Merge branch 'main' into dependabot/cargo/src/agent/iced-x86-1.20.0

Author: Porges

src/ApiService/ApiService/Functions/Containers.cs

@@ -41,7 +41,7 @@ private async Async.Task<HttpResponseData> Get(HttpRequestData req) {
                     req,
                     Error.Create(
                         ErrorCode.INVALID_REQUEST,
-                        "invalid container"),
+                        $"invalid container '{get.Name}'"),
                     context: get.Name.String);
             }
 
@@ -75,13 +75,7 @@ private async Async.Task<HttpResponseData> Delete(HttpRequestData req) {
 
         var delete = request.OkV;
         _logger.LogInformation("deleting {ContainerName}", delete.Name);
-        var container = await _context.Containers.FindContainer(delete.Name, StorageType.Corpus);
-
-        var deleted = false;
-        if (container is not null) {
-            deleted = await container.DeleteIfExistsAsync();
-        }
-
+        var deleted = await _context.Containers.DeleteContainerIfExists(delete.Name, StorageType.Corpus);
         return await RequestHandling.Ok(req, deleted);
     }
 

src/ApiService/ApiService/Functions/Events.cs

@@ -1,16 +1,13 @@
 using Microsoft.Azure.Functions.Worker;
 using Microsoft.Azure.Functions.Worker.Http;
-using Microsoft.Extensions.Logging;
 using Microsoft.OneFuzz.Service.Auth;
 namespace Microsoft.OneFuzz.Service.Functions;
 
 public class EventsFunction {
-    private readonly ILogger _log;
     private readonly IOnefuzzContext _context;
 
-    public EventsFunction(ILogger<EventsFunction> log, IOnefuzzContext context) {
+    public EventsFunction(IOnefuzzContext context) {
         _context = context;
-        _log = log;
     }
 
     [Function("Events")]

src/ApiService/ApiService/OneFuzzTypes/Enums.cs

@@ -8,7 +8,7 @@ public enum ErrorCode {
     INVALID_PERMISSION = 451,
     MISSING_EULA_AGREEMENT = 452,
     INVALID_JOB = 453,
-    INVALID_TASK = INVALID_JOB,
+    INVALID_TASK = 493,
     UNABLE_TO_ADD_TASK_TO_JOB = 454,
     INVALID_CONTAINER = 455,
     UNABLE_TO_RESIZE = 456,

src/ApiService/ApiService/OneFuzzTypes/Model.cs

@@ -173,7 +173,7 @@ public static Error Create(ErrorCode code, params string[] errors)
         => new(code, errors.ToList());
 
     public sealed override string ToString() {
-        var errorsString = Errors != null ? string.Concat("; ", Errors) : string.Empty;
+        var errorsString = Errors != null ? string.Join("; ", Errors) : string.Empty;
         return $"Error {{ Code = {Code}, Errors = {errorsString} }}";
     }
 };
@@ -767,6 +767,11 @@ public record ClientCredentials
     string ClientSecret
 );
 
+public record ContainerInformation(
+    [PartitionKey] StorageType Type,
+    [RowKey] Container Name,
+    string ResourceId // full ARM resource ID for the container
+) : EntityBase;
 
 public record AgentConfig(
     ClientCredentials? ClientCredentials,

src/ApiService/ApiService/OneFuzzTypes/ReturnTypes.cs

@@ -2,6 +2,16 @@
 
 namespace Microsoft.OneFuzz.Service {
 
+    public static class Result {
+        public readonly record struct OkPlaceholder();
+        public readonly record struct OkPlaceholder<T>(T Value);
+        public readonly record struct ErrPlaceholder<T>(T Value);
+
+        public static OkPlaceholder Ok() => new();
+        public static OkPlaceholder<T> Ok<T>(T value) => new(value);
+        public static ErrPlaceholder<T> Error<T>(T value) => new(value);
+    }
+
     public readonly struct ResultVoid<T_Error> {
         public static ResultVoid<T_Error> Ok() => new();
         public static ResultVoid<T_Error> Error(T_Error err) => new(err);
@@ -13,15 +23,16 @@ public readonly struct ResultVoid<T_Error> {
         public bool IsOk { get; }
 
         public T_Error? ErrorV { get; }
-    }
 
+        public static implicit operator ResultVoid<T_Error>(Result.OkPlaceholder _ok) => Ok();
+        public static implicit operator ResultVoid<T_Error>(Result.ErrPlaceholder<T_Error> err) => Error(err.Value);
+    }
 
     public readonly struct Result<T_Ok, T_Error> {
         public static Result<T_Ok, T_Error> Ok(T_Ok ok) => new(ok);
         public static Result<T_Ok, T_Error> Error(T_Error err) => new(err);
 
         private Result(T_Ok ok) => (OkV, ErrorV, IsOk) = (ok, default, true);
-
         private Result(T_Error error) => (ErrorV, OkV, IsOk) = (error, default, false);
 
         [MemberNotNullWhen(returnValue: true, member: nameof(OkV))]
@@ -31,6 +42,9 @@ public readonly struct Result<T_Ok, T_Error> {
         public T_Error? ErrorV { get; }
 
         public T_Ok? OkV { get; }
+
+        public static implicit operator Result<T_Ok, T_Error>(Result.OkPlaceholder<T_Ok> ok) => Ok(ok.Value);
+        public static implicit operator Result<T_Ok, T_Error>(Result.ErrPlaceholder<T_Error> err) => Error(err.Value);
     }
 
     public static class OneFuzzResult {
@@ -61,6 +75,8 @@ public readonly struct OneFuzzResult<T_Ok> {
 
         // Allow simple conversion of Errors to Results.
         public static implicit operator OneFuzzResult<T_Ok>(Error err) => new(err);
+        public static implicit operator OneFuzzResult<T_Ok>(Result.OkPlaceholder<T_Ok> ok) => Ok(ok.Value);
+        public static implicit operator OneFuzzResult<T_Ok>(Result.ErrPlaceholder<Error> err) => Error(err.Value);
     }
 
     public readonly struct OneFuzzResultVoid {
@@ -83,5 +99,7 @@ public readonly struct OneFuzzResultVoid {
 
         // Allow simple conversion of Errors to Results.
         public static implicit operator OneFuzzResultVoid(Error err) => new(err);
+        public static implicit operator OneFuzzResultVoid(Result.OkPlaceholder _ok) => Ok;
+        public static implicit operator OneFuzzResultVoid(Result.ErrPlaceholder<Error> err) => Error(err.Value);
     }
 }

src/ApiService/ApiService/Program.cs

@@ -70,17 +70,19 @@ public static async Async.Task Main() {
             .ConfigureAppConfiguration(builder => {
                 // Using a connection string in dev allows us to run the functions locally.
                 if (!string.IsNullOrEmpty(configuration.AppConfigurationConnectionString)) {
-                    var _ = builder.AddAzureAppConfiguration(options => {
-                        var _ = options
+                    builder.AddAzureAppConfiguration(options => {
+                        options
                             .Connect(configuration.AppConfigurationConnectionString)
                             .UseFeatureFlags(ffOptions => ffOptions.CacheExpirationInterval = TimeSpan.FromSeconds(30));
                     });
-                } else {
-                    var _ = builder.AddAzureAppConfiguration(options => {
-                        var _ = options
-                            .Connect(new Uri(configuration.AppConfigurationEndpoint!), new DefaultAzureCredential())
+                } else if (!string.IsNullOrEmpty(configuration.AppConfigurationEndpoint)) {
+                    builder.AddAzureAppConfiguration(options => {
+                        options
+                            .Connect(new Uri(configuration.AppConfigurationEndpoint), new DefaultAzureCredential())
                             .UseFeatureFlags(ffOptions => ffOptions.CacheExpirationInterval = TimeSpan.FromMinutes(1));
                     });
+                } else {
+                    throw new InvalidOperationException($"One of APPCONFIGURATION_CONNECTION_STRING or APPCONFIGURATION_ENDPOINT must be set");
                 }
             })
             .ConfigureServices((context, services) => {
@@ -201,13 +203,10 @@ public static async Async.Task SetupStorage(IStorage storage, IServiceConfig ser
             }
         }
 
-        var storageAccount = serviceConfig.OneFuzzFuncStorage;
-        if (storageAccount is not null) {
-            var tableClient = await storage.GetTableServiceClientForAccount(storageAccount);
-            await Async.Task.WhenAll(toCreate.Select(async t => {
-                // don't care if it was created or not
-                _ = await tableClient.CreateTableIfNotExistsAsync(serviceConfig.OneFuzzStoragePrefix + t.Name);
-            }));
-        }
+        var tableClient = await storage.GetTableServiceClientForAccount(serviceConfig.OneFuzzFuncStorage);
+        await Async.Task.WhenAll(toCreate.Select(async t => {
+            // don't care if it was created or not
+            _ = await tableClient.CreateTableIfNotExistsAsync(serviceConfig.OneFuzzStoragePrefix + t.Name);
+        }));
     }
 }

src/ApiService/ApiService/ServiceConfiguration.cs

@@ -10,57 +10,51 @@ public enum LogDestination {
 
 
 public interface IServiceConfig {
-    public LogDestination[] LogDestinations { get; set; }
-
+    #region Parameters for logging & application insights
+    public LogDestination[] LogDestinations { get; }
     public ApplicationInsights.DataContracts.SeverityLevel LogSeverityLevel { get; }
-
     public string? ApplicationInsightsAppId { get; }
     public string? ApplicationInsightsInstrumentationKey { get; }
+    #endregion
+
+    #region Parameters for feature flags
     public string? AppConfigurationEndpoint { get; }
     public string? AppConfigurationConnectionString { get; }
-    public string? AzureSignalRConnectionString { get; }
-    public string? AzureSignalRServiceTransportType { get; }
-
-    public string? AzureWebJobDisableHomePage { get; }
-    public string? AzureWebJobStorage { get; }
+    #endregion
 
-    public string? DiagnosticsAzureBlobContainerSasUrl { get; }
-    public string? DiagnosticsAzureBlobRetentionDays { get; }
+    #region Auth parameters for CLI app
     public string? CliAppId { get; }
     public string? Authority { get; }
     public string? TenantDomain { get; }
     public string? MultiTenantDomain { get; }
-    public ResourceIdentifier? OneFuzzDataStorage { get; }
-    public ResourceIdentifier? OneFuzzFuncStorage { get; }
-    public string? OneFuzzInstance { get; }
-    public string? OneFuzzInstanceName { get; }
-    public string? OneFuzzEndpoint { get; }
-    public string? OneFuzzKeyvault { get; }
-
+    #endregion
+
+    public ResourceIdentifier OneFuzzResourceGroup { get; }
+    public ResourceIdentifier OneFuzzDataStorage { get; }
+    public ResourceIdentifier OneFuzzFuncStorage { get; }
+    public Uri OneFuzzInstance { get; }
+    public string OneFuzzInstanceName { get; }
+    public Uri? OneFuzzEndpoint { get; }
+    public string OneFuzzKeyvault { get; }
     public string? OneFuzzMonitor { get; }
     public string? OneFuzzOwner { get; }
-
-    public string? OneFuzzResourceGroup { get; }
     public string? OneFuzzTelemetry { get; }
-
     public string OneFuzzVersion { get; }
-
     public string? OneFuzzAllowOutdatedAgent { get; }
 
     // Prefix to add to the name of any tables & containers created. This allows
     // multiple instances to run against the same storage account, which
     // is useful for things like integration testing.
     public string OneFuzzStoragePrefix { get; }
-
-    public Uri OneFuzzBaseAddress { get; }
 }
 
 public class ServiceConfiguration : IServiceConfig {
 
     // Version is baked into the assembly by the build process:
-    private static readonly string? _oneFuzzVersion =
+    private static readonly string _oneFuzzVersion =
         Assembly.GetExecutingAssembly()
-        .GetCustomAttribute<AssemblyInformationalVersionAttribute>()?.InformationalVersion;
+        .GetCustomAttribute<AssemblyInformationalVersionAttribute>()?.InformationalVersion
+        ?? throw new InvalidOperationException("Unable to read OneFuzz version from assembly");
 
     public ServiceConfiguration() {
 #if DEBUG
@@ -72,78 +66,57 @@ public ServiceConfiguration() {
 
     private static string? GetEnv(string name) {
         var v = Environment.GetEnvironmentVariable(name);
-        if (String.IsNullOrEmpty(v))
-            return null;
-
-        return v;
+        return string.IsNullOrEmpty(v) ? null : v;
     }
 
+    private static string MustGetEnv(string name)
+        => GetEnv(name) ?? throw new InvalidOperationException($"Environment variable {name} is required to be set");
+
     //TODO: Add environment variable to control where to write logs to
-    public LogDestination[] LogDestinations { get; set; }
+    public LogDestination[] LogDestinations { get; private set; }
 
     //TODO: Get this from Environment variable
     public ApplicationInsights.DataContracts.SeverityLevel LogSeverityLevel => ApplicationInsights.DataContracts.SeverityLevel.Verbose;
 
-    public string? ApplicationInsightsAppId => GetEnv("APPINSIGHTS_APPID");
-    public string? ApplicationInsightsInstrumentationKey => GetEnv("APPINSIGHTS_INSTRUMENTATIONKEY");
+    public string? ApplicationInsightsAppId { get; } = GetEnv("APPINSIGHTS_APPID");
 
-    public string? AppConfigurationEndpoint => GetEnv("APPCONFIGURATION_ENDPOINT");
+    public string? ApplicationInsightsInstrumentationKey { get; } = GetEnv("APPINSIGHTS_INSTRUMENTATIONKEY");
 
-    public string? AppConfigurationConnectionString => GetEnv("APPCONFIGURATION_CONNECTION_STRING");
+    public string? AppConfigurationEndpoint { get; } = GetEnv("APPCONFIGURATION_ENDPOINT");
 
-    public string? AzureSignalRConnectionString => GetEnv("AzureSignalRConnectionString");
-    public string? AzureSignalRServiceTransportType => GetEnv("AzureSignalRServiceTransportType");
+    public string? AppConfigurationConnectionString { get; } = GetEnv("APPCONFIGURATION_CONNECTION_STRING");
 
-    public string? AzureWebJobDisableHomePage { get => GetEnv("AzureWebJobsDisableHomepage"); }
-    public string? AzureWebJobStorage { get => GetEnv("AzureWebJobsStorage"); }
+    public string? CliAppId { get; } = GetEnv("CLI_APP_ID");
 
-    public string? DiagnosticsAzureBlobContainerSasUrl { get => GetEnv("DIAGNOSTICS_AZUREBLOBCONTAINERSASURL"); }
-    public string? DiagnosticsAzureBlobRetentionDays { get => GetEnv("DIAGNOSTICS_AZUREBLOBRETENTIONINDAYS"); }
-    public string? CliAppId { get => GetEnv("CLI_APP_ID"); }
-    public string? Authority { get => GetEnv("AUTHORITY"); }
-    public string? TenantDomain { get => GetEnv("TENANT_DOMAIN"); }
-    public string? MultiTenantDomain { get => GetEnv("MULTI_TENANT_DOMAIN"); }
+    public string? Authority { get; } = GetEnv("AUTHORITY");
 
-    public ResourceIdentifier? OneFuzzDataStorage {
-        get {
-            var env = GetEnv("ONEFUZZ_DATA_STORAGE");
-            return env is null ? null : new ResourceIdentifier(env);
-        }
-    }
+    public string? TenantDomain { get; } = GetEnv("TENANT_DOMAIN");
 
-    public ResourceIdentifier? OneFuzzFuncStorage {
-        get {
-            var env = GetEnv("ONEFUZZ_FUNC_STORAGE");
-            return env is null ? null : new ResourceIdentifier(env);
-        }
-    }
+    public string? MultiTenantDomain { get; } = GetEnv("MULTI_TENANT_DOMAIN");
 
-    public string? OneFuzzInstance { get => GetEnv("ONEFUZZ_INSTANCE"); }
-    public string? OneFuzzInstanceName { get => GetEnv("ONEFUZZ_INSTANCE_NAME"); }
-    public string? OneFuzzEndpoint { get => GetEnv("ONEFUZZ_ENDPOINT"); }
-    public string? OneFuzzKeyvault { get => GetEnv("ONEFUZZ_KEYVAULT"); }
-    public string? OneFuzzMonitor { get => GetEnv("ONEFUZZ_MONITOR"); }
-    public string? OneFuzzOwner { get => GetEnv("ONEFUZZ_OWNER"); }
-    public string? OneFuzzResourceGroup { get => GetEnv("ONEFUZZ_RESOURCE_GROUP"); }
-    public string? OneFuzzTelemetry { get => GetEnv("ONEFUZZ_TELEMETRY"); }
-
-    public string OneFuzzVersion {
-        get {
-            // version can be overridden by config:
-            return GetEnv("ONEFUZZ_VERSION")
-                ?? _oneFuzzVersion
-                ?? throw new InvalidOperationException("Unable to read OneFuzz version from assembly");
-        }
-    }
+    public ResourceIdentifier OneFuzzDataStorage { get; } = new(MustGetEnv("ONEFUZZ_DATA_STORAGE"));
 
-    public string? OneFuzzAllowOutdatedAgent => GetEnv("ONEFUZZ_ALLOW_OUTDATED_AGENT");
-    public string OneFuzzStoragePrefix => ""; // in production we never prefix the tables
+    public ResourceIdentifier OneFuzzFuncStorage { get; } = new(MustGetEnv("ONEFUZZ_FUNC_STORAGE"));
 
-    public Uri OneFuzzBaseAddress {
-        get {
-            var hostName = Environment.GetEnvironmentVariable("WEBSITE_HOSTNAME");
-            var scheme = Environment.GetEnvironmentVariable("HTTPS") != null ? "https" : "http";
-            return new Uri($"{scheme}://{hostName}");
-        }
-    }
+    public Uri OneFuzzInstance { get; } = new Uri(MustGetEnv("ONEFUZZ_INSTANCE"));
+
+    public string OneFuzzInstanceName { get; } = MustGetEnv("ONEFUZZ_INSTANCE_NAME");
+
+    public Uri? OneFuzzEndpoint { get; } = GetEnv("ONEFUZZ_ENDPOINT") is string value ? new Uri(value) : null;
+
+    public string OneFuzzKeyvault { get; } = MustGetEnv("ONEFUZZ_KEYVAULT");
+
+    public string? OneFuzzMonitor { get; } = GetEnv("ONEFUZZ_MONITOR");
+
+    public string? OneFuzzOwner { get; } = GetEnv("ONEFUZZ_OWNER");
+
+    public ResourceIdentifier OneFuzzResourceGroup { get; } = new(MustGetEnv("ONEFUZZ_RESOURCE_GROUP"));
+
+    public string? OneFuzzTelemetry { get; } = GetEnv("ONEFUZZ_TELEMETRY");
+
+    public string OneFuzzVersion { get; } = GetEnv("ONEFUZZ_VERSION") ?? _oneFuzzVersion;
+
+    public string? OneFuzzAllowOutdatedAgent { get; } = GetEnv("ONEFUZZ_ALLOW_OUTDATED_AGENT");
+
+    public string OneFuzzStoragePrefix => ""; // in production we never prefix the tables
 }

src/ApiService/ApiService/onefuzzlib/ConfigOperations.cs

@@ -26,12 +26,12 @@ public ConfigOperations(ILogger<ConfigOperations> log, IOnefuzzContext context,
     public Task<InstanceConfig> Fetch()
         => _cache.GetOrCreateAsync(_instanceConfigCacheKey, async entry => {
             entry = entry.SetAbsoluteExpiration(TimeSpan.FromMinutes(1)); // cached for 1 minute
-            var key = _context.ServiceConfiguration.OneFuzzInstanceName ?? throw new Exception("Environment variable ONEFUZZ_INSTANCE_NAME is not set");
+            var key = _context.ServiceConfiguration.OneFuzzInstanceName;
             return await GetEntityAsync(key, key);
         })!; // NULLABLE: only this class inserts _instanceConfigCacheKey so it cannot be null
 
     public async Async.Task Save(InstanceConfig config, bool isNew = false, bool requireEtag = false) {
-        var newConfig = config with { InstanceName = _context.ServiceConfiguration.OneFuzzInstanceName ?? throw new Exception("Environment variable ONEFUZZ_INSTANCE_NAME is not set") };
+        var newConfig = config with { InstanceName = _context.ServiceConfiguration.OneFuzzInstanceName };
         ResultVoid<(HttpStatusCode Status, string Reason)> r;
         if (isNew) {
             r = await Insert(newConfig);