Config::Scoped(3) feature rich configuration file parser

SYNOPSIS


use Config::Scoped;
$cs = Config::Scoped->new( file => $config_file, ... );
$cfg_hash = $cs->parse;

ABSTRACT

Config::Scoped is a configuration file parser.

Features

  • recursive data structures with scalars, lists, and hashes
  • simplified syntax with minimal punctuation
  • parses many Perl data structures without eval, do or require
  • Perl quoting syntax: single quotes (''), double quotes(""), and here-docs (<<EOF)
  • Perl code evaluation in Safe compartments
  • parses ISC named and dhcpd config files
  • include files with recursion checks
  • controlled macro expansion in double quoted tokens
  • lexically scoped parameter assignments and directives
  • duplicate macro, parameter, and declaration checks
  • file permission and ownership safety checks
  • fine control over error checking
  • error messages report config file names and line numbers
  • exception-based error handling
  • based on Parse::RecDescent
  • configuration caching with MD5 checksums on the original files
  • may be subclassed to build parsers with specialized features

REQUIRES

  • Parse::RecDescent
  • Error

EXPORTS

Nothing.

METHODS

Config::Scoped->new
  $cs = Config::Scoped->new(
    file     => $config_file,
    lc       => $lc,
    safe     => $compartment,
    warnings => $warnings,
    your_key => $your_value, { ... },
  );

Creates and returns a new Config::Scoped object. The following parameters are optional.

$config_file
The configuration file to parse. If omitted, then a $config_string must be provided to the parse method (see below).
$lc
If true, all declaration and parameter names will be converted to lower case.
$compartment
A Safe compartment for evaluating Perl code blocks in the configuration file. Defaults to a Safe compartment with no extra shares and the :default operator tag.
$warnings
may be the literal string 'on' or 'off' to set all warnings simultan.

Or define a hash reference with the following keys to set each warning as specified.

  $warnings = { declaration  => 'off',
                digests      => 'off',
                macro        => 'off',
                parameter    => 'off',
                permissions  => 'off',
                your_warning => 'off',
 };

All warnings are on by default.

Arbitrary key/value pairs
will be stored in the $cs object. This is useful primarily for subclassing.
$cs->parse
    $cfg_hash = $cs->parse;
    $cfg_hash = $cs->parse(text => $config_string);

Parses the configuration and returns a reference to the config hash.

The first form parses the $config_file that was provided to the constructor. If $config_file was not provided to the constructor, this form dies.

The second form parses the $config_string.

This method must only be called once.

$cs->store_cache
    $cs->store_cache;
    $cs->store_cache(cache => $cache_file);

Stores the config hash on disk for rapid retrieval. If $config_file was provided to the constructor, then the stored form includes checksums of $config_file and any included files.

The first form writes to $config_file.dump The second form writes to $cache_file.

If $config_file was not provided to the constructor, the first form dies.

$cs->retrieve_cache
    $cfg_hash = $cs->retrieve_cache;
    $cfg_hash = $cs->retrieve_cache>(cache => $cache_file);

Retrieves the $config hash from a file that was created by store_cache.

The first form reads $config_file.dump The second form reads $cache_file.

If $config_file was not provided to the constructor, the first form dies.

The stored file is subject to digests and permissions checks.

$cs->set_warnings
    $cs->set_warnings(name => $name, switch => 'on|off');

Change warning for $name after construction.

$cs->warnings_on
    $on = $cs->warnings_on(name => $name);

Returns true if warning $name is on. This is useful primarily for subclassing.

EXCEPTIONS

All methods die on error.

Config::Scoped::Error defines a hierarchy of classes that represent Config::Scoped errors. When a method detects an error, it creates an instance of the corresponding class and throws it. The error classes are all subclasses of Config::Scoped::Error. See Config::Scoped::Error for the complete list.

If the exception is not caught, the program terminates, and Config::Scoped prints the config file name and line number where the error was detected to STDERR.

CONFIG FILE FORMAT

Config::Scoped parses configuration files.

If we have a config file like

  % cat host.cfg
  host {
      name = cpan.org
      port = 22
  }
  %

we can parse it into Perl with code like

    $cs = Config::Scoped->new( file => 'host.cfg' );
    $cfg_hash = $cs->parse;

The result is always a hash ref. We'll call this the config hash, and its contents for the example file above is:

    $cfg_hash = {
       host => {
          name => 'cpan.org',
          port => 22,
       }
      }

Config files and config strings

As described, Config::Scoped can obtain a configuration from a $config_file, passed to the constructor, or from a $config_string, passed to the parse method. For simplicity, we'll talk about parsing configuration files, distinguishing configuration strings only when necessary.

File layout

Config files are free-form text files. Comments begin with #, and extend to the end of the line.

Declarations

The top-level elements of a config file are called declarations. A declaration consists of a name, followed by a block

  foo {
  }
  bar {
  }

The declaration names become keys in the config hash. The value of each key is another hash ref. The config shown above parses to

    $cfg_hash = {
       foo => {},
       bar => {},
      }

You can create additional levels in the config hash simply by listing successive declaration names before the block. This config

  dog hound {
  }
  dog beagle {
  }
  cat {
  }

parses to

    $cfg_hash = {
       dog => {
          hound  => {},
          beagle => {},
       },
       cat => {}
      }

Declarations may not be nested.

Parameters

The ultimate purpose of a configuration file is to provide data values for a program. These values are specified by parameters.

Parameters have the form

  name = value

and go inside declaration blocks. The

  name = value

parameters in a spec file become key and value pairs inside the declaration hashes in Perl code.

For example, this configuration

  dog {
      legs  = 4
      wings = 0
  }
  bird {
      legs  = 2
      wings = 2
  }

parses to

    $cfg_hash = {
       dog => {
          legs  => 4,
          wings => 0,
       },
       bird => {
          legs  => 2,
          wings => 2,
       }
      }

Parameter values can be scalars, lists or hashes.

Scalar values may be numbers or strings

  shape = square
  sides = 4

Lists values are enclosed in square brackets

  colors = [ red green blue ]
  primes = [ 2 3 5 7 11 13  ]

Hash values are enclosed in curly brackets

  capitals = {
        England => London
        France  => Paris
  }

A hash value is also called a hash block.

Lists and hashes can be nested to arbitrary depth

  Europe {
     currency = euro
     
     cities   = {
        England => [ London Birmingham Liverpool ]
        France  => [ Paris Canne Calais ]
     }
   }

parses to

    $cfg_hash = {
       Europe => {
          currency => 'euro',
          cities => {
             England => [ 'London', 'Birmingham', 'Liverpool' ],
             France  => [ 'Paris',  'Canne',      'Calais' ],
          }
       }
      }

The Config::Scoped data syntax is similar to the Perl data syntax, and Config::Scoped will parse many Perl data structures. In general, Config::Scoped requires less punctuation that Perl. Note that Config::Scoped allows arrow (=>) or equals (=) between hash keys and values, but not comma (,)

  capitals = { England => London        # OK
               France  =  Paris         # OK
               Germany ,  Berlin        # error
             }

_GLOBAL

If a config file contains no declarations at all

  name = cpan.org
  port = 22

then any parameters will be placed in a _GLOBAL declaration in the config hash

   $cfg_hash = {
      _GLOBAL => {
         name => 'cpan.org',
         port => 22,
      }
     }

This allows very simple config files with just parameters and no declarations.

Blocks, scoping and inheritance

Each declaration block in a config file creates a lexical scope. Parameters inside a declaration are scoped to that block. Parameters are inherited by all following declarations within their scope.

If all your animals have four legs, you can save some typing by writing

    legs = 4
    cat {}
    dog {}

which parses to

   $cfg_hash = {
      cat => { legs => 4 },
      dog => { legs => 4 },
     }

If some of your animals have two legs, you can create additional scopes with anonymous blocks to control inheritance

    {
      legs = 4
      cat {}
      dog {}
    }
    {
      legs = 2
      bird {}
    }

parses to

   $cfg_hash = {
      cat  => { legs => 4 },
      dog  => { legs => 4 },
      bird => { legs => 2 },
     }

Anonymous blocks may be nested.

Each hash block also creates a scope. The hash does not inherit parameters from outside its own scope.

Perl code evaluation

If you can't express what you need within the Config::Scoped syntax, your escape hatch is

  eval { ... }

This does a Perl eval on the block, and replaces the construct with the results of the eval.

  start = eval { localtime }
  foo   = eval { warn 'foo,' if $debug; return 'bar' }

The block is evaluated in scalar context. However, it may return a list or hash reference, and the underlying list or hash can become a parameter value.

For example

  foo {
    list = eval { [ 1 .. 3 ]                 }
    hash = eval { { a => 1, b => 2, c => 3 } }
  }

parses to

   $cfg_hash = {
      foo => {
         list => [ 1, 2, 3 ],
         hash => { a => 1, b => 2, c => 3 },
      }
     }

The block is evaluated inside the parser's Safe compartment. Variables can be made available to the eval by sharing them with the compartment.

To set the $debug variable in the example above, do

    $compartment     = Safe->new('MY_SHARE');
    $MY_SHARE::debug = 1;
    $cs = Config::Scoped->new(
      file => 'config.txt',
      safe => $compartment,
    );
    $cfg_hash = $cs->parse;

Only global variables can be shared with a compartment; lexical variables cannot.

perl_code is a synonym for eval.

Tokens and quoting

A token is a
  • declaration name
  • parameter name
  • hash key
  • scalar value
  • macro name
  • macro value
  • include path
  • warning name

Any token may be quoted.

Tokens that contain special characters must be quoted. The special characters are

  \s {} [] <> () ; , ' " = # %

Config::Scoped uses the Perl quoting syntax.

Tokens may be quoted with either single or double quotes

  a = 'New York'
  b = "New Jersey\n"

Here-docs are supported

  a = <<EOT
  New York
  New Jersey
  EOT

but generalized quotes (q(), qq(), etc.) are not. Text in here-docs is regarded as single-quoted if the delimiter is enclosed in single quotes, and double-quoted if the delimiter is enclosed in double quotes or unquoted.

Double-quoted tokens are evaluated as Perl strings inside the parser's Safe compartment. They are subject to the usual Perl backslash and variable interpolation, as well as macro expansion. Variables to be interpolated are passed via the Safe compartment, as shown above in ``Perl code evaluation''. If you need a literal $ or @ in a double-quoted string, be sure to escape it with a backslash (\) to suppress interpolation.

An

  eval { ... }

may appear anywhere that a token is expected. For example

  foo {
      eval { 'b' . 'c' } = 1
  }

parses to

    $cfg_hash = { foo => { bc => 1 } }

DIRECTIVES

Config::Scoped has three directives: %macro, %warning, and %include.

Macros

Config::Scoped supports macros. A macro is defined with

  %macro name value

Macros may be defined

  • at file scope
  • within anonymous blocks
  • within declaration blocks
  • within hash blocks

Macros defined within blocks are lexically scoped to those blocks.

Macro substitution occurs

  • within any double-quoted text
  • within the entirety of Perl eval blocks
  • nowhere else

Include files

Config::Scoped supports include files.

To include one config file within another, write

  %include path/to/file

%include directives may appear

  • at file scope
  • within anonymous blocks
  • nowhere else

In particular, %include directives may not appear within declaration blocks or hash blocks.

Parameters and macros in include files are imported to the current scope. You can control this scope with an anonymous block

  {
    %include dog.cfg
    dog { }  # sees imports from dog.cfg
  }
  bird { }   # does not see imports from dog.cfg

Warnings are scoped to the included file and do not leak to the parent file.

Pathnames are either

  • absolute
  • relative to the dirname of the current configuration file

For example, this config

    # in configuration file /etc/myapp/global.cfg
    %include shared.cfg

includes the file /etc/myapp/shared.cfg.

When parsing a configuration string, the path is relative to the current working directory.

Include files are not actually included as text. Rather, they are processed by a recursive call to Config::Scoped. Subclass implementers may need to be aware of this.

Warnings

Config::Scoped can check for 5 problems with config files
  • duplicate declaration names
  • duplicate parameter definitions
  • duplicate macro definitions
  • insecure config file permissions
  • invalid config cache digests

The API refers to these as ``warnings'', but they are actually errors, and if they occur, the parse fails and throws an exception. For consistency with the API, we'll use the term ``warning'' in the POD.

The five warnings are identified by five predefined warning names

  • declaration
  • parameter
  • macro
  • permissions
  • digests

The permissions check requires that the config file

  • be owned by root or the real UID of the running process AND
  • have no group or world write permissions

These restrictions help prevent an attacker from subverting a program by altering its config files.

The store_cache method computes MD5 checksums for the config file and all included files. These checksums are stored with the cached configuration.

The retrieve_cache method recomputes the checksums of the files and compares them to the stored values.

The digests check requires that the checksums agree. This helps prevent programs from relying on stale configuration caches.

All warnings are enabled by default.

Warnings can be disabled by passing the warning key to the constructor or with the set_warnings method.

Warnings can also be controlled with the %warnings directive, which has the form

%warnings [name] off|on

A %warnings directive applies to the named warning, or to all warnings, if name is omitted.

%warnings directives allow warnings to be turned on and off as necessary throughout the config file. A %warnings directive may appear

  • at file scope
  • within anonymous blocks
  • within declaration blocks
  • within hash blocks

Each %warnings directive is lexically scoped to its enclosing file or block.

Example

  legs = 4
  cat  {}
  dog  {}
  bird
  {
      legs = 2
  }

fails with a duplicate parameter warning, but

  legs = 4
  cat  {}
  dog  {}
  bird
  {
      %warnings parameter off;
      legs = 2
  }

successfully parses to

    $cfg_hash = {
        cat  => { legs => 4 },
        dog  => { legs => 4 },
        bird => { legs => 2 },
      }

Best practices

As with all things Perl, there's more than one way to write configuration files. Here are some suggestions for writing config files that are concise, readable, and maintainable.

Perl data

Config::Scoped accepts most Perl data syntax. This allows Perl data to pulled into config files largely unaltered

  foo
  {
     a = 1;
     b = [ 'red', 'green', 'blue' ];
     c = { x => 5,
           y => 6 };
  }

However, Config::Scoped doesn't require as much punctuation as Perl, and config files written from scratch will be cleaner without it

  foo
  {
     a = 1
     b = [ red green blue ]
     c = { x => 5
           y => 6 }
  }

Anonymous blocks

Don't use anonymous blocks unless you need to restrict the scope of something. In particular, there is no need for a top-level anonymous block around the whole config file

  {             # unnecessary
      foo { }
  }

Inheritance

Parameters that are outside of a declaration are inherited by all following declarations in their scope. Don't do this unless you mean it

  wheels = 4
  car
  {
      # OK
  }
  cat
  {
      # I can haz weelz?
  }

Blocks, blocks, we got blocks...

Config::Scoped has four different kinds of blocks
  • anonymous
  • declaration
  • eval
  • hash

They all look the same, but they aren't, and they have different rules and restrictions. See ``CONFIG FILE FORMAT'' for descriptions of each.

Macros

Macros are evil, and Config::Scoped macros are specially evil, because
  • they don't respect token boundaries
  • where multiple substitutions are possible, the substitution order is undefined
  • substituted text may or may not be rescanned for further substitutions

Caveat scriptor.

SUBCLASSING

Config::Scoped has no formally defined subclass interface. Here are some guidelines for writing subclasses. Implementers who override (or redefine) base class methods may need to read the Config::Scoped sources for more information.

Arbitrary

  $your_key => $value

pairs may be passed to the Config::Scoped constructor. They will be stored in the $cs->{local} hashref, and methods may access them with code like

  $cs->{local}{$your_key}

To avoid conflict with existing keys in the local hash, consider distinguishing your keys with a unique prefix.

Arbitrary warning names may be defined, set with new and set_warnings, used in %warnings directives, and tested with warnings_on. Methods can call warnings_on to find out whether a warning is currently enabled.

All methods throw exceptions (die) on error. The exception object should be a subclass of Config::Scoped::Error. You can use one of the classes defined in Config::Scoped::Error, or you can derive your own. This code

    Config::Scoped::Error->throw(
        -file => $cs->_get_file(%args),
        -line => $cs->_get_line(%args),
        -text => $message,
    );

will generate an error message that reports the location in the config file where the error was detected, rather than a location in Perl code.

Config::Scoped performs validation checks on the elements of configuration files (declarations, parameters, macros, etc). Here are the interfaces to the validation methods. Subclasses can override these methods to modify or extend the validation checks.

$macro_value = $cs->macro_validate>(name => $name, value => $value)
Called for each %macro directive.

Receives the $name and $value from the directive. The returned $macro_value becomes the actual value of the macro.

If the macro is invalid, throws a Config::Scoped::Error::Validate::Macro exception.

$param_value = $cs->parameter_validate>(name => $name, value => $value)
Called for each parameter definition.

Receives the $name and $value from the definition. The returned $param_value becomes the actual value of the parameter.

If the parameter is invalid, throws a Config::Scoped::Error::Validate::Parameter exception.

$cs->declaration_validate(name => $name, value => $value, tail => $tail)
Called for each declaration.

$name is an array ref giving the chain of names for the declaration block. $value is a hash ref containing all the parameters in the declaration block. $tail is a hash ref containing all the parameters in any previously defined declaration with the same name(s).

For example, the declaration

  foo bar baz { a=1 b=2 }

leads to the call

  $cs->declaration_validate(name  => [ qw(foo bar baz) ],
                                value => { a => '1', b => '2' },
                                tail  => $cs->{local}{config}{foo}{bar}{baz});

The method can test %$tail to discover if there is an existing, non-empty declaration with the same name(s).

The method has no return value. However, the method can alter the contents of %$value. Upon return, the parameters in %$value become the actual contents of the declaration block.

If the declaration is invalid, throws a Config::Scoped::Error::Validate::Declaration exception.

$cs->permissions_validate(file => $file, handle => $handle)
Called for the config file, each included file, and each retrieved cache file. One of $file or $handle must be non-null.

Throws a Config::Scoped::Error::Validate::Permissions exception if the file is not safe to read.

TODO

Tests
Still more tests needed.

BUGS

If you find parser bugs, please send the stripped down config file and additional version information to the author.

CREDITS

POD by Steven W. McDougall <[email protected]>

AUTHOR

Karl Gaissmaier <karl.gaissmaier at uni-ulm.de>

COPYRIGHT AND LICENSE

Copyright (c) 2004-2012 by Karl Gaissmaier

This library is free software; you can redistribute it and/or modify it under the same terms as Perl itself.