Files
wehub-resource-sync 498b235461
Build and test / Build and test AMD64 Ubuntu 22.04 (push) Failing after 0s
Publish Builder / amazonlinux2023 (push) Failing after 1s
Build and test / UT for Cpp (push) Waiting to run
Build and test / UT for Go (push) Has been skipped
Publish KRTE Images / KRTE (push) Failing after 1s
Build and test / Integration Test (push) Has been skipped
Build and test / Upload Code Coverage (push) Has been skipped
Publish Builder / rockylinux9 (push) Failing after 1s
Publish Builder / ubuntu22.04 (push) Failing after 0s
Publish Builder / ubuntu24.04 (push) Failing after 0s
Publish Gpu Builder / publish-gpu-builder (push) Failing after 1s
Publish Test Images / PyTest (push) Failing after 0s
chore: import upstream snapshot with attribution
2026-07-13 12:31:17 +08:00

110 lines
3.0 KiB
Go

/*
* Licensed to the LF AI & Data foundation under one
* or more contributor license agreements. See the NOTICE file
* distributed with this work for additional information
* regarding copyright ownership. The ASF licenses this file
* to you under the Apache License, Version 2.0 (the
* "License"); you may not use this file except in compliance
* with the License. You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package expr
import (
"context"
"fmt"
"unsafe"
"github.com/expr-lang/expr"
"github.com/expr-lang/expr/vm"
"google.golang.org/protobuf/proto"
"github.com/milvus-io/milvus/pkg/v3/mlog"
"github.com/milvus-io/milvus/pkg/v3/util/merr"
"github.com/milvus-io/milvus/pkg/v3/util/paramtable"
)
const (
// AuthBypass is a special auth value that skips the auth check.
// This should only be used when authentication has already been verified externally.
AuthBypass = "__bypass__"
)
var (
v *vm.VM
env map[string]any
authKey string
)
func Init() {
v = &vm.VM{}
env = map[string]any{
"ctx": context.TODO(),
"objSize": func(p any) int {
message, ok := p.(proto.Message)
if !ok {
return int(unsafe.Sizeof(p))
}
return proto.Size(message)
},
}
authKey = paramtable.Get().EtcdCfg.RootPath.GetValue()
}
func Register(key string, value any) {
if env != nil {
env[key] = value
}
}
// HasRegistered checks if a key has been registered in the expr environment.
// This is useful for determining which component is running (e.g., checking if "proxy" is registered).
func HasRegistered(key string) bool {
if env == nil {
return false
}
_, ok := env[key]
return ok
}
func Exec(code, auth string) (res string, err error) {
defer func() {
if e := recover(); e != nil {
err = merr.WrapErrParameterInvalidMsg("panic: %v", e)
}
}()
if v == nil {
return "", merr.WrapErrParameterInvalidMsg("the expr isn't inited")
}
if code == "" {
return "", merr.WrapErrParameterInvalidMsg("the expr code is empty")
}
if auth == "" {
return "", merr.WrapErrParameterInvalidMsg("the expr auth is empty")
}
// Allow bypass when authentication has been verified externally (e.g., by HTTP handler)
if auth != AuthBypass && authKey != auth {
return "", merr.WrapErrParameterInvalidMsg("the expr auth is invalid")
}
program, err := expr.Compile(code, expr.Env(env), expr.WithContext("ctx"))
if err != nil {
mlog.Warn(context.TODO(), "expr compile failed", mlog.String("code", code), mlog.Err(err))
return "", err
}
output, err := v.Run(program, env)
if err != nil {
mlog.Warn(context.TODO(), "expr run failed", mlog.String("code", code), mlog.Err(err))
return "", err
}
return fmt.Sprintf("%v", output), nil
}