Allow ability to set a max recursion depth in config.

src/main/java/com/hubspot/jinjava/JinjavaConfig.java

@@ -41,6 +41,7 @@ public class JinjavaConfig {
 
   private final boolean readOnlyResolver;
   private final boolean enableRecursiveMacroCalls;
+  private final int maxMacroRecursionDepth;
 
   private Map<Context.Library, Set<String>> disabled;
   private final boolean failOnUnknownTokens;
@@ -54,11 +55,11 @@ public static Builder newBuilder() {
   }
 
   public JinjavaConfig() {
-    this(StandardCharsets.UTF_8, Locale.ENGLISH, ZoneOffset.UTC, 10, new HashMap<>(), false, false, true, false, false, 0, true, RandomNumberGeneratorStrategy.THREAD_LOCAL, false, 0);
+    this(StandardCharsets.UTF_8, Locale.ENGLISH, ZoneOffset.UTC, 10, new HashMap<>(), false, false, true, false, 0, false, 0, true, RandomNumberGeneratorStrategy.THREAD_LOCAL, false, 0);
   }
 
   public JinjavaConfig(Charset charset, Locale locale, ZoneId timeZone, int maxRenderDepth) {
-    this(charset, locale, timeZone, maxRenderDepth, new HashMap<>(), false, false, true, false, false, 0, true, RandomNumberGeneratorStrategy.THREAD_LOCAL, false, 0);
+    this(charset, locale, timeZone, maxRenderDepth, new HashMap<>(), false, false, true, false, 0, false, 0, true, RandomNumberGeneratorStrategy.THREAD_LOCAL, false, 0);
   }
 
   private JinjavaConfig(Charset charset,
@@ -70,6 +71,7 @@ private JinjavaConfig(Charset charset,
                         boolean lstripBlocks,
                         boolean readOnlyResolver,
                         boolean enableRecursiveMacroCalls,
+                        int maxMacroRecursionDepth,
                         boolean failOnUnknownTokens,
                         long maxOutputSize,
                         boolean nestedInterpretationEnabled,
@@ -85,6 +87,7 @@ private JinjavaConfig(Charset charset,
     this.lstripBlocks = lstripBlocks;
     this.readOnlyResolver = readOnlyResolver;
     this.enableRecursiveMacroCalls = enableRecursiveMacroCalls;
+    this.maxMacroRecursionDepth = maxMacroRecursionDepth;
     this.failOnUnknownTokens = failOnUnknownTokens;
     this.maxOutputSize = maxOutputSize;
     this.nestedInterpretationEnabled = nestedInterpretationEnabled;
@@ -133,6 +136,10 @@ public boolean isEnableRecursiveMacroCalls() {
     return enableRecursiveMacroCalls;
   }
 
+  public int getMaxMacroRecursionDepth() {
+    return maxMacroRecursionDepth;
+  }
+
   public Map<Library, Set<String>> getDisabled() {
     return disabled;
   }
@@ -166,6 +173,7 @@ public static class Builder {
 
     private boolean readOnlyResolver = true;
     private boolean enableRecursiveMacroCalls;
+    private int maxMacroRecursionDepth;
     private boolean failOnUnknownTokens;
     private boolean nestedInterpretationEnabled = true;
     private RandomNumberGeneratorStrategy randomNumberGeneratorStrategy = RandomNumberGeneratorStrategy.THREAD_LOCAL;
@@ -220,6 +228,11 @@ public Builder withEnableRecursiveMacroCalls(boolean enableRecursiveMacroCalls)
       return this;
     }
 
+    public Builder withMaxMacroRecursionDepth(int maxMacroRecursionDepth) {
+      this.maxMacroRecursionDepth = maxMacroRecursionDepth;
+      return this;
+    }
+
     public Builder withReadOnlyResolver(boolean readOnlyResolver) {
       this.readOnlyResolver = readOnlyResolver;
       return this;
@@ -260,6 +273,7 @@ public JinjavaConfig build() {
           lstripBlocks,
           readOnlyResolver,
           enableRecursiveMacroCalls,
+          maxMacroRecursionDepth,
           failOnUnknownTokens,
           maxOutputSize,
           nestedInterpretationEnabled,

src/main/java/com/hubspot/jinjava/el/ext/AstMacroFunction.java

@@ -34,15 +34,25 @@ public Object eval(Bindings bindings, ELContext context) {
       if (!macroFunction.isCaller()) {
         try {
           if (interpreter.getConfig().isEnableRecursiveMacroCalls()) {
-            macroStack.pushWithoutCycleCheck(getName());
+            if (interpreter.getConfig().getMaxMacroRecursionDepth() != 0) {
+              macroStack.pushWithMaxDepth(getName(), interpreter.getConfig().getMaxMacroRecursionDepth(), -1, -1);
+            } else {
+              macroStack.pushWithoutCycleCheck(getName());
+            }
           } else {
             macroStack.push(getName(), -1, -1);
           }
         } catch (MacroTagCycleException e) {
+
+          int maxDepth = interpreter.getConfig().getMaxMacroRecursionDepth();
+          String message = maxDepth == 0
+              ? String.format("Cycle detected for macro '%s'", getName())
+              : String.format("Max recursion limit of %d reached for macro '%s'", maxDepth, getName());
+
           interpreter.addError(new TemplateError(TemplateError.ErrorType.WARNING,
                                                  TemplateError.ErrorReason.EXCEPTION,
                                                  TemplateError.ErrorItem.TAG,
-                                                 "Cycle detected for macro '" + getName() + "'",
+                                                 message,
                                                  null,
                                                  e.getLineNumber(),
                                                  e.getStartPosition(),

src/main/java/com/hubspot/jinjava/interpret/CallStack.java

@@ -8,10 +8,13 @@ public class CallStack {
   private final CallStack parent;
   private final Class<? extends TagCycleException> exceptionClass;
   private final Stack<String> stack = new Stack<>();
+  private final int depth;
 
   public CallStack(CallStack parent, Class<? extends TagCycleException> exceptionClass) {
     this.parent = parent;
     this.exceptionClass = exceptionClass;
+
+    this.depth = parent == null ? 0 : parent.depth + 1;
   }
 
   public boolean contains(String path) {
@@ -35,6 +38,14 @@ public void pushWithoutCycleCheck(String path) {
     stack.push(path);
   }
 
+  public void pushWithMaxDepth(String path, int maxDepth, int lineNumber, int startPosition) {
+    if (depth < maxDepth) {
+      stack.push(path);
+    } else {
+      throw TagCycleException.create(exceptionClass, path, Optional.of(lineNumber), Optional.of(startPosition));
+    }
+  }
+
   public void push(String path, int lineNumber, int startPosition) {
     if (contains(path)) {
       throw TagCycleException.create(exceptionClass, path, Optional.of(lineNumber), Optional.of(startPosition));

src/test/java/com/hubspot/jinjava/lib/tag/MacroTagTest.java

@@ -168,6 +168,46 @@ public void itAllowsMacroRecursionWhenEnabledInConfiguration() throws IOExceptio
     }
   }
 
+  @Test
+  public void itAllowsMacroRecursionWithMaxDepth() throws IOException {
+
+    interpreter = new Jinjava(JinjavaConfig.newBuilder()
+        .withEnableRecursiveMacroCalls(true)
+        .withMaxMacroRecursionDepth(10)
+        .build()).newInterpreter();
+    JinjavaInterpreter.pushCurrent(interpreter);
+
+    try {
+      String template = fixtureText("ending-recursion");
+      String out = interpreter.render(template);
+      assertThat(interpreter.getErrorsCopy()).isEmpty();
+      assertThat(out).contains("Hello Hello Hello Hello Hello");
+    }
+    finally {
+      JinjavaInterpreter.popCurrent();
+    }
+  }
+
+  @Test
+  public void itEnforcesMacroRecursionWithMaxDepth() throws IOException {
+
+    interpreter = new Jinjava(JinjavaConfig.newBuilder()
+        .withEnableRecursiveMacroCalls(true)
+        .withMaxMacroRecursionDepth(2)
+        .build()).newInterpreter();
+    JinjavaInterpreter.pushCurrent(interpreter);
+
+    try {
+      String template = fixtureText("ending-recursion");
+      String out = interpreter.render(template);
+      assertThat(interpreter.getErrorsCopy().get(0).getMessage()).contains("Max recursion limit of 2 reached for macro 'hello'");
+      assertThat(out).contains("Hello Hello");
+    }
+    finally {
+      JinjavaInterpreter.popCurrent();
+    }
+  }
+
   @Test
   public void itPreventsRecursionForMacroWithVar() {
     String jinja = "{%- macro func(var) %}" +