Skip to content
/ WebRunner Public

PeachPy.IO backend - HTTP server for secure execution of PeachPy kernels

License

BSD-2-Clause license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

PeachPy/WebRunner

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

13 Commits

example

example

 
 

src

src

 
 

tools

tools

 
 

.gitignore

.gitignore

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

configure.py

configure.py

 
 

webrunner.service

webrunner.service

 
 

Repository files navigation

WebRunner (PeachPy.IO backend)

WebRunner is a service to execute user-supplied untrusted machine code on your server without compromising its security.

Key features:

  • REST API (i.e. you communicate with the service through stateless HTTP requests)
  • Built-in loader for ELF object files
  • Sandboxing of untrusted code through seccomp-bpf mechanism
  • Benchmarking and analyzing the code with hardware event counters.
  • Self-check command to support automation of service downtime
  • Extendable set of supported kernels

WebRunner dependencies

Required dependecies

  • Linux kernel >= 3.17
  • Python 2.7
  • Ninja build system (sudo apt-get install ninja-build)
  • ninja-syntax module (sudo pip install ninja-syntax)

Recommended dependecies

  • systemd (WebRunner includes service configuration only for systemd)
  • Ubuntu 15.10 (WebRunner was tested only on this distribution)

Optional dependecies

Building WebRunner

Configure and compile:

./configure.py
ninja

Recommended: install WebRunner to /usr/sbin/webrunner and register as a systemd service:

sudo ninja install

After installation you can start the service with sudo ninja start and terminate it with sudo ninja stop

Alternative: run WebRunner without installation:

./webrunner # webrunner -h to list options

REST API

WebRunner commands must follow the pattern http://server[:port]/machine-id/command[?query]

  • machine-id is an arbitrary string. It is parsed, but ignored by the WebRunner.
  • command is one of the supported commands (monitor or run).
  • query is an optional query string with command parameters.

monitor command

The monitor command is used to check server status.

HTTP request

  • Method: HEAD

  • URL: http://server[:port]/machine-id/monitor

HTTP response

A server would respond HTTP status ok 200 (OK) to this command.

Example
curl --head "http://localhost:8081/local/monitor"

run command

The run command is used to benchmark and analyze a function in an ELF object. The ELF object must be sent in the request body.

HTTP request

  • Method: POST

  • Content-Type: application/octet-stream

  • URL: http://server[:port]/machine-id/run?kernel=kernel-name&[param1=value1&param2=value2&...]

The kernel parameter specifies kernel type. Query parameters after it depend on the kernel type and specify parameters of the kernel run. Look at XML specifications in the /src/kernels directory for permitted kernel types and their parameters.

HTTP response

The server would respond with a line of names of hardware performance counters and their values (one per line)

Example
wget --header="Content-Type:application/octet-stream" --post-file=sdot.o \
  "http://localhost:8081/local/run?kernel=sdot&n=10000&incx=1&incy=2"

About

PeachPy.IO backend - HTTP server for secure execution of PeachPy kernels

Resources

Readme

License

BSD-2-Clause license
Activity
Custom properties

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages