Fix save_to_file to be indentation independent

[ShimShtein]

Heredoc notation is very sensitive to leading spaces.
This implementation makes the save_to_file macro safe for indentation.

[ekohl]

I don't think you're going to find any solution that works together with indent.

[ekohl]

Previously the code allowed to use variables like $var but now that's going to be escaped, making it backwards incompatible. If you want it really verbatim, we have the base64 method above.

[ShimShtein]

This should be possible now

[ShimShtein]

Now the verbatim will escape everything and the else will escape only double quotes.

[ekohl]

@adamruzicka you initially introduced this because you found a case where it broke. Do you think this is sufficient?

[adamruzicka]

I don't really see where this wouldn't work, but I don't have a good feeling about it.

As a counter-proposal, how about we keep base64, but on the ruby side we drop the newlines from it and then echo it? Something like

content = Base64.encode64(content).tr("\n", "")
"echo #{content} | base64 -d > #{filename}

[ShimShtein]

@adamruzicka https://serverfault.com/questions/163371/linux-command-line-character-limit says that there is some limit.

I agree that it's quite long and we probably won't hit it soon, but I preferred not to rely on any of it.
I have tried to work with base64, but somehow I wasn't able to make it work properly with multiple lines and variable name. I can use a tempfile, but it seems a bit of overkill.

[adamruzicka]

says that there is some limit.

Well, yes and no. From what I've seen, what's written there applies when launching things that are external to the shell, but it doesn't seem to apply to shell builtins, such as echo in this case.

I have tried to work with base64, but somehow I wasn't able to make it work properly with multiple lines and variable name

How about we mix the two approaches?

b64 = Base64.encode64(content)
content_echos = b64.each_line.map { |l| "echo #{l}" }.join
"(#{content_echos}) | base64 -d >#{filename}"

[ShimShtein]

If you go the echo path, you need to accumulate the result somewhere. and once you have the whole base64 string accumulated, you can pass it into base64.
Let me try to accumulate the base64 value without newlines and then pipe it into base64.
Something like:

b64 = Base64.encode64(content)
content_var = b64.each_line.map { |l| "FOO+=#{l}" }.join("\n")
content_var + "echo $FOO | base64 -d >#{filename}"

Mostly I had trouble with the line endings. Maybe in this approach it will be a bit easier.

But let's say this works, we will have different implementations for verbatim and else use cases.
On the other hand, if we go with the escaping approach, we will be able to DRY the code by extracting most of the generation into a single method, and just changing the escaping method of the input.

[adamruzicka]

If you go the echo path, you need to accumulate the result somewhere

Well, you can always spawn a subshell just like I did in the previous suggestion.

On the other hand, if we go with the escaping approach, we will be able to DRY the code by extracting most of the generation into a single method, and just changing the escaping method of the input.

True, at the same time we lose the option to write out binary blobs

[ShimShtein]

Reimplemented as base64 single string.

[ekohl]

This case will still have an issue with indent().

[ShimShtein]

Do you think we will have \n symbols there? I can implement the same solution here too

[ShimShtein]

Changed the verbatim option to stop using heredoc too

[ShimShtein]

This should fix the indentation error mentioned in #10283

[ekohl]

This is not a change I feel comfortable cherry picking so I'd still prefer to revert the offending change in the short term and then figure this out.

[ShimShtein]

but then we will be left with broken cloud-init, unless we redesign it as you suggest. Additionally we will be left with save_to_file that is unusable if indented

[ShimShtein]

So I tracked down the whole chain of events:

• Fixes #37601 - Add Foreman CA refresh template #10208 introduced a bug into cloud-init (it made the code indented incorrectly, so cloud-init yaml bcame invalid)
• Fixes #37433 - Set indentation when calling subscription_manager_setup #10153 fixed the indentation problem, but exposed a lingering problem with save_to_file, since this helper method does not work well with indentation

Now this PR tries to avoid reverting the previous two

[ekohl]

* [Fixes #37433 - Set indentation when calling subscription_manager_setup #10200](https://github.com/theforeman/foreman/pull/10200) fixed the indentation problem, but exposed a lingering problem with `save_to_file`, since this helper method does not work well with indentation

I think you mean #10153

[ShimShtein]

Updated the original comment

[ekohl]

This is missing some interpolated values. Can we somehow set up the environment so those are set?

[ShimShtein]

Added another test with interpolated values.

[ShimShtein]

I have replaced base64 implementation with shellescape one. The whole idea of verbatim flag is to place the exact strings in the file as opposed to parameter interpolation in verbatim=false use case.

I have implemented them both in a similar manner with the only difference what symbols should be escaped: in verbatim everything is escaped, in non-verbatim only " is escaped.

[adamruzicka]

This relies on stdin being closed, right? Can we safely assume that stdin will be closed in all the scenarios where the save_to_file macro might be used?

[ShimShtein]

Thanks! Now the implementation does not rely on stdin.

[adamruzicka]

I don't really see where this wouldn't work, but I don't have a good feeling about it.

As a counter-proposal, how about we keep base64, but on the ruby side we drop the newlines from it and then echo it? Something like

content = Base64.encode64(content).tr("\n", "")
"echo #{content} | base64 -d > #{filename}

[ShimShtein]

@adamruzicka forgot to push the version. Now it should work on all OS-es. What do you think about this implementation?

[adamruzicka]

One last question, otherwise lgtm

[adamruzicka]

Is the escaping even needed? Base64 shouldn't contain any problematic characters.