Skip to content

GCS integration: run down signed urls#615

Draft
pefontana wants to merge 217 commits intodevfrom
run-down-signed-urls
Draft

GCS integration: run down signed urls#615
pefontana wants to merge 217 commits intodevfrom
run-down-signed-urls

Conversation

@pefontana
Copy link
Copy Markdown
Contributor

@pefontana pefontana commented Mar 4, 2026
edited
Loading

Run-down integration: support for downloading and uploading GCS checkpoints using signed URLs provided by the run-down service.

Instead of requiring each client to have GCS credentials, clients now authenticate to therun-down service using their Solana wallet signature and receive time-limited signed URLs for GCS operations. This applies to both model download (during warmup) and checkpoint upload (during cooldown).

Request format

Both upload and download requests are POST to {base_url}/upload/{run_id} or {base_url}download/{run_id} with:

{
  "walletAddress": "<solana pubkey>",
  "filename": "model-00001-of-00004.safetensors",  // upload only
  "expiresInSeconds": 3600,
  "nonce": "1772661159000"
}

Header: X-Solana-Signature:
The signature is over: nous-run-down-service:{run_id}:{wallet_address}:{expiresInSeconds}:{nonce}
The run-down service should:

  1. Reconstruct the message from the body fields
  2. Verify the signature using the provided walletAddress
  3. Check the wallet is authorized for the run
  4. Return signed GCS URL(s)
  5. Optional but good to have: see that the message is not repetead (nonce) to avoid duplicate attacks

Cache

Downloaded files are cached in ~/.cache/psyche/gcs/{run_id}/step-{step}-{manifest_generation}

IAvecilla and others added 30 commits December 23, 2025 11:39
@IAvecilla
Make cooldown opportunistic
0836df8
@IAvecilla
Fix some things
80550e6
@IAvecilla
Fix compilation
be24bda
@IAvecilla
End epoch after checkpointer
20ac8a2
@IAvecilla
Make hub_repo checkpoint mandatory
514c993
@pefontana
wip
1679fcc
@pefontana
crendential wip
472d2d6
@IAvecilla
Use client as checkpointer and pick random
3553f7d
@pefontana
Merge remote-tracking branch 'origin/main' into gcs-2
fa3da9c
@IAvecilla
Reuse opportunistic logic
00b97f1
@IAvecilla
Add anyhow to cargo lock
0566a4a
@IAvecilla
Fix opportunistic cooldown message
203d0c4
@IAvecilla
Add random index for client
e8b1dd8
@IAvecilla
Remove rand and get checkpointers at cooldown state
0b6e9f5
@pefontana
implement Checkpoint::Gcs(gcs_repo)
ff4ea2d
@pefontana
light-config-gcs.toml
5ea32b1
@pefontana
can_join command for gcs
f8b193a
@pefontana
gcs centralized version
c1f0e1f
@IAvecilla
Rework on cooldown to select pseudo random
c001fa5
@pefontana
remove fn download_model_from_gcs_sync
6ddfe52
@pefontana
Revert "remove fn download_model_from_gcs_sync"
c0aa10f 
This reverts commit 6ddfe52.
@pefontana
handle errors
3b707ac
@pefontana
Merge branch 'main' into gcs-2
12af6c3
@IAvecilla
Fix clippy
ef3b468
@pefontana
remove progress_bar
4b4a96d
@pefontana
use default cache dir
6162937
@pefontana
refactor loop
1bf03ab
@IAvecilla
Add support for multiple checkpointers
8d8c3f4
@IAvecilla
Fix lint
410c192
@IAvecilla
Update nano config
3ee7cb6
@dsocolobsky dsocolobsky mentioned this pull request Mar 13, 2026
Open
IAvecilla and others added 20 commits March 16, 2026 14:56
@IAvecilla
Merge validate gcs write permissions to validate function
b79f850
@IAvecilla
Check write access to hf repo before joining
bf8b3d4
@IAvecilla
Always create valid credentials and refresh on every cooldown step
81263fd
@IAvecilla
Move rustls as workspace dependency
b258561
@IAvecilla
Export env variables instead of inline usage
8a6e3c8
@IAvecilla
Fix info comment
79b1f3c
@IAvecilla
Remove duplication of checkpoint types in the enum
8289d50
@IAvecilla
Small code changes
92f1687
@IAvecilla
Always upload before entering pause state
77dc6d1
@IAvecilla
Fix comment
53171ad
@IAvecilla
Rename files to keep consistency
d9c849f
@IAvecilla
Move all booleans outside step state machine to their respective acti…
1224df7 
…ve step
@IAvecilla
Add cancel step as part of finish
9856722
@IAvecilla
Remove unused functions and clean unused dependencies
3d5423d
@IAvecilla
Merge branch 'main' into cooldown-rework
b4496cd
@IAvecilla
Rollback to the original checkpoint variants
4dd1c14
@IAvecilla
Remove old repr for checkpoints no longer needed
1df87fb
@IAvecilla
Add skip checkpoint upload env variable
317fc96
@dsocolobsky
Merge branch 'cooldown-rework' into run-down-signed-urls
a99fd03
@pefontana
Merge branch 'cooldown-rework' into run-down-signed-urls
aad57ec
@IAvecilla IAvecilla changed the base branch from cooldown-rework to dev March 20, 2026 13:25
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@pefontana @IAvecilla @dsocolobsky @entropidelic