improve string escape handling for run_cmd

[twang817]

While #684 addresses the real issues here, I made a small change for better handling of escapes in run_cmd.

This allowed me to use run_cmd in the following way:

$ tree .
.
├── child
│   ├── config.json
│   └── terraform.tfvars
├── plans
│   └── testplan
│       ├── v0.1
│       │   └── main.tf
│       └── v0.2
│           └── main.tf
└── terraform.tfvars

The child's terraform.tfvars is nothing special

$ cat child/terraform.tfvars
terragrunt {
    include {
        path = "${find_in_parent_folders()}"
    }
}

The config.json specifies the data the run_cmd fetches:

$ cat child/config.json
{
    "source": "testplan",
    "version": "v0.1"
}

The two plans are simple:

$ cat plans/testplan/v0.1/main.tf
output "version" {
    value = "v0.1"
}

$ cat plans/testplan/v0.2/main.tf
output "version" {
    value = "v0.2"
}

Finally, the magic is in the root terraform.tfvars:

$ cat terraform.tfvars
terragrunt {
    terraform {
        source = "${path_relative_from_include()}/plans//${run_cmd("jq", "-j", ". | \"\\(.source)/\\(.version)\"", "config.json")}/"
    }
}

If you're unfamiliar with jq, the command is:

$ jq -j '. | "\(.source)/\(.version)"' config.json
testplan/v0.1

And the output of the run:

[terragrunt] [/<snip>/child] 2019/06/06 03:50:40 Running command: terraform --version
[terragrunt] 2019/06/06 03:50:40 Reading Terragrunt config file at /<snip>/child/terraform.tfvars
[terragrunt] 2019/06/06 03:50:40 Running command: jq -j . | "\(.source)/\(.version)" config.json
testplan/v0.1[terragrunt] 2019/06/06 03:50:40 run_cmd output: [testplan/v0.1]
[terragrunt] 2019/06/06 03:50:40 Downloading Terraform configurations from file:///<snip>/plans into /<snip>/child/.terragrunt-cache/gFJBayBZFx9S0I_EdkWSPPExqVU/nsJSOJEkyeq5WgcW7pra2dH12qg using terraform init
[terragrunt] [/<snip>/child] 2019/06/06 03:50:40 Running command: terraform init -get=false -get-plugins=false -backend=false -from-module=file:///<snip>/plans -no-color /<snip>/child/.terragrunt-cache/gFJBayBZFx9S0I_EdkWSPPExqVU/nsJSOJEkyeq5WgcW7pra2dH12qg
Copying configuration from "file:///<snip>/plans"...
Terraform initialized in an empty directory!

The directory has no Terraform configuration files. You may begin working
with Terraform immediately by creating Terraform configuration files.
[terragrunt] 2019/06/06 03:50:40 Copying files from /<snip>/child into /<snip>/child/.terragrunt-cache/gFJBayBZFx9S0I_EdkWSPPExqVU/nsJSOJEkyeq5WgcW7pra2dH12qg/testplan/v0.1
[terragrunt] 2019/06/06 03:50:40 Setting working directory to /<snip>/child/.terragrunt-cache/gFJBayBZFx9S0I_EdkWSPPExqVU/nsJSOJEkyeq5WgcW7pra2dH12qg/testplan/v0.1
[terragrunt] [/<snip>/child] 2019/06/06 03:50:40 Running command: terraform init

Terraform has been successfully initialized!

You may now begin working with Terraform. Try running "terraform plan" to see
any changes that are required for your infrastructure. All Terraform commands
should now work.

If you ever set or change modules or backend configuration for Terraform,
rerun this command to reinitialize your working directory. If you forget, other
commands will detect it and remind you to do so if necessary.
[terragrunt] 2019/06/06 03:50:40 Running command: terraform apply

Apply complete! Resources: 0 added, 0 changed, 0 destroyed.

Outputs:

version = v0.1

This basically works by having run_cmd extract the source & version key from config.json and build a path starting from the plans// directory.

I believe this resolves #684, as I have both prefixes and suffixes around run_cmd. It further allows better handling of escaped quotes within the run_cmd parameters.

The PR is a bit dense with regex, so I'll try to comment inline.

Lastly, I was able to run all the tests (and even added a few) in the config directory, but I was unable to pass all tests from the root. I believe there are several tests that actually rely on AWS -- and I am unable to do so.

[twang817]

The crux of the change is here. Here's a snippet from regex101 to help explain the regex:

[twang817]

In other words, \\. matches any escaped character, whereas [^\\"] matches anything except the backslash or the quote. These are OR'd and then grouped in a non-capture group. Finally, we use the kleene star to say we want zero or more of them (non-greedy). Finally, the quotes are literal.

[twang817]

With our INTERPOLATION_QUOTED_STRING above, we now construct a regex that will accept any number of them in a comma separate list.

The general pattern for comma separated list with at least one element: A(?:,A)*

To make it zero or more, we surround the entire thing with a non-capture group and a question mark for zero or one. This makes our pattern now look like this: (?:A(?:,A)*)?

Finally, throw in the \s* everywhere, and we have our regex that will match a parameter list with zero or more parameters.

Again, regex101:

[twang817]

Here, the goal is to make sure it only matches a parameter list. Since an empty string is a valid parameter list, we add a ^$ anchors around it to ensure that it matches the whole string. This allows us to use this regex to validate that the string is indeed a parameter list.

[twang817]

Finally, this adds the rest of the "stuff" around a properly formatted interpolation call.

The general pattern is: \$\{(\w+)\(A)\)\}, which should match ${anything(parameter-list)}. Again, throw in a bunch of \s*s and we have our pattern.

Note, I capture the \w+ and the contents of the parameter list.

[twang817]

With the regex's set up, note that we now have a regex that can accurately describe any properly formatted interpolation string in the format of ${foo_bar("a", "b", "c")}. HCL/HIL actually allows nesting, which I don't think that this will properly handle, but that's where we would have to go to a real parser as opposed to regex hackery.

Now, I no longer need to create additional regexes to help me validate or extract my strings. I should be able to:

1. Detect an interpolation string with INTERPOLATION_SYNTAX_REGEX
2. Extract match[1] as the function name
3. Extract match[2] as the full parameter list
4. Use INTERPOLATION_QUOTED_REGEX to extract all my parameters.

This is exactly what the rest of the code attempts to do.

[twang817]

The HELPER_FUNCTION_SYNTAX_REGEX was a generalized version of the INTERPOLATION_SYNTAX_REGEX -- presumably with capture groups. I couldn't think of a reason why I wouldn't just use INTERPOLATION_SYNTAX_REGEX after the capture groups were properly set up.

AFACT, this is a drop-in replacement.

[twang817]

Again, since we're able to describe the entire parameter list, with zero or more parameters, we should just use that regex to extract all the parameters, then throw errors if it doesn't have the right number of args.

That's exactly what parseParamList does, so we just call that.

[twang817]

Then its just a matter of checking that we have the right number of parameters.

Incidentally, the original HELPER_FUNCTION_GET_ENV_PARAMETERS_SYNTAX_REGEX also validated that the first parameter is non-empty. So we do that here.

[twang817]

Again, we just extract the full parameter list.

Except here, there were a few tests that called this function with an invalid parameter list. Now, in the normal flow of code, this would never happen because we're validating that up-front. But, it's simple enough to validate it again in this function.

Here, I decided to factor out the guts of parseParamList to a new function splitParamList that would return errors if the input string wasn't a valid parameter-list. This allows parseOptionalQuotedParams to return a proper error if validation fails, as on line 315 below.

[twang817]

Otherwise, we're just managing the return value based on the number of parameters we extracted...

[twang817]

Here, as mentioned above, I re-validate that the input string is a valid parameter-list. Normally, this wouldn't happen but there are a few tests that call this function directly.

[twang817]

Otherwise, we simply use the INTERPOLATION_QUOTED_REGEX regex to find all matches, then unquote each match, trim it, and stick it in the parameters.

[twang817]

Note, with splitParamList factored out, this function mainly just handles the error condition.

[twang817]

This test doesn't make much sense.

By splitting the arguments into an array, there's no need to rely on quoting to handle spaces. This is something we do on the shell command-line because the string hasn't already been split.

This means that echo -n foo is already treated as a single parameter being passed to bash. There's no need to quote it again.

In fact, if we do, we're actually saying that we want to pass the string "echo -n foo" to the bash interpreter -- which is of course an invalid command.

It just so happened to work in the old implementation because there is a unconditional removal of all quotes. With proper(ish) escape handling, this is no longer a valid test case.

Hopefully, no one was relying on this behavior.

[twang817]

A simple test that verifies handling of escaped quotes. I didn't want to write an unit test that relies on jq.

[twang817]

Here, the newline would previously fail to even recognize as valid interpolation syntax.

Since the new parser actually handles newlines, the error that gets thrown is actually InvalidGetEnvParams