */
1102 in_vb->enumv = NULL;
1103
1104 /*
1105 * FR_TYPE_DATE and FR_TYPE_TIME_DELTA need to be cast
1106 * to int64_t so that they're printed in a
1107 * numeric format.
1108 */
1109 if ((in_vb->type == FR_TYPE_DATE) || (in_vb->type == FR_TYPE_TIME_DELTA)) {
1110 if (fr_value_box_cast_in_place(ctx, in_vb, FR_TYPE_INT64, NULL) < 0) goto error;
1111 }
1112 break;
1113
1114 case FR_TYPE_STRING:
1115 /*
1116 * Strings are always zero terminated. They may
1117 * also have zeros in the middle, but if that
1118 * happens, the caller will only get the part up
1119 * to the first zero.
1120 *
1121 * We check for negative numbers, just to be
1122 * nice.
1123 */
1124 for (p = in_vb->vb_strvalue; *p != '\0'; p++) {
1125 if (*p == '-') break;
1126 }
1127
1128 if (*p == '-') {
1129 if (fr_value_box_cast_in_place(ctx, in_vb, FR_TYPE_INT64, NULL) < 0) goto error;
1130 } else {
1131 if (fr_value_box_cast_in_place(ctx, in_vb, FR_TYPE_UINT64, NULL) < 0) goto error;
1132 }
1133 break;
1134
1135 case FR_TYPE_OCTETS:
1136 if (in_vb->vb_length > sizeof(uint64_t)) {
1137 fr_strerror_printf("Expected octets length <= %zu, got %zu", sizeof(uint64_t), in_vb->vb_length);
1138 goto error;
1139 }
1140
1141 if (in_vb->vb_length > sizeof(uint32_t)) {
1142 if (unlikely(fr_value_box_cast_in_place(ctx, in_vb, FR_TYPE_UINT64, NULL) < 0)) goto error;
1143 } else if (in_vb->vb_length > sizeof(uint16_t)) {
1144 if (unlikely(fr_value_box_cast_in_place(ctx, in_vb, FR_TYPE_UINT32, NULL) < 0)) goto error;
1145 } else if (in_vb->vb_length > sizeof(uint8_t)) {
1146 if (unlikely(fr_value_box_cast_in_place(ctx, in_vb, FR_TYPE_UINT16, NULL) < 0)) goto error;
1147 } else {
1148 if (unlikely(fr_value_box_cast_in_place(ctx, in_vb, FR_TYPE_UINT8, NULL) < 0)) goto error;
1149 }
1150
1151 break;
1152
1153 case FR_TYPE_IPV4_ADDR:
1154 case FR_TYPE_IPV4_PREFIX:
1155 if (fr_value_box_cast_in_place(ctx, in_vb, FR_TYPE_UINT32, NULL) < 0) goto error;
1156 break;
1157
1158 case FR_TYPE_ETHERNET:
1159 if (fr_value_box_cast_in_place(ctx, in_vb, FR_TYPE_UINT64, NULL) < 0) goto error;
1160 break;
1161
1162 case FR_TYPE_IPV6_ADDR:
1163 case FR_TYPE_IPV6_PREFIX:
1164 {
1165 uint128_t ipv6int;
1166 char buff[40];
1167 fr_value_box_t *vb;
1168
1169 /*
1170 * Needed for correct alignment (as flagged by ubsan)
1171 */
1172 memcpy(&ipv6int, &in_vb->vb_ipv6addr, sizeof(ipv6int));
1173
1174 fr_snprint_uint128(buff, sizeof(buff), ntohlll(ipv6int));
1175
1176 MEM(vb = fr_value_box_alloc_null(ctx));
1177 fr_value_box_bstrndup(vb, vb, NULL, buff, strlen(buff), false);
1178 fr_dcursor_append(out, vb);
1179 talloc_free(in_vb);
1180 return XLAT_ACTION_DONE;
1181 }
1182 }
1183
1184 fr_dcursor_append(out, in_vb);
1185
1186 return XLAT_ACTION_DONE;
1187}
1188
1189static xlat_arg_parser_t const xlat_func_log_arg[] = {
1190 { .concat = true, .type = FR_TYPE_STRING },
1191 XLAT_ARG_PARSER_TERMINATOR
1192};
1193
1194/** Log something at INFO level.
1195 *
1196 * Example:
1197@verbatim
1198%log("This is an informational message")
1199@endverbatim
1200 *
1201 * @ingroup xlat_functions
1202 */
1203static xlat_action_t xlat_func_log_info(UNUSED TALLOC_CTX *ctx, UNUSED fr_dcursor_t *out,
1204 UNUSED xlat_ctx_t const *xctx,
1205 request_t *request, fr_value_box_list_t *args)
1206{
1207 fr_value_box_t *vb;
1208
1209 XLAT_ARGS(args, &vb);
1210
1211 if (!vb) return XLAT_ACTION_DONE;
1212
1213 RINFO("%s", vb->vb_strvalue);
1214
1215 return XLAT_ACTION_DONE;
1216}
1217
1218
1219/** Log something at DEBUG level.
1220 *
1221 * Example:
1222@verbatim
1223%log.debug("This is a message")
1224@endverbatim
1225 *
1226 * @ingroup xlat_functions
1227 */
1228static xlat_action_t xlat_func_log_debug(UNUSED TALLOC_CTX *ctx, UNUSED fr_dcursor_t *out,
1229 UNUSED xlat_ctx_t const *xctx,
1230 request_t *request, fr_value_box_list_t *args)
1231{
1232 fr_value_box_t *vb;
1233
1234 XLAT_ARGS(args, &vb);
1235
1236 if (!vb) return XLAT_ACTION_DONE;
1237
1238 RDEBUG("%s", vb->vb_strvalue);
1239
1240 return XLAT_ACTION_DONE;
1241}
1242
1243
1244/** Log something at DEBUG level.
1245 *
1246 * Example:
1247@verbatim
1248%log.err("Big error here")
1249@endverbatim
1250 *
1251 * @ingroup xlat_functions
1252 */
1253static xlat_action_t xlat_func_log_err(UNUSED TALLOC_CTX *ctx, UNUSED fr_dcursor_t *out,
1254 UNUSED xlat_ctx_t const *xctx,
1255 request_t *request, fr_value_box_list_t *args)
1256{
1257 fr_value_box_t *vb;
1258
1259 XLAT_ARGS(args, &vb);
1260
1261 if (!vb) return XLAT_ACTION_DONE;
1262
1263 REDEBUG("%s", vb->vb_strvalue);
1264
1265 return XLAT_ACTION_DONE;
1266}
1267
1268
1269/** Log something at WARN level.
1270 *
1271 * Example:
1272@verbatim
1273%log.warn("Maybe something bad happened")
1274@endverbatim
1275 *
1276 * @ingroup xlat_functions
1277 */
1278static xlat_action_t xlat_func_log_warn(UNUSED TALLOC_CTX *ctx, UNUSED fr_dcursor_t *out,
1279 UNUSED xlat_ctx_t const *xctx,
1280 request_t *request, fr_value_box_list_t *args)
1281{
1282 fr_value_box_t *vb;
1283
1284 XLAT_ARGS(args, &vb);
1285
1286 if (!vb) return XLAT_ACTION_DONE;
1287
1288 RWDEBUG("%s", vb->vb_strvalue);
1289
1290 return XLAT_ACTION_DONE;
1291}
1292
1293static int _log_dst_free(fr_log_t *log)
1294{
1295 close(log->fd);
1296 return 0;
1297}
1298
1299static xlat_arg_parser_t const xlat_func_log_dst_args[] = {
1300 { .required = false, .type = FR_TYPE_STRING, .concat = true },
1301 { .required = false, .type = FR_TYPE_UINT32, .single = true },
1302 { .required = false, .type = FR_TYPE_STRING, .concat = true },
1303 XLAT_ARG_PARSER_TERMINATOR
1304};
1305
1306/** Change the log destination to the named one
1307 *
1308 * Example:
1309@verbatim
1310%log.destination('foo')
1311@endverbatim
1312 *
1313 * @ingroup xlat_functions
1314 */
1315static xlat_action_t xlat_func_log_dst(UNUSED TALLOC_CTX *ctx, UNUSED fr_dcursor_t *out,
1316 UNUSED xlat_ctx_t const *xctx,
1317 request_t *request, fr_value_box_list_t *args)
1318{
1319 fr_value_box_t *dst, *lvl, *file;
1320 fr_log_t *log, *dbg;
1321 uint32_t level = 2;
1322
1323 XLAT_ARGS(args, &dst, &lvl, &file);
1324
1325 if (!dst || !*dst->vb_strvalue) {
1326 request_log_prepend(request, NULL, L_DBG_LVL_DISABLE);
1327 return XLAT_ACTION_DONE;
1328 }
1329
1330 log = log_dst_by_name(dst->vb_strvalue);
1331 if (!log) return XLAT_ACTION_FAIL;
1332
1333 if (lvl) level = lvl->vb_uint32;
1334
1335 if (!file || ((log->dst != L_DST_NULL) && (log->dst != L_DST_FILES))) {
1336 request_log_prepend(request, log, level);
1337 return XLAT_ACTION_DONE;
1338 }
1339
1340 /*
1341 * Clone it.
1342 */
1343 MEM(dbg = talloc_memdup(request, log, sizeof(*log)));
1344 dbg->parent = log;
1345
1346 /*
1347 * Open the new filename.
1348 */
1349 dbg->dst = L_DST_FILES;
1350 dbg->file = talloc_strdup(dbg, file->vb_strvalue);
1351 dbg->fd = open(dbg->file, O_WRONLY | O_CREAT | O_CLOEXEC, 0600);
1352 if (dbg->fd < 0) {
1353 REDEBUG("Failed opening %s - %s", dbg->file, fr_syserror(errno));
1354 talloc_free(dbg);
1355 return XLAT_ACTION_DONE;
1356 }
1357
1358 /*
1359 * Ensure that we close the file handle when done.
1360 */
1361 talloc_set_destructor(dbg, _log_dst_free);
1362
1363 request_log_prepend(request, dbg, level);
1364 return XLAT_ACTION_DONE;
1365}
1366
1367
1368static xlat_arg_parser_t const xlat_func_map_arg[] = {
1369 { .required = true, .type = FR_TYPE_STRING },
1370 XLAT_ARG_PARSER_TERMINATOR
1371};
1372
1373/** Processes fmt as a map string and applies it to the current request
1374 *
1375 * e.g.
1376@verbatim
1377%map("User-Name := 'foo'")
1378@endverbatim
1379 *
1380 * Allows sets of modifications to be cached and then applied.
1381 * Useful for processing generic attributes from LDAP.
1382 *
1383 * @ingroup xlat_functions
1384 */
1385static xlat_action_t xlat_func_map(TALLOC_CTX *ctx, fr_dcursor_t *out,
1386 UNUSED xlat_ctx_t const *xctx,
1387 request_t *request, fr_value_box_list_t *args)
1388{
1389 map_t *map = NULL;
1390 int ret;
1391 fr_value_box_t *fmt_vb;
1392 fr_value_box_t *vb;
1393
1394 tmpl_rules_t attr_rules = {
1395 .attr = {
1396 .dict_def = request->local_dict,
1397 .list_def = request_attr_request,
1398 },
1399 .xlat = {
1400 .runtime_el = unlang_interpret_event_list(request)
1401 }
1402 };
1403
1404 XLAT_ARGS(args, &fmt_vb);
1405
1406 MEM(vb = fr_value_box_alloc(ctx, FR_TYPE_BOOL, NULL));
1407 vb->vb_bool = false; /* Default fail value - changed to true on success */
1408 fr_dcursor_append(out, vb);
1409
1410 fr_value_box_list_foreach(&fmt_vb->vb_group, fmt) {
1411 if (map_afrom_attr_str(request, &map, fmt->vb_strvalue, &attr_rules, &attr_rules) < 0) {
1412 RPEDEBUG("Failed parsing \"%s\" as map", fmt_vb->vb_strvalue);
1413 return XLAT_ACTION_FAIL;
1414 }
1415
1416 switch (map->lhs->type) {
1417 case TMPL_TYPE_ATTR:
1418 case TMPL_TYPE_XLAT:
1419 break;
1420
1421 default:
1422 REDEBUG("Unexpected type %s in left hand side of expression",
1423 tmpl_type_to_str(map->lhs->type));
1424 return XLAT_ACTION_FAIL;
1425 }
1426
1427 switch (map->rhs->type) {
1428 case TMPL_TYPE_ATTR:
1429 case TMPL_TYPE_EXEC:
1430 case TMPL_TYPE_DATA:
1431 case TMPL_TYPE_REGEX_XLAT_UNRESOLVED:
1432 case TMPL_TYPE_DATA_UNRESOLVED:
1433 case TMPL_TYPE_XLAT:
1434 break;
1435
1436 default:
1437 REDEBUG("Unexpected type %s in right hand side of expression",
1438 tmpl_type_to_str(map->rhs->type));
1439 return XLAT_ACTION_FAIL;
1440 }
1441
1442 RINDENT();
1443 ret = map_to_request(request, map, map_to_vp, NULL);
1444 REXDENT();
1445 talloc_free(map);
1446 if (ret < 0) return XLAT_ACTION_FAIL;
1447 }
1448
1449 vb->vb_bool = true;
1450 return XLAT_ACTION_DONE;
1451}
1452
1453
1454static xlat_arg_parser_t const xlat_func_next_time_args[] = {
1455 { .required = true, .concat = true, .type = FR_TYPE_STRING },
1456 XLAT_ARG_PARSER_TERMINATOR
1457};
1458
1459/** Calculate number of seconds until the next n hour(s), day(s), week(s), year(s).
1460 *
1461 * For example, if it were 16:18 %time.next(1h) would expand to 2520.
1462 *
1463 * The envisaged usage for this function is to limit sessions so that they don't
1464 * cross billing periods. The output of the xlat should be combined with %rand() to create
1465 * some jitter, unless the desired effect is every subscriber on the network
1466 * re-authenticating at the same time.
1467 *
1468 * @ingroup xlat_functions
1469 */
1470static xlat_action_t xlat_func_next_time(TALLOC_CTX *ctx, fr_dcursor_t *out,
1471 UNUSED xlat_ctx_t const *xctx,
1472 request_t *request, fr_value_box_list_t *args)
1473{
1474 long num;
1475
1476 char const *p;
1477 char *q;
1478 time_t now;
1479 struct tm *local, local_buff;
1480 fr_value_box_t *in_head;
1481 fr_value_box_t *vb;
1482
1483 XLAT_ARGS(args, &in_head);
1484
1485 /*
1486 * We want to limit based on _now_, not on when they logged in.
1487 */
1488 now = time(NULL);
1489 local = localtime_r(&now, &local_buff);
1490
1491 p = in_head->vb_strvalue;
1492
1493 num = strtoul(p, &q, 10);
1494 if (!q || *q == '\0') {
1495 REDEBUG("<int> must be followed by time period (h|d|w|m|y)");
1496 return XLAT_ACTION_FAIL;
1497 }
1498
1499 if (p == q) {
1500 num = 1;
1501 } else {
1502 p += q - p;
1503 }
1504
1505 local->tm_sec = 0;
1506 local->tm_min = 0;
1507
1508 switch (*p) {
1509 case 'h':
1510 local->tm_hour += num;
1511 break;
1512
1513 case 'd':
1514 local->tm_hour = 0;
1515 local->tm_mday += num;
1516 break;
1517
1518 case 'w':
1519 local->tm_hour = 0;
1520 local->tm_mday += (7 - local->tm_wday) + (7 * (num-1));
1521 break;
1522
1523 case 'm':
1524 local->tm_hour = 0;
1525 local->tm_mday = 1;
1526 local->tm_mon += num;
1527 break;
1528
1529 case 'y':
1530 local->tm_hour = 0;
1531 local->tm_mday = 1;
1532 local->tm_mon = 0;
1533 local->tm_year += num;
1534 break;
1535
1536 default:
1537 REDEBUG("Invalid time period '%c', must be h|d|w|m|y", *p);
1538 return XLAT_ACTION_FAIL;
1539 }
1540
1541 MEM(vb = fr_value_box_alloc_null(ctx));
1542 fr_value_box_uint64(vb, NULL, (uint64_t)(mktime(local) - now), false);
1543 fr_dcursor_append(out, vb);
1544 return XLAT_ACTION_DONE;
1545}
1546
1551
1552/** Just serves to push the result up the stack
1553 *
1554 */
1555static xlat_action_t xlat_eval_resume(UNUSED TALLOC_CTX *ctx, UNUSED fr_dcursor_t *out,
1556 xlat_ctx_t const *xctx,
1557 UNUSED request_t *request, UNUSED fr_value_box_list_t *in)
1558{
1559 xlat_eval_rctx_t *rctx = talloc_get_type_abort(xctx->rctx, xlat_eval_rctx_t);
1560 xlat_action_t xa = XLAT_RESULT_SUCCESS(&rctx->last_result) ? XLAT_ACTION_DONE : XLAT_ACTION_FAIL;
1561
1562 talloc_free(rctx);
1563
1564 return xa;
1565}
1566
1567static xlat_arg_parser_t const xlat_func_eval_arg[] = {
1568 { .required = true, .concat = true, .type = FR_TYPE_STRING },
1569 XLAT_ARG_PARSER_TERMINATOR
1570};
1571
1572/** Dynamically evaluate an expansion string
1573 *
1574 * @ingroup xlat_functions
1575 */
1576static xlat_action_t xlat_func_eval(TALLOC_CTX *ctx, fr_dcursor_t *out,
1577 UNUSED xlat_ctx_t const *xctx,
1578 request_t *request, fr_value_box_list_t *args)
1579{
1580 /*
1581 * These are escaping rules applied to the
1582 * input string. They're mostly here to
1583 * allow \% and \\ to work.
1584 *
1585 * Everything else should be passed in as
1586 * unescaped data.
1587 */
1588 static fr_sbuff_unescape_rules_t const escape_rules = {
1589 .name = "xlat",
1590 .chr = '\\',
1591 .subs = {
1592 ['%'] = '%',
1593 ['\\'] = '\\',
1594 },
1595 .do_hex = false,
1596 .do_oct = false
1597 };
1598
1599 xlat_eval_rctx_t *rctx;
1600 fr_value_box_t *arg = fr_value_box_list_head(args);
1601
1602 XLAT_ARGS(args, &arg);
1603
1604 MEM(rctx = talloc_zero(unlang_interpret_frame_talloc_ctx(request), xlat_eval_rctx_t));
1605
1606 /*
1607 * Parse the input as a literal expansion
1608 */
1609 if (xlat_tokenize_expression(rctx,
1610 &rctx->ex,
1611 &FR_SBUFF_IN(arg->vb_strvalue, arg->vb_length),
1612 &(fr_sbuff_parse_rules_t){
1613 .escapes = &escape_rules
1614 },
1615 &(tmpl_rules_t){
1616 .attr = {
1617 .dict_def = request->local_dict,
1618 .list_def = request_attr_request,
1619 .allow_unknown = false,
1620 .allow_unresolved = false,
1621 .allow_foreign = false,
1622 },
1623 .xlat = {
1624 .runtime_el = unlang_interpret_event_list(request),
1625 },
1626 .at_runtime = true
1627 }) < 0) {
1628 RPEDEBUG("Failed parsing expansion");
1629 error:
1630 talloc_free(rctx);
1631 return XLAT_ACTION_FAIL;
1632 }
1633
1634 /*
1635 * Call the resolution function so we produce
1636 * good errors about what function was
1637 * unresolved.
1638 */
1639 if (rctx->ex->flags.needs_resolving &&
1640 (xlat_resolve(rctx->ex, &(xlat_res_rules_t){ .allow_unresolved = false }) < 0)) {
1641 RPEDEBUG("Unresolved expansion functions in expansion");
1642 goto error;
1643
1644 }
1645
1646 if (unlang_xlat_yield(request, xlat_eval_resume, NULL, 0, rctx) != XLAT_ACTION_YIELD) goto error;
1647
1648 if (unlang_xlat_push(ctx, &rctx->last_result, (fr_value_box_list_t *)out->dlist,
1649 request, rctx->ex, UNLANG_SUB_FRAME) < 0) goto error;
1650
1651 return XLAT_ACTION_PUSH_UNLANG;
1652}
1653
1654static xlat_arg_parser_t const xlat_func_pad_args[] = {
1655 { .required = true, .type = FR_TYPE_STRING },
1656 { .required = true, .single = true, .type = FR_TYPE_UINT64 },
1657 { .concat = true, .type = FR_TYPE_STRING },
1658 XLAT_ARG_PARSER_TERMINATOR
1659};
1660
1661/** lpad a string
1662 *
1663@verbatim
1664%lpad(%{Attribute-Name}, <length> [, <fill>])
1665@endverbatim
1666 *
1667 * Example: (User-Name = "foo")
1668@verbatim
1669%lpad(%{User-Name}, 5 'x') == "xxfoo"
1670@endverbatim
1671 *
1672 * @ingroup xlat_functions
1673 */
1674static xlat_action_t xlat_func_lpad(UNUSED TALLOC_CTX *ctx, fr_dcursor_t *out,
1675 UNUSED xlat_ctx_t const *xctx,
1676 request_t *request, fr_value_box_list_t *args)
1677{
1678 fr_value_box_t *values;
1679 fr_value_box_t *pad;
1680 fr_value_box_t *fill;
1681
1682 fr_value_box_list_t *list;
1683
1684 size_t pad_len;
1685
1686 char const *fill_str = NULL;
1687 size_t fill_len = 0;
1688
1689 fr_value_box_t *in = NULL;
1690
1691 XLAT_ARGS(args, &values, &pad, &fill);
1692
1693 /* coverity[dereference] */
1694 list = &values->vb_group;
1695 /* coverity[dereference] */
1696 pad_len = (size_t)pad->vb_uint64;
1697
1698 /*
1699 * Fill is optional
1700 */
1701 if (fill) {
1702 fill_str = fill->vb_strvalue;
1703 fill_len = talloc_array_length(fill_str) - 1;
1704 }
1705
1706 if (fill_len == 0) {
1707 fill_str = " ";
1708 fill_len = 1;
1709 }
1710
1711 while ((in = fr_value_box_list_pop_head(list))) {
1712 size_t len = talloc_array_length(in->vb_strvalue) - 1;
1713 size_t remaining;
1714 char *buff;
1715 fr_sbuff_t sbuff;
1716 fr_sbuff_marker_t m_data;
1717
1718 fr_dcursor_append(out, in);
1719
1720 if (len >= pad_len) continue;
1721
1722 if (fr_value_box_bstr_realloc(in, &buff, in, pad_len) < 0) {
1723 RPEDEBUG("Failed reallocing input data");
1724 return XLAT_ACTION_FAIL;
1725 }
1726
1727 fr_sbuff_init_in(&sbuff, buff, pad_len);
1728 fr_sbuff_marker(&m_data, &sbuff);
1729
1730 /*
1731 * ...nothing to move if the input
1732 * string is empty.
1733 */
1734 if (len > 0) {
1735 fr_sbuff_advance(&m_data, pad_len - len); /* Mark where we want the data to go */
1736 fr_sbuff_move(&FR_SBUFF(&m_data), &FR_SBUFF(&sbuff), len); /* Shift the data */
1737 }
1738
1739 if (fill_len == 1) {
1740 memset(fr_sbuff_current(&sbuff), *fill_str, fr_sbuff_ahead(&m_data));
1741 continue;
1742 }
1743
1744 /*
1745 * Copy fill as a repeating pattern
1746 */
1747 while ((remaining = fr_sbuff_ahead(&m_data))) {
1748 size_t to_copy = remaining >= fill_len ? fill_len : remaining;
1749 memcpy(fr_sbuff_current(&sbuff), fill_str, to_copy); /* avoid \0 termination */
1750 fr_sbuff_advance(&sbuff, to_copy);
1751 }
1752 fr_sbuff_set_to_end(&sbuff);
1753 fr_sbuff_terminate(&sbuff); /* Move doesn't re-terminate */
1754 }
1755
1756 return XLAT_ACTION_DONE;
1757}
1758
1759/** Right pad a string
1760 *
1761@verbatim
1762%rpad(%{Attribute-Name}, <length> [, <fill>])
1763@endverbatim
1764 *
1765 * Example: (User-Name = "foo")
1766@verbatim
1767%rpad(%{User-Name}, 5 'x') == "fooxx"
1768@endverbatim
1769 *
1770 * @ingroup xlat_functions
1771 */
1772static xlat_action_t xlat_func_rpad(UNUSED TALLOC_CTX *ctx, fr_dcursor_t *out,
1773 UNUSED xlat_ctx_t const *xctx,
1774 request_t *request, fr_value_box_list_t *args)
1775{
1776 fr_value_box_t *values;
1777 fr_value_box_list_t *list;
1778 fr_value_box_t *pad;
1779 /* coverity[dereference] */
1780 size_t pad_len;
1781 fr_value_box_t *fill;
1782 char const *fill_str = NULL;
1783 size_t fill_len = 0;
1784
1785 fr_value_box_t *in = NULL;
1786
1787 XLAT_ARGS(args, &values, &pad, &fill);
1788
1789 list = &values->vb_group;
1790 pad_len = (size_t)pad->vb_uint64;
1791
1792 /*
1793 * Fill is optional
1794 */
1795 if (fill) {
1796 fill_str = fill->vb_strvalue;
1797 fill_len = talloc_array_length(fill_str) - 1;
1798 }
1799
1800 if (fill_len == 0) {
1801 fill_str = " ";
1802 fill_len = 1;
1803 }
1804
1805 while ((in = fr_value_box_list_pop_head(list))) {
1806 size_t len = talloc_array_length(in->vb_strvalue) - 1;
1807 size_t remaining;
1808 char *buff;
1809 fr_sbuff_t sbuff;
1810
1811 fr_dcursor_append(out, in);
1812
1813 if (len >= pad_len) continue;
1814
1815 if (fr_value_box_bstr_realloc(in, &buff, in, pad_len) < 0) {
1816 fail:
1817 RPEDEBUG("Failed reallocing input data");
1818 return XLAT_ACTION_FAIL;
1819 }
1820
1821 fr_sbuff_init_in(&sbuff, buff, pad_len);
1822 fr_sbuff_advance(&sbuff, len);
1823
1824 if (fill_len == 1) {
1825 memset(fr_sbuff_current(&sbuff), *fill_str, fr_sbuff_remaining(&sbuff));
1826 continue;
1827 }
1828
1829 /*
1830 * Copy fill as a repeating pattern
1831 */
1832 while ((remaining = fr_sbuff_remaining(&sbuff))) {
1833 if (fr_sbuff_in_bstrncpy(&sbuff, fill_str, remaining >= fill_len ? fill_len : remaining) < 0) {
1834 goto fail;
1835 }
1836 }
1837 }
1838
1839 return XLAT_ACTION_DONE;
1840}
1841
1842static xlat_arg_parser_t const xlat_func_base64_encode_arg[] = {
1843 { .required = true, .concat = true, .type = FR_TYPE_OCTETS },
1844 XLAT_ARG_PARSER_TERMINATOR
1845};
1846
1847/** Encode string or attribute as base64
1848 *
1849 * Example:
1850@verbatim
1851%base64.encode("foo") == "Zm9v"
1852@endverbatim
1853 *
1854 * @ingroup xlat_functions
1855 */
1856static xlat_action_t xlat_func_base64_encode(TALLOC_CTX *ctx, fr_dcursor_t *out,
1857 UNUSED xlat_ctx_t const *xctx,
1858 request_t *request, fr_value_box_list_t *args)
1859{
1860 size_t alen;
1861 ssize_t elen;
1862 char *buff;
1863 fr_value_box_t *vb;
1864 fr_value_box_t *in;
1865
1866 XLAT_ARGS(args, &in);
1867
1868 alen = FR_BASE64_ENC_LENGTH(in->vb_length);
1869
1870 MEM(vb = fr_value_box_alloc_null(ctx));
1871 if (fr_value_box_bstr_alloc(vb, &buff, vb, NULL, alen, false) < 0) {
1872 talloc_free(vb);
1873 return XLAT_ACTION_FAIL;
1874 }
1875
1876 elen = fr_base64_encode(&FR_SBUFF_OUT(buff, talloc_array_length(buff)),
1877 &FR_DBUFF_TMP(in->vb_octets, in->vb_length), true);
1878 if (elen < 0) {
1879 RPEDEBUG("Base64 encoding failed");
1880 talloc_free(vb);
1881 return XLAT_ACTION_FAIL;
1882 }
1883 fr_assert((size_t)elen <= alen);
1884 fr_value_box_safety_copy_changed(vb, in);
1885 fr_dcursor_append(out, vb);
1886
1887 return XLAT_ACTION_DONE;
1888}
1889
1890static xlat_arg_parser_t const xlat_func_base64_decode_arg[] = {
1891 { .required = true, .concat = true, .type = FR_TYPE_OCTETS },
1892 XLAT_ARG_PARSER_TERMINATOR
1893};
1894
1895/** Decode base64 string
1896 *
1897 * Example:
1898@verbatim
1899%base64.decode("Zm9v") == "foo"
1900@endverbatim
1901 *
1902 * @ingroup xlat_functions
1903 */
1904static xlat_action_t xlat_func_base64_decode(TALLOC_CTX *ctx, fr_dcursor_t *out,
1905 UNUSED xlat_ctx_t const *xctx,
1906 request_t *request, fr_value_box_list_t *args)
1907{
1908 size_t alen;
1909 ssize_t declen = 0;
1910 uint8_t *decbuf;
1911 fr_value_box_t *vb;
1912 fr_value_box_t *in;
1913
1914 XLAT_ARGS(args, &in);
1915
1916 /*
1917 * Pass empty arguments through
1918 *
1919 * FR_BASE64_DEC_LENGTH produces 2 for empty strings...
1920 */
1921 if (in->vb_length == 0) {
1922 xlat_arg_copy_out(ctx, out, args, in);
1923 return XLAT_ACTION_DONE;
1924 }
1925
1926 alen = FR_BASE64_DEC_LENGTH(in->vb_length);
1927 MEM(vb = fr_value_box_alloc_null(ctx));
1928 if (alen > 0) {
1929 MEM(fr_value_box_mem_alloc(vb, &decbuf, vb, NULL, alen, false) == 0);
1930 declen = fr_base64_decode(&FR_DBUFF_TMP(decbuf, alen),
1931 &FR_SBUFF_IN(in->vb_strvalue, in->vb_length), true, true);
1932 if (declen < 0) {
1933 RPEDEBUG("Base64 string invalid");
1934 talloc_free(vb);
1935 return XLAT_ACTION_FAIL;
1936 }
1937
1938 MEM(fr_value_box_mem_realloc(vb, NULL, vb, declen) == 0);
1939 }
1940
1941 fr_value_box_safety_copy_changed(vb, in);
1942 fr_dcursor_append(out, vb);
1943
1944 return XLAT_ACTION_DONE;
1945}
1946
1947static xlat_arg_parser_t const xlat_func_bin_arg[] = {
1948 { .required = true, .type = FR_TYPE_STRING },
1949 XLAT_ARG_PARSER_TERMINATOR
1950};
1951
1952/** Convert hex string to binary
1953 *
1954 * Example:
1955@verbatim
1956%bin("666f6f626172") == "foobar"
1957@endverbatim
1958 *
1959 * @see #xlat_func_hex
1960 *
1961 * @ingroup xlat_functions
1962 */
1963static xlat_action_t xlat_func_bin(TALLOC_CTX *ctx, fr_dcursor_t *out,
1964 UNUSED xlat_ctx_t const *xctx,
1965 request_t *request, fr_value_box_list_t *args)
1966{
1967 fr_value_box_t *result;
1968 char const *p, *end;
1969 uint8_t *bin;
1970 size_t len, outlen;
1971 fr_sbuff_parse_error_t err;
1972 fr_value_box_t *list, *hex;
1973
1974 XLAT_ARGS(args, &list);
1975
1976 while ((hex = fr_value_box_list_pop_head(&list->vb_group))) {
1977 len = hex->vb_length;
1978 if ((len > 1) && (len & 0x01)) {
1979 REDEBUG("Input data length must be >1 and even, got %zu", len);
1980 return XLAT_ACTION_FAIL;
1981 }
1982
1983 p = hex->vb_strvalue;
1984 end = p + len;
1985
1986 /*
1987 * Look for 0x at the start of the string, and ignore if we see it.
1988 */
1989 if ((p[0] == '0') && (p[1] == 'x')) {
1990 p += 2;
1991 len -=2;
1992 }
1993
1994 /*
1995 * Zero length octets string
1996 */
1997 if (p == end) continue;
1998
1999 outlen = len / 2;
2000
2001 MEM(result = fr_value_box_alloc_null(ctx));
2002 MEM(fr_value_box_mem_alloc(result, &bin, result, NULL, outlen, false) == 0);
2003 fr_base16_decode(&err, &FR_DBUFF_TMP(bin, outlen), &FR_SBUFF_IN(p, end - p), true);
2004 if (err) {
2005 REDEBUG2("Invalid hex string");
2006 talloc_free(result);
2007 return XLAT_ACTION_FAIL;
2008 }
2009
2010 fr_value_box_safety_copy_changed(result, hex);
2011 fr_dcursor_append(out, result);
2012 }
2013
2014 return XLAT_ACTION_DONE;
2015}
2016
2017static xlat_arg_parser_t const xlat_func_block_args[] = {
2018 { .required = true, .single = true, .type = FR_TYPE_TIME_DELTA },
2019 XLAT_ARG_PARSER_TERMINATOR
2020};
2021
2022/** Block for the specified duration
2023 *
2024 * This is for developer use only to simulate blocking, synchronous I/O.
2025 * For normal use, use the %delay() xlat instead.
2026 *
2027 * Example:
2028@verbatim
2029%block(1s)
2030@endverbatim
2031 *
2032 * @ingroup xlat_functions
2033 */
2034static xlat_action_t xlat_func_block(TALLOC_CTX *ctx, fr_dcursor_t *out,
2035 UNUSED xlat_ctx_t const *xctx,
2036 UNUSED request_t *request, fr_value_box_list_t *args)
2037{
2038 fr_value_box_t *delay;
2039 fr_value_box_t *vb;
2040 struct timespec ts_in, ts_remain = {};
2041
2042 XLAT_ARGS(args, &delay);
2043
2044 ts_in = fr_time_delta_to_timespec(delay->vb_time_delta);
2045
2046 (void)nanosleep(&ts_in, &ts_remain);
2047
2048 MEM(vb = fr_value_box_alloc(ctx, FR_TYPE_TIME_DELTA, NULL));
2049 vb->vb_time_delta = fr_time_delta_sub(delay->vb_time_delta,
2050 fr_time_delta_from_timespec(&ts_remain));
2051 fr_dcursor_append(out, vb);
2052
2053 return XLAT_ACTION_DONE;
2054}
2055
2056static xlat_arg_parser_t const xlat_func_cast_args[] = {
2057 { .required = true, .single = true, .type = FR_TYPE_VOID },
2058 { .type = FR_TYPE_VOID },
2059 { .variadic = XLAT_ARG_VARIADIC_EMPTY_KEEP, .type = FR_TYPE_VOID },
2060 XLAT_ARG_PARSER_TERMINATOR
2061};
2062
2063/** Cast one or more output value-boxes to the given type
2064 *
2065 * First argument of is type to cast to.
2066 *
2067 * Example:
2068@verbatim
2069%cast('string', %{request[*]}) results in all of the input boxes being cast to string/
2070@endverbatim
2071 *
2072 * @ingroup xlat_functions
2073 */
2074static xlat_action_t xlat_func_cast(TALLOC_CTX *ctx, fr_dcursor_t *out,
2075 UNUSED xlat_ctx_t const *xctx,
2076 request_t *request, fr_value_box_list_t *args)
2077{
2078 fr_value_box_t *name;
2079 fr_value_box_t *arg;
2080 fr_type_t type;
2081 fr_dict_attr_t const *time_res = NULL;
2082
2083 XLAT_ARGS(args, &name);
2084
2085 /*
2086 * Get the type, which can be in one of a few formats.
2087 */
2088 if (fr_type_is_numeric(name->type)) {
2089 if (fr_value_box_cast_in_place(name, name, FR_TYPE_UINT8, NULL) < 0) {
2090 RPEDEBUG("Failed parsing '%pV' as a numerical data type", name);
2091 return XLAT_ACTION_FAIL;
2092 }
2093 type = name->vb_uint8;
2094
2095 } else {
2096 if (name->type != FR_TYPE_STRING) {
2097 if (fr_value_box_cast_in_place(name, name, FR_TYPE_STRING, NULL) < 0) {
2098 RPEDEBUG("Failed parsing '%pV' as a string data type", name);
2099 return XLAT_ACTION_FAIL;
2100 }
2101 }
2102
2103 type = fr_table_value_by_str(fr_type_table, name->vb_strvalue, FR_TYPE_NULL);
2104 if (type == FR_TYPE_NULL) {
2105 if ((time_res = xlat_time_res_attr(name->vb_strvalue)) == NULL) {
2106 RDEBUG("Unknown data type '%s'", name->vb_strvalue);
2107 return XLAT_ACTION_FAIL;
2108 }
2109
2110 type = FR_TYPE_TIME_DELTA;
2111 }
2112 }
2113
2114 (void) fr_value_box_list_pop_head(args);
2115
2116 /*
2117 * When we cast nothing to a string / octets, the result is an empty string/octets.
2118 */
2119 if (unlikely(!fr_value_box_list_head(args))) {
2120 if ((type == FR_TYPE_STRING) || (type == FR_TYPE_OCTETS)) {
2121 fr_value_box_t *dst;
2122
2123 MEM(dst = fr_value_box_alloc(ctx, type, NULL));
2124 fr_dcursor_append(out, dst);
2125 VALUE_BOX_LIST_VERIFY((fr_value_box_list_t *)out->dlist);
2126
2127 return XLAT_ACTION_DONE;
2128 }
2129
2130 RDEBUG("No data for cast to '%s'", fr_type_to_str(type));
2131 return XLAT_ACTION_FAIL;
2132 }
2133
2134 /*
2135 * Cast to string means *print* to string.
2136 */
2137 if (type == FR_TYPE_STRING) {
2138 fr_sbuff_t *agg;
2139 fr_value_box_t *dst;
2140
2141 talloc_free(name);
2142
2143 FR_SBUFF_TALLOC_THREAD_LOCAL(&agg, 256, SIZE_MAX);
2144
2145 MEM(dst = fr_value_box_alloc_null(ctx));
2146 fr_value_box_mark_safe_for(dst, FR_VALUE_BOX_SAFE_FOR_ANY);
2147
2148 if (fr_value_box_list_concat_as_string(dst, agg, args, NULL, 0, NULL,
2149 FR_VALUE_BOX_LIST_FREE_BOX, FR_VALUE_BOX_SAFE_FOR_ANY, true) < 0) {
2150 RPEDEBUG("Failed concatenating string");
2151 return XLAT_ACTION_FAIL;
2152 }
2153
2154 fr_value_box_bstrndup(dst, dst, NULL, fr_sbuff_start(agg), fr_sbuff_used(agg), false);
2155 fr_dcursor_append(out, dst);
2156 VALUE_BOX_LIST_VERIFY((fr_value_box_list_t *)out->dlist);
2157
2158 return XLAT_ACTION_DONE;
2159 }
2160
2161 /*
2162 * Copy inputs to outputs, casting them along the way.
2163 */
2164 arg = NULL;
2165 while ((arg = fr_value_box_list_next(args, arg)) != NULL) {
2166 fr_value_box_t *vb, *p;
2167
2168 fr_assert(arg->type == FR_TYPE_GROUP);
2169
2170 vb = fr_value_box_list_head(&arg->vb_group);
2171 while (vb) {
2172 p = fr_value_box_list_remove(&arg->vb_group, vb);
2173
2174 if (fr_value_box_cast_in_place(vb, vb, type, time_res) < 0) {
2175 RPEDEBUG("Failed casting %pV to data type '%s'", vb, fr_type_to_str(type));
2176 return XLAT_ACTION_FAIL;
2177 }
2178 fr_dcursor_append(out, vb);
2179 vb = fr_value_box_list_next(&arg->vb_group, p);
2180 }
2181 }
2182 VALUE_BOX_LIST_VERIFY((fr_value_box_list_t *)out->dlist);
2183
2184 return XLAT_ACTION_DONE;
2185}
2186
2187static xlat_arg_parser_t const xlat_func_concat_args[] = {
2188 { .required = true, .type = FR_TYPE_VOID },
2189 { .concat = true, .type = FR_TYPE_STRING },
2190 XLAT_ARG_PARSER_TERMINATOR
2191};
2192
2193/** Concatenate string representation of values of given attributes using separator
2194 *
2195 * First argument of is the list of attributes to concatenate, followed
2196 * by an optional separator
2197 *
2198 * Example:
2199@verbatim
2200%concat(%{request.[*]}, ',') == "<attr1value>,<attr2value>,<attr3value>,..."
2201%concat(%{Tmp-String-0[*]}, '. ') == "<str1value>. <str2value>. <str3value>. ..."
2202%concat(%join(%{User-Name}, %{Calling-Station-Id}), ', ') == "bob, aa:bb:cc:dd:ee:ff"
2203@endverbatim
2204 *
2205 * @ingroup xlat_functions
2206 */
2207static xlat_action_t xlat_func_concat(TALLOC_CTX *ctx, fr_dcursor_t *out,
2208 UNUSED xlat_ctx_t const *xctx,
2209 request_t *request, fr_value_box_list_t *args)
2210{
2211 fr_value_box_t *result;
2212 fr_value_box_t *list;
2213 fr_value_box_t *separator;
2214 fr_value_box_list_t *to_concat;
2215 char *buff;
2216 char const *sep;
2217
2218 XLAT_ARGS(args, &list, &separator);
2219
2220 sep = (separator) ? separator->vb_strvalue : "";
2221 to_concat = &list->vb_group;
2222
2223 result = fr_value_box_alloc(ctx, FR_TYPE_STRING, NULL);
2224 if (!result) {
2225 error:
2226 RPEDEBUG("Failed concatenating input");
2227 return XLAT_ACTION_FAIL;
2228 }
2229
2230 buff = fr_value_box_list_aprint(result, to_concat, sep, NULL);
2231 if (!buff) goto error;
2232
2233 fr_value_box_bstrdup_buffer_shallow(NULL, result, NULL, buff, fr_value_box_list_tainted(args));
2234
2235 fr_dcursor_append(out, result);
2236
2237 return XLAT_ACTION_DONE;
2238}
2239
2240static xlat_arg_parser_t const xlat_func_hex_arg[] = {
2241 { .required = true, .type = FR_TYPE_OCTETS },
2242 XLAT_ARG_PARSER_TERMINATOR
2243};
2244
2245/** Print data as hex, not as VALUE.
2246 *
2247 * Example:
2248@verbatim
2249%hex("foobar") == "666f6f626172"
2250@endverbatim
2251 *
2252 * @see #xlat_func_bin
2253 *
2254 * @ingroup xlat_functions
2255 */
2256static xlat_action_t xlat_func_hex(UNUSED TALLOC_CTX *ctx, fr_dcursor_t *out,
2257 UNUSED xlat_ctx_t const *xctx,
2258 UNUSED request_t *request, fr_value_box_list_t *args)
2259{
2260 char *new_buff;
2261 fr_value_box_t *list, *bin;
2262 fr_value_box_t safety;
2263
2264 XLAT_ARGS(args, &list);
2265
2266 while ((bin = fr_value_box_list_pop_head(&list->vb_group))) {
2267 fr_value_box_safety_copy(&safety, bin);
2268
2269 /*
2270 * Use existing box, but with new buffer
2271 */
2272 MEM(new_buff = talloc_zero_array(bin, char, (bin->vb_length * 2) + 1));
2273 if (bin->vb_length) {
2274 fr_base16_encode(&FR_SBUFF_OUT(new_buff, (bin->vb_length * 2) + 1),
2275 &FR_DBUFF_TMP(bin->vb_octets, bin->vb_length));
2276 fr_value_box_clear_value(bin);
2277 fr_value_box_strdup_shallow(bin, NULL, new_buff, false);
2278 /*
2279 * Zero length binary > zero length hex string
2280 */
2281 } else {
2282 fr_value_box_clear_value(bin);
2283 fr_value_box_strdup(bin, bin, NULL, "", false);
2284 }
2285
2286 fr_value_box_safety_copy(bin, &safety);
2287 fr_dcursor_append(out, bin);
2288 }
2289
2290 return XLAT_ACTION_DONE;
2291}
2292
2297
2298static xlat_action_t xlat_hmac(TALLOC_CTX *ctx, fr_dcursor_t *out,
2299 fr_value_box_list_t *args, uint8_t *digest, int digest_len, hmac_type type)
2300{
2301 fr_value_box_t *vb, *data, *key;
2302
2303 XLAT_ARGS(args, &data, &key);
2304
2305 if (type == HMAC_MD5) {
2306 /* coverity[dereference] */
2307 fr_hmac_md5(digest, data->vb_octets, data->vb_length, key->vb_octets, key->vb_length);
2308 } else if (type == HMAC_SHA1) {
2309 /* coverity[dereference] */
2310 fr_hmac_sha1(digest, data->vb_octets, data->vb_length, key->vb_octets, key->vb_length);
2311 }
2312
2313 MEM(vb = fr_value_box_alloc_null(ctx));
2314 fr_value_box_memdup(vb, vb, NULL, digest, digest_len, false);
2315
2316 fr_dcursor_append(out, vb);
2317
2318 return XLAT_ACTION_DONE;
2319}
2320
2321static xlat_arg_parser_t const xlat_hmac_args[] = {
2322 { .required = true, .concat = true, .type = FR_TYPE_STRING },
2323 { .required = true, .concat = true, .type = FR_TYPE_STRING },
2324 XLAT_ARG_PARSER_TERMINATOR
2325};
2326
2327/** Generate the HMAC-MD5 of a string or attribute
2328 *
2329 * Example:
2330@verbatim
2331%hmacmd5('foo', 'bar') == "0x31b6db9e5eb4addb42f1a6ca07367adc"
2332@endverbatim
2333 *
2334 * @ingroup xlat_functions
2335 */
2336static xlat_action_t xlat_func_hmac_md5(TALLOC_CTX *ctx, fr_dcursor_t *out,
2337 UNUSED xlat_ctx_t const *xctx,
2338 UNUSED request_t *request, fr_value_box_list_t *in)
2339{
2340 uint8_t digest[MD5_DIGEST_LENGTH];
2341 return xlat_hmac(ctx, out, in, digest, MD5_DIGEST_LENGTH, HMAC_MD5);
2342}
2343
2344
2345/** Generate the HMAC-SHA1 of a string or attribute
2346 *
2347 * Example:
2348@verbatim
2349%hmacsha1('foo', 'bar') == "0x85d155c55ed286a300bd1cf124de08d87e914f3a"
2350@endverbatim
2351 *
2352 * @ingroup xlat_functions
2353 */
2354static xlat_action_t xlat_func_hmac_sha1(TALLOC_CTX *ctx, fr_dcursor_t *out,
2355 UNUSED xlat_ctx_t const *xctx,
2356 UNUSED request_t *request, fr_value_box_list_t *in)
2357{
2358 uint8_t digest[SHA1_DIGEST_LENGTH];
2359 return xlat_hmac(ctx, out, in, digest, SHA1_DIGEST_LENGTH, HMAC_SHA1);
2360}
2361
2362static xlat_arg_parser_t const xlat_func_join_args[] = {
2363 { .required = true, .type = FR_TYPE_VOID },
2364 { .variadic = XLAT_ARG_VARIADIC_EMPTY_SQUASH, .type = FR_TYPE_VOID },
2365 XLAT_ARG_PARSER_TERMINATOR
2366};
2367
2368/** Join a series of arguments to form a single list
2369 *
2370 * null boxes are not preserved.
2371 */
2372static xlat_action_t xlat_func_join(TALLOC_CTX *ctx, fr_dcursor_t *out,
2373 UNUSED xlat_ctx_t const *xctx,
2374 UNUSED request_t *request, fr_value_box_list_t *in)
2375{
2376 fr_value_box_list_foreach(in, arg) {
2377 fr_assert(arg->type == FR_TYPE_GROUP);
2378
2379 fr_value_box_list_foreach(&arg->vb_group, vb) {
2380 xlat_arg_copy_out(ctx, out, &arg->vb_group, vb);
2381 }
2382 }
2383 return XLAT_ACTION_DONE;
2384}
2385
2386static void ungroup(fr_dcursor_t *out, fr_value_box_list_t *in)
2387{
2388 fr_value_box_t *vb;
2389
2390 while ((vb = fr_value_box_list_pop_head(in)) != NULL) {
2391 if (vb->type != FR_TYPE_GROUP) {
2392 fr_dcursor_append(out, vb);
2393 continue;
2394 }
2395 talloc_free(vb);
2396 }
2397}
2398
2399/** Ungroups all of its arguments into one flat list.
2400 *
2401 */
2402static xlat_action_t xlat_func_ungroup(UNUSED TALLOC_CTX *ctx, fr_dcursor_t *out,
2403 UNUSED xlat_ctx_t const *xctx,
2404 UNUSED request_t *request, fr_value_box_list_t *in)
2405{
2406 fr_value_box_t *arg = NULL;
2407
2408 while ((arg = fr_value_box_list_next(in, arg)) != NULL) {
2409 fr_assert(arg->type == FR_TYPE_GROUP);
2410
2411 ungroup(out, &arg->vb_group);
2412 }
2413 return XLAT_ACTION_DONE;
2414}
2415
2416static xlat_arg_parser_t const xlat_func_length_args[] = {
2417 { .single = true, .variadic = XLAT_ARG_VARIADIC_EMPTY_KEEP, .type = FR_TYPE_VOID },
2418 XLAT_ARG_PARSER_TERMINATOR
2419};
2420
2421/** Return the on-the-wire size of the boxes in bytes
2422 *
2423 * skips null values
2424 *
2425 * Example:
2426@verbatim
2427%length(foobar) == 6
2428%length(%bin("0102030005060708")) == 8
2429@endverbatim
2430 *
2431 * @see #xlat_func_strlen
2432 *
2433 * @ingroup xlat_functions
2434 */
2435static xlat_action_t xlat_func_length(TALLOC_CTX *ctx, fr_dcursor_t *out,
2436 UNUSED xlat_ctx_t const *xctx,
2437 UNUSED request_t *request, fr_value_box_list_t *in)
2438
2439{
2440 fr_value_box_list_foreach(in, vb) {
2441 fr_value_box_t *my;
2442
2443 MEM(my = fr_value_box_alloc(ctx, FR_TYPE_SIZE, NULL));
2444 if (!fr_type_is_null(vb->type)) my->vb_size = fr_value_box_network_length(vb);
2445 fr_dcursor_append(out, my);
2446 }
2447
2448 return XLAT_ACTION_DONE;
2449}
2450
2451
2452static xlat_arg_parser_t const xlat_func_md4_arg[] = {
2453 { .concat = true, .type = FR_TYPE_OCTETS },
2454 XLAT_ARG_PARSER_TERMINATOR
2455};
2456
2457/** Calculate the MD4 hash of a string or attribute.
2458 *
2459 * Example:
2460@verbatim
2461%md4("foo") == "0ac6700c491d70fb8650940b1ca1e4b2"
2462@endverbatim
2463 *
2464 * @ingroup xlat_functions
2465 */
2466static xlat_action_t xlat_func_md4(TALLOC_CTX *ctx, fr_dcursor_t *out,
2467 UNUSED xlat_ctx_t const *xctx,
2468 UNUSED request_t *request, fr_value_box_list_t *args)
2469{
2470 uint8_t digest[MD4_DIGEST_LENGTH];
2471 fr_value_box_t *vb;
2472 fr_value_box_t *in_head;
2473
2474 XLAT_ARGS(args, &in_head);
2475
2476 if (in_head) {
2477 fr_md4_calc(digest, in_head->vb_octets, in_head->vb_length);
2478 } else {
2479 /* Digest of empty string */
2480 fr_md4_calc(digest, NULL, 0);
2481 }
2482
2483 MEM(vb = fr_value_box_alloc_null(ctx));
2484 fr_value_box_memdup(vb, vb, NULL, digest, sizeof(digest), false);
2485
2486 fr_dcursor_append(out, vb);
2487 VALUE_BOX_LIST_VERIFY((fr_value_box_list_t *)out->dlist);
2488
2489 return XLAT_ACTION_DONE;
2490}
2491
2492static xlat_arg_parser_t const xlat_func_md5_arg[] = {
2493 { .concat = true, .type = FR_TYPE_OCTETS },
2494 XLAT_ARG_PARSER_TERMINATOR
2495};
2496
2497/** Calculate the MD5 hash of a string or attribute.
2498 *
2499 * Example:
2500@verbatim
2501%md5("foo") == "acbd18db4cc2f85cedef654fccc4a4d8"
2502@endverbatim
2503 *
2504 * @ingroup xlat_functions
2505 */
2506static xlat_action_t xlat_func_md5(TALLOC_CTX *ctx, fr_dcursor_t *out,
2507 UNUSED xlat_ctx_t const *xctx,
2508 UNUSED request_t *request, fr_value_box_list_t *args)
2509{
2510 uint8_t digest[MD5_DIGEST_LENGTH];
2511 fr_value_box_t *vb;
2512 fr_value_box_t *in_head;
2513
2514 XLAT_ARGS(args, &in_head);
2515
2516 if (in_head) {
2517 fr_md5_calc(digest, in_head->vb_octets, in_head->vb_length);
2518 } else {
2519 /* Digest of empty string */
2520 fr_md5_calc(digest, NULL, 0);
2521 }
2522
2523 MEM(vb = fr_value_box_alloc_null(ctx));
2524 fr_value_box_memdup(vb, vb, NULL, digest, sizeof(digest), false);
2525
2526 fr_dcursor_append(out, vb);
2527
2528 return XLAT_ACTION_DONE;
2529}
2530
2531
2532/** Encode attributes as a series of string attribute/value pairs
2533 *
2534 * This is intended to serialize one or more attributes as a comma
2535 * delimited string.
2536 *
2537 * Example:
2538@verbatim
2539%pairs.print(request.[*]) == 'User-Name = "foo"User-Password = "bar"'
2540%concat(%pairs.print.print(request.[*]), ', ') == 'User-Name = "foo", User-Password = "bar"'
2541@endverbatim
2542 *
2543 * @see #xlat_func_concat
2544 *
2545 * @ingroup xlat_functions
2546 */
2547static xlat_action_t xlat_func_pairs_print(TALLOC_CTX *ctx, fr_dcursor_t *out,
2548 UNUSED xlat_ctx_t const *xctx,
2549 request_t *request, fr_value_box_list_t *args)
2550{
2551 fr_pair_t *vp;
2552 fr_dcursor_t *cursor;
2553 fr_value_box_t *vb;
2554 fr_value_box_t *in_head;
2555
2556 XLAT_ARGS(args, &in_head);
2557
2558 cursor = fr_value_box_get_cursor(in_head);
2559
2560 for (vp = fr_dcursor_current(cursor);
2561 vp;
2562 vp = fr_dcursor_next(cursor)) {
2563 char *buff;
2564
2565 MEM(vb = fr_value_box_alloc_null(ctx));
2566 if (unlikely(fr_pair_aprint(vb, &buff, NULL, vp) < 0)) {
2567 RPEDEBUG("Failed printing pair");
2568 talloc_free(vb);
2569 return XLAT_ACTION_FAIL;
2570 }
2571
2572 fr_value_box_bstrdup_buffer_shallow(NULL, vb, NULL, buff, false);
2573 fr_dcursor_append(out, vb);
2574
2575 VALUE_BOX_VERIFY(vb);
2576 }
2577
2578 return XLAT_ACTION_DONE;
2579}
2580
2581static xlat_arg_parser_t const xlat_func_rand_arg[] = {
2582 { .required = true, .single = true, .type = FR_TYPE_UINT32 },
2583 XLAT_ARG_PARSER_TERMINATOR
2584};
2585
2586/** Generate a random integer value
2587 *
2588 * For "N = %rand(MAX)", 0 <= N < MAX
2589 *
2590 * Example:
2591@verbatim
2592%rand(100) == 42
2593@endverbatim
2594 *
2595 * @ingroup xlat_functions
2596 */
2597static xlat_action_t xlat_func_rand(TALLOC_CTX *ctx, fr_dcursor_t *out,
2598 UNUSED xlat_ctx_t const *xctx,
2599 UNUSED request_t *request, fr_value_box_list_t *in)
2600{
2601 int64_t result;
2602 fr_value_box_t *vb;
2603 fr_value_box_t *in_head = fr_value_box_list_head(in);
2604
2605 result = in_head->vb_uint32;
2606
2607 /* Make sure it isn't too big */
2608 if (result > (1 << 30)) result = (1 << 30);
2609
2610 result *= fr_rand(); /* 0..2^32-1 */
2611 result >>= 32;
2612
2613 MEM(vb = fr_value_box_alloc(ctx, FR_TYPE_UINT64, NULL));
2614 vb->vb_uint64 = result;
2615
2616 fr_dcursor_append(out, vb);
2617
2618 return XLAT_ACTION_DONE;
2619}
2620
2621static xlat_arg_parser_t const xlat_func_randstr_arg[] = {
2622 { .required = true, .concat = true, .type = FR_TYPE_STRING },
2623 XLAT_ARG_PARSER_TERMINATOR
2624};
2625
2626/** Generate a string of random chars
2627 *
2628 * Build strings of random chars, useful for generating tokens and passcodes
2629 * Format similar to String::Random.
2630 *
2631 * Format characters may include the following, and may be
2632 * preceded by a repetition count:
2633 * - "c" lowercase letters
2634 * - "C" uppercase letters
2635 * - "n" numbers
2636 * - "a" alphanumeric
2637 * - "!" punctuation
2638 * - "." alphanumeric + punctuation
2639 * - "s" alphanumeric + "./"
2640 * - "o" characters suitable for OTP (easily confused removed)
2641 * - "b" binary data
2642 *
2643 * Example:
2644@verbatim
2645%randstr("CCCC!!cccnnn") == "IPFL>{saf874"
2646%randstr("42o") == "yHdupUwVbdHprKCJRYfGbaWzVwJwUXG9zPabdGAhM9"
2647%hex(%randstr("bbbb")) == "a9ce04f3"
2648%hex(%randstr("8b")) == "fe165529f9f66839"
2649@endverbatim
2650 * @ingroup xlat_functions
2651 */
2652static xlat_action_t xlat_func_randstr(TALLOC_CTX *ctx, fr_dcursor_t *out,
2653 UNUSED xlat_ctx_t const *xctx,
2654 request_t *request, fr_value_box_list_t *args)
2655{
2656 /*
2657 * Lookup tables for randstr char classes
2658 */
2659 static char randstr_punc[] = "!\"#$%&'()*+,-./:;<=>?@[\\]^_`{|}~";
2660 static char randstr_salt[] = "0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmopqrstuvwxyz/.";
2661
2662 /*
2663 * Characters humans rarely confuse. Reduces char set considerably
2664 * should only be used for things such as one time passwords.
2665 */
2666 static char randstr_otp[] = "469ACGHJKLMNPQRUVWXYabdfhijkprstuvwxyz";
2667
2668 char const *p, *start, *end;
2669 char *endptr;
2670 char *buff_p;
2671 unsigned int result;
2672 unsigned int reps;
2673 size_t outlen = 0;
2674 fr_value_box_t* vb;
2675 fr_value_box_t *in_head;
2676
2677 XLAT_ARGS(args, &in_head);
2678
2679 /** Max repetitions of a single character class
2680 *
2681 */
2682#define REPETITION_MAX 1024
2683
2684 start = p = in_head->vb_strvalue;
2685 end = p + in_head->vb_length;
2686
2687 /*
2688 * Calculate size of output
2689 */
2690 while (p < end) {
2691 /*
2692 * Repetition modifiers.
2693 *
2694 * We limit it to REPETITION_MAX, because we don't want
2695 * utter stupidity.
2696 */
2697 if (isdigit((uint8_t) *p)) {
2698 reps = strtol(p, &endptr, 10);
2699 if (reps > REPETITION_MAX) reps = REPETITION_MAX;
2700 outlen += reps;
2701 p = endptr;
2702 } else {
2703 outlen++;
2704 }
2705 p++;
2706 }
2707
2708 MEM(vb = fr_value_box_alloc_null(ctx));
2709 MEM(fr_value_box_bstr_alloc(vb, &buff_p, vb, NULL, outlen, false) == 0);
2710
2711 /* Reset p to start position */
2712 p = start;
2713
2714 while (p < end) {
2715 size_t i;
2716
2717 if (isdigit((uint8_t) *p)) {
2718 reps = strtol(p, &endptr, 10);
2719 if (reps > REPETITION_MAX) {
2720 reps = REPETITION_MAX;
2721 RMARKER(L_WARN, L_DBG_LVL_2, start, start - p,
2722 "Forcing repetition to %u", (unsigned int)REPETITION_MAX);
2723 }
2724 p = endptr;
2725 } else {
2726 reps = 1;
2727 }
2728
2729 for (i = 0; i < reps; i++) {
2730 result = fr_rand();
2731 switch (*p) {
2732 /*
2733 * Lowercase letters
2734 */
2735 case 'c':
2736 *buff_p++ = 'a' + (result % 26);
2737 break;
2738
2739 /*
2740 * Uppercase letters
2741 */
2742 case 'C':
2743 *buff_p++ = 'A' + (result % 26);
2744 break;
2745
2746 /*
2747 * Numbers
2748 */
2749 case 'n':
2750 *buff_p++ = '0' + (result % 10);
2751 break;
2752
2753 /*
2754 * Alpha numeric
2755 */
2756 case 'a':
2757 *buff_p++ = randstr_salt[result % (sizeof(randstr_salt) - 3)];
2758 break;
2759
2760 /*
2761 * Punctuation
2762 */
2763 case '!':
2764 *buff_p++ = randstr_punc[result % (sizeof(randstr_punc) - 1)];
2765 break;
2766
2767 /*
2768 * Alpha numeric + punctuation
2769 */
2770 case '.':
2771 *buff_p++ = '!' + (result % 95);
2772 break;
2773
2774 /*
2775 * Alpha numeric + salt chars './'
2776 */
2777 case 's':
2778 *buff_p++ = randstr_salt[result % (sizeof(randstr_salt) - 1)];
2779 break;
2780
2781 /*
2782 * Chars suitable for One Time Password tokens.
2783 * Alpha numeric with easily confused char pairs removed.
2784 */
2785 case 'o':
2786 *buff_p++ = randstr_otp[result % (sizeof(randstr_otp) - 1)];
2787 break;
2788
2789 /*
2790 * Binary data - Copy between 1-4 bytes at a time
2791 */
2792 case 'b':
2793 {
2794 size_t copy = (reps - i) > sizeof(result) ? sizeof(result) : reps - i;
2795
2796 memcpy(buff_p, (uint8_t *)&result, copy);
2797 buff_p += copy;
2798 i += (copy - 1); /* Loop +1 */
2799 }
2800 break;
2801
2802 default:
2803 REDEBUG("Invalid character class '%c'", *p);
2804 talloc_free(vb);
2805
2806 return XLAT_ACTION_FAIL;
2807 }
2808 }
2809
2810 p++;
2811 }
2812
2813 *buff_p++ = '\0';
2814
2815 fr_dcursor_append(out, vb);
2816
2817 return XLAT_ACTION_DONE;
2818}
2819
2820/** Convert a UUID in an array of uint32_t to the conventional string representation.
2821 */
2822static int uuid_print_vb(fr_value_box_t *vb, uint32_t vals[4])
2823{
2824 char buffer[36];
2825 int i, j = 0;
2826
2827#define UUID_CHARS(_v, _num) for (i = 0; i < _num; i++) { \
2828 buffer[j++] = fr_base16_alphabet_encode_lc[(uint8_t)((vals[_v] & 0xf0000000) >> 28)]; \
2829 vals[_v] = vals[_v] << 4; \
2830 }
2831
2832 UUID_CHARS(0, 8)
2833 buffer[j++] = '-';
2834 UUID_CHARS(1, 4)
2835 buffer[j++] = '-';
2836 UUID_CHARS(1, 4);
2837 buffer[j++] = '-';
2838 UUID_CHARS(2, 4);
2839 buffer[j++] = '-';
2840 UUID_CHARS(2, 4);
2841 UUID_CHARS(3, 8);
2842
2843 return fr_value_box_bstrndup(vb, vb, NULL, buffer, sizeof(buffer), false);
2844}
2845
2846static inline void uuid_set_version(uint32_t vals[4], uint8_t version)
2847{
2848 /*
2849 * The version is indicated by the upper 4 bits of byte 7 - the 3rd byte of vals[1]
2850 */
2851 vals[1] = (vals[1] & 0xffff0fff) | (((uint32_t)version & 0x0f) << 12);
2852}
2853
2854static inline void uuid_set_variant(uint32_t vals[4], uint8_t variant)
2855{
2856 /*
2857 * The variant is indicated by the first 1, 2 or 3 bits of byte 9
2858 * The number of bits is determined by the variant.
2859 */
2860 switch (variant) {
2861 case 0:
2862 vals[2] = vals[2] & 0x7fffffff;
2863 break;
2864
2865 case 1:
2866 vals[2] = (vals[2] & 0x3fffffff) | 0x80000000;
2867 break;
2868
2869 case 2:
2870 vals[2] = (vals[2] & 0x3fffffff) | 0xc0000000;
2871 break;
2872
2873 case 3:
2874 vals[2] = vals[2] | 0xe0000000;
2875 break;
2876 }
2877}
2878
2879/** Generate a version 4 UUID
2880 *
2881 * Version 4 UUIDs are all random except the version and variant fields
2882 *
2883 * Example:
2884@verbatim
2885%uuid.v4 == "cba48bda-641c-42ae-8173-d97aa04f888a"
2886@endverbatim
2887 * @ingroup xlat_functions
2888 */
2889static xlat_action_t xlat_func_uuid_v4(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx,
2890 UNUSED request_t *request, UNUSED fr_value_box_list_t *args)
2891{
2892 fr_value_box_t *vb;
2893 uint32_t vals[4];
2894 int i;
2895
2896 MEM(vb = fr_value_box_alloc(ctx, FR_TYPE_STRING, NULL));
2897
2898 /*
2899 * A type 4 UUID is all random except a few bits.
2900 * Start with 128 bits of random.
2901 */
2902 for (i = 0; i < 4; i++) vals[i] = fr_rand();
2903
2904 /*
2905 * Set the version and variant fields
2906 */
2907 uuid_set_version(vals, 4);
2908 uuid_set_variant(vals, 1);
2909
2910 if (uuid_print_vb(vb, vals) < 0) return XLAT_ACTION_FAIL;
2911
2912 fr_dcursor_append(out, vb);
2913 return XLAT_ACTION_DONE;
2914}
2915
2916/** Generate a version 7 UUID
2917 *
2918 * Version 7 UUIDs use 48 bits of unix millisecond epoch and 74 bits of random
2919 *
2920 * Example:
2921@verbatim
2922%uuid.v7 == "019a58d8-8524-7342-aa07-c0fa2bba6a4e"
2923@endverbatim
2924 * @ingroup xlat_functions
2925 */
2926static xlat_action_t xlat_func_uuid_v7(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx,
2927 UNUSED request_t *request, UNUSED fr_value_box_list_t *args)
2928{
2929 fr_value_box_t *vb;
2930 uint32_t vals[4];
2931 int i;
2932 uint64_t now;
2933
2934 MEM(vb = fr_value_box_alloc(ctx, FR_TYPE_STRING, NULL));
2935
2936 /*
2937 * A type 7 UUID has random data from bit 48
2938 * Start with random from bit 32 - since fr_rand is uint32
2939 */
2940 for (i = 1; i < 4; i++) vals[i] = fr_rand();
2941
2942 /*
2943 * The millisecond epoch fills the first 48 bits
2944 */
2945 now = fr_time_to_msec(fr_time());
2946 now = now << 16;
2947 vals[0] = now >> 32;
2948 vals[1] = (vals[1] & 0x0000ffff) | (now & 0xffff0000);
2949
2950 /*
2951 * Set the version and variant fields
2952 */
2953 uuid_set_version(vals, 7);
2954 uuid_set_variant(vals, 1);
2955
2956 if (uuid_print_vb(vb, vals) < 0) return XLAT_ACTION_FAIL;
2957
2958 fr_dcursor_append(out, vb);
2959 return XLAT_ACTION_DONE;
2960}
2961
2962static xlat_arg_parser_t const xlat_func_range_arg[] = {
2963 { .required = true, .type = FR_TYPE_UINT64 },
2964 { .required = false, .type = FR_TYPE_UINT64 },
2965 { .required = false, .type = FR_TYPE_UINT64 },
2966 XLAT_ARG_PARSER_TERMINATOR
2967};
2968
2969/** Generate a range of uint64 numbers
2970 *
2971 * Example:
2972@verbatim
2973%range(end) - 0..end
2974%rang(start, end)
2975%range(start,end, step)
2976@endverbatim
2977 * @ingroup xlat_functions
2978 */
2979static xlat_action_t xlat_func_range(TALLOC_CTX *ctx, fr_dcursor_t *out,
2980 UNUSED xlat_ctx_t const *xctx,
2981 request_t *request, fr_value_box_list_t *args)
2982{
2983 fr_value_box_t *start_vb, *end_vb, *step_vb;
2984 fr_value_box_t *dst;
2985 uint64_t i, start, end, step;
2986
2987 XLAT_ARGS(args, &start_vb, &end_vb, &step_vb);
2988
2989 if (step_vb) {
2990 start = fr_value_box_list_head(&start_vb->vb_group)->vb_uint64;
2991 end = fr_value_box_list_head(&end_vb->vb_group)->vb_uint64;
2992 step = fr_value_box_list_head(&step_vb->vb_group)->vb_uint64;
2993
2994 } else if (end_vb) {
2995 start = fr_value_box_list_head(&start_vb->vb_group)->vb_uint64;
2996 end = fr_value_box_list_head(&end_vb->vb_group)->vb_uint64;
2997 step = 1;
2998
2999 } else {
3000 start = 0;
3001 end = fr_value_box_list_head(&start_vb->vb_group)->vb_uint64;
3002 step = 1;
3003 }
3004
3005 if (end <= start) {
3006 REDEBUG("Invalid range - 'start' must be less than 'end'");
3007 return XLAT_ACTION_FAIL;
3008 }
3009
3010 if (!step) {
3011 REDEBUG("Invalid range - 'step' must be greater than zero");
3012 return XLAT_ACTION_FAIL;
3013 }
3014
3015 if (step > (end - start)) {
3016 REDEBUG("Invalid range - 'step' must allow for at least one result");
3017 return XLAT_ACTION_FAIL;
3018 }
3019
3020 if (((end - start) / step) > 1000) {
3021 REDEBUG("Invalid range - Too many results");
3022 return XLAT_ACTION_FAIL;
3023 }
3024
3025 for (i = start; i < end; i += step) {
3026 MEM(dst = fr_value_box_alloc(ctx, FR_TYPE_UINT64, NULL));
3027 dst->vb_uint64 = i;
3028 fr_dcursor_append(out, dst);
3029 }
3030
3031 return XLAT_ACTION_DONE;
3032}
3033
3034static int CC_HINT(nonnull(2,3)) regex_xlat_escape(UNUSED request_t *request, fr_value_box_t *vb, UNUSED void *uctx)
3035{
3036 ssize_t slen;
3037 fr_sbuff_t *out = NULL;
3038 fr_value_box_entry_t entry;
3039
3040 FR_SBUFF_TALLOC_THREAD_LOCAL(&out, 256, 4096);
3041
3042 slen = fr_value_box_print(out, vb, &regex_escape_rules);
3043 if (slen < 0) return -1;
3044
3045 entry = vb->entry;
3046 fr_value_box_clear(vb);
3047 (void) fr_value_box_bstrndup(vb, vb, NULL, fr_sbuff_start(out), fr_sbuff_used(out), false);
3048 vb->entry = entry;
3049
3050 return 0;
3051}
3052
3057
3058
3059/** Get named subcapture value from previous regex
3060 *
3061 * Example:
3062@verbatim
3063if ("foo" =~ /^(?<name>.*)/) {
3064 noop
3065}
3066%regex.match(name) == "foo"
3067@endverbatim
3068 *
3069 * @ingroup xlat_functions
3070 */
3071static xlat_action_t xlat_func_regex(TALLOC_CTX *ctx, fr_dcursor_t *out,
3072 UNUSED xlat_ctx_t const *xctx,
3073 request_t *request, fr_value_box_list_t *in)
3074{
3075 fr_value_box_t *in_head = fr_value_box_list_head(in);
3076
3077 /*
3078 * Find the first child of the first argument group
3079 */
3080 fr_value_box_t *arg = fr_value_box_list_head(&in_head->vb_group);
3081
3082 /*
3083 * Return the complete capture if no other capture is specified
3084 */
3085 if (!arg) {
3086 fr_value_box_t *vb;
3087
3088 MEM(vb = fr_value_box_alloc_null(ctx));
3089 if (regex_request_to_sub(vb, vb, request, 0) < 0) {
3090 REDEBUG2("No previous regex capture");
3091 talloc_free(vb);
3092 return XLAT_ACTION_FAIL;
3093 }
3094
3095 fr_dcursor_append(out, vb);
3096
3097 return XLAT_ACTION_DONE;
3098 }
3099
3100 switch (arg->type) {
3101 /*
3102 * If the input is an integer value then get an
3103 * arbitrary subcapture index.
3104 */
3105 case FR_TYPE_NUMERIC:
3106 {
3107 fr_value_box_t idx;
3108 fr_value_box_t *vb;
3109
3110 if (fr_value_box_list_next(in, in_head)) {
3111 REDEBUG("Only one subcapture argument allowed");
3112 return XLAT_ACTION_FAIL;
3113 }
3114
3115 if (fr_value_box_cast(NULL, &idx, FR_TYPE_UINT32, NULL, arg) < 0) {
3116 RPEDEBUG("Bad subcapture index");
3117 return XLAT_ACTION_FAIL;
3118 }
3119
3120 MEM(vb = fr_value_box_alloc_null(ctx));
3121 if (regex_request_to_sub(vb, vb, request, idx.vb_uint32) < 0) {
3122 REDEBUG2("No previous numbered regex capture group '%u'", idx.vb_uint32);
3123 talloc_free(vb);
3124 return XLAT_ACTION_DONE;
3125 }
3126 fr_dcursor_append(out, vb);
3127
3128 return XLAT_ACTION_DONE;
3129 }
3130
3131 default:
3132#if defined(HAVE_REGEX_PCRE) || defined(HAVE_REGEX_PCRE2)
3133 {
3134 fr_value_box_t *vb;
3135
3136 /*
3137 * Concatenate all input
3138 */
3139 if (fr_value_box_list_concat_in_place(ctx,
3140 arg, &in_head->vb_group, FR_TYPE_STRING,
3141 FR_VALUE_BOX_LIST_FREE, true,
3142 SIZE_MAX) < 0) {
3143 RPEDEBUG("Failed concatenating input");
3144 return XLAT_ACTION_FAIL;
3145 }
3146
3147 MEM(vb = fr_value_box_alloc_null(ctx));
3148 if (regex_request_to_sub_named(vb, vb, request, arg->vb_strvalue) < 0) {
3149 REDEBUG2("No previous named regex capture group '%s'", arg->vb_strvalue);
3150 talloc_free(vb);
3151 return XLAT_ACTION_DONE; /* NOT an error, just an empty result */
3152 }
3153 fr_dcursor_append(out, vb);
3154
3155 return XLAT_ACTION_DONE;
3156 }
3157#else
3158 RDEBUG("Named regex captures are not supported (they require libpcre2)");
3159 return XLAT_ACTION_FAIL;
3160#endif
3161 }
3162}
3163
3164static xlat_arg_parser_t const xlat_func_sha_arg[] = {
3165 { .concat = true, .type = FR_TYPE_OCTETS },
3166 XLAT_ARG_PARSER_TERMINATOR
3167};
3168
3169/** Calculate the SHA1 hash of a string or attribute.
3170 *
3171 * Example:
3172@verbatim
3173%sha1(foo) == "0beec7b5ea3f0fdbc95d0dd47f3c5bc275da8a33"
3174@endverbatim
3175 *
3176 * @ingroup xlat_functions
3177 */
3178static xlat_action_t xlat_func_sha1(TALLOC_CTX *ctx, fr_dcursor_t *out,
3179 UNUSED xlat_ctx_t const *xctx,
3180 UNUSED request_t *request, fr_value_box_list_t *args)
3181{
3182 uint8_t digest[SHA1_DIGEST_LENGTH];
3183 fr_sha1_ctx sha1_ctx;
3184 fr_value_box_t *vb;
3185 fr_value_box_t *in_head;
3186
3187 XLAT_ARGS(args, &in_head);
3188
3189 fr_sha1_init(&sha1_ctx);
3190 if (in_head) {
3191 fr_sha1_update(&sha1_ctx, in_head->vb_octets, in_head->vb_length);
3192 } else {
3193 /* sha1 of empty string */
3194 fr_sha1_update(&sha1_ctx, NULL, 0);
3195 }
3196 fr_sha1_final(digest, &sha1_ctx);
3197
3198 MEM(vb = fr_value_box_alloc_null(ctx));
3199 fr_value_box_memdup(vb, vb, NULL, digest, sizeof(digest), false);
3200
3201 fr_dcursor_append(out, vb);
3202
3203 return XLAT_ACTION_DONE;
3204}
3205
3206/** Calculate any digest supported by OpenSSL EVP_MD
3207 *
3208 * Example:
3209@verbatim
3210%sha2_256(foo) == "0beec7b5ea3f0fdbc95d0dd47f3c5bc275da8a33"
3211@endverbatim
3212 *
3213 * @ingroup xlat_functions
3214 */
3215#ifdef HAVE_OPENSSL_EVP_H
3216static xlat_action_t xlat_evp_md(TALLOC_CTX *ctx, fr_dcursor_t *out,
3217 UNUSED xlat_ctx_t const *xctx,
3218 UNUSED request_t *request, fr_value_box_list_t *args, EVP_MD const *md)
3219{
3220 uint8_t digest[EVP_MAX_MD_SIZE];
3221 unsigned int digestlen;
3222 EVP_MD_CTX *md_ctx;
3223 fr_value_box_t *vb;
3224 fr_value_box_t *in_head;
3225
3226 XLAT_ARGS(args, &in_head);
3227
3228 md_ctx = EVP_MD_CTX_create();
3229 EVP_DigestInit_ex(md_ctx, md, NULL);
3230 if (in_head) {
3231 EVP_DigestUpdate(md_ctx, in_head->vb_octets, in_head->vb_length);
3232 } else {
3233 EVP_DigestUpdate(md_ctx, NULL, 0);
3234 }
3235 EVP_DigestFinal_ex(md_ctx, digest, &digestlen);
3236 EVP_MD_CTX_destroy(md_ctx);
3237
3238 MEM(vb = fr_value_box_alloc_null(ctx));
3239 fr_value_box_memdup(vb, vb, NULL, digest, digestlen, false);
3240
3241 fr_dcursor_append(out, vb);
3242
3243 return XLAT_ACTION_DONE;
3244}
3245
3246# define EVP_MD_XLAT(_md, _md_func) \
3247static xlat_action_t xlat_func_##_md(TALLOC_CTX *ctx, fr_dcursor_t *out,\
3248 xlat_ctx_t const *xctx, \
3249 request_t *request,\
3250 fr_value_box_list_t *in)\
3251{\
3252 return xlat_evp_md(ctx, out, xctx, request, in, EVP_##_md_func());\
3253}
3254
3255EVP_MD_XLAT(sha2_224, sha224)
3256EVP_MD_XLAT(sha2_256, sha256)
3257EVP_MD_XLAT(sha2_384, sha384)
3258EVP_MD_XLAT(sha2_512, sha512)
3259
3260/*
3261 * OpenWRT's OpenSSL library doesn't contain these by default
3262 */
3263#ifdef HAVE_EVP_BLAKE2S256
3264EVP_MD_XLAT(blake2s_256, blake2s256)
3265#endif
3266
3267#ifdef HAVE_EVP_BLAKE2B512
3268EVP_MD_XLAT(blake2b_512, blake2b512)
3269#endif
3270
3271EVP_MD_XLAT(sha3_224, sha3_224)
3272EVP_MD_XLAT(sha3_256, sha3_256)
3273EVP_MD_XLAT(sha3_384, sha3_384)
3274EVP_MD_XLAT(sha3_512, sha3_512)
3275#endif
3276
3277
3278static xlat_arg_parser_t const xlat_func_string_arg[] = {
3279 { .required = true, .concat = true, .type = FR_TYPE_STRING },
3280 XLAT_ARG_PARSER_TERMINATOR
3281};
3282
3283static xlat_arg_parser_t const xlat_func_strlen_arg[] = {
3284 { .concat = true, .type = FR_TYPE_STRING },
3285 XLAT_ARG_PARSER_TERMINATOR
3286};
3287
3288/** Print length of given string
3289 *
3290 * Example:
3291@verbatim
3292%strlen(foo) == 3
3293@endverbatim
3294 *
3295 * @see #xlat_func_length
3296 *
3297 * @ingroup xlat_functions
3298 */
3299static xlat_action_t xlat_func_strlen(TALLOC_CTX *ctx, fr_dcursor_t *out,
3300 UNUSED xlat_ctx_t const *xctx,
3301 UNUSED request_t *request, fr_value_box_list_t *args)
3302{
3303 fr_value_box_t *vb;
3304 fr_value_box_t *in_head;
3305
3306 XLAT_ARGS(args, &in_head);
3307
3308 MEM(vb = fr_value_box_alloc(ctx, FR_TYPE_SIZE, NULL));
3309
3310 if (!in_head) {
3311 vb->vb_size = 0;
3312 } else {
3313 vb->vb_size = strlen(in_head->vb_strvalue);
3314 }
3315
3316 fr_dcursor_append(out, vb);
3317
3318 return XLAT_ACTION_DONE;
3319}
3320
3321static xlat_arg_parser_t const xlat_func_str_printable_arg[] = {
3322 { .concat = true, .type = FR_TYPE_STRING },
3323 { .single = true, .type = FR_TYPE_BOOL },
3324 XLAT_ARG_PARSER_TERMINATOR
3325};
3326
3327/** Return whether a string has only printable chars
3328 *
3329 * This function returns true if the input string contains UTF8 sequences and printable chars.
3330 *
3331 * @note "\t" and " " are considered unprintable chars, unless the second argument(relaxed) is true.
3332 *
3333 * Example:
3334@verbatim
3335%str.printable("🍉abcdef🍓") == true
3336%str.printable("\000\n\r\t") == false
3337%str.printable("\t abcd", yes) == true
3338@endverbatim
3339 *
3340 * @ingroup xlat_functions
3341 */
3342static xlat_action_t xlat_func_str_printable(TALLOC_CTX *ctx, fr_dcursor_t *out,
3343 UNUSED xlat_ctx_t const *xctx,
3344 UNUSED request_t *request, fr_value_box_list_t *args)
3345{
3346 fr_value_box_t *vb;
3347 fr_value_box_t *str;
3348 fr_value_box_t *relaxed_vb;
3349 uint8_t const *p, *end;
3350 bool relaxed = false;
3351
3352 XLAT_ARGS(args, &str, &relaxed_vb);
3353
3354 if (relaxed_vb) relaxed = relaxed_vb->vb_bool;
3355
3356 p = (uint8_t const *)str->vb_strvalue;
3357 end = p + str->vb_length;
3358
3359 MEM(vb = fr_value_box_alloc(ctx, FR_TYPE_BOOL, NULL));
3360 fr_dcursor_append(out, vb);
3361 vb->vb_bool = false;
3362
3363 do {
3364 size_t clen;
3365
3366 if ((*p < '!') &&
3367 (!relaxed || ((*p != '\t') && (*p != ' ')))) return XLAT_ACTION_DONE;
3368
3369 if (*p == 0x7f) return XLAT_ACTION_DONE;
3370
3371 clen = fr_utf8_char(p, end - p);
3372 if (clen == 0) return XLAT_ACTION_DONE;
3373 p += clen;
3374 } while (p < end);
3375
3376 vb->vb_bool = true;
3377
3378 return XLAT_ACTION_DONE;
3379}
3380
3381static xlat_arg_parser_t const xlat_func_str_utf8_arg[] = {
3382 { .concat = true, .type = FR_TYPE_STRING },
3383 XLAT_ARG_PARSER_TERMINATOR
3384};
3385
3386/** Return whether a string is valid UTF-8
3387 *
3388 * This function returns true if the input string is valid UTF-8, false otherwise.
3389 *
3390 * Example:
3391@verbatim
3392%str.utf8(🍉🥝🍓) == true
3393%str.utf8(🍉\xff🍓) == false
3394@endverbatim
3395 *
3396 * @ingroup xlat_functions
3397 */
3398static xlat_action_t xlat_func_str_utf8(TALLOC_CTX *ctx, fr_dcursor_t *out,
3399 UNUSED xlat_ctx_t const *xctx,
3400 UNUSED request_t *request, fr_value_box_list_t *args)
3401{
3402 fr_value_box_t *vb;
3403 fr_value_box_t *in_head;
3404
3405 XLAT_ARGS(args, &in_head);
3406
3407 MEM(vb = fr_value_box_alloc(ctx, FR_TYPE_BOOL, NULL));
3408 vb->vb_bool = (fr_utf8_str((uint8_t const *)in_head->vb_strvalue,
3409 in_head->vb_length) >= 0);
3410
3411 fr_dcursor_append(out, vb);
3412
3413 return XLAT_ACTION_DONE;
3414}
3415
3416static xlat_arg_parser_t const xlat_func_substr_args[] = {
3417 { .single = true, .required = true, .type = FR_TYPE_VOID },
3418 { .single = true, .required = true, .type = FR_TYPE_INT32 },
3419 { .single = true, .type = FR_TYPE_INT32 },
3420 XLAT_ARG_PARSER_TERMINATOR
3421};
3422
3423/** Extract a substring from string / octets data
3424 *
3425 * Non string / octets data is cast to a string.
3426 *
3427 * Second parameter is start position, optional third parameter is length
3428 * Negative start / length count from RHS of data.
3429 *
3430 * Example: (User-Name = "hello")
3431@verbatim
3432%substr(&User-Name, 1, 3) == 'ell'
3433@endverbatim
3434 *
3435 * @ingroup xlat_functions
3436 */
3437static xlat_action_t xlat_func_substr(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx,
3438 request_t *request, fr_value_box_list_t *args)
3439{
3440 fr_value_box_t *in = NULL, *start_vb, *len_vb, *vb;
3441 int32_t start, end, len;
3442
3443 XLAT_ARGS(args, &in, &start_vb, &len_vb);
3444
3445 switch (in->type) {
3446 case FR_TYPE_OCTETS:
3447 case FR_TYPE_STRING:
3448 break;
3449
3450 default:
3451 if (fr_value_box_cast_in_place(in, in, FR_TYPE_STRING, NULL) < 0) {
3452 RPEDEBUG("Failed casting value to string");
3453 return XLAT_ACTION_FAIL;
3454 }
3455 break;
3456 }
3457
3458 if (start_vb->vb_int32 > (int32_t)in->vb_length) return XLAT_ACTION_DONE;
3459
3460 if (start_vb->vb_int32 < 0) {
3461 start = in->vb_length + start_vb->vb_int32;
3462 if (start < 0) start = 0;
3463 } else {
3464 start = start_vb->vb_int32;
3465 }
3466
3467 if (len_vb) {
3468 if (len_vb->vb_int32 < 0) {
3469 end = in->vb_length + len_vb->vb_int32;
3470 if (end < 0) return XLAT_ACTION_DONE;
3471 } else {
3472 end = start + len_vb->vb_int32;
3473 if (end > (int32_t)in->vb_length) end = in->vb_length;
3474 }
3475 } else {
3476 end = in->vb_length;
3477 }
3478
3479 if (start >= end) return XLAT_ACTION_DONE;
3480
3481 MEM(vb = fr_value_box_alloc(ctx, in->type, NULL));
3482
3483 len = end - start;
3484 switch (in->type) {
3485 case FR_TYPE_STRING:
3486 fr_value_box_bstrndup(vb, vb, NULL, &in->vb_strvalue[start], len, false);
3487 break;
3488 case FR_TYPE_OCTETS:
3489 {
3490 uint8_t *buf;
3491 fr_value_box_mem_alloc(vb, &buf, vb, NULL, len, false);
3492 memcpy(buf, &in->vb_octets[start], len);
3493 }
3494 break;
3495 default:
3496 fr_assert(0);
3497 }
3498
3499 fr_value_box_safety_copy(vb, in);
3500 fr_dcursor_append(out, vb);
3501
3502 return XLAT_ACTION_DONE;
3503}
3504
3505#ifdef HAVE_REGEX_PCRE2
3506/** Cache statically compiled expressions
3507 */
3508typedef struct {
3509 regex_t *pattern;
3510 fr_regex_flags_t flags;
3511} xlat_subst_regex_inst_t;
3512
3513/** Pre-compile regexes where possible
3514 */
3515static int xlat_instantiate_subst_regex(xlat_inst_ctx_t const *xctx)
3516{
3517 xlat_subst_regex_inst_t *inst = talloc_get_type_abort(xctx->inst, xlat_subst_regex_inst_t);
3518 xlat_exp_t *patt_exp;
3519 fr_sbuff_t sbuff;
3520 fr_sbuff_marker_t start_m, end_m;
3521
3522 /* args #2 (pattern) */
3523 patt_exp = fr_dlist_next(&xctx->ex->call.args->dlist, fr_dlist_head(&xctx->ex->call.args->dlist));
3524 fr_assert(patt_exp && patt_exp->type == XLAT_GROUP); /* args must be groups */
3525
3526 /* If there are dynamic expansions, we can't pre-compile */
3527 if (!xlat_is_literal(patt_exp->group)) return 0;
3528 fr_assert(fr_dlist_num_elements(&patt_exp->group->dlist) == 1);
3529
3530 patt_exp = fr_dlist_head(&patt_exp->group->dlist);
3531
3532 /* We can only pre-compile strings */
3533 if (!fr_type_is_string(patt_exp->data.type)) return 0;
3534
3535 sbuff = FR_SBUFF_IN(patt_exp->data.vb_strvalue, patt_exp->data.vb_length);
3536
3537 /* skip any whitesapce */
3538 fr_sbuff_adv_past_whitespace(&sbuff, SIZE_MAX, 0);
3539
3540 /* Is the next char a forward slash? */
3541 if (fr_sbuff_next_if_char(&sbuff, '/')) {
3542 fr_slen_t slen;
3543
3544 fr_sbuff_marker(&start_m, &sbuff);
3545
3546 if (!fr_sbuff_adv_to_chr(&sbuff, SIZE_MAX, '/')) return 0; /* Not a regex */
3547
3548 fr_sbuff_marker(&end_m, &sbuff);
3549 fr_sbuff_next(&sbuff); /* skip trailing slash */
3550
3551 if (fr_sbuff_remaining(&sbuff)) {
3552 slen = regex_flags_parse(NULL, &inst->flags,
3553 &sbuff,
3554 NULL, true);
3555 if (slen < 0) {
3556 PERROR("Failed parsing regex flags in \"%s\"", patt_exp->data.vb_strvalue);
3557 return -1;
3558 }
3559 }
3560
3561 if (regex_compile(inst, &inst->pattern,
3562 fr_sbuff_current(&start_m), fr_sbuff_current(&end_m) - fr_sbuff_current(&start_m),
3563 &inst->flags, true, false) <= 0) {
3564 PERROR("Failed compiling regex \"%s\"", patt_exp->data.vb_strvalue);
3565 return -1;
3566 }
3567 }
3568 /* No... then it's not a regex */
3569
3570 return 0;
3571}
3572
3573/** Perform regex substitution TODO CHECK
3574 *
3575 * Called when %subst() pattern begins with "/"
3576 *
3577@verbatim
3578%subst(<subject>, /<regex>/[flags], <replace>)
3579@endverbatim
3580 *
3581 * Example: (User-Name = "foo")
3582@verbatim
3583%subst(%{User-Name}, /oo.*$/, 'un') == "fun"
3584@endverbatim
3585 *
3586 * @note References can be specified in the replacement string with $<ref>
3587 *
3588 * @see #xlat_func_subst
3589 *
3590 * @ingroup xlat_functions
3591 */
3592static int xlat_func_subst_regex(TALLOC_CTX *ctx, fr_dcursor_t *out,
3593 xlat_ctx_t const *xctx, request_t *request,
3594 fr_value_box_list_t *args)
3595{
3596 xlat_subst_regex_inst_t const *inst = talloc_get_type_abort_const(xctx->inst, xlat_subst_regex_inst_t);
3597 fr_sbuff_t sbuff;
3598 fr_sbuff_marker_t start_m, end_m;
3599 char *buff;
3600 ssize_t slen;
3601 regex_t *pattern, *our_pattern = NULL;
3602 fr_regex_flags_t const *flags;
3603 fr_regex_flags_t our_flags = {};
3604 fr_value_box_t *vb;
3605 fr_value_box_t *subject_vb;
3606 fr_value_box_t *regex_vb;
3607 fr_value_box_t *rep_vb;
3608
3609 XLAT_ARGS(args, &subject_vb, &regex_vb, &rep_vb);
3610
3611 /*
3612 * Was not pre-compiled, so we need to compile it now
3613 */
3614 if (!inst->pattern) {
3615 sbuff = FR_SBUFF_IN(regex_vb->vb_strvalue, regex_vb->vb_length);
3616 if (fr_sbuff_len(&sbuff) == 0) {
3617 REDEBUG("Regex must not be empty");
3618 return XLAT_ACTION_FAIL;
3619 }
3620
3621 fr_sbuff_next(&sbuff); /* skip leading slash */
3622 fr_sbuff_marker(&start_m, &sbuff);
3623
3624 if (!fr_sbuff_adv_to_chr(&sbuff, SIZE_MAX, '/')) return 1; /* Not a regex */
3625
3626 fr_sbuff_marker(&end_m, &sbuff);
3627 fr_sbuff_next(&sbuff); /* skip trailing slash */
3628
3629 slen = regex_flags_parse(NULL, &our_flags, &sbuff, NULL, true);
3630 if (slen < 0) {
3631 RPEDEBUG("Failed parsing regex flags");
3632 return -1;
3633 }
3634
3635 /*
3636 * Process the substitution
3637 */
3638 if (regex_compile(NULL, &our_pattern,
3639 fr_sbuff_current(&start_m), fr_sbuff_current(&end_m) - fr_sbuff_current(&start_m),
3640 &our_flags, true, true) <= 0) {
3641 RPEDEBUG("Failed compiling regex");
3642 return -1;
3643 }
3644 pattern = our_pattern;
3645 flags = &our_flags;
3646 } else {
3647 pattern = inst->pattern;
3648 flags = &inst->flags;
3649 }
3650
3651 MEM(vb = fr_value_box_alloc_null(ctx));
3652 if (regex_substitute(vb, &buff, 0, pattern, flags,
3653 subject_vb->vb_strvalue, subject_vb->vb_length,
3654 rep_vb->vb_strvalue, rep_vb->vb_length, NULL) < 0) {
3655 RPEDEBUG("Failed performing substitution");
3656 talloc_free(vb);
3657 talloc_free(pattern);
3658 return -1;
3659 }
3660 fr_value_box_bstrdup_buffer_shallow(NULL, vb, NULL, buff, false);
3661
3662 fr_value_box_safety_copy(vb, subject_vb);
3663 fr_value_box_safety_merge(vb, rep_vb);
3664
3665 fr_dcursor_append(out, vb);
3666
3667 talloc_free(our_pattern);
3668
3669 return 0;
3670}
3671#endif
3672
3673static xlat_arg_parser_t const xlat_func_subst_args[] = {
3674 { .required = true, .concat = true, .type = FR_TYPE_STRING },
3675 { .required = true, .concat = true, .type = FR_TYPE_STRING },
3676 { .required = true, .concat = true, .type = FR_TYPE_STRING },
3677 XLAT_ARG_PARSER_TERMINATOR
3678};
3679
3680/** Perform regex substitution
3681 *
3682@verbatim
3683%subst(<subject>, <pattern>, <replace>)
3684@endverbatim
3685 *
3686 * Example: (User-Name = "foobar")
3687@verbatim
3688%subst(%{User-Name}, 'oo', 'un') == "funbar"
3689@endverbatim
3690 *
3691 * @see xlat_func_subst_regex
3692 *
3693 * @ingroup xlat_functions
3694 */
3695static xlat_action_t xlat_func_subst(TALLOC_CTX *ctx, fr_dcursor_t *out,
3696#ifdef HAVE_REGEX_PCRE2
3697 xlat_ctx_t const *xctx,
3698#else
3699 UNUSED xlat_ctx_t const *xctx,
3700#endif
3701 request_t *request, fr_value_box_list_t *args)
3702{
3703 char const *p, *q, *end;
3704 char *vb_str;
3705
3706 char const *pattern, *rep;
3707 size_t pattern_len, rep_len;
3708
3709 fr_value_box_t *rep_vb, *vb;
3710 fr_value_box_t *subject_vb;
3711 fr_value_box_t *pattern_vb;
3712
3713 XLAT_ARGS(args, &subject_vb, &pattern_vb, &rep_vb);
3714
3715 /* coverity[dereference] */
3716 pattern = pattern_vb->vb_strvalue;
3717 if (*pattern == '/') {
3718#ifdef HAVE_REGEX_PCRE2
3719 switch (xlat_func_subst_regex(ctx, out, xctx, request, args)) {
3720 case 0:
3721 return XLAT_ACTION_DONE;
3722
3723 case 1:
3724 /* Not a regex, fall through */
3725 break;
3726
3727 case -1:
3728 return XLAT_ACTION_FAIL;
3729 }
3730#else
3731 if (memchr(pattern, '/', pattern_vb->vb_length - 1)) {
3732 REDEBUG("regex based substitutions require libpcre2. "
3733 "Check ${features.regex-pcre2} to determine support");
3734 }
3735 return XLAT_ACTION_FAIL;
3736#endif
3737 }
3738
3739 /*
3740 * Check for empty pattern
3741 */
3742 pattern_len = pattern_vb->vb_length;
3743 if (pattern_len == 0) {
3744 REDEBUG("Empty pattern");
3745 return XLAT_ACTION_FAIL;
3746 }
3747
3748 rep = rep_vb->vb_strvalue;
3749 rep_len = rep_vb->vb_length;
3750
3751 p = subject_vb->vb_strvalue;
3752 end = p + subject_vb->vb_length;
3753
3754 MEM(vb = fr_value_box_alloc_null(ctx));
3755 vb_str = talloc_bstrndup(vb, "", 0);
3756
3757 while (p < end) {
3758 q = memmem(p, end - p, pattern, pattern_len);
3759 if (!q) {
3760 MEM(vb_str = talloc_bstr_append(vb, vb_str, p, end - p));
3761 break;
3762 }
3763
3764 if (q > p) MEM(vb_str = talloc_bstr_append(vb, vb_str, p, q - p));
3765 if (rep_len) MEM(vb_str = talloc_bstr_append(vb, vb_str, rep, rep_len));
3766 p = q + pattern_len;
3767 }
3768
3769 if (fr_value_box_bstrdup_buffer_shallow(NULL, vb, NULL, vb_str, false) < 0) {
3770 RPEDEBUG("Failed creating output box");
3771 talloc_free(vb);
3772 return XLAT_ACTION_FAIL;
3773 }
3774
3775 fr_value_box_safety_copy(vb, subject_vb);
3776 fr_value_box_safety_merge(vb, rep_vb);
3777
3778 fr_dcursor_append(out, vb);
3779
3780 return XLAT_ACTION_DONE;
3781}
3782
3783/*
3784 * Debug builds only, we don't want to allow unsanitised inputs to crash the server
3785 */
3786#ifndef NDEBUG
3787static xlat_arg_parser_t const xlat_func_signal_raise_args[] = {
3788 { .single = true, .required = true, .type = FR_TYPE_STRING },
3789 XLAT_ARG_PARSER_TERMINATOR
3790};
3791
3792static xlat_action_t xlat_func_signal_raise(UNUSED TALLOC_CTX *ctx, UNUSED fr_dcursor_t *out,
3793 UNUSED xlat_ctx_t const *xctx, request_t *request,
3794 fr_value_box_list_t *args)
3795{
3796 static fr_table_num_sorted_t const signal_table[] = {
3797 { L("break"), SIGTRAP }, /* Save flailing at the keyboard */
3798 { L("BREAK"), SIGTRAP },
3799 { L("SIGABRT"), SIGABRT },
3800 { L("SIGALRM"), SIGALRM },
3801#ifdef SIGBUS
3802 { L("SIGBUS"), SIGBUS },
3803#endif
3804 { L("SIGCHLD"), SIGCHLD },
3805 { L("SIGCONT"), SIGCONT },
3806 { L("SIGFPE"), SIGFPE },
3807 { L("SIGHUP"), SIGHUP },
3808 { L("SIGILL"), SIGILL },
3809 { L("SIGINT"), SIGINT },
3810 { L("SIGKILL"), SIGKILL },
3811 { L("SIGPIPE"), SIGPIPE },
3812#ifdef SIGPOLL
3813 { L("SIGPOLL"), SIGPOLL },
3814#endif
3815 { L("SIGPROF"), SIGPROF },
3816 { L("SIGQUIT"), SIGQUIT },
3817 { L("SIGSEGV"), SIGSEGV },
3818 { L("SIGSTOP"), SIGSTOP },
3819#ifdef SIGSYS
3820 { L("SIGSYS"), SIGSYS },
3821#endif
3822 { L("SIGTERM"), SIGTERM },
3823#ifdef SIGTRAP
3824 { L("SIGTRAP"), SIGTRAP },
3825#endif
3826 { L("SIGTSTP"), SIGTSTP },
3827 { L("SIGTTIN"), SIGTTIN },
3828 { L("SIGTTOU"), SIGTTOU },
3829 { L("SIGURG"), SIGURG },
3830 { L("SIGUSR1"), SIGUSR1 },
3831 { L("SIGUSR2"), SIGUSR2 },
3832 { L("SIGVTALRM"), SIGVTALRM },
3833 { L("SIGXCPU"), SIGXCPU },
3834 { L("SIGXFSZ"), SIGXFSZ }
3835 };
3836 static size_t signal_table_len = NUM_ELEMENTS(signal_table);
3837
3838 fr_value_box_t *signal_vb;
3839 int signal;
3840
3841 XLAT_ARGS(args, &signal_vb);
3842
3843 signal = fr_table_value_by_substr(signal_table, signal_vb->vb_strvalue, signal_vb->vb_length, -1);
3844 if (signal < 0) {
3845 RERROR("Invalid signal \"%pV\"", signal_vb);
3846 return XLAT_ACTION_FAIL;
3847 }
3848 if (raise(signal) < 0) {
3849 RERROR("Failed raising signal %d: %s", signal, strerror(errno));
3850 return XLAT_ACTION_FAIL;
3851 }
3852 return XLAT_ACTION_DONE;
3853}
3854#endif
3855
3856static xlat_arg_parser_t const xlat_func_time_args[] = {
3857 { .required = false, .single = true, .type = FR_TYPE_STRING },
3858 XLAT_ARG_PARSER_TERMINATOR
3859};
3860
3861/** Return the time as a #FR_TYPE_DATE
3862 *
3863 * Note that all operations are UTC.
3864 *
3865@verbatim
3866%time()
3867@endverbatim
3868 *
3869 * Example:
3870@verbatim
3871update reply {
3872 &Reply-Message := "%{%time(now) - %time(request)}"
3873}
3874@endverbatim
3875 *
3876 * @ingroup xlat_functions
3877 */
3878static xlat_action_t xlat_func_time(TALLOC_CTX *ctx, fr_dcursor_t *out,
3879 UNUSED xlat_ctx_t const *xctx,
3880 request_t *request, fr_value_box_list_t *args)
3881{
3882 fr_value_box_t *arg;
3883 fr_value_box_t *vb;
3884 fr_unix_time_t value;
3885
3886 XLAT_ARGS(args, &arg);
3887
3888 if (!arg || (strcmp(arg->vb_strvalue, "now") == 0)) {
3889 value = fr_time_to_unix_time(fr_time());
3890
3891 } else if (strcmp(arg->vb_strvalue, "request") == 0) {
3892 value = fr_time_to_unix_time(request->packet->timestamp);
3893
3894 } else if (strcmp(arg->vb_strvalue, "offset") == 0) {
3895 MEM(vb = fr_value_box_alloc(ctx, FR_TYPE_TIME_DELTA, NULL));
3896 vb->vb_time_delta = fr_time_gmtoff();
3897 goto append;
3898
3899 } else if (strcmp(arg->vb_strvalue, "dst") == 0) {
3900 MEM(vb = fr_value_box_alloc(ctx, FR_TYPE_BOOL, NULL));
3901 vb->vb_bool = fr_time_is_dst();
3902 goto append;
3903
3904 } else if (strcmp(arg->vb_strvalue, "mday_offset") == 0) {
3905 struct tm tm;
3906 fr_unix_time_t unix_time = fr_time_to_unix_time(request->packet->timestamp);
3907 time_t when = fr_unix_time_to_sec(unix_time);
3908 int64_t nsec;
3909
3910 gmtime_r(&when, &tm);
3911
3912 nsec = (int64_t) 86400 * (tm.tm_mday - 1);
3913 nsec += when % 86400;
3914 nsec *= NSEC;
3915 nsec += fr_unix_time_unwrap(unix_time) % NSEC;
3916
3917 MEM(vb = fr_value_box_alloc(ctx, FR_TYPE_TIME_DELTA, NULL));
3918 vb->vb_time_delta = fr_time_delta_wrap(nsec);
3919 goto append;
3920
3921 } else if (strcmp(arg->vb_strvalue, "wday_offset") == 0) {
3922 struct tm tm;
3923 fr_unix_time_t unix_time = fr_time_to_unix_time(request->packet->timestamp);
3924 time_t when = fr_unix_time_to_sec(unix_time);
3925 int64_t nsec;
3926
3927 gmtime_r(&when, &tm);
3928
3929 nsec = (int64_t) 86400 * tm.tm_wday;
3930 nsec += when % 86400;
3931 nsec *= NSEC;
3932 nsec += fr_unix_time_unwrap(unix_time) % NSEC;
3933
3934 MEM(vb = fr_value_box_alloc(ctx, FR_TYPE_TIME_DELTA, NULL));
3935 vb->vb_time_delta = fr_time_delta_wrap(nsec);
3936
3937 MEM(vb = fr_value_box_alloc(ctx, FR_TYPE_TIME_DELTA, NULL));
3938 vb->vb_time_delta = fr_time_delta_wrap(nsec);
3939 goto append;
3940
3941 } else if (fr_unix_time_from_str(&value, arg->vb_strvalue, FR_TIME_RES_SEC) < 0) {
3942 REDEBUG("Invalid time specification '%s'", arg->vb_strvalue);
3943 return XLAT_ACTION_FAIL;
3944 }
3945
3946 MEM(vb = fr_value_box_alloc(ctx, FR_TYPE_DATE, NULL));
3947 vb->vb_date = value;
3948
3949append:
3950 fr_dcursor_append(out, vb);
3951
3952 return XLAT_ACTION_DONE;
3953}
3954
3955/** Return the current time as a #FR_TYPE_DATE
3956 *
3957 * Note that all operations are UTC.
3958 *
3959@verbatim
3960%time.now()
3961@endverbatim
3962 *
3963 * Example:
3964@verbatim
3965update reply {
3966 &Reply-Message := "%{%time.now() - %time.request()}"
3967}
3968@endverbatim
3969 *
3970 * @ingroup xlat_functions
3971 */
3972static xlat_action_t xlat_func_time_now(TALLOC_CTX *ctx, fr_dcursor_t *out,
3973 UNUSED xlat_ctx_t const *xctx,
3974 UNUSED request_t *request, UNUSED fr_value_box_list_t *args)
3975{
3976 fr_value_box_t *vb;
3977
3978 MEM(vb = fr_value_box_alloc(ctx, FR_TYPE_DATE, NULL));
3979 vb->vb_date = fr_time_to_unix_time(fr_time());
3980
3981 fr_dcursor_append(out, vb);
3982
3983 return XLAT_ACTION_DONE;
3984}
3985
3986/** Return the request receive time as a #FR_TYPE_DATE
3987 *
3988 * Note that all operations are UTC.
3989 *
3990@verbatim
3991%time.request()
3992@endverbatim
3993 *
3994 * Example:
3995@verbatim
3996update reply {
3997 &Reply-Message := "%{%time.now() - %time.request()}"
3998}
3999@endverbatim
4000 *
4001 * @ingroup xlat_functions
4002 */
4003static xlat_action_t xlat_func_time_request(TALLOC_CTX *ctx, fr_dcursor_t *out,
4004 UNUSED xlat_ctx_t const *xctx,
4005 request_t *request, UNUSED fr_value_box_list_t *args)
4006{
4007 fr_value_box_t *vb;
4008
4009 MEM(vb = fr_value_box_alloc(ctx, FR_TYPE_DATE, NULL));
4010 vb->vb_date = fr_time_to_unix_time(request->packet->timestamp);
4011
4012 fr_dcursor_append(out, vb);
4013
4014 return XLAT_ACTION_DONE;
4015}
4016
4017
4018/** Return the current time offset from gmt
4019 *
4020 * @ingroup xlat_functions
4021 */
4022static xlat_action_t xlat_func_time_offset(TALLOC_CTX *ctx, fr_dcursor_t *out,
4023 UNUSED xlat_ctx_t const *xctx,
4024 UNUSED request_t *request, UNUSED fr_value_box_list_t *args)
4025{
4026 fr_value_box_t *vb;
4027
4028 MEM(vb = fr_value_box_alloc(ctx, FR_TYPE_TIME_DELTA, NULL));
4029 vb->vb_time_delta = fr_time_gmtoff();
4030
4031 fr_dcursor_append(out, vb);
4032
4033 return XLAT_ACTION_DONE;
4034}
4035
4036
4037/** Return whether we are in daylight savings or not
4038 *
4039 * @ingroup xlat_functions
4040 */
4041static xlat_action_t xlat_func_time_is_dst(TALLOC_CTX *ctx, fr_dcursor_t *out,
4042 UNUSED xlat_ctx_t const *xctx,
4043 UNUSED request_t *request, UNUSED fr_value_box_list_t *args)
4044{
4045 fr_value_box_t *vb;
4046
4047 MEM(vb = fr_value_box_alloc(ctx, FR_TYPE_BOOL, NULL));
4048 vb->vb_bool = fr_time_is_dst();
4049
4050 fr_dcursor_append(out, vb);
4051
4052 return XLAT_ACTION_DONE;
4053}
4054
4055
4056/** Change case of a string
4057 *
4058 * If upper is true, change to uppercase, otherwise, change to lowercase
4059 */
4060static xlat_action_t xlat_change_case(TALLOC_CTX *ctx, fr_dcursor_t *out,
4061 UNUSED request_t *request, fr_value_box_list_t *args, bool upper)
4062{
4063 char *p;
4064 char const *end;
4065 fr_value_box_t *vb;
4066
4067 XLAT_ARGS(args, &vb);
4068
4069 p = UNCONST(char *, vb->vb_strvalue);
4070 end = p + vb->vb_length;
4071
4072 while (p < end) {
4073 *(p) = upper ? toupper ((int) *(p)) : tolower((uint8_t) *(p));
4074 p++;
4075 }
4076
4077 xlat_arg_copy_out(ctx, out, args, vb);
4078
4079 return XLAT_ACTION_DONE;
4080}
4081
4082static xlat_arg_parser_t const xlat_change_case_arg[] = {
4083 { .required = true, .concat = true, .type = FR_TYPE_STRING },
4084 XLAT_ARG_PARSER_TERMINATOR
4085};
4086
4087
4088/** Convert a string to lowercase
4089 *
4090 * Example:
4091@verbatim
4092%tolower("Bar") == "bar"
4093@endverbatim
4094 *
4095 * Probably only works for ASCII
4096 *
4097 * @ingroup xlat_functions
4098 */
4099static xlat_action_t xlat_func_tolower(TALLOC_CTX *ctx, fr_dcursor_t *out,
4100 UNUSED xlat_ctx_t const *xctx,
4101 request_t *request, fr_value_box_list_t *in)
4102{
4103 return xlat_change_case(ctx, out, request, in, false);
4104}
4105
4106
4107/** Convert a string to uppercase
4108 *
4109 * Example:
4110@verbatim
4111%toupper("Foo") == "FOO"
4112@endverbatim
4113 *
4114 * Probably only works for ASCII
4115 *
4116 * @ingroup xlat_functions
4117 */
4118static xlat_action_t xlat_func_toupper(TALLOC_CTX *ctx, fr_dcursor_t *out,
4119 UNUSED xlat_ctx_t const *xctx,
4120 request_t *request, fr_value_box_list_t *in)
4121{
4122 return xlat_change_case(ctx, out, request, in, true);
4123}
4124
4125
4126static xlat_arg_parser_t const xlat_func_urlquote_arg[] = {
4127 { .required = true, .concat = true, .type = FR_TYPE_STRING },
4128 XLAT_ARG_PARSER_TERMINATOR
4129};
4130
4131/** URLencode special characters
4132 *
4133 * Example:
4134@verbatim
4135%urlquote("http://example.org/") == "http%3A%47%47example.org%47"
4136@endverbatim
4137 *
4138 * @ingroup xlat_functions
4139 */
4140static xlat_action_t xlat_func_urlquote(TALLOC_CTX *ctx, fr_dcursor_t *out,
4141 UNUSED xlat_ctx_t const *xctx,
4142 UNUSED request_t *request, fr_value_box_list_t *args)
4143{
4144 char const *p, *end;
4145 char *buff_p;
4146 size_t outlen = 0;
4147 fr_value_box_t *vb;
4148 fr_value_box_t *in_head;
4149
4150 XLAT_ARGS(args, &in_head);
4151
4152 p = in_head->vb_strvalue;
4153 end = p + in_head->vb_length;
4154
4155 /*
4156 * Calculate size of output
4157 */
4158 while (p < end) {
4159 if (isalnum(*p) ||
4160 *p == '-' ||
4161 *p == '_' ||
4162 *p == '.' ||
4163 *p == '~') {
4164 outlen++;
4165 } else {
4166 outlen += 3;
4167 }
4168 p++;
4169 }
4170
4171 MEM(vb = fr_value_box_alloc_null(ctx));
4172 MEM(fr_value_box_bstr_alloc(vb, &buff_p, vb, NULL, outlen, false) == 0);
4173 fr_value_box_safety_copy(vb, in_head);
4174
4175 /* Reset p to start position */
4176 p = in_head->vb_strvalue;
4177
4178 while (p < end) {
4179 if (isalnum(*p)) {
4180 *buff_p++ = *p++;
4181 continue;
4182 }
4183
4184 switch (*p) {
4185 case '-':
4186 case '_':
4187 case '.':
4188 case '~':
4189 *buff_p++ = *p++;
4190 break;
4191
4192 default:
4193 /* MUST be upper case hex to be compliant */
4194 snprintf(buff_p, 4, "%%%02X", (uint8_t) *p++); /* %XX */
4195
4196 buff_p += 3;
4197 }
4198 }
4199
4200 *buff_p = '\0';
4201
4202 // @todo - mark as safe for URL?
4203 fr_dcursor_append(out, vb);
4204
4205 return XLAT_ACTION_DONE;
4206}
4207
4208
4209static xlat_arg_parser_t const xlat_func_urlunquote_arg[] = {
4210 { .required = true, .concat = true, .type = FR_TYPE_STRING },
4211 XLAT_ARG_PARSER_TERMINATOR
4212};
4213
4214/** URLdecode special characters
4215 *
4216 * @note Remember to escape % with %% in strings, else xlat will try to parse it.
4217 *
4218 * Example:
4219@verbatim
4220%urlunquote("http%%3A%%47%%47example.org%%47") == "http://example.org/"
4221@endverbatim
4222 *
4223 * @ingroup xlat_functions
4224 */
4225static xlat_action_t xlat_func_urlunquote(TALLOC_CTX *ctx, fr_dcursor_t *out,
4226 UNUSED xlat_ctx_t const *xctx,
4227 request_t *request, fr_value_box_list_t *args)
4228{
4229 char const *p, *end;
4230 char *buff_p;
4231 char *c1, *c2;
4232 size_t outlen = 0;
4233 fr_value_box_t *vb;
4234 fr_value_box_t *in_head;
4235
4236 XLAT_ARGS(args, &in_head);
4237
4238 p = in_head->vb_strvalue;
4239 end = p + in_head->vb_length;
4240
4241 /*
4242 * Calculate size of output
4243 */
4244 while (p < end) {
4245 if (*p == '%') {
4246 p += 3;
4247 } else {
4248 p++;
4249 }
4250 outlen++;
4251 }
4252
4253 MEM(vb = fr_value_box_alloc_null(ctx));
4254 MEM(fr_value_box_bstr_alloc(vb, &buff_p, vb, NULL, outlen, false) == 0);
4255 fr_value_box_safety_copy(vb, in_head);
4256
4257 /* Reset p to start position */
4258 p = in_head->vb_strvalue;
4259
4260 while (p < end) {
4261 if (*p != '%') {
4262 *buff_p++ = *p++;
4263 continue;
4264 }
4265 /* Is a % char */
4266
4267 /* Don't need \0 check, as it won't be in the hextab */
4268 if (!(c1 = memchr(hextab, tolower((uint8_t) *++p), 16)) ||
4269 !(c2 = memchr(hextab, tolower((uint8_t) *++p), 16))) {
4270 REMARKER(in_head->vb_strvalue, p - in_head->vb_strvalue, "Non-hex char in %% sequence");
4271 talloc_free(vb);
4272
4273 return XLAT_ACTION_FAIL;
4274 }
4275 p++;
4276 *buff_p++ = ((c1 - hextab) << 4) + (c2 - hextab);
4277 }
4278
4279 *buff_p = '\0';
4280 fr_dcursor_append(out, vb);
4281
4282 return XLAT_ACTION_DONE;
4283}
4284
4285static xlat_arg_parser_t const xlat_pair_decode_args[] = {
4286 { .required = true, .type = FR_TYPE_VOID },
4287 { .single = true, .type = FR_TYPE_ATTR },
4288 XLAT_ARG_PARSER_TERMINATOR
4289};
4290
4291/** Decode any protocol attribute / options
4292 *
4293 * Creates protocol-specific attributes based on the given binary option data
4294 *
4295 * Example:
4296@verbatim
4297%dhcpv4.decode(%{Tmp-Octets-0})
4298@endverbatim
4299 *
4300 * @ingroup xlat_functions
4301 */
4302static xlat_action_t xlat_pair_decode(TALLOC_CTX *ctx, fr_dcursor_t *out,
4303 xlat_ctx_t const *xctx,
4304 request_t *request, fr_value_box_list_t *in)
4305{
4306 int decoded;
4307 fr_value_box_t *vb, *in_head, *root_da;
4308 void *decode_ctx = NULL;
4309 xlat_pair_decode_uctx_t const *decode_uctx = talloc_get_type_abort(*(void * const *)xctx->inst, xlat_pair_decode_uctx_t);
4310 fr_test_point_pair_decode_t const *tp_decode = decode_uctx->tp_decode;
4311 fr_pair_t *vp = NULL;
4312 bool created = false;
4313
4314 XLAT_ARGS(in, &in_head, &root_da);
4315
4316 fr_assert(in_head->type == FR_TYPE_GROUP);
4317
4318 if (decode_uctx->dict && decode_uctx->dict != request->proto_dict) {
4319 REDEBUG2("Can't call %%%s() when in %s namespace", xctx->ex->call.func->name,
4320 fr_dict_root(request->proto_dict)->name);
4321 return XLAT_ACTION_FAIL;
4322 }
4323
4324 if (root_da) {
4325 int ret;
4326 if (!fr_type_is_structural(root_da->vb_attr->type)) {
4327 REDEBUG2("Decoding context must be a structural attribute reference");
4328 return XLAT_ACTION_FAIL;
4329 }
4330 ret = fr_pair_update_by_da_parent(fr_pair_list_parent(&request->request_pairs), &vp, root_da->vb_attr);
4331 if (ret < 0) {
4332 REDEBUG2("Failed creating decoding root pair");
4333 return XLAT_ACTION_FAIL;
4334 }
4335 if (ret == 0) created = true;
4336 }
4337
4338 if (tp_decode->test_ctx) {
4339 if (tp_decode->test_ctx(&decode_ctx, ctx, request->proto_dict, root_da ? root_da->vb_attr : NULL) < 0) {
4340 goto fail;
4341 }
4342 }
4343
4344 decoded = xlat_decode_value_box_list(root_da ? vp : request->request_ctx,
4345 root_da ? &vp->vp_group : &request->request_pairs,
4346 request, decode_ctx, tp_decode->func, &in_head->vb_group);
4347 if (decoded <= 0) {
4348 talloc_free(decode_ctx);
4349 RPERROR("Protocol decoding failed");
4350 fail:
4351 if (created) fr_pair_delete(&request->request_pairs, vp);
4352 return XLAT_ACTION_FAIL;
4353 }
4354
4355 /*
4356 * Create a value box to hold the decoded count, and add
4357 * it to the output list.
4358 */
4359 MEM(vb = fr_value_box_alloc(ctx, FR_TYPE_UINT32, NULL));
4360 vb->vb_uint32 = decoded;
4361 fr_dcursor_append(out, vb);
4362
4363 talloc_free(decode_ctx);
4364 return XLAT_ACTION_DONE;
4365}
4366
4367static xlat_arg_parser_t const xlat_func_subnet_args[] = {
4368 { .required = true, .single = true, .type = FR_TYPE_IPV4_PREFIX },
4369 XLAT_ARG_PARSER_TERMINATOR
4370};
4371
4372/** Calculate the subnet mask from a IPv4 prefix
4373 *
4374 * Example:
4375@verbatim
4376%ip.v4.netmask(%{Network-Prefix})
4377@endverbatim
4378 *
4379 * @ingroup xlat_functions
4380 */
4381static xlat_action_t xlat_func_subnet_netmask(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx,
4382 UNUSED request_t *request, fr_value_box_list_t *args)
4383{
4384 fr_value_box_t *subnet, *vb;
4385 XLAT_ARGS(args, &subnet);
4386
4387 MEM(vb = fr_value_box_alloc(ctx, FR_TYPE_IPV4_ADDR, NULL));
4388 vb->vb_ipv4addr = htonl((uint32_t)0xffffffff << (32 - subnet->vb_ip.prefix));
4389 fr_dcursor_append(out, vb);
4390
4391 return XLAT_ACTION_DONE;
4392}
4393
4394/** Calculate the broadcast address from a IPv4 prefix
4395 *
4396 * Example:
4397@verbatim
4398%ip.v4.broadcast(%{Network-Prefix})
4399@endverbatim
4400 *
4401 * @ingroup xlat_functions
4402 */
4403static xlat_action_t xlat_func_subnet_broadcast(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx,
4404 UNUSED request_t *request, fr_value_box_list_t *args)
4405{
4406 fr_value_box_t *subnet, *vb;
4407 XLAT_ARGS(args, &subnet);
4408
4409 MEM(vb = fr_value_box_alloc(ctx, FR_TYPE_IPV4_ADDR, NULL));
4410 vb->vb_ipv4addr = htonl( ntohl(subnet->vb_ipv4addr) | (uint32_t)0xffffffff >> subnet->vb_ip.prefix);
4411 fr_dcursor_append(out, vb);
4412
4413 return XLAT_ACTION_DONE;
4414}
4415
4416static int xlat_pair_dencode_instantiate(xlat_inst_ctx_t const *mctx)
4417{
4418 *(void **) mctx->inst = mctx->uctx;
4419 return 0;
4420}
4421
4427
4428/** Encode protocol attributes / options
4429 *
4430 * Returns octet string created from the provided pairs
4431 *
4432 * Example:
4433@verbatim
4434%dhcpv4.encode(&request[*])
4435@endverbatim
4436 *
4437 * @ingroup xlat_functions
4438 */
4439static xlat_action_t xlat_pair_encode(TALLOC_CTX *ctx, fr_dcursor_t *out,
4440 xlat_ctx_t const *xctx,
4441 request_t *request, fr_value_box_list_t *args)
4442{
4443 fr_pair_t *vp;
4444 fr_dcursor_t *cursor;
4445 bool tainted = false, encode_children = false;
4446 fr_value_box_t *encoded;
4447
4448 fr_dbuff_t *dbuff;
4449 ssize_t len = 0;
4450 fr_value_box_t *in_head, *root_da;
4451 void *encode_ctx = NULL;
4452 fr_test_point_pair_encode_t const *tp_encode;
4453
4454 FR_DBUFF_TALLOC_THREAD_LOCAL(&dbuff, 2048, SIZE_MAX);
4455
4456 XLAT_ARGS(args, &in_head, &root_da);
4457
4458 memcpy(&tp_encode, xctx->inst, sizeof(tp_encode)); /* const issues */
4459
4460 cursor = fr_value_box_get_cursor(in_head);
4461
4462 /*
4463 * Create the encoding context.
4464 */
4465 if (tp_encode->test_ctx) {
4466 if (tp_encode->test_ctx(&encode_ctx, cursor, request->proto_dict, root_da ? root_da->vb_attr : NULL) < 0) {
4467 return XLAT_ACTION_FAIL;
4468 }
4469 }
4470
4471 if (root_da) {
4472 if (!fr_type_is_structural(root_da->vb_attr->type)) {
4473 REDEBUG2("Encoding context must be a structural attribute reference");
4474 return XLAT_ACTION_FAIL;
4475 }
4476 vp = fr_dcursor_current(cursor);
4477 if (!fr_dict_attr_common_parent(root_da->vb_attr, vp->da, true) && (root_da->vb_attr != vp->da)) {
4478 REDEBUG2("%s is not a child of %s", vp->da->name, root_da->vb_attr->name);
4479 return XLAT_ACTION_FAIL;
4480 }
4481 if (root_da->vb_attr == vp->da) encode_children = true;
4482 }
4483
4484 /*
4485 * Loop over the attributes, encoding them.
4486 */
4487 RDEBUG2("Encoding attributes");
4488
4489 if (RDEBUG_ENABLED2) {
4490 RINDENT();
4491 for (vp = fr_dcursor_current(cursor);
4492 vp != NULL;
4493 vp = fr_dcursor_next(cursor)) {
4494 RDEBUG2("%pP", vp);
4495 }
4496 REXDENT();
4497 }
4498
4499 /*
4500 * Encoders advance the cursor, so we just need to feed
4501 * in the next pair. This was originally so we could
4502 * extend the output buffer, but with dbuffs that's
4503 * no longer necessary... we might want to refactor this
4504 * in future.
4505 */
4506 for (vp = fr_dcursor_head(cursor);
4507 vp != NULL;
4508 vp = fr_dcursor_current(cursor)) {
4509 /*
4510 *
4511 * Don't check for internal attributes, the
4512 * encoders can skip them if they need to, and the
4513 * internal encoder can encode anything, as can
4514 * things like CBOR.
4515 *
4516 * Don't check the dictionaries. By definition,
4517 * vp->da->dict==request->proto_dict, OR else we're
4518 * using the internal encoder and encoding a real
4519 * protocol.
4520 *
4521 * However, we likely still want a
4522 * dictionary-specific "is encodable" function,
4523 * as AKA/SIM and DHCPv6 encode "bool"s only if
4524 * their value is true.
4525 */
4526 if (encode_children) {
4527 fr_dcursor_t child_cursor;
4528
4529 fr_assert(fr_type_is_structural(vp->vp_type));
4530
4531 /*
4532 * If we're given an encoding context which is the
4533 * same as the DA returned by the cursor, that means
4534 * encode the children.
4535 */
4536 fr_pair_dcursor_init(&child_cursor, &vp->vp_group);
4537 while (fr_dcursor_current(&child_cursor)) {
4538 len = tp_encode->func(dbuff, &child_cursor, encode_ctx);
4539 if (len < 0) break;
4540 }
4541 fr_dcursor_next(cursor);
4542 } else {
4543 len = tp_encode->func(dbuff, cursor, encode_ctx);
4544 }
4545 if (len < 0) {
4546 RPEDEBUG("Protocol encoding failed");
4547 return XLAT_ACTION_FAIL;
4548 }
4549
4550 tainted |= vp->vp_tainted;
4551 }
4552
4553 /*
4554 * Pass the options string back to the caller.
4555 */
4556 MEM(encoded = fr_value_box_alloc_null(ctx));
4557 fr_value_box_memdup(encoded, encoded, NULL, fr_dbuff_start(dbuff), fr_dbuff_used(dbuff), tainted);
4558 fr_dcursor_append(out, encoded);
4559
4560 return XLAT_ACTION_DONE;
4561}
4562
4563static int xlat_protocol_register_by_name(dl_t *dl, char const *name, fr_dict_t const *dict)
4564{
4565 fr_test_point_pair_decode_t *tp_decode;
4566 fr_test_point_pair_encode_t *tp_encode;
4567 xlat_pair_decode_uctx_t *decode_uctx;
4568 xlat_t *xlat;
4569 char buffer[256+32];
4570
4571 /*
4572 * See if there's a decode function for it.
4573 */
4574 snprintf(buffer, sizeof(buffer), "%s_tp_decode_pair", name);
4575 tp_decode = dlsym(dl->handle, buffer);
4576 if (tp_decode) {
4577 snprintf(buffer, sizeof(buffer), "%s.decode", name);
4578
4579 /* May be called multiple times, so just skip protocols we've already registered */
4580 if (xlat_func_find(buffer, -1)) return 1;
4581
4582 if (unlikely((xlat = xlat_func_register(NULL, buffer, xlat_pair_decode, FR_TYPE_UINT32)) == NULL)) return -1;
4583 xlat_func_args_set(xlat, xlat_pair_decode_args);
4584 decode_uctx = talloc(xlat, xlat_pair_decode_uctx_t);
4585 decode_uctx->tp_decode = tp_decode;
4586 decode_uctx->dict = dict;
4587 /* coverity[suspicious_sizeof] */
4588 xlat_func_instantiate_set(xlat, xlat_pair_dencode_instantiate, xlat_pair_decode_uctx_t *, NULL, decode_uctx);
4589 xlat_func_flags_set(xlat, XLAT_FUNC_FLAG_INTERNAL);
4590 }
4591
4592 /*
4593 * See if there's an encode function for it.
4594 */
4595 snprintf(buffer, sizeof(buffer), "%s_tp_encode_pair", name);
4596 tp_encode = dlsym(dl->handle, buffer);
4597 if (tp_encode) {
4598 snprintf(buffer, sizeof(buffer), "%s.encode", name);
4599
4600 if (xlat_func_find(buffer, -1)) return 1;
4601
4602 if (unlikely((xlat = xlat_func_register(NULL, buffer, xlat_pair_encode, FR_TYPE_OCTETS)) == NULL)) return -1;
4603 xlat_func_args_set(xlat, xlat_pair_encode_args);
4604 /* coverity[suspicious_sizeof] */
4605 xlat_func_instantiate_set(xlat, xlat_pair_dencode_instantiate, fr_test_point_pair_encode_t *, NULL, tp_encode);
4606 xlat_func_flags_set(xlat, XLAT_FUNC_FLAG_INTERNAL);
4607 }
4608
4609 return 0;
4610}
4611
4612static int xlat_protocol_register(fr_dict_t const *dict)
4613{
4614 dl_t *dl = fr_dict_dl(dict);
4615 char *p, name[256];
4616
4617 /*
4618 * No library for this protocol, skip it.
4619 *
4620 * Protocol TEST has no libfreeradius-test, so that's OK.
4621 */
4622 if (!dl) return 0;
4623
4624 strlcpy(name, fr_dict_root(dict)->name, sizeof(name));
4625 for (p = name; *p != '\0'; p++) {
4626 *p = tolower((uint8_t) *p);
4627 }
4628
4629 return xlat_protocol_register_by_name(dl, name, dict != fr_dict_internal() ? dict : NULL);
4630}
4631
4632static dl_loader_t *cbor_loader = NULL;
4633
4634static int xlat_protocol_register_cbor(void)
4635{
4636 dl_t *dl;
4637
4638 cbor_loader = dl_loader_init(NULL, NULL, false, false);
4639 if (!cbor_loader) return 0;
4640
4641 dl = dl_by_name(cbor_loader, "libfreeradius-cbor", NULL, false);
4642 if (!dl) return 0;
4643
4644 if (xlat_protocol_register_by_name(dl, "cbor", NULL) < 0) return -1;
4645
4646 return 0;
4647}
4648
4649
4650/** Register xlats for any loaded dictionaries
4651 */
4652int xlat_protocols_register(void)
4653{
4654 fr_dict_t *dict;
4655 fr_dict_global_ctx_iter_t iter;
4656
4657 for (dict = fr_dict_global_ctx_iter_init(&iter);
4658 dict != NULL;
4659 dict = fr_dict_global_ctx_iter_next(&iter)) {
4660 if (xlat_protocol_register(dict) < 0) return -1;
4661 }
4662
4663 /*
4664 * And the internal protocol, too.
4665 */
4666 if (xlat_protocol_register(fr_dict_internal()) < 0) return -1;
4667
4668 /*
4669 * And cbor stuff
4670 */
4671 if (xlat_protocol_register_cbor() < 0) return -1;
4672
4673 return 0;
4674}
4675
4676/** De-register all xlat functions we created
4677 *
4678 */
4679static int _xlat_global_free(UNUSED void *uctx)
4680{
4681 TALLOC_FREE(xlat_ctx);
4682 xlat_func_free();
4683 xlat_eval_free();
4684 talloc_free(cbor_loader);
4685
4686 return 0;
4687}
4688
4689/** Global initialisation for xlat
4690 *
4691 * @note Free memory with #xlat_free
4692 *
4693 * @return
4694 * - 0 on success.
4695 * - -1 on failure.
4696 *
4697 * @hidecallgraph
4698 */
4699static int _xlat_global_init(UNUSED void *uctx)
4700{
4701 xlat_t *xlat;
4702
4703 xlat_ctx = talloc_init("xlat");
4704 if (!xlat_ctx) return -1;
4705
4706 if (xlat_func_init() < 0) return -1;
4707
4708 /*
4709 * Lookup attributes used by virtual xlat expansions.
4710 */
4711 if (xlat_eval_init() < 0) return -1;
4712
4713 /*
4714 * Registers async xlat operations in the `unlang` interpreter.
4715 */
4716 unlang_xlat_init();
4717
4718 /*
4719 * These are all "pure" functions.
4720 */
4721#define XLAT_REGISTER_ARGS(_xlat, _func, _return_type, _args) \
4722do { \
4723 if (unlikely((xlat = xlat_func_register(xlat_ctx, _xlat, _func, _return_type)) == NULL)) return -1; \
4724 xlat_func_args_set(xlat, _args); \
4725 xlat_func_flags_set(xlat, XLAT_FUNC_FLAG_PURE | XLAT_FUNC_FLAG_INTERNAL); \
4726} while (0)
4727
4728#define XLAT_NEW(_x) xlat->replaced_with = _x
4729
4730 XLAT_REGISTER_ARGS("cast", xlat_func_cast, FR_TYPE_VOID, xlat_func_cast_args);
4731
4732 XLAT_REGISTER_ARGS("str.concat", xlat_func_concat, FR_TYPE_STRING, xlat_func_concat_args);
4733 XLAT_REGISTER_ARGS("concat", xlat_func_concat, FR_TYPE_STRING, xlat_func_concat_args);
4734 XLAT_NEW("str.concat");
4735
4736 XLAT_REGISTER_ARGS("str.split", xlat_func_explode, FR_TYPE_STRING, xlat_func_explode_args);
4737 XLAT_REGISTER_ARGS("explode", xlat_func_explode, FR_TYPE_STRING, xlat_func_explode_args);
4738 XLAT_NEW("str.split");
4739
4740 XLAT_REGISTER_ARGS("file.escape", xlat_transparent, FR_TYPE_STRING, xlat_func_file_name_args);
4741
4742 XLAT_REGISTER_ARGS("hmac.md5", xlat_func_hmac_md5, FR_TYPE_OCTETS, xlat_hmac_args);
4743 XLAT_REGISTER_ARGS("hmacmd5", xlat_func_hmac_md5, FR_TYPE_OCTETS, xlat_hmac_args);
4744 XLAT_NEW("hmac.md5");
4745
4746 XLAT_REGISTER_ARGS("hmac.sha1", xlat_func_hmac_sha1, FR_TYPE_OCTETS, xlat_hmac_args);
4747 XLAT_REGISTER_ARGS("hmacsha1", xlat_func_hmac_sha1, FR_TYPE_OCTETS, xlat_hmac_args);
4748 XLAT_NEW("hmac.sha1");
4749
4750 XLAT_REGISTER_ARGS("integer", xlat_func_integer, FR_TYPE_VOID, xlat_func_integer_args);
4751 xlat->deprecated = true;
4752
4753 XLAT_REGISTER_ARGS("join", xlat_func_join, FR_TYPE_VOID, xlat_func_join_args);
4754 XLAT_REGISTER_ARGS("ungroup", xlat_func_ungroup, FR_TYPE_VOID, xlat_func_join_args);
4755 xlat->deprecated = true;
4756
4757 XLAT_REGISTER_ARGS("length", xlat_func_length, FR_TYPE_SIZE, xlat_func_length_args);
4758
4759 XLAT_REGISTER_ARGS("str.lpad", xlat_func_lpad, FR_TYPE_STRING, xlat_func_pad_args);
4760 XLAT_REGISTER_ARGS("lpad", xlat_func_lpad, FR_TYPE_STRING, xlat_func_pad_args);
4761 XLAT_NEW("str.lpad");
4762
4763 XLAT_REGISTER_ARGS("str.rpad", xlat_func_rpad, FR_TYPE_STRING, xlat_func_pad_args);
4764 XLAT_REGISTER_ARGS("rpad", xlat_func_rpad, FR_TYPE_STRING, xlat_func_pad_args);
4765 XLAT_NEW("str.rpad");
4766
4767 XLAT_REGISTER_ARGS("str.substr", xlat_func_substr, FR_TYPE_VOID, xlat_func_substr_args);
4768 XLAT_REGISTER_ARGS("substr", xlat_func_substr, FR_TYPE_VOID, xlat_func_substr_args);
4769 XLAT_NEW("str.substr");
4770
4771 XLAT_REGISTER_ARGS("ip.v4.netmask", xlat_func_subnet_netmask, FR_TYPE_IPV4_ADDR, xlat_func_subnet_args);
4772 XLAT_REGISTER_ARGS("ip.v4.broadcast", xlat_func_subnet_broadcast, FR_TYPE_IPV4_ADDR, xlat_func_subnet_args);
4773
4774 /*
4775 * The inputs to these functions are variable.
4776 */
4777#undef XLAT_REGISTER_ARGS
4778#define XLAT_REGISTER_ARGS(_xlat, _func, _return_type, _args) \
4779do { \
4780 if (unlikely((xlat = xlat_func_register(xlat_ctx, _xlat, _func, _return_type)) == NULL)) return -1; \
4781 xlat_func_args_set(xlat, _args); \
4782 xlat_func_flags_set(xlat, XLAT_FUNC_FLAG_INTERNAL); \
4783} while (0)
4784
4785#undef XLAT_REGISTER_VOID
4786#define XLAT_REGISTER_VOID(_xlat, _func, _return_type) \
4787do { \
4788 if (unlikely((xlat = xlat_func_register(xlat_ctx, _xlat, _func, _return_type)) == NULL)) return -1; \
4789 xlat_func_flags_set(xlat, XLAT_FUNC_FLAG_INTERNAL); \
4790} while (0)
4791
4792 XLAT_REGISTER_ARGS("block", xlat_func_block, FR_TYPE_TIME_DELTA, xlat_func_block_args);
4793 XLAT_REGISTER_ARGS("debug", xlat_func_debug, FR_TYPE_INT8, xlat_func_debug_args);
4794 XLAT_REGISTER_ARGS("debug_attr", xlat_func_pairs_debug, FR_TYPE_NULL, xlat_pair_cursor_args);
4795 XLAT_NEW("pairs.debug");
4796
4797 XLAT_REGISTER_ARGS("file.exists", xlat_func_file_exists, FR_TYPE_BOOL, xlat_func_file_name_args);
4798 XLAT_REGISTER_ARGS("file.head", xlat_func_file_head, FR_TYPE_STRING, xlat_func_file_name_args);
4799 XLAT_REGISTER_ARGS("file.rm", xlat_func_file_rm, FR_TYPE_BOOL, xlat_func_file_name_args);
4800 XLAT_REGISTER_ARGS("file.touch", xlat_func_file_touch, FR_TYPE_BOOL, xlat_func_file_name_args);
4801 XLAT_REGISTER_ARGS("file.size", xlat_func_file_size, FR_TYPE_UINT64, xlat_func_file_name_args);
4802 XLAT_REGISTER_ARGS("file.tail", xlat_func_file_tail, FR_TYPE_STRING, xlat_func_file_name_count_args);
4803 XLAT_REGISTER_ARGS("file.cat", xlat_func_file_cat, FR_TYPE_OCTETS, xlat_func_file_cat_args);
4804 XLAT_REGISTER_ARGS("file.mkdir", xlat_func_file_mkdir, FR_TYPE_BOOL, xlat_func_file_name_args);
4805 XLAT_REGISTER_ARGS("file.rmdir", xlat_func_file_rmdir, FR_TYPE_BOOL, xlat_func_file_name_args);
4806
4807 XLAT_REGISTER_ARGS("immutable", xlat_func_immutable_attr, FR_TYPE_NULL, xlat_pair_cursor_args);
4808 XLAT_NEW("pairs.immutable");
4809 XLAT_REGISTER_ARGS("pairs.immutable", xlat_func_immutable_attr, FR_TYPE_NULL, xlat_pair_cursor_args);
4810
4811 XLAT_REGISTER_ARGS("log.debug", xlat_func_log_debug, FR_TYPE_NULL, xlat_func_log_arg);
4812 XLAT_REGISTER_ARGS("log.err", xlat_func_log_err, FR_TYPE_NULL, xlat_func_log_arg);
4813 XLAT_REGISTER_ARGS("log.info", xlat_func_log_info, FR_TYPE_NULL, xlat_func_log_arg);
4814 XLAT_REGISTER_ARGS("log.warn", xlat_func_log_warn, FR_TYPE_NULL, xlat_func_log_arg);
4815 XLAT_REGISTER_ARGS("log.destination", xlat_func_log_dst, FR_TYPE_STRING, xlat_func_log_dst_args);
4816
4817 XLAT_REGISTER_ARGS("nexttime", xlat_func_next_time, FR_TYPE_UINT64, xlat_func_next_time_args);
4818 XLAT_NEW("time.next");
4819 XLAT_REGISTER_ARGS("time.next", xlat_func_next_time, FR_TYPE_UINT64, xlat_func_next_time_args);
4820
4821 XLAT_REGISTER_ARGS("pairs", xlat_func_pairs_print, FR_TYPE_STRING, xlat_pair_cursor_args);
4822 XLAT_NEW("pairs.print");
4823 XLAT_REGISTER_ARGS("pairs.print", xlat_func_pairs_print, FR_TYPE_STRING, xlat_pair_cursor_args);
4824
4825 XLAT_REGISTER_ARGS("pairs.debug", xlat_func_pairs_debug, FR_TYPE_NULL, xlat_pair_cursor_args);
4826
4827 XLAT_REGISTER_ARGS("str.subst", xlat_func_subst, FR_TYPE_STRING, xlat_func_subst_args);
4828#ifdef HAVE_REGEX_PCRE2
4829 xlat_func_instantiate_set(xlat, xlat_instantiate_subst_regex, xlat_subst_regex_inst_t, NULL, NULL);
4830#endif
4831 XLAT_REGISTER_ARGS("subst", xlat_func_subst, FR_TYPE_STRING, xlat_func_subst_args);
4832 XLAT_NEW("str.subst");
4833#ifdef HAVE_REGEX_PCRE2
4834 xlat_func_instantiate_set(xlat, xlat_instantiate_subst_regex, xlat_subst_regex_inst_t, NULL, NULL);
4835#endif
4836
4837#ifndef NDEBUG
4838 XLAT_REGISTER_ARGS("signal.raise", xlat_func_signal_raise, FR_TYPE_STRING, xlat_func_signal_raise_args);
4839#endif
4840
4841 XLAT_REGISTER_ARGS("time", xlat_func_time, FR_TYPE_VOID, xlat_func_time_args);
4842 XLAT_REGISTER_VOID("time.now", xlat_func_time_now, FR_TYPE_DATE);
4843 XLAT_REGISTER_VOID("time.request", xlat_func_time_request, FR_TYPE_DATE);
4844 XLAT_REGISTER_VOID("time.offset", xlat_func_time_offset, FR_TYPE_TIME_DELTA);
4845 XLAT_REGISTER_VOID("time.is_dst", xlat_func_time_is_dst, FR_TYPE_BOOL);
4846
4847 XLAT_REGISTER_ARGS("base64.encode", xlat_func_base64_encode, FR_TYPE_STRING, xlat_func_base64_encode_arg);
4848 XLAT_REGISTER_ARGS("base64.decode", xlat_func_base64_decode, FR_TYPE_OCTETS, xlat_func_base64_decode_arg);
4849 XLAT_REGISTER_ARGS("rand", xlat_func_rand, FR_TYPE_UINT64, xlat_func_rand_arg);
4850
4851 XLAT_REGISTER_ARGS("str.rand", xlat_func_randstr, FR_TYPE_STRING, xlat_func_randstr_arg);
4852 XLAT_REGISTER_ARGS("randstr", xlat_func_randstr, FR_TYPE_STRING, xlat_func_randstr_arg);
4853 XLAT_NEW("str.rand");
4854
4855 XLAT_REGISTER_VOID("uuid.v4", xlat_func_uuid_v4, FR_TYPE_STRING);
4856 XLAT_REGISTER_VOID("uuid.v7", xlat_func_uuid_v7, FR_TYPE_STRING);
4857
4858 XLAT_REGISTER_ARGS("range", xlat_func_range, FR_TYPE_UINT64, xlat_func_range_arg);
4859
4860 if (unlikely((xlat = xlat_func_register(xlat_ctx, "untaint", xlat_func_untaint, FR_TYPE_VOID)) == NULL)) return -1;
4861 xlat_func_flags_set(xlat, XLAT_FUNC_FLAG_PURE | XLAT_FUNC_FLAG_INTERNAL);
4862 xlat_func_args_set(xlat, xlat_func_taint_args);
4863
4864 if (unlikely((xlat = xlat_func_register(xlat_ctx, "taint", xlat_func_taint, FR_TYPE_VOID)) == NULL)) return -1;
4865 xlat_func_flags_set(xlat, XLAT_FUNC_FLAG_PURE | XLAT_FUNC_FLAG_INTERNAL);
4866 xlat_func_args_set(xlat, xlat_func_taint_args);
4867
4868 /*
4869 * All of these functions are pure.
4870 */
4871#define XLAT_REGISTER_PURE(_xlat, _func, _return_type, _arg) \
4872do { \
4873 if (unlikely((xlat = xlat_func_register(xlat_ctx, _xlat, _func, _return_type)) == NULL)) return -1; \
4874 xlat_func_args_set(xlat, _arg); \
4875 xlat_func_flags_set(xlat, XLAT_FUNC_FLAG_PURE | XLAT_FUNC_FLAG_INTERNAL); \
4876} while (0)
4877
4878 XLAT_REGISTER_PURE("bin", xlat_func_bin, FR_TYPE_OCTETS, xlat_func_bin_arg);
4879 XLAT_REGISTER_PURE("hex", xlat_func_hex, FR_TYPE_STRING, xlat_func_hex_arg);
4880 XLAT_REGISTER_PURE("map", xlat_func_map, FR_TYPE_BOOL, xlat_func_map_arg);
4881 XLAT_REGISTER_PURE("hash.md4", xlat_func_md4, FR_TYPE_OCTETS, xlat_func_md4_arg);
4882 XLAT_REGISTER_PURE("md4", xlat_func_md4, FR_TYPE_OCTETS, xlat_func_md4_arg);
4883 XLAT_NEW("hash.md4");
4884
4885 XLAT_REGISTER_PURE("hash.md5", xlat_func_md5, FR_TYPE_OCTETS, xlat_func_md5_arg);
4886 XLAT_REGISTER_PURE("md5", xlat_func_md5, FR_TYPE_OCTETS, xlat_func_md5_arg);
4887 XLAT_NEW("hash.md4");
4888
4889 if (unlikely((xlat = xlat_func_register(xlat_ctx, "regex.match", xlat_func_regex, FR_TYPE_STRING)) == NULL)) return -1;
4890 xlat_func_args_set(xlat, xlat_func_regex_args);
4891 xlat_func_flags_set(xlat, XLAT_FUNC_FLAG_INTERNAL);
4892 if (unlikely((xlat = xlat_func_register(xlat_ctx, "regex", xlat_func_regex, FR_TYPE_STRING)) == NULL)) return -1;
4893 xlat_func_args_set(xlat, xlat_func_regex_args);
4894 xlat_func_flags_set(xlat, XLAT_FUNC_FLAG_INTERNAL);
4895 XLAT_NEW("regex.match");
4896
4897 {
4898 static xlat_arg_parser_t const xlat_regex_safe_args[] = {
4899 { .type = FR_TYPE_STRING, .variadic = true, .concat = true },
4900 XLAT_ARG_PARSER_TERMINATOR
4901 };
4902
4903 static xlat_arg_parser_t const xlat_regex_escape_args[] = {
4904 { .type = FR_TYPE_STRING,
4905 .func = regex_xlat_escape, .safe_for = FR_REGEX_SAFE_FOR, .always_escape = true,
4906 .variadic = true, .concat = true },
4907 XLAT_ARG_PARSER_TERMINATOR
4908 };
4909
4910 if (unlikely((xlat = xlat_func_register(xlat_ctx, "regex.safe",
4911 xlat_transparent, FR_TYPE_STRING)) == NULL)) return -1;
4912 xlat_func_flags_set(xlat, XLAT_FUNC_FLAG_INTERNAL);
4913 xlat_func_args_set(xlat, xlat_regex_safe_args);
4914 xlat_func_safe_for_set(xlat, FR_REGEX_SAFE_FOR);
4915
4916 if (unlikely((xlat = xlat_func_register(xlat_ctx, "regex.escape",
4917 xlat_transparent, FR_TYPE_STRING)) == NULL)) return -1;
4918 xlat_func_flags_set(xlat, XLAT_FUNC_FLAG_INTERNAL);
4919 xlat_func_args_set(xlat, xlat_regex_escape_args);
4920 xlat_func_safe_for_set(xlat, FR_REGEX_SAFE_FOR);
4921 }
4922
4923#define XLAT_REGISTER_HASH(_name, _func) do { \
4924 XLAT_REGISTER_PURE("hash." _name, _func, FR_TYPE_OCTETS, xlat_func_sha_arg); \
4925 XLAT_REGISTER_PURE(_name, _func, FR_TYPE_OCTETS, xlat_func_sha_arg); \
4926 XLAT_NEW("hash." _name); \
4927 } while (0)
4928
4929 XLAT_REGISTER_HASH("sha1", xlat_func_sha1);
4930
4931#ifdef HAVE_OPENSSL_EVP_H
4932 XLAT_REGISTER_HASH("sha2_224", xlat_func_sha2_224);
4933 XLAT_REGISTER_HASH("sha2_256", xlat_func_sha2_256);
4934 XLAT_REGISTER_HASH("sha2_384", xlat_func_sha2_384);
4935 XLAT_REGISTER_HASH("sha2_512", xlat_func_sha2_512);
4936 XLAT_REGISTER_HASH("sha2", xlat_func_sha2_256);
4937
4938# ifdef HAVE_EVP_BLAKE2S256
4939 XLAT_REGISTER_HASH("blake2s_256", xlat_func_blake2s_256);
4940# endif
4941# ifdef HAVE_EVP_BLAKE2B512
4942 XLAT_REGISTER_HASH("blake2b_512", xlat_func_blake2b_512);
4943# endif
4944
4945 XLAT_REGISTER_HASH("sha3_224", xlat_func_sha3_224);
4946 XLAT_REGISTER_HASH("sha3_256", xlat_func_sha3_256);
4947 XLAT_REGISTER_HASH("sha3_384", xlat_func_sha3_384);
4948 XLAT_REGISTER_HASH("sha3_512", xlat_func_sha3_512);
4949 XLAT_REGISTER_HASH("sha3", xlat_func_sha3_256);
4950#endif
4951
4952 XLAT_REGISTER_PURE("string", xlat_transparent, FR_TYPE_STRING, xlat_func_string_arg);
4953 xlat->deprecated = true;
4954 XLAT_REGISTER_PURE("strlen", xlat_func_strlen, FR_TYPE_SIZE, xlat_func_strlen_arg);
4955 XLAT_NEW("length");
4956
4957 XLAT_REGISTER_PURE("str.utf8", xlat_func_str_utf8, FR_TYPE_BOOL, xlat_func_str_utf8_arg);
4958 XLAT_REGISTER_PURE("str.printable", xlat_func_str_printable, FR_TYPE_BOOL, xlat_func_str_printable_arg);
4959
4960 XLAT_REGISTER_PURE("str.lower", xlat_func_tolower, FR_TYPE_STRING, xlat_change_case_arg);
4961 XLAT_REGISTER_PURE("tolower", xlat_func_tolower, FR_TYPE_STRING, xlat_change_case_arg);
4962 XLAT_NEW("str.lower");
4963
4964 XLAT_REGISTER_PURE("str.upper", xlat_func_toupper, FR_TYPE_STRING, xlat_change_case_arg);
4965 XLAT_REGISTER_PURE("toupper", xlat_func_toupper, FR_TYPE_STRING, xlat_change_case_arg);
4966 XLAT_NEW("str.upper");
4967
4968 XLAT_REGISTER_PURE("url.quote", xlat_func_urlquote, FR_TYPE_STRING, xlat_func_urlquote_arg);
4969 XLAT_REGISTER_PURE("urlquote", xlat_func_urlquote, FR_TYPE_STRING, xlat_func_urlquote_arg);
4970 XLAT_NEW("url.quote");
4971
4972 XLAT_REGISTER_PURE("url.unquote", xlat_func_urlunquote, FR_TYPE_STRING, xlat_func_urlunquote_arg);
4973 XLAT_REGISTER_PURE("urlunquote", xlat_func_urlunquote, FR_TYPE_STRING, xlat_func_urlunquote_arg);
4974 XLAT_NEW("url.unquote");
4975
4976 XLAT_REGISTER_PURE("eval", xlat_func_eval, FR_TYPE_VOID, xlat_func_eval_arg);
4977
4978 return xlat_register_expressions();
4979}
4980
4981int xlat_global_init(void)
4982{
4983 int ret;
4984 fr_atexit_global_once_ret(&ret, _xlat_global_init, _xlat_global_free, NULL);
4985 return ret;
4986}
buffer
static int const char char buffer[256]
Definition acutest.h:578
file
int const char * file
Definition acutest.h:704
args
va_list args
Definition acutest.h:772
fmt
static int const char * fmt
Definition acutest.h:575
fr_base16_encode
#define fr_base16_encode(_out, _in)
Definition base16.h:57
fr_base16_decode
#define fr_base16_decode(_err, _out, _in, _no_trailing)
Definition base16.h:95
fr_base64_encode
#define fr_base64_encode(_out, _in, _add_padding)
Definition base64.h:74
fr_base64_decode
#define fr_base64_decode(_out, _in, _expect_padding, _no_trailing)
Definition base64.h:81
FR_BASE64_DEC_LENGTH
#define FR_BASE64_DEC_LENGTH(_inlen)
Definition base64.h:44
FR_BASE64_ENC_LENGTH
#define FR_BASE64_ENC_LENGTH(_inlen)
Encode/decode binary data using printable characters (base64 format)
Definition base64.h:43
dl
static dl_t * dl
Definition fuzzer.c:43
stop
static bool stop
Definition radmin.c:70
UNCONST
#define UNCONST(_type, _ptr)
Remove const qualification from a pointer.
Definition build.h:167
RCSID
#define RCSID(id)
Definition build.h:487
L
#define L(_str)
Helper for initialising arrays of string literals.
Definition build.h:209
unlikely
#define unlikely(_x)
Definition build.h:383
UNUSED
#define UNUSED
Definition build.h:317
NUM_ELEMENTS
#define NUM_ELEMENTS(_t)
Definition build.h:339
fr_dbuff_used
#define fr_dbuff_used(_dbuff_or_marker)
Return the number of bytes remaining between the start of the dbuff or marker and the current positio...
Definition dbuff.h:777
fr_dbuff_start
#define fr_dbuff_start(_dbuff_or_marker)
Return the 'start' position of a dbuff or marker.
Definition dbuff.h:908
FR_DBUFF_TALLOC_THREAD_LOCAL
#define FR_DBUFF_TALLOC_THREAD_LOCAL(_out, _init, _max)
Create a function local and thread local extensible dbuff.
Definition dbuff.h:566
FR_DBUFF_TMP
#define FR_DBUFF_TMP(_start, _len_or_end)
Creates a compound literal to pass into functions which accept a dbuff.
Definition dbuff.h:524
fr_dcursor_next
static void * fr_dcursor_next(fr_dcursor_t *cursor)
Advanced the cursor to the next item.
Definition dcursor.h:290
fr_dcursor_append
static int fr_dcursor_append(fr_dcursor_t *cursor, void *v)
Insert a single item at the end of the list.
Definition dcursor.h:408
fr_dcursor_current
static void * fr_dcursor_current(fr_dcursor_t *cursor)
Return the item the cursor current points to.
Definition dcursor.h:339
fr_dcursor_head
static void * fr_dcursor_head(fr_dcursor_t *cursor)
Rewind cursor to the start of the list.
Definition dcursor.h:234
fr_dcursor_s
Definition dcursor.h:93
MEM
#define MEM(x)
Definition debug.h:36
fr_dict_global_ctx_iter_next
fr_dict_t * fr_dict_global_ctx_iter_next(fr_dict_global_ctx_iter_t *iter)
Definition dict_util.c:4905
fr_dict_vendor_t::name
char const * name
Vendor name.
Definition dict.h:276
fr_dict_attr_common_parent
fr_dict_attr_t const * fr_dict_attr_common_parent(fr_dict_attr_t const *a, fr_dict_attr_t const *b, bool is_ancestor)
Find a common ancestor that two TLV type attributes share.
Definition dict_util.c:2318
err
static fr_slen_t err
Definition dict.h:884
fr_dict_global_ctx_iter_init
fr_dict_t * fr_dict_global_ctx_iter_init(fr_dict_global_ctx_iter_t *iter)
Iterate protocols by name.
Definition dict_util.c:4898
fr_dict_root
fr_dict_attr_t const * fr_dict_root(fr_dict_t const *dict)
Return the root attribute of a dictionary.
Definition dict_util.c:2672
fr_dict_dl
dl_t * fr_dict_dl(fr_dict_t const *dict)
Definition dict_util.c:2682
fr_dict_vendor_t::pen
uint32_t pen
Private enterprise number.
Definition dict.h:272
fr_dict_internal
fr_dict_t const * fr_dict_internal(void)
Definition dict_util.c:4941
in
static fr_slen_t in
Definition dict.h:884
fr_dict_vendor_by_da
fr_dict_vendor_t const * fr_dict_vendor_by_da(fr_dict_attr_t const *da)
Look up a vendor by one of its child attributes.
Definition dict_util.c:2907
fr_dict_vendor_t
Private enterprise.
Definition dict.h:271
value
Test enumeration values.
Definition dict_test.h:92
dl_loader_init
dl_loader_t * dl_loader_init(TALLOC_CTX *ctx, void *uctx, bool uctx_free, bool defer_symbol_init)
Initialise structures needed by the dynamic linker.
Definition dl.c:900
dl_by_name
dl_t * dl_by_name(dl_loader_t *dl_loader, char const *name, void *uctx, bool uctx_free)
Search for a dl's shared object in various locations.
Definition dl.c:470
dl_loader_s
A dynamic loader.
Definition dl.c:81
dl_s::handle
void * handle
Handle returned by dlopen.
Definition dl.h:62
dl_s
Module handle.
Definition dl.h:58
fr_dlist_head
static void * fr_dlist_head(fr_dlist_head_t const *list_head)
Return the HEAD item of a list or NULL if the list is empty.
Definition dlist.h:468
fr_dlist_num_elements
static unsigned int fr_dlist_num_elements(fr_dlist_head_t const *head)
Return the number of elements in the dlist.
Definition dlist.h:921
fr_dlist_next
static void * fr_dlist_next(fr_dlist_head_t const *list_head, void const *ptr)
Get the next item in a list.
Definition dlist.h:537
my
void fr_bio_shutdown & my
Definition fd_errno.h:70
fr_mkdir
ssize_t fr_mkdir(int *fd_out, char const *path, ssize_t len, mode_t mode, fr_mkdir_func_t func, void *uctx)
Create directories that are missing in the specified path.
Definition file.c:219
xlat_func_time_now
static xlat_action_t xlat_func_time_now(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, UNUSED request_t *request, UNUSED fr_value_box_list_t *args)
Return the current time as a FR_TYPE_DATE.
Definition xlat_builtin.c:3972
xlat_func_next_time
static xlat_action_t xlat_func_next_time(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, request_t *request, fr_value_box_list_t *args)
Calculate number of seconds until the next n hour(s), day(s), week(s), year(s).
Definition xlat_builtin.c:1470
xlat_func_lpad
static xlat_action_t xlat_func_lpad(UNUSED TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, request_t *request, fr_value_box_list_t *args)
lpad a string
Definition xlat_builtin.c:1674
xlat_func_bin
static xlat_action_t xlat_func_bin(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, request_t *request, fr_value_box_list_t *args)
Convert hex string to binary.
Definition xlat_builtin.c:1963
xlat_func_pairs_debug
static xlat_action_t xlat_func_pairs_debug(UNUSED TALLOC_CTX *ctx, UNUSED fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, request_t *request, fr_value_box_list_t *args)
Print out attribute info.
Definition xlat_builtin.c:288
xlat_func_subst
static xlat_action_t xlat_func_subst(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, request_t *request, fr_value_box_list_t *args)
Perform regex substitution.
Definition xlat_builtin.c:3695
xlat_func_urlunquote
static xlat_action_t xlat_func_urlunquote(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, request_t *request, fr_value_box_list_t *args)
URLdecode special characters.
Definition xlat_builtin.c:4225
xlat_pair_decode
static xlat_action_t xlat_pair_decode(TALLOC_CTX *ctx, fr_dcursor_t *out, xlat_ctx_t const *xctx, request_t *request, fr_value_box_list_t *in)
Decode any protocol attribute / options.
Definition xlat_builtin.c:4302
xlat_func_base64_decode
static xlat_action_t xlat_func_base64_decode(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, request_t *request, fr_value_box_list_t *args)
Decode base64 string.
Definition xlat_builtin.c:1904
xlat_func_hmac_md5
static xlat_action_t xlat_func_hmac_md5(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, UNUSED request_t *request, fr_value_box_list_t *in)
Generate the HMAC-MD5 of a string or attribute.
Definition xlat_builtin.c:2336
xlat_func_base64_encode
static xlat_action_t xlat_func_base64_encode(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, request_t *request, fr_value_box_list_t *args)
Encode string or attribute as base64.
Definition xlat_builtin.c:1856
xlat_func_log_info
static xlat_action_t xlat_func_log_info(UNUSED TALLOC_CTX *ctx, UNUSED fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, request_t *request, fr_value_box_list_t *args)
Log something at INFO level.
Definition xlat_builtin.c:1203
xlat_func_log_warn
static xlat_action_t xlat_func_log_warn(UNUSED TALLOC_CTX *ctx, UNUSED fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, request_t *request, fr_value_box_list_t *args)
Log something at WARN level.
Definition xlat_builtin.c:1278
xlat_func_map
static xlat_action_t xlat_func_map(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, request_t *request, fr_value_box_list_t *args)
Processes fmt as a map string and applies it to the current request.
Definition xlat_builtin.c:1385
xlat_func_debug
static xlat_action_t xlat_func_debug(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, request_t *request, fr_value_box_list_t *args)
Dynamically change the debugging level for the current request.
Definition xlat_builtin.c:97
xlat_func_log_debug
static xlat_action_t xlat_func_log_debug(UNUSED TALLOC_CTX *ctx, UNUSED fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, request_t *request, fr_value_box_list_t *args)
Log something at DEBUG level.
Definition xlat_builtin.c:1228
xlat_func_log_dst
static xlat_action_t xlat_func_log_dst(UNUSED TALLOC_CTX *ctx, UNUSED fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, request_t *request, fr_value_box_list_t *args)
Change the log destination to the named one.
Definition xlat_builtin.c:1315
xlat_func_string_arg
static xlat_arg_parser_t const xlat_func_string_arg[]
Calculate any digest supported by OpenSSL EVP_MD.
Definition xlat_builtin.c:3278
xlat_func_block
static xlat_action_t xlat_func_block(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, UNUSED request_t *request, fr_value_box_list_t *args)
Block for the specified duration.
Definition xlat_builtin.c:2034
xlat_func_concat
static xlat_action_t xlat_func_concat(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, request_t *request, fr_value_box_list_t *args)
Concatenate string representation of values of given attributes using separator.
Definition xlat_builtin.c:2207
xlat_func_urlquote
static xlat_action_t xlat_func_urlquote(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, UNUSED request_t *request, fr_value_box_list_t *args)
URLencode special characters.
Definition xlat_builtin.c:4140
xlat_func_rpad
static xlat_action_t xlat_func_rpad(UNUSED TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, request_t *request, fr_value_box_list_t *args)
Right pad a string.
Definition xlat_builtin.c:1772
xlat_func_md4
static xlat_action_t xlat_func_md4(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, UNUSED request_t *request, fr_value_box_list_t *args)
Calculate the MD4 hash of a string or attribute.
Definition xlat_builtin.c:2466
xlat_func_explode
static xlat_action_t xlat_func_explode(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, request_t *request, fr_value_box_list_t *args)
Split a string into multiple new strings based on a delimiter.
Definition xlat_builtin.c:953
xlat_func_pairs_print
static xlat_action_t xlat_func_pairs_print(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, request_t *request, fr_value_box_list_t *args)
Encode attributes as a series of string attribute/value pairs.
Definition xlat_builtin.c:2547
xlat_func_time_request
static xlat_action_t xlat_func_time_request(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, request_t *request, UNUSED fr_value_box_list_t *args)
Return the request receive time as a FR_TYPE_DATE.
Definition xlat_builtin.c:4003
xlat_func_regex
static xlat_action_t xlat_func_regex(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, request_t *request, fr_value_box_list_t *in)
Get named subcapture value from previous regex.
Definition xlat_builtin.c:3071
xlat_func_substr
static xlat_action_t xlat_func_substr(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, request_t *request, fr_value_box_list_t *args)
Extract a substring from string / octets data.
Definition xlat_builtin.c:3437
xlat_func_length
static xlat_action_t xlat_func_length(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, UNUSED request_t *request, fr_value_box_list_t *in)
Return the on-the-wire size of the boxes in bytes.
Definition xlat_builtin.c:2435
xlat_func_immutable_attr
static xlat_action_t xlat_func_immutable_attr(UNUSED TALLOC_CTX *ctx, UNUSED fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, request_t *request, fr_value_box_list_t *args)
Mark one or more attributes as immutable.
Definition xlat_builtin.c:1035
xlat_func_rand
static xlat_action_t xlat_func_rand(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, UNUSED request_t *request, fr_value_box_list_t *in)
Generate a random integer value.
Definition xlat_builtin.c:2597
xlat_pair_encode
static xlat_action_t xlat_pair_encode(TALLOC_CTX *ctx, fr_dcursor_t *out, xlat_ctx_t const *xctx, request_t *request, fr_value_box_list_t *args)
Encode protocol attributes / options.
Definition xlat_builtin.c:4439
xlat_func_log_err
static xlat_action_t xlat_func_log_err(UNUSED TALLOC_CTX *ctx, UNUSED fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, request_t *request, fr_value_box_list_t *args)
Log something at DEBUG level.
Definition xlat_builtin.c:1253
xlat_func_hmac_sha1
static xlat_action_t xlat_func_hmac_sha1(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, UNUSED request_t *request, fr_value_box_list_t *in)
Generate the HMAC-SHA1 of a string or attribute.
Definition xlat_builtin.c:2354
xlat_func_eval
static xlat_action_t xlat_func_eval(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, request_t *request, fr_value_box_list_t *args)
Dynamically evaluate an expansion string.
Definition xlat_builtin.c:1576
xlat_func_time_is_dst
static xlat_action_t xlat_func_time_is_dst(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, UNUSED request_t *request, UNUSED fr_value_box_list_t *args)
Return whether we are in daylight savings or not.
Definition xlat_builtin.c:4041
xlat_func_integer
static xlat_action_t xlat_func_integer(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, request_t *request, fr_value_box_list_t *args)
Print data as integer, not as VALUE.
Definition xlat_builtin.c:1076
xlat_func_time
static xlat_action_t xlat_func_time(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, request_t *request, fr_value_box_list_t *args)
Return the time as a FR_TYPE_DATE.
Definition xlat_builtin.c:3878
xlat_func_toupper
static xlat_action_t xlat_func_toupper(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, request_t *request, fr_value_box_list_t *in)
Convert a string to uppercase.
Definition xlat_builtin.c:4118
xlat_func_uuid_v7
static xlat_action_t xlat_func_uuid_v7(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, UNUSED request_t *request, UNUSED fr_value_box_list_t *args)
Generate a version 7 UUID.
Definition xlat_builtin.c:2926
xlat_func_uuid_v4
static xlat_action_t xlat_func_uuid_v4(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, UNUSED request_t *request, UNUSED fr_value_box_list_t *args)
Generate a version 4 UUID.
Definition xlat_builtin.c:2889
xlat_func_cast
static xlat_action_t xlat_func_cast(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, request_t *request, fr_value_box_list_t *args)
Cast one or more output value-boxes to the given type.
Definition xlat_builtin.c:2074
xlat_func_hex
static xlat_action_t xlat_func_hex(UNUSED TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, UNUSED request_t *request, fr_value_box_list_t *args)
Print data as hex, not as VALUE.
Definition xlat_builtin.c:2256
xlat_func_md5
static xlat_action_t xlat_func_md5(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, UNUSED request_t *request, fr_value_box_list_t *args)
Calculate the MD5 hash of a string or attribute.
Definition xlat_builtin.c:2506
xlat_func_subnet_netmask
static xlat_action_t xlat_func_subnet_netmask(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, UNUSED request_t *request, fr_value_box_list_t *args)
Calculate the subnet mask from a IPv4 prefix.
Definition xlat_builtin.c:4381
xlat_func_sha1
static xlat_action_t xlat_func_sha1(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, UNUSED request_t *request, fr_value_box_list_t *args)
Calculate the SHA1 hash of a string or attribute.
Definition xlat_builtin.c:3178
xlat_func_str_printable
static xlat_action_t xlat_func_str_printable(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, UNUSED request_t *request, fr_value_box_list_t *args)
Return whether a string has only printable chars.
Definition xlat_builtin.c:3342
xlat_func_range
static xlat_action_t xlat_func_range(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, request_t *request, fr_value_box_list_t *args)
Generate a range of uint64 numbers.
Definition xlat_builtin.c:2979
xlat_func_randstr
static xlat_action_t xlat_func_randstr(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, request_t *request, fr_value_box_list_t *args)
Generate a string of random chars.
Definition xlat_builtin.c:2652
xlat_func_tolower
static xlat_action_t xlat_func_tolower(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, request_t *request, fr_value_box_list_t *in)
Convert a string to lowercase.
Definition xlat_builtin.c:4099
xlat_func_subnet_broadcast
static xlat_action_t xlat_func_subnet_broadcast(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, UNUSED request_t *request, fr_value_box_list_t *args)
Calculate the broadcast address from a IPv4 prefix.
Definition xlat_builtin.c:4403
xlat_func_str_utf8
static xlat_action_t xlat_func_str_utf8(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, UNUSED request_t *request, fr_value_box_list_t *args)
Return whether a string is valid UTF-8.
Definition xlat_builtin.c:3398
xlat_func_time_offset
static xlat_action_t xlat_func_time_offset(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, UNUSED request_t *request, UNUSED fr_value_box_list_t *args)
Return the current time offset from gmt.
Definition xlat_builtin.c:4022
xlat_func_strlen
static xlat_action_t xlat_func_strlen(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, UNUSED request_t *request, fr_value_box_list_t *args)
Print length of given string.
Definition xlat_builtin.c:3299
fr_hash_iter_s
Stores the state of the current iteration operation.
Definition hash.h:41
talloc_free
talloc_free(hp)
fr_hmac_md5
int fr_hmac_md5(uint8_t digest[MD5_DIGEST_LENGTH], uint8_t const *in, size_t inlen, uint8_t const *key, size_t key_len)
Calculate HMAC using internal MD5 implementation.
Definition hmac_md5.c:119
fr_hmac_sha1
int fr_hmac_sha1(uint8_t digest[static SHA1_DIGEST_LENGTH], uint8_t const *in, size_t inlen, uint8_t const *key, size_t key_len)
Calculate HMAC using internal SHA1 implementation.
Definition hmac_sha1.c:124
unlang_interpret_frame_talloc_ctx
TALLOC_CTX * unlang_interpret_frame_talloc_ctx(request_t *request)
Get a talloc_ctx which is valid only for this frame.
Definition interpret.c:1676
unlang_interpret_event_list
fr_event_list_t * unlang_interpret_event_list(request_t *request)
Get the event list for the current interpreter.
Definition interpret.c:2044
UNLANG_SUB_FRAME
#define UNLANG_SUB_FRAME
Definition interpret.h:37
unlang_result_t
Definition interpret.h:133
log_dst_by_name
fr_log_t * log_dst_by_name(char const *name)
Get a logging destination by name.
Definition log.c:1064
PERROR
#define PERROR(_fmt,...)
Definition log.h:228
REXDENT
#define REXDENT()
Exdent (unindent) R* messages by one level.
Definition log.h:455
RWDEBUG
#define RWDEBUG(fmt,...)
Definition log.h:373
RDEBUG_ENABLED3
#define RDEBUG_ENABLED3
True if request debug level 1-3 messages are enabled.
Definition log.h:347
REDEBUG3
#define REDEBUG3(fmt,...)
Definition log.h:385
RERROR
#define RERROR(fmt,...)
Definition log.h:310
RPERROR
#define RPERROR(fmt,...)
Definition log.h:314
REMARKER
#define REMARKER(_str, _marker_idx, _marker,...)
Output string with error marker, showing where format error occurred.
Definition log.h:510
RINFO
#define RINFO(fmt,...)
Definition log.h:308
RMARKER
#define RMARKER(_type, _lvl, _str, _marker_idx, _marker,...)
Output string with error marker, showing where format error occurred.
Definition log.h:481
RPEDEBUG
#define RPEDEBUG(fmt,...)
Definition log.h:388
RDEBUG4
#define RDEBUG4(fmt,...)
Definition log.h:356
RDEBUG_ENABLED4
#define RDEBUG_ENABLED4
True if request debug level 1-4 messages are enabled.
Definition log.h:348
RIDEBUG2
#define RIDEBUG2(fmt,...)
Definition log.h:364
REDEBUG2
#define REDEBUG2(fmt,...)
Definition log.h:384
RIDEBUG3
#define RIDEBUG3(fmt,...)
Definition log.h:365
RINDENT
#define RINDENT()
Indent R* messages by one level.
Definition log.h:442
map_to_vp
int map_to_vp(TALLOC_CTX *ctx, fr_pair_list_t *out, request_t *request, map_t const *map, UNUSED void *uctx)
Convert a map to a fr_pair_t.
Definition map.c:1596
map_to_request
int map_to_request(request_t *request, map_t const *map, radius_map_getvalue_t func, void *ctx)
Convert map_t to fr_pair_t (s) and add them to a request_t.
Definition map.c:1876
map_afrom_attr_str
int map_afrom_attr_str(TALLOC_CTX *ctx, map_t **out, char const *vp_str, tmpl_rules_t const *lhs_rules, tmpl_rules_t const *rhs_rules)
Convert a value pair string to valuepair map.
Definition map.c:1431
L_DST_NULL
@ L_DST_NULL
Discard log messages.
Definition log.h:83
L_DST_FILES
@ L_DST_FILES
Log to a file on disk.
Definition log.h:79
L_DBG_LVL_DISABLE
@ L_DBG_LVL_DISABLE
Don't print messages.
Definition log.h:68
L_DBG_LVL_2
@ L_DBG_LVL_2
2nd highest priority debug messages (-xx | -X).
Definition log.h:71
L_DBG_LVL_MAX
@ L_DBG_LVL_MAX
Lowest priority debug messages (-xxxxx | -Xxxx).
Definition log.h:74
L_WARN
@ L_WARN
Warning.
Definition log.h:57
fr_md4_calc
void fr_md4_calc(uint8_t out[static MD4_DIGEST_LENGTH], uint8_t const *in, size_t inlen)
Calculate the MD4 hash of the contents of a buffer.
Definition md4.c:471
MD4_DIGEST_LENGTH
#define MD4_DIGEST_LENGTH
Definition md4.h:25
MD5_DIGEST_LENGTH
#define MD5_DIGEST_LENGTH
Definition merged_model.c:242
uint16_t
unsigned short uint16_t
Definition merged_model.c:31
fr_type_t
fr_type_t
Definition merged_model.c:80
FR_TYPE_TIME_DELTA
@ FR_TYPE_TIME_DELTA
A period of time measured in nanoseconds.
Definition merged_model.c:113
FR_TYPE_FLOAT32
@ FR_TYPE_FLOAT32
Single precision floating point.
Definition merged_model.c:108
FR_TYPE_IPV4_ADDR
@ FR_TYPE_IPV4_ADDR
32 Bit IPv4 Address.
Definition merged_model.c:86
FR_TYPE_INT8
@ FR_TYPE_INT8
8 Bit signed integer.
Definition merged_model.c:103
FR_TYPE_ETHERNET
@ FR_TYPE_ETHERNET
48 Bit Mac-Address.
Definition merged_model.c:93
FR_TYPE_IPV6_PREFIX
@ FR_TYPE_IPV6_PREFIX
IPv6 Prefix.
Definition merged_model.c:89
FR_TYPE_STRING
@ FR_TYPE_STRING
String of printable characters.
Definition merged_model.c:83
FR_TYPE_NULL
@ FR_TYPE_NULL
Invalid (uninitialised) attribute type.
Definition merged_model.c:81
FR_TYPE_UINT16
@ FR_TYPE_UINT16
16 Bit unsigned integer.
Definition merged_model.c:98
FR_TYPE_INT64
@ FR_TYPE_INT64
64 Bit signed integer.
Definition merged_model.c:106
FR_TYPE_INT16
@ FR_TYPE_INT16
16 Bit signed integer.
Definition merged_model.c:104
FR_TYPE_DATE
@ FR_TYPE_DATE
Unix time stamp, always has value >2^31.
Definition merged_model.c:111
FR_TYPE_COMBO_IP_PREFIX
@ FR_TYPE_COMBO_IP_PREFIX
IPv4 or IPv6 address prefix depending on length.
Definition merged_model.c:92
FR_TYPE_UINT8
@ FR_TYPE_UINT8
8 Bit unsigned integer.
Definition merged_model.c:97
FR_TYPE_UINT32
@ FR_TYPE_UINT32
32 Bit unsigned integer.
Definition merged_model.c:99
FR_TYPE_INT32
@ FR_TYPE_INT32
32 Bit signed integer.
Definition merged_model.c:105
FR_TYPE_UINT64
@ FR_TYPE_UINT64
64 Bit unsigned integer.
Definition merged_model.c:100
FR_TYPE_IPV6_ADDR
@ FR_TYPE_IPV6_ADDR
128 Bit IPv6 Address.
Definition merged_model.c:88
FR_TYPE_IPV4_PREFIX
@ FR_TYPE_IPV4_PREFIX
IPv4 Prefix.
Definition merged_model.c:87
FR_TYPE_VOID
@ FR_TYPE_VOID
User data.
Definition merged_model.c:127
FR_TYPE_BOOL
@ FR_TYPE_BOOL
A truth value.
Definition merged_model.c:95
FR_TYPE_SIZE
@ FR_TYPE_SIZE
Unsigned integer capable of representing any memory address on the local system.
Definition merged_model.c:115
FR_TYPE_COMBO_IP_ADDR
@ FR_TYPE_COMBO_IP_ADDR
IPv4 or IPv6 address depending on length.
Definition merged_model.c:91
FR_TYPE_IFID
@ FR_TYPE_IFID
Interface ID.
Definition merged_model.c:90
FR_TYPE_OCTETS
@ FR_TYPE_OCTETS
Raw octets.
Definition merged_model.c:84
FR_TYPE_GROUP
@ FR_TYPE_GROUP
A grouping of other attributes.
Definition merged_model.c:124
FR_TYPE_FLOAT64
@ FR_TYPE_FLOAT64
Double precision floating point.
Definition merged_model.c:109
uint32_t
unsigned int uint32_t
Definition merged_model.c:33
ssize_t
long int ssize_t
Definition merged_model.c:24
fr_md5_calc
void fr_md5_calc(uint8_t out[static MD5_DIGEST_LENGTH], uint8_t const *in, size_t inlen)
Perform a single digest operation on a single input buffer.
Definition merged_model.c:245
uint8_t
unsigned char uint8_t
Definition merged_model.c:30
fr_slen_t
ssize_t fr_slen_t
Definition merged_model.c:35
off_t
long long int off_t
Definition merged_model.c:22
size_t
unsigned long int size_t
Definition merged_model.c:25
fr_sbuff_parse_error_t
fr_sbuff_parse_error_t
Definition merged_model.c:45
fr_dbuff_t
Definition merged_model.c:41
fr_dict_attr_t
Definition merged_model.c:133
fr_dict_t
Definition merged_model.c:198
fr_sbuff_escape_rules_t
Definition merged_model.c:228
fr_sbuff_t
Definition merged_model.c:37
fr_value_box_t
Definition merged_model.c:136
request_t
Definition merged_model.c:210
fr_snprint_uint128
size_t fr_snprint_uint128(char *out, size_t outlen, uint128_t const num)
Write 128bit unsigned integer to buffer.
Definition misc.c:402
gmtime_r
struct tm * gmtime_r(time_t const *l_clock, struct tm *result)
Definition missing.c:201
localtime_r
struct tm * localtime_r(time_t const *l_clock, struct tm *result)
Definition missing.c:163
fr_pair_list_parent
fr_pair_t * fr_pair_list_parent(fr_pair_list_t const *list)
Return a pointer to the parent pair which contains this list.
Definition pair.c:966
fr_pair_update_by_da_parent
int fr_pair_update_by_da_parent(fr_pair_t *parent, fr_pair_t **out, fr_dict_attr_t const *da)
Return the first fr_pair_t matching the fr_dict_attr_t or alloc a new fr_pair_t and its subtree (and ...
Definition pair.c:1598
fr_pair_delete
int fr_pair_delete(fr_pair_list_t *list, fr_pair_t *vp)
Remove fr_pair_t from a list and free.
Definition pair.c:1829
fr_utf8_str
fr_slen_t fr_utf8_str(uint8_t const *str, ssize_t inlen)
Validate a complete UTF8 string.
Definition print.c:153
fr_utf8_char
size_t fr_utf8_char(uint8_t const *str, ssize_t inlen)
Checks for utf-8, taken from http://www.w3.org/International/questions/qa-forms-utf-8.
Definition print.c:39
encode_ctx
static fr_internal_encode_ctx_t encode_ctx
Definition proto_ldap_sync.c:34
fr_assert
#define fr_assert(_expr)
Definition rad_assert.h:38
done
static bool done
Definition radclient.c:83
REDEBUG
#define REDEBUG(fmt,...)
Definition radclient.h:52
RDEBUG_ENABLED2
#define RDEBUG_ENABLED2()
Definition radclient.h:50
RDEBUG2
#define RDEBUG2(fmt,...)
Definition radclient.h:54
RDEBUG
#define RDEBUG(fmt,...)
Definition radclient.h:53
fill
#define fill(_expr)
fr_rand
uint32_t fr_rand(void)
Return a 32-bit random number.
Definition rand.c:105
request_attr_request
fr_dict_attr_t const * request_attr_request
Definition request.c:43
request_log_prepend
void request_log_prepend(request_t *request, fr_log_t *log_dst, fr_log_lvl_t lvl)
Prepend another logging destination to the list.
Definition request.c:92
RAD_REQUEST_LVL_NONE
#define RAD_REQUEST_LVL_NONE
No debug messages should be printed.
Definition request.h:312
name
static char const * name
Definition rlm_redis_ippool_tool.c:156
fr_sbuff_adv_to_str
char * fr_sbuff_adv_to_str(fr_sbuff_t *sbuff, size_t len, char const *needle, size_t needle_len)
Wind position to the first instance of the specified needle.
Definition sbuff.c:2020
fr_sbuff_adv_to_chr
char * fr_sbuff_adv_to_chr(fr_sbuff_t *sbuff, size_t len, char c)
Wind position to first instance of specified char.
Definition sbuff.c:1984
fr_sbuff_in_bstrncpy
ssize_t fr_sbuff_in_bstrncpy(fr_sbuff_t *sbuff, char const *str, size_t len)
Copy bytes into the sbuff up to the first \0.
Definition sbuff.c:1483
fr_sbuff_in_sprintf
ssize_t fr_sbuff_in_sprintf(fr_sbuff_t *sbuff, char const *fmt,...)
Print using a fmt string to an sbuff.
Definition sbuff.c:1592
fr_sbuff_next_if_char
bool fr_sbuff_next_if_char(fr_sbuff_t *sbuff, char c)
Return true if the current char matches, and if it does, advance.
Definition sbuff.c:2116
fr_sbuff_start
#define fr_sbuff_start(_sbuff_or_marker)
fr_sbuff_set
#define fr_sbuff_set(_dst, _src)
FR_SBUFF_IN
#define FR_SBUFF_IN(_start, _len_or_end)
fr_sbuff_adv_past_whitespace
#define fr_sbuff_adv_past_whitespace(_sbuff, _len, _tt)
fr_sbuff_current
#define fr_sbuff_current(_sbuff_or_marker)
fr_sbuff_unescape_rules_t::name
char const * name
Name for rule set to aid we debugging.
Definition sbuff.h:212
FR_SBUFF
#define FR_SBUFF(_sbuff_or_marker)
fr_sbuff_advance
#define fr_sbuff_advance(_sbuff_or_marker, _len)
fr_sbuff_init_in
#define fr_sbuff_init_in(_out, _start, _len_or_end)
fr_sbuff_remaining
#define fr_sbuff_remaining(_sbuff_or_marker)
fr_sbuff_len
#define fr_sbuff_len(_sbuff_or_marker)
FR_SBUFF_OUT
#define FR_SBUFF_OUT(_start, _len_or_end)
fr_sbuff_move
#define fr_sbuff_move(_out, _in, _len)
fr_sbuff_used
#define fr_sbuff_used(_sbuff_or_marker)
fr_sbuff_behind
#define fr_sbuff_behind(_sbuff_or_marker)
fr_sbuff_ahead
#define fr_sbuff_ahead(_sbuff_or_marker)
FR_SBUFF_TALLOC_THREAD_LOCAL
#define FR_SBUFF_TALLOC_THREAD_LOCAL(_out, _init, _max)
fr_sbuff_ptr_s
Definition sbuff.h:85
fr_sbuff_unescape_rules_t
Set of parsing rules for *unescape_until functions.
Definition merged_model.c:163
tmpl_type_to_str
static char const * tmpl_type_to_str(tmpl_type_t type)
Return a static string containing the type name.
Definition tmpl.h:638
TMPL_TYPE_ATTR
@ TMPL_TYPE_ATTR
Reference to one or more attributes.
Definition tmpl.h:142
TMPL_TYPE_XLAT
@ TMPL_TYPE_XLAT
Pre-parsed xlat expansion.
Definition tmpl.h:146
TMPL_TYPE_EXEC
@ TMPL_TYPE_EXEC
Callout to an external script or program.
Definition tmpl.h:150
TMPL_TYPE_REGEX_XLAT_UNRESOLVED
@ TMPL_TYPE_REGEX_XLAT_UNRESOLVED
A regular expression with unresolved xlat functions or attribute references.
Definition tmpl.h:197
TMPL_TYPE_DATA
@ TMPL_TYPE_DATA
Value in native boxed format.
Definition tmpl.h:138
TMPL_TYPE_DATA_UNRESOLVED
@ TMPL_TYPE_DATA_UNRESOLVED
Unparsed literal string.
Definition tmpl.h:179
tmpl_rules_s::attr
tmpl_attr_rules_t attr
Rules/data for parsing attribute references.
Definition tmpl.h:339
tmpl_rules_s
Optional arguments passed to vp_tmpl functions.
Definition tmpl.h:336
fr_sha1_init
void fr_sha1_init(fr_sha1_ctx *context)
Definition sha1.c:93
fr_sha1_final
void fr_sha1_final(uint8_t digest[static SHA1_DIGEST_LENGTH], fr_sha1_ctx *context)
Definition sha1.c:141
fr_sha1_update
void fr_sha1_update(fr_sha1_ctx *context, uint8_t const *in, size_t len)
Definition sha1.c:105
SHA1_DIGEST_LENGTH
#define SHA1_DIGEST_LENGTH
Definition sha1.h:29
fr_sha1_ctx
Definition sha1.h:33
buff
static char buff[sizeof("18446744073709551615")+3]
Definition size_tests.c:41
snprintf
PUBLIC int snprintf(char *string, size_t length, char *format, va_alist)
Definition snprintf.c:689
strings
PRIVATE void strings()
inst
eap_aka_sim_process_conf_t * inst
Definition state_machine.c:3651
type
fr_aka_sim_id_type_t type
Definition state_machine.c:3654
vp
fr_pair_t * vp
Definition state_machine.c:2293
fr_time
#define fr_time()
Allow us to arbitrarily manipulate time.
Definition state_test.c:8
strlcpy
size_t strlcpy(char *dst, char const *src, size_t siz)
Definition strlcpy.c:34
fr_log_s
Definition log.h:96
fr_log_s::parent
fr_log_t * parent
Log destination this was cloned from.
Definition log.h:121
fr_log_s::dst
fr_log_dst_t dst
Log destination.
Definition log.h:97
fr_log_s::fd
int fd
File descriptor to write messages to.
Definition log.h:112
fr_log_s::file
char const * file
Path to log file.
Definition log.h:113
map_s
Value pair map.
Definition map.h:77
map_s::lhs
tmpl_t * lhs
Typically describes the attribute to add, modify or compare.
Definition map.h:78
map_s::rhs
tmpl_t * rhs
Typically describes a literal value or a src attribute to copy or compare.
Definition map.h:79
pair_list_s
Definition pair.h:52
tmpl_attr_rules_s::dict_def
fr_dict_t const * dict_def
Default dictionary to use with unqualified attribute references.
Definition tmpl.h:273
value_pair_s
Stores an attribute, a value and various bits of other data.
Definition pair.h:68
value_pair_s::da
fr_dict_attr_t const *_CONST da
Dictionary attribute defines the attribute number, vendor and type of the pair.
Definition pair.h:69
fr_syserror
char const * fr_syserror(int num)
Guaranteed to be thread-safe version of strerror.
Definition syserror.c:243
fr_table_value_by_str
#define fr_table_value_by_str(_table, _name, _def)
Convert a string to a value using a sorted or ordered table.
Definition table.h:653
fr_table_value_by_substr
#define fr_table_value_by_substr(_table, _name, _name_len, _def)
Convert a partial string to a value using an ordered or sorted table.
Definition table.h:693
fr_table_num_ordered_t
An element in an arbitrarily ordered array of name to num mappings.
Definition table.h:57
fr_table_num_sorted_t
An element in a lexicographically sorted array of name to num mappings.
Definition table.h:49
talloc_bstrndup
char * talloc_bstrndup(TALLOC_CTX *ctx, char const *in, size_t inlen)
Binary safe strndup function.
Definition talloc.c:586
talloc_bstr_append
char * talloc_bstr_append(TALLOC_CTX *ctx, char *to, char const *from, size_t from_len)
Append a bstr to a bstr.
Definition talloc.c:614
talloc_get_type_abort_const
#define talloc_get_type_abort_const
Definition talloc.h:245
fr_test_point_pair_decode_t::test_ctx
fr_test_point_ctx_alloc_t test_ctx
Allocate a test ctx for the encoder.
Definition test_point.h:86
fr_test_point_pair_encode_t::test_ctx
fr_test_point_ctx_alloc_t test_ctx
Allocate a test ctx for the encoder.
Definition test_point.h:94
fr_test_point_pair_decode_t::func
fr_pair_decode_t func
Decoder for pairs.
Definition test_point.h:87
fr_test_point_pair_encode_t::func
fr_pair_encode_t func
Encoder for pairs.
Definition test_point.h:95
fr_test_point_pair_decode_t
Entry point for pair decoders.
Definition test_point.h:85
fr_test_point_pair_encode_t
Entry point for pair encoders.
Definition test_point.h:93
fr_time_is_dst
bool fr_time_is_dst(void)
Whether or not we're daylight savings.
Definition time.c:1207
fr_unix_time_from_str
int fr_unix_time_from_str(fr_unix_time_t *date, char const *date_str, fr_time_res_t hint)
Convert string in various formats to a fr_unix_time_t.
Definition time.c:794
fr_time_gmtoff
fr_time_delta_t fr_time_gmtoff(void)
Get the offset to gmt.
Definition time.c:1199
fr_time_delta_to_timespec
#define fr_time_delta_to_timespec(_delta)
Convert a delta to a timespec.
Definition time.h:666
fr_time_to_msec
static int64_t fr_time_to_msec(fr_time_t when)
Convert an fr_time_t (internal time) to number of msec since the unix epoch (wallclock time)
Definition time.h:711
fr_unix_time_to_sec
static int64_t fr_unix_time_to_sec(fr_unix_time_t delta)
Definition time.h:506
fr_time_delta_wrap
#define fr_time_delta_wrap(_time)
Definition time.h:152
FR_TIME_RES_SEC
@ FR_TIME_RES_SEC
Definition time.h:50
NSEC
#define NSEC
Definition time.h:379
fr_unix_time_unwrap
static uint64_t fr_unix_time_unwrap(fr_unix_time_t time)
Definition time.h:161
fr_time_delta_sub
static fr_time_delta_t fr_time_delta_sub(fr_time_delta_t a, fr_time_delta_t b)
Definition time.h:261
fr_time_to_unix_time
static fr_unix_time_t fr_time_to_unix_time(fr_time_t when)
Convert an fr_time_t (internal time) to our version of unix time (wallclock time)
Definition time.h:688
fr_time_delta_from_timespec
static fr_time_delta_t fr_time_delta_from_timespec(struct timespec const *ts)
Definition time.h:614
fr_unix_time_s
"Unix" time.
Definition time.h:95
fr_tokens
char const * fr_tokens[T_TOKEN_LAST]
Definition token.c:79
unlang_xlat_yield
xlat_action_t unlang_xlat_yield(request_t *request, xlat_func_t resume, xlat_func_signal_t signal, fr_signal_t sigmask, void *rctx)
Yield a request back to the interpreter from within a module.
Definition xlat.c:544
unlang_xlat_push
int unlang_xlat_push(TALLOC_CTX *ctx, unlang_result_t *p_result, fr_value_box_list_t *out, request_t *request, xlat_exp_head_t const *xlat, bool top_frame)
Push a pre-compiled xlat onto the stack for evaluation.
Definition xlat.c:270
unlang_xlat_init
void unlang_xlat_init(void)
Register xlat operation with the interpreter.
Definition xlat.c:806
xlat_arg_parser_t::type
fr_type_t type
Type to cast argument to.
Definition xlat.h:155
xlat_is_literal
bool xlat_is_literal(xlat_exp_head_t const *head)
Check to see if the expansion consists entirely of value-box elements.
Definition xlat_tokenize.c:1898
XLAT_ARG_PARSER_CURSOR
#define XLAT_ARG_PARSER_CURSOR
Definition xlat.h:162
xlat_arg_parser_t::concat
unsigned int concat
Concat boxes together.
Definition xlat.h:147
XLAT_ARG_VARIADIC_EMPTY_KEEP
@ XLAT_ARG_VARIADIC_EMPTY_KEEP
Empty argument groups are left alone, and either passed through as empty groups or null boxes.
Definition xlat.h:137
XLAT_ARG_VARIADIC_EMPTY_SQUASH
@ XLAT_ARG_VARIADIC_EMPTY_SQUASH
Empty argument groups are removed.
Definition xlat.h:136
xlat_arg_parser_t::variadic
xlat_arg_parser_variadic_t variadic
All additional boxes should be processed using this definition.
Definition xlat.h:153
XLAT_RESULT_SUCCESS
#define XLAT_RESULT_SUCCESS(_p_result)
Definition xlat.h:500
XLAT_ARGS
#define XLAT_ARGS(_list,...)
Populate local variables with value boxes from the input list.
Definition xlat.h:383
xlat_arg_parser_t::required
unsigned int required
Argument must be present, and non-empty.
Definition xlat.h:146
xlat_arg_parser_t::single
unsigned int single
Argument must only contain a single box.
Definition xlat.h:148
xlat_resolve
int xlat_resolve(xlat_exp_head_t *head, xlat_res_rules_t const *xr_rules)
Walk over an xlat tree recursively, resolving any unresolved functions or references.
Definition xlat_tokenize.c:1969
XLAT_ARG_PARSER_TERMINATOR
#define XLAT_ARG_PARSER_TERMINATOR
Definition xlat.h:170
xlat_action_t
xlat_action_t
Definition xlat.h:37
XLAT_ACTION_FAIL
@ XLAT_ACTION_FAIL
An xlat function failed.
Definition xlat.h:44
XLAT_ACTION_YIELD
@ XLAT_ACTION_YIELD
An xlat function pushed a resume frame onto the stack.
Definition xlat.h:42
XLAT_ACTION_PUSH_UNLANG
@ XLAT_ACTION_PUSH_UNLANG
An xlat function pushed an unlang frame onto the unlang stack.
Definition xlat.h:39
XLAT_ACTION_DONE
@ XLAT_ACTION_DONE
We're done evaluating this level of nesting.
Definition xlat.h:43
xlat_tokenize_expression
fr_slen_t xlat_tokenize_expression(TALLOC_CTX *ctx, xlat_exp_head_t **head, fr_sbuff_t *in, fr_sbuff_parse_rules_t const *p_rules, tmpl_rules_t const *t_rules))
Definition xlat_expr.c:3162
xlat_arg_parser_t
Definition for a single argument consumend by an xlat function.
Definition xlat.h:145
xlat_res_rules_t
Definition xlat.h:164
fr_pair_aprint
static fr_slen_t fr_pair_aprint(TALLOC_CTX *ctx, char **out, fr_dict_attr_t const *parent, fr_pair_t const *vp) 1(fr_pair_print
fr_pair_list_next
fr_pair_t * fr_pair_list_next(fr_pair_list_t const *list, fr_pair_t const *item))
Get the next item in a valuepair list after a specific entry.
Definition pair_inline.c:69
fr_pair_set_immutable
static void fr_pair_set_immutable(fr_pair_t *vp)
Definition pair.h:700
fr_pair_print_name
static fr_slen_t quote ssize_t fr_pair_print_name(fr_sbuff_t *out, fr_dict_attr_t const *parent, fr_pair_t const **vp_p)
Print an attribute name.
Definition pair_print.c:136
fr_pair_dcursor_init
#define fr_pair_dcursor_init(_cursor, _list)
Initialises a special dcursor with callbacks that will maintain the attr sublists correctly.
Definition pair.h:605
parent
static fr_slen_t parent
Definition pair.h:859
fr_strerror_clear
void fr_strerror_clear(void)
Clears all pending messages from the talloc pools.
Definition strerror.c:576
fr_strerror_printf
#define fr_strerror_printf(_fmt,...)
Log to thread local error buffer.
Definition strerror.h:64
fr_type_table
fr_table_num_ordered_t const fr_type_table[]
Map data types to names representing those types.
Definition types.c:31
fr_type_table_len
size_t fr_type_table_len
Definition types.c:87
fr_type_is_structural
#define fr_type_is_structural(_x)
Definition types.h:393
FR_TYPE_ATTR
@ FR_TYPE_ATTR
A contains an attribute reference.
Definition types.h:84
FR_TYPE_NON_LEAF
#define FR_TYPE_NON_LEAF
Definition types.h:319
fr_type_is_string
#define fr_type_is_string(_x)
Definition types.h:349
fr_type_is_numeric
#define fr_type_is_numeric(_x)
Definition types.h:383
FR_TYPE_STRUCTURAL
#define FR_TYPE_STRUCTURAL
Definition types.h:317
fr_type_is_null
#define fr_type_is_null(_x)
Definition types.h:348
fr_type_is_leaf
#define fr_type_is_leaf(_x)
Definition types.h:394
fr_type_to_str
static char const * fr_type_to_str(fr_type_t type)
Return a static string containing the type name.
Definition types.h:455
FR_TYPE_LEAF
#define FR_TYPE_LEAF
Definition types.h:318
FR_TYPE_NUMERIC
#define FR_TYPE_NUMERIC
Definition types.h:307
fr_value_box_network_length
size_t fr_value_box_network_length(fr_value_box_t const *value)
Get the size of the value held by the fr_value_box_t.
Definition value.c:1441
fr_value_box_mark_unsafe
void fr_value_box_mark_unsafe(fr_value_box_t *vb)
Mark a value-box as "unsafe".
Definition value.c:7194
fr_value_box_list_concat_as_string
ssize_t fr_value_box_list_concat_as_string(fr_value_box_t *safety, fr_sbuff_t *sbuff, fr_value_box_list_t *list, char const *sep, size_t sep_len, fr_sbuff_escape_rules_t const *e_rules, fr_value_box_list_action_t proc_action, fr_value_box_safe_for_t safe_for, bool flatten)
Concatenate a list of value boxes together.
Definition value.c:6396
fr_value_box_print
ssize_t fr_value_box_print(fr_sbuff_t *out, fr_value_box_t const *data, fr_sbuff_escape_rules_t const *e_rules)
Print one boxed value to a string.
Definition value.c:6113
fr_value_box_mem_alloc
int fr_value_box_mem_alloc(TALLOC_CTX *ctx, uint8_t **out, fr_value_box_t *dst, fr_dict_attr_t const *enumv, size_t len, bool tainted)
Pre-allocate an octets buffer for filling by the caller.
Definition value.c:5001
fr_value_box_cast
int fr_value_box_cast(TALLOC_CTX *ctx, fr_value_box_t *dst, fr_type_t dst_type, fr_dict_attr_t const *dst_enumv, fr_value_box_t const *src)
Convert one type of fr_value_box_t to another.
Definition value.c:3963
fr_value_box_list_aprint
char * fr_value_box_list_aprint(TALLOC_CTX *ctx, fr_value_box_list_t const *list, char const *delim, fr_sbuff_escape_rules_t const *e_rules)
Concatenate the string representations of a list of value boxes together.
Definition value.c:6881
fr_value_box_mem_realloc
int fr_value_box_mem_realloc(TALLOC_CTX *ctx, uint8_t **out, fr_value_box_t *dst, size_t len)
Change the length of a buffer already allocated to a value box.
Definition value.c:5034
fr_value_box_list_untaint
void fr_value_box_list_untaint(fr_value_box_list_t *head)
Untaint every list member (and their children)
Definition value.c:7078
fr_value_box_cast_in_place
int fr_value_box_cast_in_place(TALLOC_CTX *ctx, fr_value_box_t *vb, fr_type_t dst_type, fr_dict_attr_t const *dst_enumv)
Convert one type of fr_value_box_t to another in place.
Definition value.c:4213
fr_value_box_clear_value
void fr_value_box_clear_value(fr_value_box_t *data)
Clear/free any existing value.
Definition value.c:4348
fr_value_box_strdup
int fr_value_box_strdup(TALLOC_CTX *ctx, fr_value_box_t *dst, fr_dict_attr_t const *enumv, char const *src, bool tainted)
Copy a nul terminated string to a fr_value_box_t.
Definition value.c:4636
fr_value_box_safety_copy_changed
void fr_value_box_safety_copy_changed(fr_value_box_t *out, fr_value_box_t const *in)
Copy the safety values from one box to another.
Definition value.c:7237
fr_value_box_safety_merge
void fr_value_box_safety_merge(fr_value_box_t *out, fr_value_box_t const *in)
Merge safety results.
Definition value.c:7246
fr_value_box_strdup_shallow
void fr_value_box_strdup_shallow(fr_value_box_t *dst, fr_dict_attr_t const *enumv, char const *src, bool tainted)
Assign a buffer containing a nul terminated string to a box, but don't copy it.
Definition value.c:4745
fr_value_box_safety_copy
void fr_value_box_safety_copy(fr_value_box_t *out, fr_value_box_t const *in)
Copy the safety values from one box to another.
Definition value.c:7224
fr_value_box_bstr_alloc
int fr_value_box_bstr_alloc(TALLOC_CTX *ctx, char **out, fr_value_box_t *dst, fr_dict_attr_t const *enumv, size_t len, bool tainted)
Alloc and assign an empty \0 terminated string to a fr_value_box_t.
Definition value.c:4780
fr_value_box_clear
void fr_value_box_clear(fr_value_box_t *data)
Clear/free any existing value and metadata.
Definition value.c:4394
fr_value_box_list_tainted
bool fr_value_box_list_tainted(fr_value_box_list_t const *head)
Check to see if any list members (or their children) are tainted.
Definition value.c:7047
fr_value_box_bstr_realloc
int fr_value_box_bstr_realloc(TALLOC_CTX *ctx, char **out, fr_value_box_t *dst, size_t len)
Change the length of a buffer already allocated to a value box.
Definition value.c:4813
fr_value_box_bstrndup
int fr_value_box_bstrndup(TALLOC_CTX *ctx, fr_value_box_t *dst, fr_dict_attr_t const *enumv, char const *src, size_t len, bool tainted)
Copy a string to to a fr_value_box_t.
Definition value.c:4857
fr_value_box_bstrdup_buffer_shallow
int fr_value_box_bstrdup_buffer_shallow(TALLOC_CTX *ctx, fr_value_box_t *dst, fr_dict_attr_t const *enumv, char const *src, bool tainted)
Assign a talloced buffer containing a nul terminated string to a box, but don't copy it.
Definition value.c:4962
fr_value_box_memdup
int fr_value_box_memdup(TALLOC_CTX *ctx, fr_value_box_t *dst, fr_dict_attr_t const *enumv, uint8_t const *src, size_t len, bool tainted)
Copy a buffer to a fr_value_box_t.
Definition value.c:5098
fr_value_box_list_concat_in_place
int fr_value_box_list_concat_in_place(TALLOC_CTX *ctx, fr_value_box_t *out, fr_value_box_list_t *list, fr_type_t type, fr_value_box_list_action_t proc_action, bool flatten, size_t max_size)
Concatenate a list of value boxes.
Definition value.c:6612
FR_VALUE_BOX_LIST_FREE
@ FR_VALUE_BOX_LIST_FREE
Definition value.h:238
FR_VALUE_BOX_LIST_FREE_BOX
@ FR_VALUE_BOX_LIST_FREE_BOX
Free each processed box.
Definition value.h:235
fr_value_box_alloc
#define fr_value_box_alloc(_ctx, _type, _enumv)
Allocate a value box of a specific type.
Definition value.h:644
fr_value_box_mark_safe_for
#define fr_value_box_mark_safe_for(_box, _safe_for)
Definition value.h:1087
data
static fr_slen_t data
Definition value.h:1334
fr_value_box_acopy
static fr_value_box_t * fr_value_box_acopy(TALLOC_CTX *ctx, fr_value_box_t const *src)
Copy an existing box, allocating a new box to hold its contents.
Definition value.h:738
fr_value_box_is_safe_for
#define fr_value_box_is_safe_for(_box, _safe_for)
Definition value.h:1094
fr_box_is_variable_size
#define fr_box_is_variable_size(_x)
Definition value.h:464
fr_value_box_get_cursor
#define fr_value_box_get_cursor(_dst)
Definition value.h:1255
VALUE_BOX_VERIFY
#define VALUE_BOX_VERIFY(_x)
Definition value.h:1364
VALUE_BOX_LIST_VERIFY
#define VALUE_BOX_LIST_VERIFY(_x)
Definition value.h:1365
nonnull
int nonnull(2, 5))
fr_value_box_alloc_null
#define fr_value_box_alloc_null(_ctx)
Allocate a value box for later use with a value assignment function.
Definition value.h:655
fr_value_box_list_foreach
#define fr_value_box_list_foreach(_list_head, _iter)
Definition value.h:224
out
static size_t char ** out
Definition value.h:1024
fr_box_bool
#define fr_box_bool(_val)
Definition value.h:331
FR_VALUE_BOX_SAFE_FOR_ANY
#define FR_VALUE_BOX_SAFE_FOR_ANY
Definition value.h:173
xlat_func_bin_arg
static xlat_arg_parser_t const xlat_func_bin_arg[]
Definition xlat_builtin.c:1947
xlat_protocol_register_cbor
static int xlat_protocol_register_cbor(void)
Definition xlat_builtin.c:4634
xlat_func_map_arg
static xlat_arg_parser_t const xlat_func_map_arg[]
Definition xlat_builtin.c:1368
xlat_func_file_tail
static xlat_action_t xlat_func_file_tail(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, request_t *request, fr_value_box_list_t *args)
Definition xlat_builtin.c:562
XLAT_REGISTER_VOID
#define XLAT_REGISTER_VOID(_xlat, _func, _return_type)
xlat_func_log_dst_args
static xlat_arg_parser_t const xlat_func_log_dst_args[]
Definition xlat_builtin.c:1299
xlat_func_taint_args
static xlat_arg_parser_t const xlat_func_taint_args[]
Definition xlat_builtin.c:889
xlat_func_time_args
static xlat_arg_parser_t const xlat_func_time_args[]
Definition xlat_builtin.c:3856
xlat_func_base64_encode_arg
static xlat_arg_parser_t const xlat_func_base64_encode_arg[]
Definition xlat_builtin.c:1842
xlat_eval_rctx_t::last_result
unlang_result_t last_result
Definition xlat_builtin.c:1548
xlat_change_case
static xlat_action_t xlat_change_case(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED request_t *request, fr_value_box_list_t *args, bool upper)
Change case of a string.
Definition xlat_builtin.c:4060
_log_dst_free
static int _log_dst_free(fr_log_t *log)
Definition xlat_builtin.c:1293
xlat_pair_encode_args
static xlat_arg_parser_t const xlat_pair_encode_args[]
Definition xlat_builtin.c:4422
xlat_hmac
static xlat_action_t xlat_hmac(TALLOC_CTX *ctx, fr_dcursor_t *out, fr_value_box_list_t *args, uint8_t *digest, int digest_len, hmac_type type)
Definition xlat_builtin.c:2298
xlat_func_signal_raise_args
static xlat_arg_parser_t const xlat_func_signal_raise_args[]
Definition xlat_builtin.c:3787
xlat_debug_attr_vp
static void xlat_debug_attr_vp(request_t *request, fr_pair_t const *vp, fr_dict_attr_t const *da)
Definition xlat_builtin.c:152
xlat_func_log_arg
static xlat_arg_parser_t const xlat_func_log_arg[]
Definition xlat_builtin.c:1189
xlat_func_file_mkdir
static xlat_action_t xlat_func_file_mkdir(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, request_t *request, fr_value_box_list_t *args)
Definition xlat_builtin.c:847
xlat_func_sha_arg
static xlat_arg_parser_t const xlat_func_sha_arg[]
Definition xlat_builtin.c:3164
xlat_func_cast_args
static xlat_arg_parser_t const xlat_func_cast_args[]
Definition xlat_builtin.c:2056
xlat_pair_dencode_instantiate
static int xlat_pair_dencode_instantiate(xlat_inst_ctx_t const *mctx)
Definition xlat_builtin.c:4416
xlat_transparent
xlat_action_t xlat_transparent(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, UNUSED request_t *request, fr_value_box_list_t *args)
Common function to move boxes from input list to output list.
Definition xlat_builtin.c:260
hmac_type
hmac_type
Definition xlat_builtin.c:2293
HMAC_MD5
@ HMAC_MD5
Definition xlat_builtin.c:2294
HMAC_SHA1
@ HMAC_SHA1
Definition xlat_builtin.c:2295
xlat_func_hex_arg
static xlat_arg_parser_t const xlat_func_hex_arg[]
Definition xlat_builtin.c:2240
xlat_func_substr_args
static xlat_arg_parser_t const xlat_func_substr_args[]
Definition xlat_builtin.c:3416
xlat_func_file_exists
static xlat_action_t xlat_func_file_exists(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, UNUSED request_t *request, fr_value_box_list_t *args)
Definition xlat_builtin.c:457
xlat_func_file_head
static xlat_action_t xlat_func_file_head(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, request_t *request, fr_value_box_list_t *args)
Definition xlat_builtin.c:478
xlat_func_block_args
static xlat_arg_parser_t const xlat_func_block_args[]
Definition xlat_builtin.c:2017
xlat_func_subnet_args
static xlat_arg_parser_t const xlat_func_subnet_args[]
Definition xlat_builtin.c:4367
XLAT_REGISTER_PURE
#define XLAT_REGISTER_PURE(_xlat, _func, _return_type, _arg)
xlat_func_str_printable_arg
static xlat_arg_parser_t const xlat_func_str_printable_arg[]
Definition xlat_builtin.c:3321
xlat_func_randstr_arg
static xlat_arg_parser_t const xlat_func_randstr_arg[]
Definition xlat_builtin.c:2621
xlat_func_eval_arg
static xlat_arg_parser_t const xlat_func_eval_arg[]
Definition xlat_builtin.c:1567
xlat_func_subst_args
static xlat_arg_parser_t const xlat_func_subst_args[]
Definition xlat_builtin.c:3673
xlat_func_explode_args
static xlat_arg_parser_t const xlat_func_explode_args[]
Definition xlat_builtin.c:931
xlat_protocols_register
int xlat_protocols_register(void)
Register xlats for any loaded dictionaries.
Definition xlat_builtin.c:4652
xlat_func_str_utf8_arg
static xlat_arg_parser_t const xlat_func_str_utf8_arg[]
Definition xlat_builtin.c:3381
REPETITION_MAX
#define REPETITION_MAX
xlat_filename_escape_dots
static const fr_sbuff_escape_rules_t xlat_filename_escape_dots
Definition xlat_builtin.c:335
cbor_loader
static dl_loader_t * cbor_loader
Definition xlat_builtin.c:4632
xlat_change_case_arg
static xlat_arg_parser_t const xlat_change_case_arg[]
Definition xlat_builtin.c:4082
xlat_func_strlen_arg
static xlat_arg_parser_t const xlat_func_strlen_arg[]
Definition xlat_builtin.c:3283
xlat_protocol_register
static int xlat_protocol_register(fr_dict_t const *dict)
Definition xlat_builtin.c:4612
xlat_func_md5_arg
static xlat_arg_parser_t const xlat_func_md5_arg[]
Definition xlat_builtin.c:2492
xlat_global_init
int xlat_global_init(void)
Definition xlat_builtin.c:4981
xlat_func_urlquote_arg
static xlat_arg_parser_t const xlat_func_urlquote_arg[]
Definition xlat_builtin.c:4126
xlat_pair_cursor_args
static xlat_arg_parser_t const xlat_pair_cursor_args[]
Definition xlat_builtin.c:147
xlat_func_file_size
static xlat_action_t xlat_func_file_size(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, request_t *request, fr_value_box_list_t *args)
Definition xlat_builtin.c:536
ungroup
static void ungroup(fr_dcursor_t *out, fr_value_box_list_t *in)
Definition xlat_builtin.c:2386
xlat_func_md4_arg
static xlat_arg_parser_t const xlat_func_md4_arg[]
Definition xlat_builtin.c:2452
regex_xlat_escape
static int regex_xlat_escape(UNUSED request_t *request, fr_value_box_t *vb, UNUSED void *uctx)
Definition xlat_builtin.c:3034
xlat_func_join_args
static xlat_arg_parser_t const xlat_func_join_args[]
Definition xlat_builtin.c:2362
XLAT_NEW
#define XLAT_NEW(_x)
xlat_eval_resume
static xlat_action_t xlat_eval_resume(UNUSED TALLOC_CTX *ctx, UNUSED fr_dcursor_t *out, xlat_ctx_t const *xctx, UNUSED request_t *request, UNUSED fr_value_box_list_t *in)
Just serves to push the result up the stack.
Definition xlat_builtin.c:1555
xlat_func_taint
static xlat_action_t xlat_func_taint(UNUSED TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, UNUSED request_t *request, fr_value_box_list_t *in)
Definition xlat_builtin.c:909
XLAT_REGISTER_HASH
#define XLAT_REGISTER_HASH(_name, _func)
xlat_func_debug_args
static xlat_arg_parser_t const xlat_func_debug_args[]
Definition xlat_builtin.c:83
hextab
static char const hextab[]
Definition xlat_builtin.c:53
FR_FILENAME_SAFE_FOR
#define FR_FILENAME_SAFE_FOR
Definition xlat_builtin.c:350
xlat_func_signal_raise
static xlat_action_t xlat_func_signal_raise(UNUSED TALLOC_CTX *ctx, UNUSED fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, request_t *request, fr_value_box_list_t *args)
Definition xlat_builtin.c:3792
xlat_pair_decode_uctx_t::tp_decode
fr_test_point_pair_decode_t * tp_decode
Definition xlat_builtin.c:57
xlat_func_pad_args
static xlat_arg_parser_t const xlat_func_pad_args[]
Definition xlat_builtin.c:1654
uuid_print_vb
static int uuid_print_vb(fr_value_box_t *vb, uint32_t vals[4])
Convert a UUID in an array of uint32_t to the conventional string representation.
Definition xlat_builtin.c:2822
xlat_func_urlunquote_arg
static xlat_arg_parser_t const xlat_func_urlunquote_arg[]
Definition xlat_builtin.c:4209
xlat_func_file_touch
static xlat_action_t xlat_func_file_touch(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, request_t *request, fr_value_box_list_t *args)
Definition xlat_builtin.c:821
xlat_pair_decode_uctx_t::dict
fr_dict_t const * dict
Restrict xlat to this namespace.
Definition xlat_builtin.c:58
xlat_pair_decode_args
static xlat_arg_parser_t const xlat_pair_decode_args[]
Definition xlat_builtin.c:4285
xlat_func_rand_arg
static xlat_arg_parser_t const xlat_func_rand_arg[]
Definition xlat_builtin.c:2581
uuid_set_variant
static void uuid_set_variant(uint32_t vals[4], uint8_t variant)
Definition xlat_builtin.c:2854
filename_xlat_escape
static int filename_xlat_escape(UNUSED request_t *request, fr_value_box_t *vb, UNUSED void *uctx)
Definition xlat_builtin.c:352
xlat_func_concat_args
static xlat_arg_parser_t const xlat_func_concat_args[]
Definition xlat_builtin.c:2187
xlat_func_join
static xlat_action_t xlat_func_join(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, UNUSED request_t *request, fr_value_box_list_t *in)
Join a series of arguments to form a single list.
Definition xlat_builtin.c:2372
xlat_func_file_name_count_args
static xlat_arg_parser_t const xlat_func_file_name_count_args[]
Definition xlat_builtin.c:449
xlat_arg_copy_out
void xlat_arg_copy_out(TALLOC_CTX *ctx, fr_dcursor_t *out, fr_value_box_list_t *in, fr_value_box_t *vb)
Copy an argument from the input list to the output cursor.
Definition xlat_builtin.c:71
xlat_func_range_arg
static xlat_arg_parser_t const xlat_func_range_arg[]
Definition xlat_builtin.c:2962
xlat_func_integer_args
static xlat_arg_parser_t const xlat_func_integer_args[]
Definition xlat_builtin.c:1060
_xlat_global_init
static int _xlat_global_init(UNUSED void *uctx)
Global initialisation for xlat.
Definition xlat_builtin.c:4699
XLAT_REGISTER_ARGS
#define XLAT_REGISTER_ARGS(_xlat, _func, _return_type, _args)
xlat_func_untaint
static xlat_action_t xlat_func_untaint(UNUSED TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, UNUSED request_t *request, fr_value_box_list_t *in)
Definition xlat_builtin.c:895
xlat_func_file_cat
static xlat_action_t xlat_func_file_cat(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, request_t *request, fr_value_box_list_t *args)
Definition xlat_builtin.c:750
xlat_func_file_rm
static xlat_action_t xlat_func_file_rm(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, request_t *request, fr_value_box_list_t *args)
Definition xlat_builtin.c:799
xlat_eval_rctx_t::ex
xlat_exp_head_t * ex
Definition xlat_builtin.c:1549
xlat_func_length_args
static xlat_arg_parser_t const xlat_func_length_args[]
Definition xlat_builtin.c:2416
xlat_func_ungroup
static xlat_action_t xlat_func_ungroup(UNUSED TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, UNUSED request_t *request, fr_value_box_list_t *in)
Ungroups all of its arguments into one flat list.
Definition xlat_builtin.c:2402
xlat_protocol_register_by_name
static int xlat_protocol_register_by_name(dl_t *dl, char const *name, fr_dict_t const *dict)
Definition xlat_builtin.c:4563
xlat_func_file_cat_args
static xlat_arg_parser_t const xlat_func_file_cat_args[]
Definition xlat_builtin.c:743
uuid_set_version
static void uuid_set_version(uint32_t vals[4], uint8_t version)
Definition xlat_builtin.c:2846
xlat_func_file_rmdir
static xlat_action_t xlat_func_file_rmdir(TALLOC_CTX *ctx, fr_dcursor_t *out, UNUSED xlat_ctx_t const *xctx, request_t *request, fr_value_box_list_t *args)
Definition xlat_builtin.c:868
UUID_CHARS
#define UUID_CHARS(_v, _num)
xlat_debug_attr_list
static void xlat_debug_attr_list(request_t *request, fr_pair_list_t const *list, fr_dict_attr_t const *parent)
Definition xlat_builtin.c:134
xlat_func_file_name_args
static xlat_arg_parser_t const xlat_func_file_name_args[]
Definition xlat_builtin.c:443
xlat_ctx
static TALLOC_CTX * xlat_ctx
Definition xlat_builtin.c:54
xlat_func_next_time_args
static xlat_arg_parser_t const xlat_func_next_time_args[]
Definition xlat_builtin.c:1454
_xlat_global_free
static int _xlat_global_free(UNUSED void *uctx)
De-register all xlat functions we created.
Definition xlat_builtin.c:4679
xlat_filename_escape
static const fr_sbuff_escape_rules_t xlat_filename_escape
Definition xlat_builtin.c:319
xlat_func_base64_decode_arg
static xlat_arg_parser_t const xlat_func_base64_decode_arg[]
Definition xlat_builtin.c:1890
xlat_hmac_args
static xlat_arg_parser_t const xlat_hmac_args[]
Definition xlat_builtin.c:2321
xlat_func_regex_args
static xlat_arg_parser_t const xlat_func_regex_args[]
Definition xlat_builtin.c:3053
xlat_eval_rctx_t
Definition xlat_builtin.c:1547
xlat_pair_decode_uctx_t
Definition xlat_builtin.c:56
xlat_ctx_s::rctx
void * rctx
Resume context.
Definition xlat_ctx.h:54
xlat_ctx_s::ex
xlat_exp_t const * ex
Tokenized expression.
Definition xlat_ctx.h:55
xlat_inst_ctx_s::ex
xlat_exp_t * ex
Tokenized expression to use in expansion.
Definition xlat_ctx.h:64
xlat_ctx_s::inst
void const * inst
xlat instance data.
Definition xlat_ctx.h:50
xlat_inst_ctx_s::uctx
void * uctx
Passed to the registration function.
Definition xlat_ctx.h:66
xlat_inst_ctx_s::inst
void * inst
xlat instance data to populate.
Definition xlat_ctx.h:63
xlat_ctx_s
An xlat calling ctx.
Definition xlat_ctx.h:49
xlat_inst_ctx_s
An xlat instantiation ctx.
Definition xlat_ctx.h:62
xlat_time_res_attr
fr_dict_attr_t const * xlat_time_res_attr(char const *res)
Definition xlat_eval.c:129
xlat_eval_init
int xlat_eval_init(void)
Definition xlat_eval.c:2003
xlat_eval_free
void xlat_eval_free(void)
Definition xlat_eval.c:2028
xlat_register_expressions
int xlat_register_expressions(void)
Definition xlat_expr.c:1858
xlat_func_free
void xlat_func_free(void)
Definition xlat_func.c:563
xlat_func_flags_set
void xlat_func_flags_set(xlat_t *x, xlat_func_flags_t flags)
Specify flags that alter the xlat's behaviour.
Definition xlat_func.c:399
xlat_func_args_set
int xlat_func_args_set(xlat_t *x, xlat_arg_parser_t const args[])
Register the arguments of an xlat.
Definition xlat_func.c:363
xlat_func_register
xlat_t * xlat_func_register(TALLOC_CTX *ctx, char const *name, xlat_func_t func, fr_type_t return_type)
Register an xlat function.
Definition xlat_func.c:216
xlat_func_init
int xlat_func_init(void)
Definition xlat_func.c:547
xlat_func_find
xlat_t * xlat_func_find(char const *in, ssize_t inlen)
Definition xlat_func.c:77
xlat_func_instantiate_set
#define xlat_func_instantiate_set(_xlat, _instantiate, _inst_struct, _detach, _uctx)
Set a callback for global instantiation of xlat functions.
Definition xlat_func.h:93
xlat_func_safe_for_set
#define xlat_func_safe_for_set(_xlat, _escaped)
Set the escaped values for output boxes.
Definition xlat_func.h:82
XLAT_FUNC_FLAG_PURE
@ XLAT_FUNC_FLAG_PURE
Definition xlat_func.h:38
XLAT_FUNC_FLAG_INTERNAL
@ XLAT_FUNC_FLAG_INTERNAL
Definition xlat_func.h:39
xlat_decode_value_box_list
int xlat_decode_value_box_list(TALLOC_CTX *ctx, fr_pair_list_t *out, request_t *request, void *decode_ctx, fr_pair_decode_t decode, fr_value_box_list_t *in)
Decode all of the value boxes into the output cursor.
Definition xlat_pair.c:90
XLAT_GROUP
@ XLAT_GROUP
encapsulated string of xlats
Definition xlat_priv.h:116
xlat_s::deprecated
bool deprecated
this function was deprecated
Definition xlat_priv.h:68
xlat_exp_s::type
xlat_type_t _CONST type
type of this expansion.
Definition xlat_priv.h:155
xlat_exp_head_s
Definition xlat_priv.h:188
xlat_exp_s
An xlat expansion node.
Definition xlat_priv.h:148
xlat_s
Definition xlat_priv.h:59
Generated by   doxygen 1.9.8