Skip to content

progrium/javascriptd

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

10 Commits
.gitignore
.gitignore
 
 
Dockerfile
Dockerfile
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
daemon.js
daemon.js
 
 
daemon_test.js
daemon_test.js
 
 
duplex.js
duplex.js
 
 
package.json
package.json
 
 

Repository files navigation

javascriptd

Node.js powered script execution daemon

Using as runtime base

Javascriptd is typically run inside Docker. Out of the box it has nearly no Node.js packages available. This is usually undesirable. So make a runtime image:

FROM progrium/javascriptd
RUN npm install -g github circleci bluebird

Now running your Javascriptd runtime image, scripts will have these packages available.

Using outside of Docker

You can use Javascriptd in development without Docker. Just link and run the binary. It should not be published to NPM.

$ npm link
... elsewhere ...
$ javascriptd

Keep in mind it will have all your global packages available.

Securing Javascriptd

To keep Javascriptd private, set environment variable SECRET and run it behind SSL. HTTP requests will then require the header x-runtime-secret.

In terms of sandboxing, there are two layers of isolation builtin.

First, each script call is done in a separate V8 context via Node's vm module. "Breaking out" requires access to various modules, which can be imported by require. Normally require is not available, but we add it since there is little useful JavaScript that can be written in an empty context. This should be secured by whitelisting safe Node modules and NPM packages.

Second, Javascriptd is made to be run inside Docker by a non-root user. This, combined with extra isolation levels that can be configured via Docker, provides pretty solid isolation guarantees. Further isolation could be added around Docker and in the environment Docker is run as needed.

Running scripts

The Javascriptd daemon exposes a Duplex JSON-over-WebSocket endpoint. It has one method:

runtime.execute(script) => results

script

type script struct {
    code     string    // script contents
    globals  object    // optional globals
    call     string    // optional name of function to call
    caller   string    // optional caller function code
}

code is some JS you want to populate a context with and evaluate. globals is a object that's used as the global context object. All keys of globals are available to the script. call is the name of a function you want to call. This function is not called directly, it's called with a caller.

The default caller looks like function(callee, cb) { callee(cb); }, where cb is the callback to return a value, and callee is the function identified by call. However, you can override this with caller so you can customize how a function is called and set up more of the context for the call.

For example, this is a value for caller that will initialize a Github client, authenticate with a token from globals, and call the callee with the Github object, an event object from globals, and the callback as arguments:

(function(callee, cb) {
  var github = new require("github")();
  github.authenticate({
    type: "token",
    token: secrets.token
  });
  callee(github, event, cb);
})

result

type result struct {
    value     ?          // first argument of cb
    console   []string   // output from console.log
    time      number     // time to complete in milliseconds
}

errors

Possible Duplex errors include:

  • 1000 $exception There was an exception in the script.
  • 1001 Not implemented The function in call does not exist.
  • 1002 Timeout The script and call timed out.

Errors may include a data object:

type errorData struct {
    stack     string     // stacktrace if available
    console   []string   // output from console.log
}

About

Node.js powered script execution container

Resources

Readme
Activity

Stars

9 stars

Watchers

2 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages