K
Q

Coordinating Job containers and Volumes in a CI system

10/18/2016

I'm working on a tinker Kubernetes-based CI system, where each build gets launched as a Job. I'm running these much like Drone CI does, in that each step in the build is a separate container. In my k8s CI case, I'm running each step as a container within a Job pod. Here's the behavior I'm after:

  1. A build volume is created. All steps will mount this. A Job is fired off with all of the steps defined as separate containers, in order of desired execution.
  2. The git step (container) runs, mounting the shared volume and cloning the sources.
  3. The 'run tests' step mounts the shared volume to a container spawned from an image with all of the dependencies pre-installed.
  4. If our tests pass, we proceed to the Slack announcement step, which is another container that announces our success.

I'm currently using a single Job pod with an emptyDir Volume for the shared build space. I did this so that we don't have to wait while a volume gets shuffled around between nodes/Pods. This also seemed like a nice way to ensure that things get cleaned up automatically at build exit.

The problem becomes that if I fire up a multi-container Job with all of the above steps, they execute at the same time. Meaning the 'run tests' step could fire before the 'git' step.

I've thought about coming up with some kind of logic in each of these containers to sleep until a certain unlock/"I'm done!" file appears in the shared volume, signifying the dependency step(s) are done, but this seems complicated enough to ask about alternatives before proceeding.

I could see giving in and using multiple Jobs with a coordinating Job, but then I'm stuck getting into Volume Claim territory (which is a lot more complicated than emptyDir).

To sum up the question:

Is my current approach worth pursuing, and if so, how to sequence the Job's containers? I'm hoping to come up with something that will work on AWS/GCE and bare metal deployments.

I'm hesitant to touch PVCs, since the management and cleanup bit is not something I want my system to be responsible for. I'm also not wanting to require networked storage when emptyDir could work so well.

Edit: Please don't suggest using another existing CI system, as this isn't helpful. I am doing this for my own gratification and experimentation. This tinker CI system is unlikely to ever be anything but my toy.

-- Greg
kubernetes

Similar Questions

How can I access a service installed on Kubernetes from anywhere?
How to build from Origin's integrated registry?
Deploy the same deployment several times in Kubernetes
Web UI for openzipkin run from Docker image shows config.json error

1 Answer

10/19/2016

If you want all the build steps to run in containers, GitLab CI or Concourse CI would probably be a much better fit for you. I don't have experience with fabric8.io, but Frank.Germain suggests that it will also work.

Once you start getting complex enough that you need signaling between containers to order the build steps it becomes much more productive to use something pre-rolled.

As an option you could use a static volume (i.e. a host path as an artifact cache, and trigger the next container in sequence from the current container, mounting the same volume between the stages. You could then just add a step to the beginning or end of the build to 'clean up' after your pipeline has been run.

To be clear: I don't think that rolling your own CI is the most effective way to handle this, as there are already systems in place that will do exactly what you are looking for

-- chaosaffe
Source: StackOverflow