{"diffoscope-json-version": 1, "source1": "/srv/reproducible-results/rbuild-debian/r-b-build.qYt5seKS/b1/asterisk_22.5.1~dfsg+~cs6.15.60671435-1_amd64.changes", "source2": "/srv/reproducible-results/rbuild-debian/r-b-build.qYt5seKS/b2/asterisk_22.5.1~dfsg+~cs6.15.60671435-1_amd64.changes", "unified_diff": null, "details": [{"source1": "Files", "source2": "Files", "unified_diff": "@@ -13,8 +13,8 @@\n  8530e1d22ae2b725a6c508d3000dc3b0 59312 comm optional asterisk-mp3_22.5.1~dfsg+~cs6.15.60671435-1_amd64.deb\n  bc8abbd28741217ef19a3120d3337f43 69708 debug optional asterisk-mysql-dbgsym_22.5.1~dfsg+~cs6.15.60671435-1_amd64.deb\n  7b0df558d835a2656f0ec9603847e50b 55552 comm optional asterisk-mysql_22.5.1~dfsg+~cs6.15.60671435-1_amd64.deb\n  87e11c084004fd7cb2f0a9cc3c297cf1 1070524 debug optional asterisk-ooh323-dbgsym_22.5.1~dfsg+~cs6.15.60671435-1_amd64.deb\n  f6a10f8ddc9b8e3864d6f402992713f6 368820 comm optional asterisk-ooh323_22.5.1~dfsg+~cs6.15.60671435-1_amd64.deb\n  31455bbaf85f23bf26504ca7e3753551 1378464 debug optional asterisk-tests-dbgsym_22.5.1~dfsg+~cs6.15.60671435-1_amd64.deb\n  d7ee9b707acea0f2a3e3ac4f62a0a81d 562788 comm optional asterisk-tests_22.5.1~dfsg+~cs6.15.60671435-1_amd64.deb\n- 8178e2daf95dd7f0b8e5c3885cc8232b 2504528 comm optional asterisk_22.5.1~dfsg+~cs6.15.60671435-1_amd64.deb\n+ caaf916aaf438db2d28aa9ee52579da4 2504488 comm optional asterisk_22.5.1~dfsg+~cs6.15.60671435-1_amd64.deb\n"}, {"source1": "asterisk_22.5.1~dfsg+~cs6.15.60671435-1_amd64.deb", "source2": "asterisk_22.5.1~dfsg+~cs6.15.60671435-1_amd64.deb", "unified_diff": null, "details": [{"source1": "file list", "source2": "file list", "unified_diff": "@@ -1,3 +1,3 @@\n -rw-r--r--   0        0        0        4 2025-08-03 09:18:38.000000 debian-binary\n -rw-r--r--   0        0        0     8328 2025-08-03 09:18:38.000000 control.tar.xz\n--rw-r--r--   0        0        0  2496008 2025-08-03 09:18:38.000000 data.tar.xz\n+-rw-r--r--   0        0        0  2495968 2025-08-03 09:18:38.000000 data.tar.xz\n"}, {"source1": "control.tar.xz", "source2": "control.tar.xz", "unified_diff": null, "details": [{"source1": "control.tar", "source2": "control.tar", "unified_diff": null, "details": [{"source1": "./md5sums", "source2": "./md5sums", "unified_diff": null, "details": [{"source1": "./md5sums", "source2": "./md5sums", "comments": ["Files differ"], "unified_diff": null}]}]}]}, {"source1": "data.tar.xz", "source2": "data.tar.xz", "unified_diff": null, "details": [{"source1": "data.tar", "source2": "data.tar", "unified_diff": null, "details": [{"source1": "./usr/share/asterisk/documentation/core-en_US.xml", "source2": "./usr/share/asterisk/documentation/core-en_US.xml", "unified_diff": null, "details": [{"source1": "./usr/share/asterisk/documentation/core-en_US.xml", "source2": "./usr/share/asterisk/documentation/core-en_US.xml", "comments": ["Ordering differences only"], "unified_diff": "@@ -38295,1104 +38295,14 @@\n         </configOption>\n       </configObject>\n     </configFile>\n   </configInfo>\n   <module language=\"en_US\" name=\"agent\">\n     <support_level>extended</support_level>\n   </module>\n-  <configInfo name=\"res_stir_shaken\" language=\"en_US\">\n-    <synopsis>STIR/SHAKEN module for Asterisk</synopsis>\n-    <configFile name=\"stir_shaken.conf\">\n-      <configObject name=\"attestation\">\n-        <since>\n-          <version>18.22.0</version>\n-          <version>20.7.0</version>\n-          <version>21.2.0</version>\n-        </since>\n-        <synopsis>STIR/SHAKEN attestation options</synopsis>\n-        <configOption name=\"global_disable\" default=\"false\">\n-          <since>\n-            <version>18.22.0</version>\n-            <version>20.7.0</version>\n-            <version>21.2.0</version>\n-          </since>\n-          <synopsis>Globally disable verification</synopsis>\n-        </configOption>\n-        <configOption name=\"private_key_file\" default=\"\">\n-          <since>\n-            <version>18.22.0</version>\n-            <version>20.7.0</version>\n-            <version>21.2.0</version>\n-          </since>\n-          <synopsis>File path to a certificate</synopsis>\n-        </configOption>\n-        <configOption name=\"public_cert_url\" default=\"\">\n-          <since>\n-            <version>18.22.0</version>\n-            <version>20.7.0</version>\n-            <version>21.2.0</version>\n-          </since>\n-          <synopsis>URL to the public certificate</synopsis>\n-          <description>\n-            <para>Must be a valid http, or https, URL.</para>\n-          </description>\n-        </configOption>\n-        <configOption name=\"attest_level\">\n-          <since>\n-            <version>18.22.0</version>\n-            <version>20.7.0</version>\n-            <version>21.2.0</version>\n-          </since>\n-          <synopsis>Attestation level</synopsis>\n-        </configOption>\n-        <configOption name=\"unknown_tn_attest_level\">\n-          <since>\n-            <version>20.12.0</version>\n-            <version>21.7.0</version>\n-            <version>22.2.0</version>\n-          </since>\n-          <synopsis>Attestation level to use for unknown TNs</synopsis>\n-          <description>\n-            <para>Normally if a callerid TN isn't configured in stir_shaken.conf\n-\t\t\t\t\tno Identity header will be created. If this option is set,\n-\t\t\t\t\thowever, an Identity header will be sent using this\n-\t\t\t\t\tattestation level.  Since there's no TN object, you must\n-\t\t\t\t\tensure that a private_key_file and public_cert_url are\n-\t\t\t\t\tconfigured in the attestation or profile objects for\n-\t\t\t\t\tthis to work.</para>\n-          </description>\n-        </configOption>\n-        <configOption name=\"check_tn_cert_public_url\" default=\"false\">\n-          <since>\n-            <version>18.22.0</version>\n-            <version>20.7.0</version>\n-            <version>21.2.0</version>\n-          </since>\n-          <synopsis>On load, Retrieve all TN's certificates and validate their dates</synopsis>\n-        </configOption>\n-        <configOption name=\"send_mky\" default=\"no\">\n-          <since>\n-            <version>18.22.0</version>\n-            <version>20.7.0</version>\n-            <version>21.2.0</version>\n-          </since>\n-          <synopsis>Send a media key (mky) grant in the attestation for DTLS calls.\n-\t\t\t\t\t(not common)</synopsis>\n-        </configOption>\n-      </configObject>\n-      <configObject name=\"tn\">\n-        <since>\n-          <version>18.22.0</version>\n-          <version>20.7.0</version>\n-          <version>21.2.0</version>\n-        </since>\n-        <synopsis>STIR/SHAKEN TN options</synopsis>\n-        <configOption name=\"type\">\n-          <since>\n-            <version>18.22.0</version>\n-            <version>20.7.0</version>\n-            <version>21.2.0</version>\n-          </since>\n-          <synopsis>Must be of type 'tn'.</synopsis>\n-        </configOption>\n-        <configOption name=\"private_key_file\" default=\"\">\n-          <since>\n-            <version>18.22.0</version>\n-            <version>20.7.0</version>\n-            <version>21.2.0</version>\n-          </since>\n-          <synopsis>File path to a certificate</synopsis>\n-        </configOption>\n-        <configOption name=\"public_cert_url\" default=\"\">\n-          <since>\n-            <version>18.22.0</version>\n-            <version>20.7.0</version>\n-            <version>21.2.0</version>\n-          </since>\n-          <synopsis>URL to the public certificate</synopsis>\n-          <description>\n-            <para>Must be a valid http, or https, URL.</para>\n-          </description>\n-        </configOption>\n-        <configOption name=\"attest_level\">\n-          <since>\n-            <version>18.22.0</version>\n-            <version>20.7.0</version>\n-            <version>21.2.0</version>\n-          </since>\n-          <synopsis>Attestation level</synopsis>\n-        </configOption>\n-        <configOption name=\"check_tn_cert_public_url\" default=\"false\">\n-          <since>\n-            <version>18.22.0</version>\n-            <version>20.7.0</version>\n-            <version>21.2.0</version>\n-          </since>\n-          <synopsis>On load, Retrieve all TN's certificates and validate their dates</synopsis>\n-        </configOption>\n-        <configOption name=\"send_mky\" default=\"no\">\n-          <since>\n-            <version>18.22.0</version>\n-            <version>20.7.0</version>\n-            <version>21.2.0</version>\n-          </since>\n-          <synopsis>Send a media key (mky) grant in the attestation for DTLS calls.\n-\t\t\t\t\t(not common)</synopsis>\n-        </configOption>\n-      </configObject>\n-      <configObject name=\"verification\">\n-        <since>\n-          <version>18.22.0</version>\n-          <version>20.7.0</version>\n-          <version>21.2.0</version>\n-        </since>\n-        <synopsis>STIR/SHAKEN verification options</synopsis>\n-        <configOption name=\"global_disable\" default=\"false\">\n-          <since>\n-            <version>18.22.0</version>\n-            <version>20.7.0</version>\n-            <version>21.2.0</version>\n-          </since>\n-          <synopsis>Globally disable verification</synopsis>\n-        </configOption>\n-        <configOption name=\"load_system_certs\" default=\"\">\n-          <since>\n-            <version>18.22.0</version>\n-            <version>20.7.0</version>\n-            <version>21.2.0</version>\n-          </since>\n-          <synopsis>A boolean indicating whether trusted CA certificates should be loaded from the system</synopsis>\n-        </configOption>\n-        <configOption name=\"ca_file\" default=\"\">\n-          <since>\n-            <version>18.22.0</version>\n-            <version>20.7.0</version>\n-            <version>21.2.0</version>\n-          </since>\n-          <synopsis>Path to a file containing one or more CA certs in PEM format</synopsis>\n-          <description>\n-            <para>These certs are used to verify the chain of trust for the\n-\t\t\t\t\t\tcertificate retrieved from the X5U Identity header parameter.  This\n-\t\t\t\t\t\tfile must have the root CA certificate, the certificate of the\n-\t\t\t\t\t\tissuer of the X5U certificate, and any intermediate certificates\n-\t\t\t\t\t\tbetween them.</para>\n-            <para>See https://docs.asterisk.org/Deployment/STIR-SHAKEN/ for more information.</para>\n-          </description>\n-        </configOption>\n-        <configOption name=\"ca_path\" default=\"\">\n-          <since>\n-            <version>18.22.0</version>\n-            <version>20.7.0</version>\n-            <version>21.2.0</version>\n-          </since>\n-          <synopsis>Path to a directory containing one or more hashed CA certs</synopsis>\n-          <description>\n-            <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='ca_file']/description/node())\"/>\n-            <para>\n-              For this option, the individual certificates must be placed in\n-\t\t\t\t\t\tthe directory specified and hashed using the\n-              <literal>openssl rehash</literal>\n-              command.\n-            </para>\n-            <para>See https://docs.asterisk.org/Deployment/STIR-SHAKEN/ for more information.</para>\n-          </description>\n-        </configOption>\n-        <configOption name=\"crl_file\" default=\"\">\n-          <since>\n-            <version>18.22.0</version>\n-            <version>20.7.0</version>\n-            <version>21.2.0</version>\n-          </since>\n-          <synopsis>Path to a file containing one or more CRLs in PEM format</synopsis>\n-          <description>\n-            <para>If you with to check if the certificate in the X5U Identity header\n-\t\t\t\t\t\tparameter has been revoked, you'll need the certificate revocation\n-\t\t\t\t\t\tlist generated by the issuer.</para>\n-            <para>See https://docs.asterisk.org/Deployment/STIR-SHAKEN/ for more information.</para>\n-          </description>\n-        </configOption>\n-        <configOption name=\"crl_path\" default=\"\">\n-          <since>\n-            <version>18.22.0</version>\n-            <version>20.7.0</version>\n-            <version>21.2.0</version>\n-          </since>\n-          <synopsis>Path to a directory containing one or more hashed CRLs</synopsis>\n-          <description>\n-            <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='crl_file']/description/node())\"/>\n-            <para>\n-              For this option, the individual CRLs must be placed in\n-\t\t\t\t\t\tthe directory specified and hashed using the\n-              <literal>openssl rehash</literal>\n-              command.\n-            </para>\n-            <para>See https://docs.asterisk.org/Deployment/STIR-SHAKEN/ for more information.</para>\n-          </description>\n-        </configOption>\n-        <configOption name=\"untrusted_cert_file\" default=\"\">\n-          <since>\n-            <version>18.22.0</version>\n-            <version>20.7.0</version>\n-            <version>21.2.0</version>\n-          </since>\n-          <synopsis>Path to a file containing one or more untrusted cert in PEM format used to verify CRLs</synopsis>\n-          <description>\n-            <para>If you with to check if the certificate in the X5U Identity header\n-\t\t\t\t\tparameter has been revoked, you'll need the certificate revocation\n-\t\t\t\t\tlist generated by the issuer.  Unfortunately, sometimes the CRLs are signed by a\n-\t\t\t\t\tdifferent CA than the certificate being verified.  In this case, you\n-\t\t\t\t\tmay need to provide the untrusted certificate to verify the CRL.</para>\n-            <para>See https://docs.asterisk.org/Deployment/STIR-SHAKEN/ for more information.</para>\n-          </description>\n-        </configOption>\n-        <configOption name=\"untrusted_cert_path\" default=\"\">\n-          <since>\n-            <version>18.22.0</version>\n-            <version>20.7.0</version>\n-            <version>21.2.0</version>\n-          </since>\n-          <synopsis>Path to a directory containing one or more hashed untrusted certs used to verify CRLs</synopsis>\n-          <description>\n-            <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='untrusted_cert_file']/description/node())\"/>\n-            <para>\n-              For this option, the individual certificates must be placed in\n-\t\t\t\t\t\tthe directory specified and hashed using the\n-              <literal>openssl rehash</literal>\n-              command.\n-            </para>\n-            <para>See https://docs.asterisk.org/Deployment/STIR-SHAKEN/ for more information.</para>\n-          </description>\n-        </configOption>\n-        <configOption name=\"cert_cache_dir\" default=\"\">\n-          <since>\n-            <version>18.22.0</version>\n-            <version>20.7.0</version>\n-            <version>21.2.0</version>\n-          </since>\n-          <synopsis>Directory to cache retrieved verification certs</synopsis>\n-        </configOption>\n-        <configOption name=\"curl_timeout\" default=\"2\">\n-          <since>\n-            <version>18.22.0</version>\n-            <version>20.7.0</version>\n-            <version>21.2.0</version>\n-          </since>\n-          <synopsis>Maximum time to wait to CURL certificates</synopsis>\n-        </configOption>\n-        <configOption name=\"max_cache_entry_age\" default=\"60\">\n-          <since>\n-            <version>18.22.0</version>\n-            <version>20.7.0</version>\n-            <version>21.2.0</version>\n-          </since>\n-          <synopsis>Number of seconds a cache entry may be behind current time</synopsis>\n-        </configOption>\n-        <configOption name=\"max_cache_size\" default=\"1000\">\n-          <since>\n-            <version>18.22.0</version>\n-            <version>20.7.0</version>\n-            <version>21.2.0</version>\n-          </since>\n-          <synopsis>Maximum size to use for caching public keys</synopsis>\n-        </configOption>\n-        <configOption name=\"max_iat_age\" default=\"15\">\n-          <since>\n-            <version>18.22.0</version>\n-            <version>20.7.0</version>\n-            <version>21.2.0</version>\n-          </since>\n-          <synopsis>Number of seconds an iat grant may be behind current time</synopsis>\n-        </configOption>\n-        <configOption name=\"max_date_header_age\" default=\"15\">\n-          <since>\n-            <version>18.22.0</version>\n-            <version>20.7.0</version>\n-            <version>21.2.0</version>\n-          </since>\n-          <synopsis>Number of seconds a SIP Date header may be behind current time</synopsis>\n-        </configOption>\n-        <configOption name=\"failure_action\" default=\"continue\">\n-          <since>\n-            <version>18.22.0</version>\n-            <version>20.7.0</version>\n-            <version>21.2.0</version>\n-          </since>\n-          <synopsis>The default failure action when not set on a profile</synopsis>\n-          <description>\n-            <enumlist>\n-              <enum name=\"continue\">\n-                <para>\n-                  If set to\n-                  <literal>continue</literal>\n-                  , continue and let\n-\t\t\t\t\t\t\tthe dialplan decide what action to take.\n-                </para>\n-              </enum>\n-              <enum name=\"reject_request\">\n-                <para>\n-                  If set to\n-                  <literal>reject_request</literal>\n-                  , reject the incoming\n-\t\t\t\t\t\t\trequest with response codes defined in RFC8224.\n-                </para>\n-              </enum>\n-              <enum name=\"continue_return_reason\">\n-                <para>\n-                  If set to\n-                  <literal>return_reason</literal>\n-                  , continue to the\n-\t\t\t\t\t\t\tdialplan but add a\n-                  <literal>Reason</literal>\n-                  header to the sender in\n-\t\t\t\t\t\t\tthe next provisional response.\n-                </para>\n-              </enum>\n-            </enumlist>\n-          </description>\n-        </configOption>\n-        <configOption name=\"use_rfc9410_responses\" default=\"no\">\n-          <since>\n-            <version>18.22.0</version>\n-            <version>20.7.0</version>\n-            <version>21.2.0</version>\n-          </since>\n-          <synopsis>RFC9410 uses the STIR protocol on Reason headers\n-\t\t\t\t\tinstead of the SIP protocol</synopsis>\n-        </configOption>\n-        <configOption name=\"ignore_sip_date_header\" default=\"no\">\n-          <since>\n-            <version>20.15.0</version>\n-            <version>21.10.0</version>\n-            <version>22.5.0</version>\n-          </since>\n-          <synopsis>When set to true, will cause the verification process to not consider a\n-\t\t\t\t\t\tmissing or invalid SIP \"Date\" header to be a failure.  This will make the\n-\t\t\t\t\t\tIAT the sole \"truth\" for Date in the verification process.</synopsis>\n-        </configOption>\n-        <configOption name=\"relax_x5u_port_scheme_restrictions\" default=\"no\">\n-          <since>\n-            <version>18.22.0</version>\n-            <version>20.7.0</version>\n-            <version>21.2.0</version>\n-          </since>\n-          <synopsis>Relaxes check for \"https\" and port 443 or 8443\n-\t\t\t\t\tin incoming Identity header x5u URLs.</synopsis>\n-        </configOption>\n-        <configOption name=\"relax_x5u_path_restrictions\" default=\"no\">\n-          <since>\n-            <version>18.22.0</version>\n-            <version>20.7.0</version>\n-            <version>21.2.0</version>\n-          </since>\n-          <synopsis>Relaxes check for query parameters, user/password, etc.\n-\t\t\t\t\tin incoming Identity header x5u URLs.</synopsis>\n-        </configOption>\n-        <configOption name=\"x5u_acl\" default=\"\">\n-          <since>\n-            <version>18.22.0</version>\n-            <version>20.7.0</version>\n-            <version>21.2.0</version>\n-          </since>\n-          <synopsis>An existing ACL from acl.conf to use when checking\n-\t\t\t\t\thostnames in incoming Identity header x5u URLs.</synopsis>\n-        </configOption>\n-        <configOption name=\"x5u_permit\" default=\"\">\n-          <since>\n-            <version>18.22.0</version>\n-            <version>20.7.0</version>\n-            <version>21.2.0</version>\n-          </since>\n-          <synopsis>An IP or subnet to permit when checking\n-\t\t\t\t\thostnames in incoming Identity header x5u URLs.</synopsis>\n-        </configOption>\n-        <configOption name=\"x5u_deny\" default=\"\">\n-          <since>\n-            <version>18.22.0</version>\n-            <version>20.7.0</version>\n-            <version>21.2.0</version>\n-          </since>\n-          <synopsis>An IP or subnet to deny  checking\n-\t\t\t\t\thostnames in incoming Identity header x5u URLs.</synopsis>\n-        </configOption>\n-      </configObject>\n-      <configObject name=\"profile\">\n-        <since>\n-          <version>18.22.0</version>\n-          <version>20.7.0</version>\n-          <version>21.2.0</version>\n-        </since>\n-        <synopsis>STIR/SHAKEN profile configuration options</synopsis>\n-        <configOption name=\"type\">\n-          <since>\n-            <version>18.22.0</version>\n-            <version>20.7.0</version>\n-            <version>21.2.0</version>\n-          </since>\n-          <synopsis>Must be of type 'profile'.</synopsis>\n-        </configOption>\n-        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='load_system_certs'])\"/>\n-        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='ca_file'])\"/>\n-        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='ca_path'])\"/>\n-        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='crl_file'])\"/>\n-        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='crl_path'])\"/>\n-        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='untrusted_cert_file'])\"/>\n-        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='untrusted_cert_path'])\"/>\n-        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='cert_cache_dir'])\"/>\n-        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='curl_timeout'])\"/>\n-        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='max_iat_age'])\"/>\n-        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='max_date_header_age'])\"/>\n-        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='ignore_sip_date_header'])\"/>\n-        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='max_cache_entry_age'])\"/>\n-        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='max_cache_size'])\"/>\n-        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='failure_action'])\"/>\n-        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='use_rfc9410_responses'])\"/>\n-        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='relax_x5u_port_scheme_restrictions'])\"/>\n-        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='relax_x5u_path_restrictions'])\"/>\n-        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='x5u_acl'])\"/>\n-        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='x5u_permit'])\"/>\n-        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='x5u_deny'])\"/>\n-        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='attestation']/configOption[@name='check_tn_cert_public_url'])\"/>\n-        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='attestation']/configOption[@name='private_key_file'])\"/>\n-        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='attestation']/configOption[@name='public_cert_url'])\"/>\n-        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='attestation']/configOption[@name='attest_level'])\"/>\n-        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='attestation']/configOption[@name='unknown_tn_attest_level'])\"/>\n-        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='attestation']/configOption[@name='send_mky'])\"/>\n-        <configOption name=\"endpoint_behavior\" default=\"off\">\n-          <since>\n-            <version>18.22.0</version>\n-            <version>20.7.0</version>\n-            <version>21.2.0</version>\n-          </since>\n-          <synopsis>Actions performed when an endpoint references this profile</synopsis>\n-          <description>\n-            <enumlist>\n-              <enum name=\"off\">\n-                <para>Don't do any STIR/SHAKEN processing.</para>\n-              </enum>\n-              <enum name=\"attest\">\n-                <para>Attest on outgoing calls.</para>\n-              </enum>\n-              <enum name=\"verify\">\n-                <para>Verify incoming calls.</para>\n-              </enum>\n-              <enum name=\"on\">\n-                <para>Attest outgoing calls and verify incoming calls.</para>\n-              </enum>\n-            </enumlist>\n-          </description>\n-        </configOption>\n-      </configObject>\n-    </configFile>\n-  </configInfo>\n-  <function name=\"STIR_SHAKEN\" language=\"en_US\">\n-    <since>\n-      <version>16.15.0</version>\n-    </since>\n-    <synopsis>Gets the number of STIR/SHAKEN results or a specific STIR/SHAKEN value from a result on the channel.</synopsis>\n-    <syntax>\n-      <parameter name=\"index\" required=\"true\">\n-        <para>The index of the STIR/SHAKEN result to get. If only 'count' is passed in, gets the number of STIR/SHAKEN results instead.</para>\n-      </parameter>\n-      <parameter name=\"value\" required=\"false\">\n-        <para>The value to get from the STIR/SHAKEN result. Only used when an index is passed in (instead of 'count'). Allowable values:</para>\n-        <enumlist>\n-          <enum name=\"identity\"/>\n-          <enum name=\"attestation\"/>\n-          <enum name=\"verify_result\"/>\n-        </enumlist>\n-      </parameter>\n-    </syntax>\n-    <description>\n-      <para>This function will either return the number of STIR/SHAKEN identities, or return information on the specified identity.\n-\t\t\tTo get the number of identities, just pass 'count' as the only parameter to the function. If you want to get information on a\n-\t\t\tspecific STIR/SHAKEN identity, you can get the number of identities and then pass an index as the first parameter and one of\n-\t\t\tthe values you would like to retrieve as the second parameter.</para>\n-      <example title=\"Get count and retrieve value\">same =&gt; n,NoOp(Number of STIR/SHAKEN identities: ${STIR_SHAKEN(count)})\n-\t\t\tsame =&gt; n,NoOp(Identity ${STIR_SHAKEN(0, identity)} has attestation level ${STIR_SHAKEN(0, attestation)})</example>\n-    </description>\n-  </function>\n-  <configInfo name=\"res_ari\" language=\"en_US\">\n-    <synopsis>HTTP binding for the Stasis API</synopsis>\n-    <configFile name=\"ari.conf\">\n-      <configObject name=\"general\">\n-        <since>\n-          <version>12.0.0</version>\n-        </since>\n-        <synopsis>General configuration settings</synopsis>\n-        <configOption name=\"enabled\">\n-          <since>\n-            <version>12.0.0</version>\n-          </since>\n-          <synopsis>Enable/disable the ARI module</synopsis>\n-          <description>\n-            <para>This option enables or disables the ARI module.</para>\n-            <note>\n-              <para>\n-                ARI uses Asterisk's HTTP server, which must also be enabled in\n-                <filename>http.conf</filename>\n-                .\n-              </para>\n-            </note>\n-          </description>\n-          <see-also>\n-            <ref type=\"filename\">http.conf</ref>\n-            <ref type=\"link\">https://docs.asterisk.org/Configuration/Core-Configuration/Asterisk-Builtin-mini-HTTP-Server/</ref>\n-          </see-also>\n-        </configOption>\n-        <configOption name=\"websocket_write_timeout\" default=\"100\">\n-          <since>\n-            <version>11.11.0</version>\n-            <version>12.4.0</version>\n-          </since>\n-          <synopsis>The timeout (in milliseconds) to set on WebSocket connections.</synopsis>\n-          <description>\n-            <para>If a websocket connection accepts input slowly, the timeout\n-\t\t\t\t\t\tfor writes to it can be increased to keep it from being disconnected.\n-\t\t\t\t\t\tValue is in milliseconds.</para>\n-          </description>\n-        </configOption>\n-        <configOption name=\"pretty\">\n-          <since>\n-            <version>12.0.0</version>\n-          </since>\n-          <synopsis>Responses from ARI are formatted to be human readable</synopsis>\n-        </configOption>\n-        <configOption name=\"auth_realm\">\n-          <since>\n-            <version>12.0.0</version>\n-          </since>\n-          <synopsis>Realm to use for authentication. Defaults to Asterisk REST Interface.</synopsis>\n-        </configOption>\n-        <configOption name=\"allowed_origins\">\n-          <since>\n-            <version>12.0.0</version>\n-          </since>\n-          <synopsis>Comma separated list of allowed origins, for Cross-Origin Resource Sharing. May be set to * to allow all origins.</synopsis>\n-        </configOption>\n-        <configOption name=\"channelvars\">\n-          <since>\n-            <version>14.2.0</version>\n-          </since>\n-          <synopsis>Comma separated list of channel variables to display in channel json.</synopsis>\n-        </configOption>\n-      </configObject>\n-      <configObject name=\"user\">\n-        <since>\n-          <version>12.0.0</version>\n-        </since>\n-        <synopsis>Per-user configuration settings</synopsis>\n-        <configOption name=\"type\">\n-          <since>\n-            <version>13.30.0</version>\n-            <version>16.7.0</version>\n-            <version>17.1.0</version>\n-          </since>\n-          <synopsis>Define this configuration section as a user.</synopsis>\n-          <description>\n-            <enumlist>\n-              <enum name=\"user\">\n-                <para>\n-                  Configure this section as a\n-                  <replaceable>user</replaceable>\n-                </para>\n-              </enum>\n-            </enumlist>\n-          </description>\n-        </configOption>\n-        <configOption name=\"read_only\">\n-          <since>\n-            <version>13.30.0</version>\n-            <version>16.7.0</version>\n-            <version>17.1.0</version>\n-          </since>\n-          <synopsis>When set to yes, user is only authorized for read-only requests</synopsis>\n-        </configOption>\n-        <configOption name=\"password\">\n-          <since>\n-            <version>13.30.0</version>\n-            <version>16.7.0</version>\n-            <version>17.1.0</version>\n-          </since>\n-          <synopsis>Crypted or plaintext password (see password_format)</synopsis>\n-        </configOption>\n-        <configOption name=\"password_format\">\n-          <since>\n-            <version>12.0.0</version>\n-          </since>\n-          <synopsis>password_format may be set to plain (the default) or crypt. When set to crypt, crypt(3) is used to validate the password. A crypted password can be generated using mkpasswd -m sha-512. When set to plain, the password is in plaintext</synopsis>\n-        </configOption>\n-      </configObject>\n-      <configObject name=\"outbound_websocket\">\n-        <since>\n-          <version>20.15.0</version>\n-          <version>21.10.0</version>\n-          <version>22.5.0</version>\n-        </since>\n-        <synopsis>Outbound websocket configuration</synopsis>\n-        <configOption name=\"type\">\n-          <since>\n-            <version>20.15.0</version>\n-            <version>21.10.0</version>\n-            <version>22.5.0</version>\n-          </since>\n-          <synopsis>Must be \"outbound_websocket\".</synopsis>\n-        </configOption>\n-        <configOption name=\"websocket_client_id\">\n-          <since>\n-            <version>20.15.0</version>\n-            <version>21.10.0</version>\n-            <version>22.5.0</version>\n-          </since>\n-          <synopsis>The ID of a connection defined in websocket_client.conf.</synopsis>\n-        </configOption>\n-        <configOption name=\"apps\">\n-          <since>\n-            <version>20.15.0</version>\n-            <version>21.10.0</version>\n-            <version>22.5.0</version>\n-          </since>\n-          <synopsis>Comma separated list of stasis applications that will use this websocket.</synopsis>\n-        </configOption>\n-        <configOption name=\"local_ari_user\">\n-          <since>\n-            <version>20.15.0</version>\n-            <version>21.10.0</version>\n-            <version>22.5.0</version>\n-          </since>\n-          <synopsis>The local ARI user to act as.</synopsis>\n-        </configOption>\n-        <configOption name=\"subscribe_all\" default=\"no\">\n-          <since>\n-            <version>20.15.0</version>\n-            <version>21.10.0</version>\n-            <version>22.5.0</version>\n-          </since>\n-          <synopsis>Subscribe applications to all event</synopsis>\n-        </configOption>\n-      </configObject>\n-    </configFile>\n-  </configInfo>\n-  <configInfo name=\"res_geolocation\" language=\"en_US\">\n-    <synopsis>Core Geolocation Support</synopsis>\n-    <configFile name=\"geolocation.conf\">\n-      <configObject name=\"location\">\n-        <since>\n-          <version>16.29.0</version>\n-          <version>18.15.0</version>\n-          <version>19.7.0</version>\n-        </since>\n-        <synopsis>Location</synopsis>\n-        <description>\n-          <para>Parameters for defining a Location object</para>\n-        </description>\n-        <configOption name=\"type\">\n-          <since>\n-            <version>16.28.0</version>\n-            <version>18.14.0</version>\n-            <version>19.6.0</version>\n-          </since>\n-          <synopsis>Must be of type 'location'.</synopsis>\n-        </configOption>\n-        <configOption name=\"format\" default=\"none\">\n-          <since>\n-            <version>16.28.0</version>\n-            <version>18.14.0</version>\n-            <version>19.6.0</version>\n-          </since>\n-          <synopsis>Location specification type</synopsis>\n-          <description>\n-            <enumlist>\n-              <enum name=\"civicAddress\">\n-                <para>\n-                  The\n-                  <literal>location_info</literal>\n-                  parameter must contain a comma separated list of IANA codes\n-\t\t\t\t\t\t\t\t\tor synonyms describing the civicAddress of this location.\n-\t\t\t\t\t\t\t\t\tThe IANA codes and synonyms can be obtained by executing\n-\t\t\t\t\t\t\t\t\tthe CLI command\n-                  <literal>geoloc show civicAddr_mapping</literal>\n-                  .\n-                </para>\n-              </enum>\n-              <enum name=\"GML\">\n-                <para>\n-                  The\n-                  <literal>location_info</literal>\n-                  parameter must contain a comma\n-\t\t\t\t\t\t\t\t\tseparated list valid GML elements describing this location.\n-                </para>\n-              </enum>\n-              <enum name=\"URI\">\n-                <para>\n-                  The\n-                  <literal>location_info</literal>\n-                  parameter must contain a single\n-\t\t\t\t\t\t\t\t\tURI parameter which contains an external URI describing this location.\n-                </para>\n-              </enum>\n-            </enumlist>\n-          </description>\n-        </configOption>\n-        <configOption name=\"location_info\" default=\"none\">\n-          <since>\n-            <version>16.28.0</version>\n-            <version>18.14.0</version>\n-            <version>19.6.0</version>\n-          </since>\n-          <synopsis>Location information</synopsis>\n-          <description>\n-            <para>\n-              The contents of this parameter are specific to the\n-\t\t\t\t\t\t\tlocation\n-              <literal>format</literal>\n-              .\n-            </para>\n-            <enumlist>\n-              <enum name=\"civicAddress\">\n-                <para>location_info = country=US,A1=\"New York\",city_district=Manhattan,\n-\t\t\t\t\t\tA3=\"New York\", house_number=1633, street=46th, street_suffix = Street,\n-\t\t\t\t\t\tpostal_code=10222,floor=20,room=20A2</para>\n-              </enum>\n-              <enum name=\"GML\">\n-                <para>location_info = Shape=Sphere, pos3d=\"39.12345 -105.98766 1920\", radius=200</para>\n-              </enum>\n-              <enum name=\"URI\">\n-                <para>location_info = URI=https:/something.com?exten=${EXTEN}</para>\n-              </enum>\n-            </enumlist>\n-          </description>\n-        </configOption>\n-        <configOption name=\"location_source\" default=\"none\">\n-          <since>\n-            <version>16.28.0</version>\n-            <version>18.14.0</version>\n-            <version>19.6.0</version>\n-          </since>\n-          <synopsis>Fully qualified host name</synopsis>\n-          <description>\n-            <para>\n-              This parameter isn't required but if provided, RFC8787 says it MUST be a fully\n-\t\t\t\t\t\tqualified host name.  IP addresses are specifically NOT allowed.  The value will be placed\n-\t\t\t\t\t\tin a\n-              <literal>loc-src</literal>\n-              parameter appended to the URI in the\n-              <literal>Geolocation</literal>\n-              header.\n-            </para>\n-          </description>\n-        </configOption>\n-        <configOption name=\"method\" default=\"none\">\n-          <since>\n-            <version>16.28.0</version>\n-            <version>18.14.0</version>\n-            <version>19.6.0</version>\n-          </since>\n-          <synopsis>Location determination method</synopsis>\n-          <description>\n-            <para>This is a rarely used field in the specification that would\n-\t\t\t\t\t\tindicate the method used to determine the location.  Its usage and values should be\n-\t\t\t\t\t\tpre-negotiated with any recipients.</para>\n-            <enumlist>\n-              <enum name=\"GPS\"/>\n-              <enum name=\"A-GPS\"/>\n-              <enum name=\"Manual\"/>\n-              <enum name=\"DHCP\"/>\n-              <enum name=\"Triangulation\"/>\n-              <enum name=\"Cell\"/>\n-              <enum name=\"802.11\"/>\n-            </enumlist>\n-          </description>\n-        </configOption>\n-        <configOption name=\"confidence\" default=\"none\">\n-          <since>\n-            <version>16.28.0</version>\n-            <version>18.14.0</version>\n-            <version>19.6.0</version>\n-          </since>\n-          <synopsis>Level of confidence</synopsis>\n-          <description>\n-            <para>This is a rarely used field in the specification that would\n-\t\t\t\t\t\tindicate the confidence in the location specified.  See RFC7459\n-\t\t\t\t\t\tfor exact details.</para>\n-            <para>Sub-parameters:</para>\n-            <enumlist>\n-              <enum name=\"pdf\">\n-                <para>One of:</para>\n-                <enumlist>\n-                  <enum name=\"unknown\"/>\n-                  <enum name=\"normal\"/>\n-                  <enum name=\"rectangular\"/>\n-                </enumlist>\n-              </enum>\n-              <enum name=\"value\">\n-                <para>A percentage indicating the confidence.</para>\n-              </enum>\n-            </enumlist>\n-          </description>\n-          <see-also>\n-            <ref type=\"link\">https://www.rfc-editor.org/rfc/rfc7459</ref>\n-          </see-also>\n-        </configOption>\n-      </configObject>\n-      <configObject name=\"profile\">\n-        <since>\n-          <version>16.29.0</version>\n-          <version>18.15.0</version>\n-          <version>19.7.0</version>\n-        </since>\n-        <synopsis>Profile</synopsis>\n-        <description>\n-          <para>Parameters for defining a Profile object</para>\n-        </description>\n-        <configOption name=\"type\">\n-          <since>\n-            <version>16.28.0</version>\n-            <version>18.14.0</version>\n-            <version>19.6.0</version>\n-          </since>\n-          <synopsis>Must be of type 'profile'.</synopsis>\n-        </configOption>\n-        <configOption name=\"pidf_element\" default=\"device\">\n-          <since>\n-            <version>16.28.0</version>\n-            <version>18.14.0</version>\n-            <version>19.6.0</version>\n-          </since>\n-          <synopsis>PIDF-LO element to place this profile in</synopsis>\n-          <description>\n-            <enumlist>\n-              <enum name=\"tuple\"/>\n-              <enum name=\"device\"/>\n-              <enum name=\"person\"/>\n-            </enumlist>\n-            <para>\n-              Based on RFC5491 (see below) the recommended and default element\n-\t\t\t\t\t\t\tis\n-              <literal>device</literal>\n-              .\n-            </para>\n-          </description>\n-          <see-also>\n-            <ref type=\"link\">https://www.rfc-editor.org/rfc/rfc5491.html#section-3.4</ref>\n-          </see-also>\n-        </configOption>\n-        <configOption name=\"location_reference\" default=\"none\">\n-          <since>\n-            <version>16.28.0</version>\n-            <version>18.14.0</version>\n-            <version>19.6.0</version>\n-          </since>\n-          <synopsis>Reference to a location object</synopsis>\n-        </configOption>\n-        <configOption name=\"location_info_refinement\" default=\"none\">\n-          <since>\n-            <version>16.28.0</version>\n-            <version>18.14.0</version>\n-            <version>19.6.0</version>\n-          </since>\n-          <synopsis>Reference to a location object</synopsis>\n-        </configOption>\n-        <configOption name=\"location_variables\" default=\"none\">\n-          <since>\n-            <version>16.28.0</version>\n-            <version>18.14.0</version>\n-            <version>19.6.0</version>\n-          </since>\n-          <synopsis>Reference to a location object</synopsis>\n-        </configOption>\n-        <configOption name=\"usage_rules\" default=\"empty &lt;usage_rules&gt; element\">\n-          <since>\n-            <version>16.28.0</version>\n-            <version>18.14.0</version>\n-            <version>19.6.0</version>\n-          </since>\n-          <synopsis>location specification type</synopsis>\n-          <description>\n-            <para>xxxx</para>\n-          </description>\n-        </configOption>\n-        <configOption name=\"notes\" default=\"\">\n-          <since>\n-            <version>16.28.0</version>\n-            <version>18.14.0</version>\n-            <version>19.6.0</version>\n-          </since>\n-          <synopsis>Notes to be added to the outgoing PIDF-LO document</synopsis>\n-          <description>\n-            <para>\n-              The specification of this parameter will cause a\n-              <literal>&lt;note-well&gt;</literal>\n-              element to be added to the\n-\t\t\t\t\t\toutgoing PIDF-LO document.  Its usage should be pre-negotiated with\n-\t\t\t\t\t\tany recipients.\n-            </para>\n-          </description>\n-        </configOption>\n-        <configOption name=\"allow_routing_use\" default=\"no\">\n-          <since>\n-            <version>16.28.0</version>\n-            <version>18.14.0</version>\n-            <version>19.6.0</version>\n-          </since>\n-          <synopsis>Sets the value of the Geolocation-Routing header.</synopsis>\n-        </configOption>\n-        <configOption name=\"suppress_empty_ca_elements\" default=\"no\">\n-          <since>\n-            <version>16.29.0</version>\n-            <version>18.15.0</version>\n-            <version>19.7.0</version>\n-          </since>\n-          <synopsis>Sets if empty Civic Address elements should be suppressed\n-\t\t\t\t\tfrom the PIDF-LO document.</synopsis>\n-        </configOption>\n-        <configOption name=\"profile_precedence\" default=\"discard_incoming\">\n-          <since>\n-            <version>16.28.0</version>\n-            <version>18.14.0</version>\n-            <version>19.6.0</version>\n-          </since>\n-          <synopsis>Determine which profile on a channel should be used</synopsis>\n-          <description>\n-            <enumlist>\n-              <enum name=\"prefer_incoming\">\n-                <para>Use the incoming profile if it exists and has location information, otherwise use the\n-\t\t\t\t\t\t\tconfigured profile if it exists and has location information. If neither profile has location\n-\t\t\t\t\t\t\tinformation, nothing is sent.</para>\n-              </enum>\n-              <enum name=\"prefer_config\">\n-                <para>Use the configured profile if it exists and has location information, otherwise use the\n-\t\t\t\t\t\t\tincoming profile if it exists and has location information. If neither profile has location\n-\t\t\t\t\t\t\tinformation, nothing is sent.</para>\n-              </enum>\n-              <enum name=\"discard_incoming\">\n-                <para>Discard any incoming profile and use the configured profile if it exists and\n-\t\t\t\t\t\t\tit has location information.  If the configured profile doesn't exist or has no\n-\t\t\t\t\t\t\tlocation information, nothing is sent.</para>\n-              </enum>\n-              <enum name=\"discard_config\">\n-                <para>Discard any configured profile and use the incoming profile if it exists and\n-\t\t\t\t\t\t\tit has location information.  If the incoming profile doesn't exist or has no\n-\t\t\t\t\t\t\tlocation information, nothing is sent.</para>\n-              </enum>\n-            </enumlist>\n-          </description>\n-        </configOption>\n-        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_geolocation']/configFile[@name='geolocation.conf']/configObject[@name='location']/configOption[@name='format'])\"/>\n-        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_geolocation']/configFile[@name='geolocation.conf']/configObject[@name='location']/configOption[@name='location_info'])\"/>\n-        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_geolocation']/configFile[@name='geolocation.conf']/configObject[@name='location']/configOption[@name='confidence'])\"/>\n-        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_geolocation']/configFile[@name='geolocation.conf']/configObject[@name='location']/configOption[@name='location_source'])\"/>\n-        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_geolocation']/configFile[@name='geolocation.conf']/configObject[@name='location']/configOption[@name='method'])\"/>\n-      </configObject>\n-    </configFile>\n-  </configInfo>\n-  <function name=\"GEOLOC_PROFILE\" language=\"en_US\">\n-    <since>\n-      <version>16.28.0</version>\n-      <version>18.14.0</version>\n-      <version>19.6.0</version>\n-    </since>\n-    <synopsis>Get or Set a field in a geolocation profile</synopsis>\n-    <syntax>\n-      <parameter name=\"parameter\" required=\"true\">\n-        <para>The profile parameter to operate on. The following fields from the\n-\t\t\t\tLocation and Profile objects are supported.</para>\n-        <enumlist>\n-          <enum name=\"id\"/>\n-          <enum name=\"location_reference\"/>\n-          <enum name=\"method\"/>\n-          <enum name=\"allow_routing_use\"/>\n-          <enum name=\"profile_precedence\"/>\n-          <enum name=\"format\"/>\n-          <enum name=\"pidf_element\"/>\n-          <enum name=\"location_source\"/>\n-          <enum name=\"notes\"/>\n-          <enum name=\"location_info\"/>\n-          <enum name=\"location_info_refinement\"/>\n-          <enum name=\"location_variables\"/>\n-          <enum name=\"effective_location\"/>\n-          <enum name=\"usage_rules\"/>\n-          <enum name=\"confidence\"/>\n-        </enumlist>\n-        <para>\n-          Additionally, the\n-          <literal>inheritable</literal>\n-          field may be\n-\t\t\t\tset to\n-          <literal>true</literal>\n-          or\n-          <literal>false</literal>\n-          to control\n-\t\t\t\twhether the profile will be passed to the outgoing channel.\n-        </para>\n-        <para/>\n-      </parameter>\n-      <parameter name=\"options\" required=\"false\">\n-        <optionlist>\n-          <option name=\"a\">\n-            <para>\n-              Append provided value to the specified parameter\n-\t\t\t\t\tinstead of replacing the existing value.  This only applies\n-\t\t\t\t\tto variable list parameters like\n-              <literal>location_info_refinement</literal>\n-              .\n-            </para>\n-          </option>\n-          <option name=\"r\">\n-            <para>\n-              Before reading or after writing the specified parameter,\n-\t\t\t\t\tre-resolve the\n-              <literal>effective_location</literal>\n-              and\n-              <literal>usage_rules</literal>\n-              parameters using the\n-              <literal>location_variables</literal>\n-              parameter and the variables\n-\t\t\t\t\tset on the channel in effect at the time this function is called.\n-            </para>\n-            <note>\n-              <para>\n-                On a read operation, this does not alter the actual profile\n-\t\t\t\t\t\tin any way.  On a write operation however, the\n-                <literal>effective_location</literal>\n-                and/or\n-                <literal>usage_rules</literal>\n-                parameters may indeed change and those changes will be passed on\n-\t\t\t\t\t\tto any outgoing channel.\n-              </para>\n-            </note>\n-          </option>\n-        </optionlist>\n-      </parameter>\n-    </syntax>\n-    <description>\n-      <para>When used to set a parameter on a profile, if the profile doesn't already exist, a new\n-\t\tone will be created automatically.</para>\n-      <para>\n-        The\n-        <literal>${GEOLOCPROFILESTATUS}</literal>\n-        channel variable will be set with\n-\t\ta return code indicating the result of the operation.  Possible values are:\n-      </para>\n-      <enumlist>\n-        <enum name=\"0\">\n-          <para>Success</para>\n-        </enum>\n-        <enum name=\"-1\">\n-          <para>No or not enough parameters were supplied</para>\n-        </enum>\n-        <enum name=\"-2\">\n-          <para>There was an internal error finding or creating a profile</para>\n-        </enum>\n-        <enum name=\"-3\">\n-          <para>There was an issue specific to the parameter specified\n-\t\t\t(value not valid or parameter name not found, etc.)</para>\n-        </enum>\n-      </enumlist>\n-    </description>\n-  </function>\n   <manager name=\"PJSIPQualify\" language=\"en_US\">\n     <since>\n       <version>12.0.0</version>\n     </since>\n     <synopsis>Qualify a chan_pjsip endpoint.</synopsis>\n     <syntax>\n       <xi:include xpointer=\"xpointer(/docs/manager[@name='Login']/syntax/parameter[@name='ActionID'])\"/>\n@@ -44995,14 +43905,1104 @@\n               only.\n             </para>\n           </description>\n         </configOption>\n       </configObject>\n     </configFile>\n   </configInfo>\n+  <configInfo name=\"res_geolocation\" language=\"en_US\">\n+    <synopsis>Core Geolocation Support</synopsis>\n+    <configFile name=\"geolocation.conf\">\n+      <configObject name=\"location\">\n+        <since>\n+          <version>16.29.0</version>\n+          <version>18.15.0</version>\n+          <version>19.7.0</version>\n+        </since>\n+        <synopsis>Location</synopsis>\n+        <description>\n+          <para>Parameters for defining a Location object</para>\n+        </description>\n+        <configOption name=\"type\">\n+          <since>\n+            <version>16.28.0</version>\n+            <version>18.14.0</version>\n+            <version>19.6.0</version>\n+          </since>\n+          <synopsis>Must be of type 'location'.</synopsis>\n+        </configOption>\n+        <configOption name=\"format\" default=\"none\">\n+          <since>\n+            <version>16.28.0</version>\n+            <version>18.14.0</version>\n+            <version>19.6.0</version>\n+          </since>\n+          <synopsis>Location specification type</synopsis>\n+          <description>\n+            <enumlist>\n+              <enum name=\"civicAddress\">\n+                <para>\n+                  The\n+                  <literal>location_info</literal>\n+                  parameter must contain a comma separated list of IANA codes\n+\t\t\t\t\t\t\t\t\tor synonyms describing the civicAddress of this location.\n+\t\t\t\t\t\t\t\t\tThe IANA codes and synonyms can be obtained by executing\n+\t\t\t\t\t\t\t\t\tthe CLI command\n+                  <literal>geoloc show civicAddr_mapping</literal>\n+                  .\n+                </para>\n+              </enum>\n+              <enum name=\"GML\">\n+                <para>\n+                  The\n+                  <literal>location_info</literal>\n+                  parameter must contain a comma\n+\t\t\t\t\t\t\t\t\tseparated list valid GML elements describing this location.\n+                </para>\n+              </enum>\n+              <enum name=\"URI\">\n+                <para>\n+                  The\n+                  <literal>location_info</literal>\n+                  parameter must contain a single\n+\t\t\t\t\t\t\t\t\tURI parameter which contains an external URI describing this location.\n+                </para>\n+              </enum>\n+            </enumlist>\n+          </description>\n+        </configOption>\n+        <configOption name=\"location_info\" default=\"none\">\n+          <since>\n+            <version>16.28.0</version>\n+            <version>18.14.0</version>\n+            <version>19.6.0</version>\n+          </since>\n+          <synopsis>Location information</synopsis>\n+          <description>\n+            <para>\n+              The contents of this parameter are specific to the\n+\t\t\t\t\t\t\tlocation\n+              <literal>format</literal>\n+              .\n+            </para>\n+            <enumlist>\n+              <enum name=\"civicAddress\">\n+                <para>location_info = country=US,A1=\"New York\",city_district=Manhattan,\n+\t\t\t\t\t\tA3=\"New York\", house_number=1633, street=46th, street_suffix = Street,\n+\t\t\t\t\t\tpostal_code=10222,floor=20,room=20A2</para>\n+              </enum>\n+              <enum name=\"GML\">\n+                <para>location_info = Shape=Sphere, pos3d=\"39.12345 -105.98766 1920\", radius=200</para>\n+              </enum>\n+              <enum name=\"URI\">\n+                <para>location_info = URI=https:/something.com?exten=${EXTEN}</para>\n+              </enum>\n+            </enumlist>\n+          </description>\n+        </configOption>\n+        <configOption name=\"location_source\" default=\"none\">\n+          <since>\n+            <version>16.28.0</version>\n+            <version>18.14.0</version>\n+            <version>19.6.0</version>\n+          </since>\n+          <synopsis>Fully qualified host name</synopsis>\n+          <description>\n+            <para>\n+              This parameter isn't required but if provided, RFC8787 says it MUST be a fully\n+\t\t\t\t\t\tqualified host name.  IP addresses are specifically NOT allowed.  The value will be placed\n+\t\t\t\t\t\tin a\n+              <literal>loc-src</literal>\n+              parameter appended to the URI in the\n+              <literal>Geolocation</literal>\n+              header.\n+            </para>\n+          </description>\n+        </configOption>\n+        <configOption name=\"method\" default=\"none\">\n+          <since>\n+            <version>16.28.0</version>\n+            <version>18.14.0</version>\n+            <version>19.6.0</version>\n+          </since>\n+          <synopsis>Location determination method</synopsis>\n+          <description>\n+            <para>This is a rarely used field in the specification that would\n+\t\t\t\t\t\tindicate the method used to determine the location.  Its usage and values should be\n+\t\t\t\t\t\tpre-negotiated with any recipients.</para>\n+            <enumlist>\n+              <enum name=\"GPS\"/>\n+              <enum name=\"A-GPS\"/>\n+              <enum name=\"Manual\"/>\n+              <enum name=\"DHCP\"/>\n+              <enum name=\"Triangulation\"/>\n+              <enum name=\"Cell\"/>\n+              <enum name=\"802.11\"/>\n+            </enumlist>\n+          </description>\n+        </configOption>\n+        <configOption name=\"confidence\" default=\"none\">\n+          <since>\n+            <version>16.28.0</version>\n+            <version>18.14.0</version>\n+            <version>19.6.0</version>\n+          </since>\n+          <synopsis>Level of confidence</synopsis>\n+          <description>\n+            <para>This is a rarely used field in the specification that would\n+\t\t\t\t\t\tindicate the confidence in the location specified.  See RFC7459\n+\t\t\t\t\t\tfor exact details.</para>\n+            <para>Sub-parameters:</para>\n+            <enumlist>\n+              <enum name=\"pdf\">\n+                <para>One of:</para>\n+                <enumlist>\n+                  <enum name=\"unknown\"/>\n+                  <enum name=\"normal\"/>\n+                  <enum name=\"rectangular\"/>\n+                </enumlist>\n+              </enum>\n+              <enum name=\"value\">\n+                <para>A percentage indicating the confidence.</para>\n+              </enum>\n+            </enumlist>\n+          </description>\n+          <see-also>\n+            <ref type=\"link\">https://www.rfc-editor.org/rfc/rfc7459</ref>\n+          </see-also>\n+        </configOption>\n+      </configObject>\n+      <configObject name=\"profile\">\n+        <since>\n+          <version>16.29.0</version>\n+          <version>18.15.0</version>\n+          <version>19.7.0</version>\n+        </since>\n+        <synopsis>Profile</synopsis>\n+        <description>\n+          <para>Parameters for defining a Profile object</para>\n+        </description>\n+        <configOption name=\"type\">\n+          <since>\n+            <version>16.28.0</version>\n+            <version>18.14.0</version>\n+            <version>19.6.0</version>\n+          </since>\n+          <synopsis>Must be of type 'profile'.</synopsis>\n+        </configOption>\n+        <configOption name=\"pidf_element\" default=\"device\">\n+          <since>\n+            <version>16.28.0</version>\n+            <version>18.14.0</version>\n+            <version>19.6.0</version>\n+          </since>\n+          <synopsis>PIDF-LO element to place this profile in</synopsis>\n+          <description>\n+            <enumlist>\n+              <enum name=\"tuple\"/>\n+              <enum name=\"device\"/>\n+              <enum name=\"person\"/>\n+            </enumlist>\n+            <para>\n+              Based on RFC5491 (see below) the recommended and default element\n+\t\t\t\t\t\t\tis\n+              <literal>device</literal>\n+              .\n+            </para>\n+          </description>\n+          <see-also>\n+            <ref type=\"link\">https://www.rfc-editor.org/rfc/rfc5491.html#section-3.4</ref>\n+          </see-also>\n+        </configOption>\n+        <configOption name=\"location_reference\" default=\"none\">\n+          <since>\n+            <version>16.28.0</version>\n+            <version>18.14.0</version>\n+            <version>19.6.0</version>\n+          </since>\n+          <synopsis>Reference to a location object</synopsis>\n+        </configOption>\n+        <configOption name=\"location_info_refinement\" default=\"none\">\n+          <since>\n+            <version>16.28.0</version>\n+            <version>18.14.0</version>\n+            <version>19.6.0</version>\n+          </since>\n+          <synopsis>Reference to a location object</synopsis>\n+        </configOption>\n+        <configOption name=\"location_variables\" default=\"none\">\n+          <since>\n+            <version>16.28.0</version>\n+            <version>18.14.0</version>\n+            <version>19.6.0</version>\n+          </since>\n+          <synopsis>Reference to a location object</synopsis>\n+        </configOption>\n+        <configOption name=\"usage_rules\" default=\"empty &lt;usage_rules&gt; element\">\n+          <since>\n+            <version>16.28.0</version>\n+            <version>18.14.0</version>\n+            <version>19.6.0</version>\n+          </since>\n+          <synopsis>location specification type</synopsis>\n+          <description>\n+            <para>xxxx</para>\n+          </description>\n+        </configOption>\n+        <configOption name=\"notes\" default=\"\">\n+          <since>\n+            <version>16.28.0</version>\n+            <version>18.14.0</version>\n+            <version>19.6.0</version>\n+          </since>\n+          <synopsis>Notes to be added to the outgoing PIDF-LO document</synopsis>\n+          <description>\n+            <para>\n+              The specification of this parameter will cause a\n+              <literal>&lt;note-well&gt;</literal>\n+              element to be added to the\n+\t\t\t\t\t\toutgoing PIDF-LO document.  Its usage should be pre-negotiated with\n+\t\t\t\t\t\tany recipients.\n+            </para>\n+          </description>\n+        </configOption>\n+        <configOption name=\"allow_routing_use\" default=\"no\">\n+          <since>\n+            <version>16.28.0</version>\n+            <version>18.14.0</version>\n+            <version>19.6.0</version>\n+          </since>\n+          <synopsis>Sets the value of the Geolocation-Routing header.</synopsis>\n+        </configOption>\n+        <configOption name=\"suppress_empty_ca_elements\" default=\"no\">\n+          <since>\n+            <version>16.29.0</version>\n+            <version>18.15.0</version>\n+            <version>19.7.0</version>\n+          </since>\n+          <synopsis>Sets if empty Civic Address elements should be suppressed\n+\t\t\t\t\tfrom the PIDF-LO document.</synopsis>\n+        </configOption>\n+        <configOption name=\"profile_precedence\" default=\"discard_incoming\">\n+          <since>\n+            <version>16.28.0</version>\n+            <version>18.14.0</version>\n+            <version>19.6.0</version>\n+          </since>\n+          <synopsis>Determine which profile on a channel should be used</synopsis>\n+          <description>\n+            <enumlist>\n+              <enum name=\"prefer_incoming\">\n+                <para>Use the incoming profile if it exists and has location information, otherwise use the\n+\t\t\t\t\t\t\tconfigured profile if it exists and has location information. If neither profile has location\n+\t\t\t\t\t\t\tinformation, nothing is sent.</para>\n+              </enum>\n+              <enum name=\"prefer_config\">\n+                <para>Use the configured profile if it exists and has location information, otherwise use the\n+\t\t\t\t\t\t\tincoming profile if it exists and has location information. If neither profile has location\n+\t\t\t\t\t\t\tinformation, nothing is sent.</para>\n+              </enum>\n+              <enum name=\"discard_incoming\">\n+                <para>Discard any incoming profile and use the configured profile if it exists and\n+\t\t\t\t\t\t\tit has location information.  If the configured profile doesn't exist or has no\n+\t\t\t\t\t\t\tlocation information, nothing is sent.</para>\n+              </enum>\n+              <enum name=\"discard_config\">\n+                <para>Discard any configured profile and use the incoming profile if it exists and\n+\t\t\t\t\t\t\tit has location information.  If the incoming profile doesn't exist or has no\n+\t\t\t\t\t\t\tlocation information, nothing is sent.</para>\n+              </enum>\n+            </enumlist>\n+          </description>\n+        </configOption>\n+        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_geolocation']/configFile[@name='geolocation.conf']/configObject[@name='location']/configOption[@name='format'])\"/>\n+        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_geolocation']/configFile[@name='geolocation.conf']/configObject[@name='location']/configOption[@name='location_info'])\"/>\n+        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_geolocation']/configFile[@name='geolocation.conf']/configObject[@name='location']/configOption[@name='confidence'])\"/>\n+        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_geolocation']/configFile[@name='geolocation.conf']/configObject[@name='location']/configOption[@name='location_source'])\"/>\n+        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_geolocation']/configFile[@name='geolocation.conf']/configObject[@name='location']/configOption[@name='method'])\"/>\n+      </configObject>\n+    </configFile>\n+  </configInfo>\n+  <function name=\"GEOLOC_PROFILE\" language=\"en_US\">\n+    <since>\n+      <version>16.28.0</version>\n+      <version>18.14.0</version>\n+      <version>19.6.0</version>\n+    </since>\n+    <synopsis>Get or Set a field in a geolocation profile</synopsis>\n+    <syntax>\n+      <parameter name=\"parameter\" required=\"true\">\n+        <para>The profile parameter to operate on. The following fields from the\n+\t\t\t\tLocation and Profile objects are supported.</para>\n+        <enumlist>\n+          <enum name=\"id\"/>\n+          <enum name=\"location_reference\"/>\n+          <enum name=\"method\"/>\n+          <enum name=\"allow_routing_use\"/>\n+          <enum name=\"profile_precedence\"/>\n+          <enum name=\"format\"/>\n+          <enum name=\"pidf_element\"/>\n+          <enum name=\"location_source\"/>\n+          <enum name=\"notes\"/>\n+          <enum name=\"location_info\"/>\n+          <enum name=\"location_info_refinement\"/>\n+          <enum name=\"location_variables\"/>\n+          <enum name=\"effective_location\"/>\n+          <enum name=\"usage_rules\"/>\n+          <enum name=\"confidence\"/>\n+        </enumlist>\n+        <para>\n+          Additionally, the\n+          <literal>inheritable</literal>\n+          field may be\n+\t\t\t\tset to\n+          <literal>true</literal>\n+          or\n+          <literal>false</literal>\n+          to control\n+\t\t\t\twhether the profile will be passed to the outgoing channel.\n+        </para>\n+        <para/>\n+      </parameter>\n+      <parameter name=\"options\" required=\"false\">\n+        <optionlist>\n+          <option name=\"a\">\n+            <para>\n+              Append provided value to the specified parameter\n+\t\t\t\t\tinstead of replacing the existing value.  This only applies\n+\t\t\t\t\tto variable list parameters like\n+              <literal>location_info_refinement</literal>\n+              .\n+            </para>\n+          </option>\n+          <option name=\"r\">\n+            <para>\n+              Before reading or after writing the specified parameter,\n+\t\t\t\t\tre-resolve the\n+              <literal>effective_location</literal>\n+              and\n+              <literal>usage_rules</literal>\n+              parameters using the\n+              <literal>location_variables</literal>\n+              parameter and the variables\n+\t\t\t\t\tset on the channel in effect at the time this function is called.\n+            </para>\n+            <note>\n+              <para>\n+                On a read operation, this does not alter the actual profile\n+\t\t\t\t\t\tin any way.  On a write operation however, the\n+                <literal>effective_location</literal>\n+                and/or\n+                <literal>usage_rules</literal>\n+                parameters may indeed change and those changes will be passed on\n+\t\t\t\t\t\tto any outgoing channel.\n+              </para>\n+            </note>\n+          </option>\n+        </optionlist>\n+      </parameter>\n+    </syntax>\n+    <description>\n+      <para>When used to set a parameter on a profile, if the profile doesn't already exist, a new\n+\t\tone will be created automatically.</para>\n+      <para>\n+        The\n+        <literal>${GEOLOCPROFILESTATUS}</literal>\n+        channel variable will be set with\n+\t\ta return code indicating the result of the operation.  Possible values are:\n+      </para>\n+      <enumlist>\n+        <enum name=\"0\">\n+          <para>Success</para>\n+        </enum>\n+        <enum name=\"-1\">\n+          <para>No or not enough parameters were supplied</para>\n+        </enum>\n+        <enum name=\"-2\">\n+          <para>There was an internal error finding or creating a profile</para>\n+        </enum>\n+        <enum name=\"-3\">\n+          <para>There was an issue specific to the parameter specified\n+\t\t\t(value not valid or parameter name not found, etc.)</para>\n+        </enum>\n+      </enumlist>\n+    </description>\n+  </function>\n+  <configInfo name=\"res_ari\" language=\"en_US\">\n+    <synopsis>HTTP binding for the Stasis API</synopsis>\n+    <configFile name=\"ari.conf\">\n+      <configObject name=\"general\">\n+        <since>\n+          <version>12.0.0</version>\n+        </since>\n+        <synopsis>General configuration settings</synopsis>\n+        <configOption name=\"enabled\">\n+          <since>\n+            <version>12.0.0</version>\n+          </since>\n+          <synopsis>Enable/disable the ARI module</synopsis>\n+          <description>\n+            <para>This option enables or disables the ARI module.</para>\n+            <note>\n+              <para>\n+                ARI uses Asterisk's HTTP server, which must also be enabled in\n+                <filename>http.conf</filename>\n+                .\n+              </para>\n+            </note>\n+          </description>\n+          <see-also>\n+            <ref type=\"filename\">http.conf</ref>\n+            <ref type=\"link\">https://docs.asterisk.org/Configuration/Core-Configuration/Asterisk-Builtin-mini-HTTP-Server/</ref>\n+          </see-also>\n+        </configOption>\n+        <configOption name=\"websocket_write_timeout\" default=\"100\">\n+          <since>\n+            <version>11.11.0</version>\n+            <version>12.4.0</version>\n+          </since>\n+          <synopsis>The timeout (in milliseconds) to set on WebSocket connections.</synopsis>\n+          <description>\n+            <para>If a websocket connection accepts input slowly, the timeout\n+\t\t\t\t\t\tfor writes to it can be increased to keep it from being disconnected.\n+\t\t\t\t\t\tValue is in milliseconds.</para>\n+          </description>\n+        </configOption>\n+        <configOption name=\"pretty\">\n+          <since>\n+            <version>12.0.0</version>\n+          </since>\n+          <synopsis>Responses from ARI are formatted to be human readable</synopsis>\n+        </configOption>\n+        <configOption name=\"auth_realm\">\n+          <since>\n+            <version>12.0.0</version>\n+          </since>\n+          <synopsis>Realm to use for authentication. Defaults to Asterisk REST Interface.</synopsis>\n+        </configOption>\n+        <configOption name=\"allowed_origins\">\n+          <since>\n+            <version>12.0.0</version>\n+          </since>\n+          <synopsis>Comma separated list of allowed origins, for Cross-Origin Resource Sharing. May be set to * to allow all origins.</synopsis>\n+        </configOption>\n+        <configOption name=\"channelvars\">\n+          <since>\n+            <version>14.2.0</version>\n+          </since>\n+          <synopsis>Comma separated list of channel variables to display in channel json.</synopsis>\n+        </configOption>\n+      </configObject>\n+      <configObject name=\"user\">\n+        <since>\n+          <version>12.0.0</version>\n+        </since>\n+        <synopsis>Per-user configuration settings</synopsis>\n+        <configOption name=\"type\">\n+          <since>\n+            <version>13.30.0</version>\n+            <version>16.7.0</version>\n+            <version>17.1.0</version>\n+          </since>\n+          <synopsis>Define this configuration section as a user.</synopsis>\n+          <description>\n+            <enumlist>\n+              <enum name=\"user\">\n+                <para>\n+                  Configure this section as a\n+                  <replaceable>user</replaceable>\n+                </para>\n+              </enum>\n+            </enumlist>\n+          </description>\n+        </configOption>\n+        <configOption name=\"read_only\">\n+          <since>\n+            <version>13.30.0</version>\n+            <version>16.7.0</version>\n+            <version>17.1.0</version>\n+          </since>\n+          <synopsis>When set to yes, user is only authorized for read-only requests</synopsis>\n+        </configOption>\n+        <configOption name=\"password\">\n+          <since>\n+            <version>13.30.0</version>\n+            <version>16.7.0</version>\n+            <version>17.1.0</version>\n+          </since>\n+          <synopsis>Crypted or plaintext password (see password_format)</synopsis>\n+        </configOption>\n+        <configOption name=\"password_format\">\n+          <since>\n+            <version>12.0.0</version>\n+          </since>\n+          <synopsis>password_format may be set to plain (the default) or crypt. When set to crypt, crypt(3) is used to validate the password. A crypted password can be generated using mkpasswd -m sha-512. When set to plain, the password is in plaintext</synopsis>\n+        </configOption>\n+      </configObject>\n+      <configObject name=\"outbound_websocket\">\n+        <since>\n+          <version>20.15.0</version>\n+          <version>21.10.0</version>\n+          <version>22.5.0</version>\n+        </since>\n+        <synopsis>Outbound websocket configuration</synopsis>\n+        <configOption name=\"type\">\n+          <since>\n+            <version>20.15.0</version>\n+            <version>21.10.0</version>\n+            <version>22.5.0</version>\n+          </since>\n+          <synopsis>Must be \"outbound_websocket\".</synopsis>\n+        </configOption>\n+        <configOption name=\"websocket_client_id\">\n+          <since>\n+            <version>20.15.0</version>\n+            <version>21.10.0</version>\n+            <version>22.5.0</version>\n+          </since>\n+          <synopsis>The ID of a connection defined in websocket_client.conf.</synopsis>\n+        </configOption>\n+        <configOption name=\"apps\">\n+          <since>\n+            <version>20.15.0</version>\n+            <version>21.10.0</version>\n+            <version>22.5.0</version>\n+          </since>\n+          <synopsis>Comma separated list of stasis applications that will use this websocket.</synopsis>\n+        </configOption>\n+        <configOption name=\"local_ari_user\">\n+          <since>\n+            <version>20.15.0</version>\n+            <version>21.10.0</version>\n+            <version>22.5.0</version>\n+          </since>\n+          <synopsis>The local ARI user to act as.</synopsis>\n+        </configOption>\n+        <configOption name=\"subscribe_all\" default=\"no\">\n+          <since>\n+            <version>20.15.0</version>\n+            <version>21.10.0</version>\n+            <version>22.5.0</version>\n+          </since>\n+          <synopsis>Subscribe applications to all event</synopsis>\n+        </configOption>\n+      </configObject>\n+    </configFile>\n+  </configInfo>\n+  <configInfo name=\"res_stir_shaken\" language=\"en_US\">\n+    <synopsis>STIR/SHAKEN module for Asterisk</synopsis>\n+    <configFile name=\"stir_shaken.conf\">\n+      <configObject name=\"attestation\">\n+        <since>\n+          <version>18.22.0</version>\n+          <version>20.7.0</version>\n+          <version>21.2.0</version>\n+        </since>\n+        <synopsis>STIR/SHAKEN attestation options</synopsis>\n+        <configOption name=\"global_disable\" default=\"false\">\n+          <since>\n+            <version>18.22.0</version>\n+            <version>20.7.0</version>\n+            <version>21.2.0</version>\n+          </since>\n+          <synopsis>Globally disable verification</synopsis>\n+        </configOption>\n+        <configOption name=\"private_key_file\" default=\"\">\n+          <since>\n+            <version>18.22.0</version>\n+            <version>20.7.0</version>\n+            <version>21.2.0</version>\n+          </since>\n+          <synopsis>File path to a certificate</synopsis>\n+        </configOption>\n+        <configOption name=\"public_cert_url\" default=\"\">\n+          <since>\n+            <version>18.22.0</version>\n+            <version>20.7.0</version>\n+            <version>21.2.0</version>\n+          </since>\n+          <synopsis>URL to the public certificate</synopsis>\n+          <description>\n+            <para>Must be a valid http, or https, URL.</para>\n+          </description>\n+        </configOption>\n+        <configOption name=\"attest_level\">\n+          <since>\n+            <version>18.22.0</version>\n+            <version>20.7.0</version>\n+            <version>21.2.0</version>\n+          </since>\n+          <synopsis>Attestation level</synopsis>\n+        </configOption>\n+        <configOption name=\"unknown_tn_attest_level\">\n+          <since>\n+            <version>20.12.0</version>\n+            <version>21.7.0</version>\n+            <version>22.2.0</version>\n+          </since>\n+          <synopsis>Attestation level to use for unknown TNs</synopsis>\n+          <description>\n+            <para>Normally if a callerid TN isn't configured in stir_shaken.conf\n+\t\t\t\t\tno Identity header will be created. If this option is set,\n+\t\t\t\t\thowever, an Identity header will be sent using this\n+\t\t\t\t\tattestation level.  Since there's no TN object, you must\n+\t\t\t\t\tensure that a private_key_file and public_cert_url are\n+\t\t\t\t\tconfigured in the attestation or profile objects for\n+\t\t\t\t\tthis to work.</para>\n+          </description>\n+        </configOption>\n+        <configOption name=\"check_tn_cert_public_url\" default=\"false\">\n+          <since>\n+            <version>18.22.0</version>\n+            <version>20.7.0</version>\n+            <version>21.2.0</version>\n+          </since>\n+          <synopsis>On load, Retrieve all TN's certificates and validate their dates</synopsis>\n+        </configOption>\n+        <configOption name=\"send_mky\" default=\"no\">\n+          <since>\n+            <version>18.22.0</version>\n+            <version>20.7.0</version>\n+            <version>21.2.0</version>\n+          </since>\n+          <synopsis>Send a media key (mky) grant in the attestation for DTLS calls.\n+\t\t\t\t\t(not common)</synopsis>\n+        </configOption>\n+      </configObject>\n+      <configObject name=\"tn\">\n+        <since>\n+          <version>18.22.0</version>\n+          <version>20.7.0</version>\n+          <version>21.2.0</version>\n+        </since>\n+        <synopsis>STIR/SHAKEN TN options</synopsis>\n+        <configOption name=\"type\">\n+          <since>\n+            <version>18.22.0</version>\n+            <version>20.7.0</version>\n+            <version>21.2.0</version>\n+          </since>\n+          <synopsis>Must be of type 'tn'.</synopsis>\n+        </configOption>\n+        <configOption name=\"private_key_file\" default=\"\">\n+          <since>\n+            <version>18.22.0</version>\n+            <version>20.7.0</version>\n+            <version>21.2.0</version>\n+          </since>\n+          <synopsis>File path to a certificate</synopsis>\n+        </configOption>\n+        <configOption name=\"public_cert_url\" default=\"\">\n+          <since>\n+            <version>18.22.0</version>\n+            <version>20.7.0</version>\n+            <version>21.2.0</version>\n+          </since>\n+          <synopsis>URL to the public certificate</synopsis>\n+          <description>\n+            <para>Must be a valid http, or https, URL.</para>\n+          </description>\n+        </configOption>\n+        <configOption name=\"attest_level\">\n+          <since>\n+            <version>18.22.0</version>\n+            <version>20.7.0</version>\n+            <version>21.2.0</version>\n+          </since>\n+          <synopsis>Attestation level</synopsis>\n+        </configOption>\n+        <configOption name=\"check_tn_cert_public_url\" default=\"false\">\n+          <since>\n+            <version>18.22.0</version>\n+            <version>20.7.0</version>\n+            <version>21.2.0</version>\n+          </since>\n+          <synopsis>On load, Retrieve all TN's certificates and validate their dates</synopsis>\n+        </configOption>\n+        <configOption name=\"send_mky\" default=\"no\">\n+          <since>\n+            <version>18.22.0</version>\n+            <version>20.7.0</version>\n+            <version>21.2.0</version>\n+          </since>\n+          <synopsis>Send a media key (mky) grant in the attestation for DTLS calls.\n+\t\t\t\t\t(not common)</synopsis>\n+        </configOption>\n+      </configObject>\n+      <configObject name=\"verification\">\n+        <since>\n+          <version>18.22.0</version>\n+          <version>20.7.0</version>\n+          <version>21.2.0</version>\n+        </since>\n+        <synopsis>STIR/SHAKEN verification options</synopsis>\n+        <configOption name=\"global_disable\" default=\"false\">\n+          <since>\n+            <version>18.22.0</version>\n+            <version>20.7.0</version>\n+            <version>21.2.0</version>\n+          </since>\n+          <synopsis>Globally disable verification</synopsis>\n+        </configOption>\n+        <configOption name=\"load_system_certs\" default=\"\">\n+          <since>\n+            <version>18.22.0</version>\n+            <version>20.7.0</version>\n+            <version>21.2.0</version>\n+          </since>\n+          <synopsis>A boolean indicating whether trusted CA certificates should be loaded from the system</synopsis>\n+        </configOption>\n+        <configOption name=\"ca_file\" default=\"\">\n+          <since>\n+            <version>18.22.0</version>\n+            <version>20.7.0</version>\n+            <version>21.2.0</version>\n+          </since>\n+          <synopsis>Path to a file containing one or more CA certs in PEM format</synopsis>\n+          <description>\n+            <para>These certs are used to verify the chain of trust for the\n+\t\t\t\t\t\tcertificate retrieved from the X5U Identity header parameter.  This\n+\t\t\t\t\t\tfile must have the root CA certificate, the certificate of the\n+\t\t\t\t\t\tissuer of the X5U certificate, and any intermediate certificates\n+\t\t\t\t\t\tbetween them.</para>\n+            <para>See https://docs.asterisk.org/Deployment/STIR-SHAKEN/ for more information.</para>\n+          </description>\n+        </configOption>\n+        <configOption name=\"ca_path\" default=\"\">\n+          <since>\n+            <version>18.22.0</version>\n+            <version>20.7.0</version>\n+            <version>21.2.0</version>\n+          </since>\n+          <synopsis>Path to a directory containing one or more hashed CA certs</synopsis>\n+          <description>\n+            <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='ca_file']/description/node())\"/>\n+            <para>\n+              For this option, the individual certificates must be placed in\n+\t\t\t\t\t\tthe directory specified and hashed using the\n+              <literal>openssl rehash</literal>\n+              command.\n+            </para>\n+            <para>See https://docs.asterisk.org/Deployment/STIR-SHAKEN/ for more information.</para>\n+          </description>\n+        </configOption>\n+        <configOption name=\"crl_file\" default=\"\">\n+          <since>\n+            <version>18.22.0</version>\n+            <version>20.7.0</version>\n+            <version>21.2.0</version>\n+          </since>\n+          <synopsis>Path to a file containing one or more CRLs in PEM format</synopsis>\n+          <description>\n+            <para>If you with to check if the certificate in the X5U Identity header\n+\t\t\t\t\t\tparameter has been revoked, you'll need the certificate revocation\n+\t\t\t\t\t\tlist generated by the issuer.</para>\n+            <para>See https://docs.asterisk.org/Deployment/STIR-SHAKEN/ for more information.</para>\n+          </description>\n+        </configOption>\n+        <configOption name=\"crl_path\" default=\"\">\n+          <since>\n+            <version>18.22.0</version>\n+            <version>20.7.0</version>\n+            <version>21.2.0</version>\n+          </since>\n+          <synopsis>Path to a directory containing one or more hashed CRLs</synopsis>\n+          <description>\n+            <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='crl_file']/description/node())\"/>\n+            <para>\n+              For this option, the individual CRLs must be placed in\n+\t\t\t\t\t\tthe directory specified and hashed using the\n+              <literal>openssl rehash</literal>\n+              command.\n+            </para>\n+            <para>See https://docs.asterisk.org/Deployment/STIR-SHAKEN/ for more information.</para>\n+          </description>\n+        </configOption>\n+        <configOption name=\"untrusted_cert_file\" default=\"\">\n+          <since>\n+            <version>18.22.0</version>\n+            <version>20.7.0</version>\n+            <version>21.2.0</version>\n+          </since>\n+          <synopsis>Path to a file containing one or more untrusted cert in PEM format used to verify CRLs</synopsis>\n+          <description>\n+            <para>If you with to check if the certificate in the X5U Identity header\n+\t\t\t\t\tparameter has been revoked, you'll need the certificate revocation\n+\t\t\t\t\tlist generated by the issuer.  Unfortunately, sometimes the CRLs are signed by a\n+\t\t\t\t\tdifferent CA than the certificate being verified.  In this case, you\n+\t\t\t\t\tmay need to provide the untrusted certificate to verify the CRL.</para>\n+            <para>See https://docs.asterisk.org/Deployment/STIR-SHAKEN/ for more information.</para>\n+          </description>\n+        </configOption>\n+        <configOption name=\"untrusted_cert_path\" default=\"\">\n+          <since>\n+            <version>18.22.0</version>\n+            <version>20.7.0</version>\n+            <version>21.2.0</version>\n+          </since>\n+          <synopsis>Path to a directory containing one or more hashed untrusted certs used to verify CRLs</synopsis>\n+          <description>\n+            <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='untrusted_cert_file']/description/node())\"/>\n+            <para>\n+              For this option, the individual certificates must be placed in\n+\t\t\t\t\t\tthe directory specified and hashed using the\n+              <literal>openssl rehash</literal>\n+              command.\n+            </para>\n+            <para>See https://docs.asterisk.org/Deployment/STIR-SHAKEN/ for more information.</para>\n+          </description>\n+        </configOption>\n+        <configOption name=\"cert_cache_dir\" default=\"\">\n+          <since>\n+            <version>18.22.0</version>\n+            <version>20.7.0</version>\n+            <version>21.2.0</version>\n+          </since>\n+          <synopsis>Directory to cache retrieved verification certs</synopsis>\n+        </configOption>\n+        <configOption name=\"curl_timeout\" default=\"2\">\n+          <since>\n+            <version>18.22.0</version>\n+            <version>20.7.0</version>\n+            <version>21.2.0</version>\n+          </since>\n+          <synopsis>Maximum time to wait to CURL certificates</synopsis>\n+        </configOption>\n+        <configOption name=\"max_cache_entry_age\" default=\"60\">\n+          <since>\n+            <version>18.22.0</version>\n+            <version>20.7.0</version>\n+            <version>21.2.0</version>\n+          </since>\n+          <synopsis>Number of seconds a cache entry may be behind current time</synopsis>\n+        </configOption>\n+        <configOption name=\"max_cache_size\" default=\"1000\">\n+          <since>\n+            <version>18.22.0</version>\n+            <version>20.7.0</version>\n+            <version>21.2.0</version>\n+          </since>\n+          <synopsis>Maximum size to use for caching public keys</synopsis>\n+        </configOption>\n+        <configOption name=\"max_iat_age\" default=\"15\">\n+          <since>\n+            <version>18.22.0</version>\n+            <version>20.7.0</version>\n+            <version>21.2.0</version>\n+          </since>\n+          <synopsis>Number of seconds an iat grant may be behind current time</synopsis>\n+        </configOption>\n+        <configOption name=\"max_date_header_age\" default=\"15\">\n+          <since>\n+            <version>18.22.0</version>\n+            <version>20.7.0</version>\n+            <version>21.2.0</version>\n+          </since>\n+          <synopsis>Number of seconds a SIP Date header may be behind current time</synopsis>\n+        </configOption>\n+        <configOption name=\"failure_action\" default=\"continue\">\n+          <since>\n+            <version>18.22.0</version>\n+            <version>20.7.0</version>\n+            <version>21.2.0</version>\n+          </since>\n+          <synopsis>The default failure action when not set on a profile</synopsis>\n+          <description>\n+            <enumlist>\n+              <enum name=\"continue\">\n+                <para>\n+                  If set to\n+                  <literal>continue</literal>\n+                  , continue and let\n+\t\t\t\t\t\t\tthe dialplan decide what action to take.\n+                </para>\n+              </enum>\n+              <enum name=\"reject_request\">\n+                <para>\n+                  If set to\n+                  <literal>reject_request</literal>\n+                  , reject the incoming\n+\t\t\t\t\t\t\trequest with response codes defined in RFC8224.\n+                </para>\n+              </enum>\n+              <enum name=\"continue_return_reason\">\n+                <para>\n+                  If set to\n+                  <literal>return_reason</literal>\n+                  , continue to the\n+\t\t\t\t\t\t\tdialplan but add a\n+                  <literal>Reason</literal>\n+                  header to the sender in\n+\t\t\t\t\t\t\tthe next provisional response.\n+                </para>\n+              </enum>\n+            </enumlist>\n+          </description>\n+        </configOption>\n+        <configOption name=\"use_rfc9410_responses\" default=\"no\">\n+          <since>\n+            <version>18.22.0</version>\n+            <version>20.7.0</version>\n+            <version>21.2.0</version>\n+          </since>\n+          <synopsis>RFC9410 uses the STIR protocol on Reason headers\n+\t\t\t\t\tinstead of the SIP protocol</synopsis>\n+        </configOption>\n+        <configOption name=\"ignore_sip_date_header\" default=\"no\">\n+          <since>\n+            <version>20.15.0</version>\n+            <version>21.10.0</version>\n+            <version>22.5.0</version>\n+          </since>\n+          <synopsis>When set to true, will cause the verification process to not consider a\n+\t\t\t\t\t\tmissing or invalid SIP \"Date\" header to be a failure.  This will make the\n+\t\t\t\t\t\tIAT the sole \"truth\" for Date in the verification process.</synopsis>\n+        </configOption>\n+        <configOption name=\"relax_x5u_port_scheme_restrictions\" default=\"no\">\n+          <since>\n+            <version>18.22.0</version>\n+            <version>20.7.0</version>\n+            <version>21.2.0</version>\n+          </since>\n+          <synopsis>Relaxes check for \"https\" and port 443 or 8443\n+\t\t\t\t\tin incoming Identity header x5u URLs.</synopsis>\n+        </configOption>\n+        <configOption name=\"relax_x5u_path_restrictions\" default=\"no\">\n+          <since>\n+            <version>18.22.0</version>\n+            <version>20.7.0</version>\n+            <version>21.2.0</version>\n+          </since>\n+          <synopsis>Relaxes check for query parameters, user/password, etc.\n+\t\t\t\t\tin incoming Identity header x5u URLs.</synopsis>\n+        </configOption>\n+        <configOption name=\"x5u_acl\" default=\"\">\n+          <since>\n+            <version>18.22.0</version>\n+            <version>20.7.0</version>\n+            <version>21.2.0</version>\n+          </since>\n+          <synopsis>An existing ACL from acl.conf to use when checking\n+\t\t\t\t\thostnames in incoming Identity header x5u URLs.</synopsis>\n+        </configOption>\n+        <configOption name=\"x5u_permit\" default=\"\">\n+          <since>\n+            <version>18.22.0</version>\n+            <version>20.7.0</version>\n+            <version>21.2.0</version>\n+          </since>\n+          <synopsis>An IP or subnet to permit when checking\n+\t\t\t\t\thostnames in incoming Identity header x5u URLs.</synopsis>\n+        </configOption>\n+        <configOption name=\"x5u_deny\" default=\"\">\n+          <since>\n+            <version>18.22.0</version>\n+            <version>20.7.0</version>\n+            <version>21.2.0</version>\n+          </since>\n+          <synopsis>An IP or subnet to deny  checking\n+\t\t\t\t\thostnames in incoming Identity header x5u URLs.</synopsis>\n+        </configOption>\n+      </configObject>\n+      <configObject name=\"profile\">\n+        <since>\n+          <version>18.22.0</version>\n+          <version>20.7.0</version>\n+          <version>21.2.0</version>\n+        </since>\n+        <synopsis>STIR/SHAKEN profile configuration options</synopsis>\n+        <configOption name=\"type\">\n+          <since>\n+            <version>18.22.0</version>\n+            <version>20.7.0</version>\n+            <version>21.2.0</version>\n+          </since>\n+          <synopsis>Must be of type 'profile'.</synopsis>\n+        </configOption>\n+        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='load_system_certs'])\"/>\n+        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='ca_file'])\"/>\n+        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='ca_path'])\"/>\n+        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='crl_file'])\"/>\n+        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='crl_path'])\"/>\n+        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='untrusted_cert_file'])\"/>\n+        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='untrusted_cert_path'])\"/>\n+        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='cert_cache_dir'])\"/>\n+        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='curl_timeout'])\"/>\n+        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='max_iat_age'])\"/>\n+        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='max_date_header_age'])\"/>\n+        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='ignore_sip_date_header'])\"/>\n+        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='max_cache_entry_age'])\"/>\n+        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='max_cache_size'])\"/>\n+        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='failure_action'])\"/>\n+        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='use_rfc9410_responses'])\"/>\n+        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='relax_x5u_port_scheme_restrictions'])\"/>\n+        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='relax_x5u_path_restrictions'])\"/>\n+        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='x5u_acl'])\"/>\n+        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='x5u_permit'])\"/>\n+        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='verification']/configOption[@name='x5u_deny'])\"/>\n+        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='attestation']/configOption[@name='check_tn_cert_public_url'])\"/>\n+        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='attestation']/configOption[@name='private_key_file'])\"/>\n+        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='attestation']/configOption[@name='public_cert_url'])\"/>\n+        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='attestation']/configOption[@name='attest_level'])\"/>\n+        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='attestation']/configOption[@name='unknown_tn_attest_level'])\"/>\n+        <xi:include xpointer=\"xpointer(/docs/configInfo[@name='res_stir_shaken']/configFile[@name='stir_shaken.conf']/configObject[@name='attestation']/configOption[@name='send_mky'])\"/>\n+        <configOption name=\"endpoint_behavior\" default=\"off\">\n+          <since>\n+            <version>18.22.0</version>\n+            <version>20.7.0</version>\n+            <version>21.2.0</version>\n+          </since>\n+          <synopsis>Actions performed when an endpoint references this profile</synopsis>\n+          <description>\n+            <enumlist>\n+              <enum name=\"off\">\n+                <para>Don't do any STIR/SHAKEN processing.</para>\n+              </enum>\n+              <enum name=\"attest\">\n+                <para>Attest on outgoing calls.</para>\n+              </enum>\n+              <enum name=\"verify\">\n+                <para>Verify incoming calls.</para>\n+              </enum>\n+              <enum name=\"on\">\n+                <para>Attest outgoing calls and verify incoming calls.</para>\n+              </enum>\n+            </enumlist>\n+          </description>\n+        </configOption>\n+      </configObject>\n+    </configFile>\n+  </configInfo>\n+  <function name=\"STIR_SHAKEN\" language=\"en_US\">\n+    <since>\n+      <version>16.15.0</version>\n+    </since>\n+    <synopsis>Gets the number of STIR/SHAKEN results or a specific STIR/SHAKEN value from a result on the channel.</synopsis>\n+    <syntax>\n+      <parameter name=\"index\" required=\"true\">\n+        <para>The index of the STIR/SHAKEN result to get. If only 'count' is passed in, gets the number of STIR/SHAKEN results instead.</para>\n+      </parameter>\n+      <parameter name=\"value\" required=\"false\">\n+        <para>The value to get from the STIR/SHAKEN result. Only used when an index is passed in (instead of 'count'). Allowable values:</para>\n+        <enumlist>\n+          <enum name=\"identity\"/>\n+          <enum name=\"attestation\"/>\n+          <enum name=\"verify_result\"/>\n+        </enumlist>\n+      </parameter>\n+    </syntax>\n+    <description>\n+      <para>This function will either return the number of STIR/SHAKEN identities, or return information on the specified identity.\n+\t\t\tTo get the number of identities, just pass 'count' as the only parameter to the function. If you want to get information on a\n+\t\t\tspecific STIR/SHAKEN identity, you can get the number of identities and then pass an index as the first parameter and one of\n+\t\t\tthe values you would like to retrieve as the second parameter.</para>\n+      <example title=\"Get count and retrieve value\">same =&gt; n,NoOp(Number of STIR/SHAKEN identities: ${STIR_SHAKEN(count)})\n+\t\t\tsame =&gt; n,NoOp(Identity ${STIR_SHAKEN(0, identity)} has attestation level ${STIR_SHAKEN(0, attestation)})</example>\n+    </description>\n+  </function>\n   <module language=\"en_US\" name=\"chan_mobile\">\n     <depend>bluetooth</depend>\n     <defaultenabled>no</defaultenabled>\n     <support_level>extended</support_level>\n   </module>\n   <module language=\"en_US\" name=\"chan_ooh323\">\n     <defaultenabled>no</defaultenabled>\n"}]}]}]}]}]}