FUZZIT_API_KEY now supports environment variable + sanity is regression now

Author: Yevgeny Pats

.goreleaser.yml

@@ -59,77 +59,77 @@ brews:
     # Default is empty.
     description: "Continuous Fuzzing Made Simple."
 
-snapcrafts:
-  -
-    # You can change the name of the package.
-    # Default: `{{ .ProjectName }}_{{ .Version }}_{{ .Os }}_{{ .Arch }}{{ if .Arm }}v{{ .Arm }}{{ end }}`
-    # name_template: "{{ .ProjectName }}_{{ .Version }}_{{ .Os }}_{{ .Arch }}"
-
-    name: fuzzit
-
-    # Wether to publish the snap to the snapcraft store.
-    # Remember you need to `snapcraft login` first.
-    # Defaults to false.
-    publish: true
-
-    # Single-line elevator pitch for your amazing snap.
-    # 79 char long at most.
-    summary: Software to integrate continuous fuzzing to c/c++/go/rust projects.
-
-    description: Continuous fuzzing as a service made simple with fuzzit.
-
-    # A guardrail to prevent you from releasing a snap to all your users before
-    # it is ready.
-    # `devel` will let you release only to the `edge` and `beta` channels in the
-    # store. `stable` will let you release also to the `candidate` and `stable`
-    # channels. More info about channels here:
-    # https://snapcraft.io/docs/reference/channels
-    grade: stable
-
-    # Snaps can be setup to follow three different confinement policies:
-    # `strict`, `devmode` and `classic`. A strict confinement where the snap
-    # can only read and write in its own namespace is recommended. Extra
-    # permissions for strict snaps can be declared as `plugs` for the app, which
-    # are explained later. More info about confinement here:
-    # https://snapcraft.io/docs/reference/confinement
-    confinement: strict
-
-    # Your app's license, based on SPDX license expressions: https://spdx.org/licenses
-    # Default is empty.
-    license: Apache-2.0
-
-    # A snap of type base to be used as the execution environment for this snap.
-    # Valid values are:
-    # * bare - Empty base snap;
-    # * core - Ubuntu Core 16;
-    # * core18 - Ubuntu Core 18.
-    # Default is empty.
-    base: core18
-
-    # Each binary built by GoReleaser is an app inside the snap. In this section
-    # you can declare extra details for those binaries. It is optional.
-    apps:
-
-      # The name of the app must be the same name as the binary built or the snapcraft name.
-      fuzzit:
-
-        # If your app requires extra permissions to work outside of its default
-        # confined space, declare them here.
-        # You can read the documentation about the available plugs and the
-        # things they allow:
-        # https://snapcraft.io/docs/reference/interfaces.
-        plugs: ["network", "personal-files"]
-
-        # Bash completion snippet. More information about completion here:
-        # https://docs.snapcraft.io/tab-completion-for-snaps.
-        # completer: drumroll-completion.bash
-
-    # Allows plugs to be configured. Plugs like system-files and personal-files
-    # require this.
-    # Default is empty.
-    plugs:
-      personal-files:
-        read:
-          - $HOME/.fuzzit.cache
-        write:
-          - $HOME/.fuzzit.cache
+#snapcrafts:
+#  -
+#    # You can change the name of the package.
+#    # Default: `{{ .ProjectName }}_{{ .Version }}_{{ .Os }}_{{ .Arch }}{{ if .Arm }}v{{ .Arm }}{{ end }}`
+#    # name_template: "{{ .ProjectName }}_{{ .Version }}_{{ .Os }}_{{ .Arch }}"
+#
+#    name: fuzzit
+#
+#    # Wether to publish the snap to the snapcraft store.
+#    # Remember you need to `snapcraft login` first.
+#    # Defaults to false.
+#    publish: true
+#
+#    # Single-line elevator pitch for your amazing snap.
+#    # 79 char long at most.
+#    summary: Software to integrate continuous fuzzing to c/c++/go/rust projects.
+#
+#    description: Continuous fuzzing as a service made simple with fuzzit.
+#
+#    # A guardrail to prevent you from releasing a snap to all your users before
+#    # it is ready.
+#    # `devel` will let you release only to the `edge` and `beta` channels in the
+#    # store. `stable` will let you release also to the `candidate` and `stable`
+#    # channels. More info about channels here:
+#    # https://snapcraft.io/docs/reference/channels
+#    grade: stable
+#
+#    # Snaps can be setup to follow three different confinement policies:
+#    # `strict`, `devmode` and `classic`. A strict confinement where the snap
+#    # can only read and write in its own namespace is recommended. Extra
+#    # permissions for strict snaps can be declared as `plugs` for the app, which
+#    # are explained later. More info about confinement here:
+#    # https://snapcraft.io/docs/reference/confinement
+#    confinement: strict
+#
+#    # Your app's license, based on SPDX license expressions: https://spdx.org/licenses
+#    # Default is empty.
+#    license: Apache-2.0
+#
+#    # A snap of type base to be used as the execution environment for this snap.
+#    # Valid values are:
+#    # * bare - Empty base snap;
+#    # * core - Ubuntu Core 16;
+#    # * core18 - Ubuntu Core 18.
+#    # Default is empty.
+#    base: core18
+#
+#    # Each binary built by GoReleaser is an app inside the snap. In this section
+#    # you can declare extra details for those binaries. It is optional.
+#    apps:
+#
+#      # The name of the app must be the same name as the binary built or the snapcraft name.
+#      fuzzit:
+#
+#        # If your app requires extra permissions to work outside of its default
+#        # confined space, declare them here.
+#        # You can read the documentation about the available plugs and the
+#        # things they allow:
+#        # https://snapcraft.io/docs/reference/interfaces.
+#        plugs: ["network", "personal-files"]
+#
+#        # Bash completion snippet. More information about completion here:
+#        # https://docs.snapcraft.io/tab-completion-for-snaps.
+#        # completer: drumroll-completion.bash
+#
+#    # Allows plugs to be configured. Plugs like system-files and personal-files
+#    # require this.
+#    # Default is empty.
+#    plugs:
+#      personal-files:
+#        read:
+#          - $HOME/.fuzzit.cache
+#        write:
+#          - $HOME/.fuzzit.cache

client/auth.go

@@ -18,7 +18,7 @@ import (
 	"google.golang.org/api/option"
 )
 
-func (c *fuzzitClient) refreshToken() error {
+func (c *FuzzitClient) refreshToken() error {
 	if c.IdToken == "" || (time.Now().Unix()-c.LastRefresh) > 60*45 {
 		createCustomTokenEndpoint := fmt.Sprintf("%s/createCustomToken?api_key=%s", FuzzitEndpoint, url.QueryEscape(c.ApiKey))
 		r, err := c.httpClient.Get(createCustomTokenEndpoint)

client/client.go

@@ -41,7 +41,7 @@ type job struct {
 	Job
 }
 
-type fuzzitClient struct {
+type FuzzitClient struct {
 	Org             string
 	Namespace       string
 	ApiKey          string
@@ -55,8 +55,8 @@ type fuzzitClient struct {
 	httpClient      *http.Client
 }
 
-func NewFuzzitClient(apiKey string) (*fuzzitClient, error) {
-	c := &fuzzitClient{}
+func NewFuzzitClient(apiKey string) (*FuzzitClient, error) {
+	c := &FuzzitClient{}
 	c.httpClient = &http.Client{Timeout: 60 * time.Second}
 	c.ApiKey = apiKey
 	err := c.refreshToken()
@@ -66,8 +66,8 @@ func NewFuzzitClient(apiKey string) (*fuzzitClient, error) {
 	return c, nil
 }
 
-func LoadFuzzitFromCache() (*fuzzitClient, error) {
-	c := &fuzzitClient{}
+func LoadFuzzitFromCache() (*FuzzitClient, error) {
+	c := &FuzzitClient{}
 	c.httpClient = &http.Client{Timeout: 60 * time.Second}
 
 	usr, err := user.Current()

client/commands.go

@@ -24,7 +24,7 @@ import (
 	//"github.com/docker/docker/pkg/stdcopy"
 )
 
-func (c *fuzzitClient) archiveFiles(files []string) (string, error) {
+func (c *FuzzitClient) archiveFiles(files []string) (string, error) {
 	fuzzerPath := files[0]
 	filename := filepath.Base(fuzzerPath)
 	if !strings.HasSuffix(filename, ".tar.gz") {
@@ -56,7 +56,7 @@ func (c *fuzzitClient) archiveFiles(files []string) (string, error) {
 	return fuzzerPath, nil
 }
 
-func (c *fuzzitClient) DownloadSeed(dst string, target string) error {
+func (c *FuzzitClient) DownloadSeed(dst string, target string) error {
 	storagePath := fmt.Sprintf("orgs/%s/targets/%s/seed", c.Org, target)
 	err := c.downloadFile(dst, storagePath)
 	if err != nil {
@@ -65,7 +65,7 @@ func (c *fuzzitClient) DownloadSeed(dst string, target string) error {
 	return nil
 }
 
-func (c *fuzzitClient) DownloadCorpus(dst string, target string) error {
+func (c *FuzzitClient) DownloadCorpus(dst string, target string) error {
 	storagePath := fmt.Sprintf("orgs/%s/targets/%s/corpus.tar.gz", c.Org, target)
 	err := c.downloadFile(dst, storagePath)
 	if err != nil {
@@ -74,7 +74,7 @@ func (c *fuzzitClient) DownloadCorpus(dst string, target string) error {
 	return nil
 }
 
-func (c *fuzzitClient) DownloadFuzzer(dst string, target string, job string) error {
+func (c *FuzzitClient) DownloadFuzzer(dst string, target string, job string) error {
 	storagePath := fmt.Sprintf("orgs/%s/targets/%s/jobs/%s/fuzzer", c.Org, target, job)
 	err := c.downloadFile(dst, storagePath)
 	if err != nil {
@@ -83,7 +83,7 @@ func (c *fuzzitClient) DownloadFuzzer(dst string, target string, job string) err
 	return nil
 }
 
-func (c *fuzzitClient) GetResource(resource string) error {
+func (c *FuzzitClient) GetResource(resource string) error {
 	err := c.refreshToken()
 	if err != nil {
 		return err
@@ -140,7 +140,7 @@ func (c *fuzzitClient) GetResource(resource string) error {
 	}
 }
 
-func (c *fuzzitClient) CreateTarget(targetName string, seedPath string) (*firestore.DocumentRef, error) {
+func (c *FuzzitClient) CreateTarget(targetName string, seedPath string) (*firestore.DocumentRef, error) {
 	err := c.refreshToken()
 	if err != nil {
 		return nil, err
@@ -174,7 +174,7 @@ func (c *fuzzitClient) CreateTarget(targetName string, seedPath string) (*firest
 	return docRef, nil
 }
 
-func (c *fuzzitClient) getRunShTar() (*os.File, error) {
+func (c *FuzzitClient) getRunShTar() (*os.File, error) {
 	tmpfile, err := ioutil.TempFile("", "run.*.tar")
 	if err != nil {
 		log.Fatal(err)
@@ -209,7 +209,7 @@ func (c *fuzzitClient) getRunShTar() (*os.File, error) {
 	return runShTar, nil
 }
 
-func (c *fuzzitClient) CreateLocalJob(jobConfig Job, files []string) error {
+func (c *FuzzitClient) CreateLocalJob(jobConfig Job, files []string) error {
 	ctx := context.Background()
 	cli, err := client.NewClientWithOpts(client.FromEnv)
 	if err != nil {
@@ -327,7 +327,7 @@ func (c *fuzzitClient) CreateLocalJob(jobConfig Job, files []string) error {
 	return nil
 }
 
-func (c *fuzzitClient) CreateJob(jobConfig Job, files []string) (*firestore.DocumentRef, error) {
+func (c *FuzzitClient) CreateJob(jobConfig Job, files []string) (*firestore.DocumentRef, error) {
 	err := c.refreshToken()
 	if err != nil {
 		return nil, err

client/storage.go

@@ -19,7 +19,7 @@ type storageLinkResponse struct {
 	StorageLink string `json:"storage_link"`
 }
 
-func (c *fuzzitClient) getStorageLink(storagePath string, action string) (string, error) {
+func (c *FuzzitClient) getStorageLink(storagePath string, action string) (string, error) {
 	uri := fmt.Sprintf("https://app.fuzzit.dev/getStorageLinkV3?path=%s&api_key=%s&action=%s",
 		url.QueryEscape(storagePath),
 		url.QueryEscape(c.ApiKey),
@@ -42,7 +42,7 @@ func (c *fuzzitClient) getStorageLink(storagePath string, action string) (string
 	return res.StorageLink, nil
 }
 
-func (c *fuzzitClient) uploadFile(filePath string, storagePath string, contentType string, filename string) error {
+func (c *FuzzitClient) uploadFile(filePath string, storagePath string, contentType string, filename string) error {
 	data, err := os.Open(filePath)
 	if err != nil {
 		return err
@@ -74,7 +74,7 @@ func (c *fuzzitClient) uploadFile(filePath string, storagePath string, contentTy
 	return nil
 }
 
-func (c *fuzzitClient) downloadFile(filePath string, storagePath string) error {
+func (c *FuzzitClient) downloadFile(filePath string, storagePath string) error {
 	storageLink, err := c.getStorageLink(storagePath, "read")
 	if err != nil {
 		return err

cmd/create.go

@@ -16,13 +16,31 @@ limitations under the License.
 package cmd
 
 import (
+	"github.com/fuzzitdev/fuzzit/client"
 	"github.com/spf13/cobra"
+	"github.com/spf13/viper"
+	"log"
 )
 
 // createCmd represents the create command
 var createCmd = &cobra.Command{
 	Use:   "create",
 	Short: "Create a new Target or a Job",
+	PersistentPreRun: func(cmd *cobra.Command, args []string) {
+		apiKey := viper.GetString("api-key")
+		var err error
+		if apiKey != "" {
+			gFuzzitClient, err = client.NewFuzzitClient(apiKey)
+			if err != nil {
+				log.Fatalln(err)
+			}
+		} else {
+			gFuzzitClient, err = client.LoadFuzzitFromCache()
+			if err != nil {
+				log.Fatalln(err)
+			}
+		}
+	},
 }
 
 func init() {

cmd/get.go

@@ -18,6 +18,7 @@ package cmd
 import (
 	"github.com/fuzzitdev/fuzzit/client"
 	"github.com/spf13/cobra"
+	"github.com/spf13/viper"
 	"log"
 )
 
@@ -31,12 +32,23 @@ var getCmd = &cobra.Command{
 	./fuzzit get targets/<target_id>/jobs # retrieve all jobs for target
 	./fuzzit get targets/<target_id>/jobs/<job_id> # retrieve specific job`,
 	Args: cobra.ExactArgs(1),
-	Run: func(cmd *cobra.Command, args []string) {
-		c, err := client.LoadFuzzitFromCache()
-		if err != nil {
-			log.Fatal(err)
+	PersistentPreRun: func(cmd *cobra.Command, args []string) {
+		apiKey := viper.GetString("api-key")
+		var err error
+		if apiKey != "" {
+			gFuzzitClient, err = client.NewFuzzitClient(apiKey)
+			if err != nil {
+				log.Fatalln(err)
+			}
+		} else {
+			gFuzzitClient, err = client.LoadFuzzitFromCache()
+			if err != nil {
+				log.Fatalln(err)
+			}
 		}
-		err = c.GetResource(args[0])
+	},
+	Run: func(cmd *cobra.Command, args []string) {
+		err := gFuzzitClient.GetResource(args[0])
 		if err != nil {
 			log.Fatal(err)
 		}