2024-02-08 03:48:59 -06:00
// Copyright (c) The OpenTofu Authors
// SPDX-License-Identifier: MPL-2.0
// Copyright (c) 2023 HashiCorp, Inc.
2023-05-02 10:33:06 -05:00
// SPDX-License-Identifier: MPL-2.0
2018-02-02 19:22:25 -06:00
package configs
import (
"fmt"
2019-09-09 17:58:44 -05:00
"github.com/hashicorp/hcl/v2"
2018-02-02 19:22:25 -06:00
)
// Provisioner represents a "provisioner" block when used within a
// "resource" block in a module or file.
type Provisioner struct {
Type string
Config hcl . Body
Connection * Connection
When ProvisionerWhen
OnFailure ProvisionerOnFailure
DeclRange hcl . Range
TypeRange hcl . Range
}
func decodeProvisionerBlock ( block * hcl . Block ) ( * Provisioner , hcl . Diagnostics ) {
pv := & Provisioner {
Type : block . Labels [ 0 ] ,
TypeRange : block . LabelRanges [ 0 ] ,
DeclRange : block . DefRange ,
When : ProvisionerWhenCreate ,
OnFailure : ProvisionerOnFailureFail ,
}
content , config , diags := block . Body . PartialContent ( provisionerBlockSchema )
pv . Config = config
2020-08-26 09:46:04 -05:00
switch pv . Type {
case "chef" , "habitat" , "puppet" , "salt-masterless" :
diags = append ( diags , & hcl . Diagnostic {
2020-11-16 13:15:03 -06:00
Severity : hcl . DiagError ,
Summary : fmt . Sprintf ( "The \"%s\" provisioner has been removed" , pv . Type ) ,
2023-10-12 08:24:04 -05:00
Detail : fmt . Sprintf ( "The \"%s\" provisioner is deprecated and has been removed from OpenTofu." , pv . Type ) ,
2020-08-26 09:46:04 -05:00
Subject : & pv . TypeRange ,
} )
2020-11-16 13:15:03 -06:00
return nil , diags
2020-08-26 09:46:04 -05:00
}
2018-02-02 19:22:25 -06:00
if attr , exists := content . Attributes [ "when" ] ; exists {
2018-02-15 12:17:36 -06:00
expr , shimDiags := shimTraversalInString ( attr . Expr , true )
diags = append ( diags , shimDiags ... )
switch hcl . ExprAsKeyword ( expr ) {
2018-02-02 19:22:25 -06:00
case "create" :
pv . When = ProvisionerWhenCreate
case "destroy" :
pv . When = ProvisionerWhenDestroy
default :
2018-02-15 12:17:36 -06:00
diags = append ( diags , & hcl . Diagnostic {
Severity : hcl . DiagError ,
Summary : "Invalid \"when\" keyword" ,
Detail : "The \"when\" argument requires one of the following keywords: create or destroy." ,
Subject : expr . Range ( ) . Ptr ( ) ,
} )
2018-02-02 19:22:25 -06:00
}
}
2019-12-03 12:23:07 -06:00
// destroy provisioners can only refer to self
if pv . When == ProvisionerWhenDestroy {
diags = append ( diags , onlySelfRefs ( config ) ... )
}
2018-02-02 19:22:25 -06:00
if attr , exists := content . Attributes [ "on_failure" ] ; exists {
2018-02-15 12:17:36 -06:00
expr , shimDiags := shimTraversalInString ( attr . Expr , true )
diags = append ( diags , shimDiags ... )
switch hcl . ExprAsKeyword ( expr ) {
2018-02-02 19:22:25 -06:00
case "continue" :
pv . OnFailure = ProvisionerOnFailureContinue
case "fail" :
pv . OnFailure = ProvisionerOnFailureFail
default :
2018-02-15 12:17:36 -06:00
diags = append ( diags , & hcl . Diagnostic {
Severity : hcl . DiagError ,
Summary : "Invalid \"on_failure\" keyword" ,
Detail : "The \"on_failure\" argument requires one of the following keywords: continue or fail." ,
Subject : attr . Expr . Range ( ) . Ptr ( ) ,
} )
2018-02-02 19:22:25 -06:00
}
}
var seenConnection * hcl . Block
2021-05-14 18:09:51 -05:00
var seenEscapeBlock * hcl . Block
2018-02-02 19:22:25 -06:00
for _ , block := range content . Blocks {
switch block . Type {
2021-05-14 18:09:51 -05:00
case "_" :
if seenEscapeBlock != nil {
diags = append ( diags , & hcl . Diagnostic {
Severity : hcl . DiagError ,
Summary : "Duplicate escaping block" ,
Detail : fmt . Sprintf (
2024-08-29 12:20:33 -05:00
"The special block type \"_\" can be used to force particular arguments to be interpreted as provisioner-type-specific rather than as meta-arguments, but each provisioner block can have only one such block. The first escaping block was at %s." ,
2021-05-14 18:09:51 -05:00
seenEscapeBlock . DefRange ,
) ,
Subject : & block . DefRange ,
} )
continue
}
seenEscapeBlock = block
// When there's an escaping block its content merges with the
// existing config we extracted earlier, so later decoding
// will see a blend of both.
pv . Config = hcl . MergeBodies ( [ ] hcl . Body { pv . Config , block . Body } )
2018-02-02 19:22:25 -06:00
case "connection" :
if seenConnection != nil {
diags = append ( diags , & hcl . Diagnostic {
Severity : hcl . DiagError ,
Summary : "Duplicate connection block" ,
Detail : fmt . Sprintf ( "This provisioner already has a connection block at %s." , seenConnection . DefRange ) ,
Subject : & block . DefRange ,
} )
continue
}
seenConnection = block
2019-12-03 12:23:07 -06:00
// destroy provisioners can only refer to self
if pv . When == ProvisionerWhenDestroy {
diags = append ( diags , onlySelfRefs ( block . Body ) ... )
}
2018-05-29 13:58:28 -05:00
pv . Connection = & Connection {
Config : block . Body ,
DeclRange : block . DefRange ,
}
2018-02-02 19:22:25 -06:00
default :
2018-11-20 13:53:45 -06:00
// Any other block types are ones we've reserved for future use,
// so they get a generic message.
diags = append ( diags , & hcl . Diagnostic {
Severity : hcl . DiagError ,
Summary : "Reserved block type name in provisioner block" ,
2023-09-20 09:05:24 -05:00
Detail : fmt . Sprintf ( "The block type name %q is reserved for use by OpenTofu in a future version." , block . Type ) ,
2018-11-20 13:53:45 -06:00
Subject : & block . TypeRange ,
} )
2018-02-02 19:22:25 -06:00
}
}
return pv , diags
}
2019-12-03 12:23:07 -06:00
func onlySelfRefs ( body hcl . Body ) hcl . Diagnostics {
var diags hcl . Diagnostics
// Provisioners currently do not use any blocks in their configuration.
// Blocks are likely to remain solely for meta parameters, but in the case
// that blocks are supported for provisioners, we will want to extend this
// to find variables in nested blocks.
attrs , _ := body . JustAttributes ( )
for _ , attr := range attrs {
for _ , v := range attr . Expr . Variables ( ) {
valid := false
switch v . RootName ( ) {
2024-08-01 07:14:34 -05:00
case "self" , "path" , "terraform" , "tofu" :
2019-12-03 12:23:07 -06:00
valid = true
case "count" :
// count must use "index"
if len ( v ) == 2 {
if t , ok := v [ 1 ] . ( hcl . TraverseAttr ) ; ok && t . Name == "index" {
valid = true
}
}
case "each" :
if len ( v ) == 2 {
if t , ok := v [ 1 ] . ( hcl . TraverseAttr ) ; ok && t . Name == "key" {
valid = true
}
}
}
if ! valid {
diags = append ( diags , & hcl . Diagnostic {
2019-12-12 15:26:42 -06:00
Severity : hcl . DiagError ,
Summary : "Invalid reference from destroy provisioner" ,
2019-12-06 08:45:19 -06:00
Detail : "Destroy-time provisioners and their connection configurations may only " +
"reference attributes of the related resource, via 'self', 'count.index', " +
"or 'each.key'.\n\nReferences to other resources during the destroy phase " +
"can cause dependency cycles and interact poorly with create_before_destroy." ,
Subject : attr . Expr . Range ( ) . Ptr ( ) ,
2019-12-03 12:23:07 -06:00
} )
}
}
}
return diags
}
2018-02-02 19:22:25 -06:00
// Connection represents a "connection" block when used within either a
// "resource" or "provisioner" block in a module or file.
type Connection struct {
Config hcl . Body
DeclRange hcl . Range
}
// ProvisionerWhen is an enum for valid values for when to run provisioners.
type ProvisionerWhen int
2019-10-17 15:17:23 -05:00
//go:generate go run golang.org/x/tools/cmd/stringer -type ProvisionerWhen
2018-02-02 19:22:25 -06:00
const (
ProvisionerWhenInvalid ProvisionerWhen = iota
ProvisionerWhenCreate
ProvisionerWhenDestroy
)
// ProvisionerOnFailure is an enum for valid values for on_failure options
// for provisioners.
type ProvisionerOnFailure int
2019-10-17 15:17:23 -05:00
//go:generate go run golang.org/x/tools/cmd/stringer -type ProvisionerOnFailure
2018-02-02 19:22:25 -06:00
const (
ProvisionerOnFailureInvalid ProvisionerOnFailure = iota
ProvisionerOnFailureContinue
ProvisionerOnFailureFail
)
var provisionerBlockSchema = & hcl . BodySchema {
Attributes : [ ] hcl . AttributeSchema {
2018-11-20 13:53:45 -06:00
{ Name : "when" } ,
{ Name : "on_failure" } ,
2018-02-02 19:22:25 -06:00
} ,
Blocks : [ ] hcl . BlockHeaderSchema {
2021-05-14 18:09:51 -05:00
{ Type : "_" } , // meta-argument escaping block
2018-11-20 13:53:45 -06:00
{ Type : "connection" } ,
{ Type : "lifecycle" } , // reserved for future use
2018-02-02 19:22:25 -06:00
} ,
}