Extensible CEL Vocabulary

[wjtracey]

Support extending the CEL expression evaluator with custom vocabulary.

Essentially allow for custom forms of the evaluation context to register as a ExprVocabularyProvider or similar and be referenced by e.g. RBAC, such that CEL evaluation is run against the custom vocabulary (either exclusively, or potentially in addition to the native Envoy attribute vocabulary).

Rework the common/expr/ library such that users of it (e.g. RBAC) may pass in the custom ExprVocabularyProvider. The ExprVocabularyProvider will take common data structures as inputs (StreamInfo::StreamInfo and others), and allow access to their attributes, new convenience functions, and derived attributes via custom CelValueProducer implementations they attached to Activations.

Use cases include:

• Evaluating syntactically different (same functionality, different naming) CEL
• Exposing domain specific, internal, and convenience attributes and functions in the CEL language that are not appropriate in the OSS vocabulary.

[htuch]

CC @kyessenov

[github-actions]

This issue has been automatically marked as stale because it has not had activity in the last 30 days. It will be closed in the next 7 days unless it is tagged "help wanted" or "no stalebot" or other activity occurs. Thank you for your contributions.

[kyessenov]

@rshriram FR for extensible attribute vocabulary.