Execution Environment Modules ๐งยค
Purpose: Comprehensive guide to PANTHER's execution environments and profiling tools Target: Developers implementing performance analysis; researchers studying system behavior; DevOps teams optimizing deployments
Execution environments in PANTHER define where and how your implementations run during testing. They provide containerized environments, performance profiling, debugging tools, and systematic analysis capabilities.
Architecture Overviewยค
PANTHER's execution environments use a plugin-based architecture where each environment type provides:
- Isolated Runtime: Containerized execution with controlled dependencies
- Performance Monitoring: CPU, memory, and system call profiling
- Debug Capabilities: Memory leak detection, threading analysis, and tracing
- Result Collection: Automated gathering of metrics and artifacts
Environment Typesยค
| Environment | Purpose | Use Cases |
|---|---|---|
| GPerf CPU | CPU performance profiling | Performance optimization, bottleneck analysis |
| GPerf Heap | Memory allocation profiling | Memory leak detection, heap analysis |
| Strace | System call tracing | Debugging, security analysis |
| Helgrind | Thread error detection | Concurrency bug detection |
| Memcheck | Memory error detection | Memory safety validation |
| Iterations | Repeated execution runs | Statistical analysis, reliability testing |
Available Execution Environmentsยค
1. Standard Docker Containerยค
Purpose: Basic containerized execution environment for consistent testing.
Configuration:
execution_environment:
type: "docker_container"
config:
image: "panther/test-env:latest"
dockerfile: "./Dockerfile"
build_context: "./build"
environment:
- "DEBUG=1"
- "RUST_LOG=debug"
volumes:
- "./certs:/certs:ro"
- "./logs:/app/logs:rw"
capabilities:
- "NET_ADMIN"
- "SYS_PTRACE"
working_dir: "/app"
user: "panther"
Features:
- Environment variable injection
- Volume mounting for data persistence
- Security capability management
- User/permission control
2. GPerf CPU Profilingยค
Purpose: Detailed CPU performance analysis using Google Performance Tools.
Configuration:
execution_environment:
type: "gperf_cpu"
config:
base_image: "panther/profiling:latest"
profiling:
frequency: 100 # Samples per second
duration: 60 # Profiling duration in seconds
output_format: "callgrind"
analysis:
generate_flamegraph: true
include_kernel: false
filter_functions: ["malloc", "free"]
Generated Artifacts:
- CPU profile data (
.proffiles) - Call graphs and flame graphs
- Function-level timing statistics
- Hot path identification
Use Cases:
- Performance optimization
- Bottleneck identification
- Algorithm comparison
- Regression testing
3. GPerf Heap Profilingยค
Purpose: Memory allocation and heap usage analysis.
Configuration:
execution_environment:
type: "gperf_heap"
config:
base_image: "panther/profiling:latest"
profiling:
sampling_rate: 524288 # Sample every 512KB
track_allocations: true
track_deallocations: true
analysis:
generate_heap_dump: true
detect_leaks: true
growth_analysis: true
Generated Artifacts:
- Heap profiles (
.heapfiles) - Memory leak reports
- Allocation pattern analysis
- Memory usage trends
4. Strace System Call Tracingยค
Purpose: System call monitoring and debugging.
Configuration:
execution_environment:
type: "strace"
config:
base_image: "panther/debug:latest"
tracing:
trace_children: true
follow_forks: true
syscalls: ["network", "file", "process"]
output_format: "json"
filtering:
exclude_syscalls: ["clock_gettime", "gettimeofday"]
include_only: ["send", "recv", "connect", "bind"]
Generated Artifacts:
- System call traces
- Timing analysis
- File descriptor tracking
- Network activity logs
5. Helgrind Thread Analysisยค
Purpose: Detection of threading errors and race conditions.
Configuration:
execution_environment:
type: "helgrind"
config:
base_image: "panther/valgrind:latest"
analysis:
track_lockorders: true
check_races: true
history_level: "full"
reporting:
show_reachable: true
leak_check: "full"
track_origins: true
Generated Artifacts:
- Race condition reports
- Deadlock detection
- Lock ordering analysis
- Thread interaction maps
6. Memcheck Memory Analysisยค
Purpose: Memory error detection using Valgrind.
Configuration:
execution_environment:
type: "memcheck"
config:
base_image: "panther/valgrind:latest"
checks:
leak_check: "full"
show_reachable: true
track_origins: true
undef_value_errors: true
suppressions:
- "/app/suppressions/openssl.supp"
- "/app/suppressions/system.supp"
Generated Artifacts:
- Memory leak reports
- Invalid memory access detection
- Uninitialized variable usage
- Memory corruption analysis
7. Iterations Environmentยค
Purpose: Repeated execution runs for statistical analysis.
Configuration:
execution_environment:
type: "iterations"
config:
base_environment: "docker_container"
iterations:
count: 100
parallel: 4
timeout: 300
statistics:
collect_timing: true
collect_metrics: true
confidence_interval: 0.95
failure_handling:
continue_on_failure: true
max_failures: 10
Generated Artifacts:
- Statistical summaries
- Performance distributions
- Reliability metrics
- Outlier analysis
Configuration Schemaยค
Each execution environment follows a common configuration schema:
from dataclasses import dataclass
from typing import Optional, List, Dict
@dataclass
class ExecutionEnvironmentConfig:
type: str
config: Dict[str, Any]
# Common options
timeout: Optional[int] = 300
retry_count: Optional[int] = 1
cleanup_on_exit: Optional[bool] = True
# Resource limits
memory_limit: Optional[str] = None
cpu_limit: Optional[float] = None
# Networking
network_mode: Optional[str] = "bridge"
exposed_ports: Optional[List[str]] = None
# Volumes and mounts
volumes: Optional[List[str]] = None
tmpfs: Optional[List[str]] = None
Advanced Usageยค
Custom Environment Imagesยค
Create specialized Docker images for your testing needs:
# Custom profiling environment
FROM panther/base:latest
# Install profiling tools
RUN apt-get update && apt-get install -y \
google-perftools \
valgrind \
strace \
gdb
# Add custom tools
COPY tools/ /opt/tools/
RUN chmod +x /opt/tools/*
WORKDIR /app
Environment Chainingยค
Combine multiple environments for comprehensive analysis:
tests:
- name: "comprehensive_analysis"
execution_environments:
- type: "gperf_cpu"
config:
duration: 30
- type: "memcheck"
config:
leak_check: "full"
- type: "strace"
config:
syscalls: ["network"]
Performance Comparisonยค
Use iterations for statistical performance comparison:
execution_environment:
type: "iterations"
config:
base_environment: "gperf_cpu"
iterations:
count: 50
variants:
- name: "baseline"
config: {}
- name: "optimized"
config:
compiler_flags: ["-O3", "-flto"]
Output Analysisยค
CPU Profiling Resultsยค
CPU profiling generates several output formats:
# View profile in terminal
pprof --text /app/logs/cpu.prof
# Generate call graph
pprof --pdf /app/logs/cpu.prof > callgraph.pdf
# Interactive web interface
pprof --http=:8080 /app/logs/cpu.prof
Memory Analysisยค
Heap profiling provides detailed memory insights:
# Show top memory allocators
pprof --top /app/logs/heap.prof
# Memory growth over time
pprof --growth /app/logs/heap.prof
# Interactive analysis
pprof --http=:8081 /app/logs/heap.prof
System Call Analysisยค
Strace output can be analyzed for patterns:
import json
import pandas as pd
# Load strace JSON output
with open('/app/logs/strace.json') as f:
calls = json.load(f)
# Analyze syscall patterns
df = pd.DataFrame(calls)
print(df.groupby('syscall')['duration'].describe())
Best Practicesยค
1. Environment Selectionยค
Choose environments based on testing goals:
- Development: Use standard Docker containers
- Performance: Use GPerf profiling environments
- Debugging: Use Valgrind-based environments
- Production: Use iterations for statistical validation
2. Resource Managementยค
Configure appropriate resource limits:
execution_environment:
config:
memory_limit: "2g"
cpu_limit: 2.0
timeout: 600
3. Data Collectionยค
Optimize data collection for analysis needs:
execution_environment:
type: "gperf_cpu"
config:
profiling:
frequency: 1000 # Higher frequency for detailed analysis
duration: 120 # Longer duration for statistical significance
4. Clean Executionยค
Ensure clean execution environments:
execution_environment:
config:
cleanup_on_exit: true
remove_volumes: true
kill_timeout: 30
Troubleshootingยค
Common Issuesยค
Environment Build Failures:
# Check Docker build logs
docker build --no-cache -t test-env .
# Verify base image availability
docker pull panther/base:latest
Permission Issues:
execution_environment:
config:
user: "1000:1000" # Use numeric UID/GID
capabilities: ["SYS_PTRACE"] # Add required capabilities
Memory Constraints:
execution_environment:
config:
memory_limit: "4g" # Increase memory limit
swap_limit: "4g" # Configure swap
Profiling Overhead:
execution_environment:
type: "gperf_cpu"
config:
profiling:
frequency: 10 # Reduce sampling frequency
Debug Modeยค
Enable debug mode for detailed environment logging:
export PANTHER_DEBUG_ENV=1
panther --experiment-config config.yaml
Integration Examplesยค
CI/CD Integrationยค
# GitHub Actions example
- name: "Performance Regression Test"
uses: ./panther-action
with:
config: |
execution_environment:
type: "gperf_cpu"
config:
profiling:
duration: 60
tests:
- name: "performance_baseline"
compare_with: "main"
Custom Metrics Collectionยค
# Custom environment plugin
class CustomProfiling(IExecutionEnvironment):
def __init__(self):
self.metrics = []
def execute(self, command, config):
start_time = time.time()
result = super().execute(command, config)
end_time = time.time()
self.metrics.append({
'duration': end_time - start_time,
'command': command,
'timestamp': start_time
})
return result
For detailed plugin development information, see Plugin Development Guide. For service configuration, see Service Modules. For network environments, see Network Environment Modules.