Testing/CI/KubernetesRunners: Difference between revisions
(→Docker) |
(→Docker) |
||
| Line 68: | Line 68: | ||
=== Docker === | === Docker === | ||
QEMU jobs require Docker-in-Docker. Additional configuration is necessary. [https://docs.gitlab.com/ | QEMU jobs require Docker-in-Docker. Additional configuration is necessary. [https://docs.gitlab.com/ee/ci/docker/using_docker_build.html#docker-in-docker-with-tls-enabled-in-kubernetes] | ||
Update your <code>values.yaml</code>: | |||
<pre> | <pre> | ||
runners: | runners: | ||
privileged | config: | | ||
[[runners]] | |||
[runners.kubernetes] | |||
image = "ubuntu:20.04" | |||
privileged = true | |||
[[runners.kubernetes.volumes.empty_dir]] | |||
name = "docker-certs" | |||
mount_path = "/certs/client" | |||
medium = "Memory" | |||
</pre> | </pre> | ||
Update your job definitions to use the following: | |||
<pre> | |||
image: docker:20.10.16 | |||
services: | |||
- docker:20.10.16-dind | |||
variables: | |||
DOCKER_HOST: tcp://docker:2376 | |||
DOCKER_TLS_CERTDIR: "/certs" | |||
DOCKER_TLS_VERIFY: 1 | |||
DOCKER_CERT_PATH: "$DOCKER_TLS_CERTDIR/client" | |||
before_script: | |||
- until docker info; do sleep 1; done | |||
</pre> | |||
Revision as of 16:55, 23 March 2023
To be able to run Gitlab CI jobs on a Kubernetes cluster, a Gitlab Runner must be installed [1].
Deployment
This sections documents the steps taken to deploy a GitLab Runner instance on a Azure Kubernetes cluster by using Helm [2].
Kubernetes Cluster
Create a Kubernetes cluster on Azure (AKS). Two node pools: "agentpool" for the Kubernetes system pods and "jobs" for the CI jobs.
CLI
Follow the docs to Install the Azure CLI.
Alternatively, run the Azure CLI in a container [3]:
podman run -it mcr.microsoft.com/azure-cli
Install the Kubernetes CLI (kubectl) [4]:
az aks install-cli
Install the Helm CLI [5]:
curl https://raw.githubusercontent.com/helm/helm/main/scripts/get-helm-3 | bash
Sign in
Sign in to Azure [6]:
az login
Connect to your Kubernetes Cluster. Open the Azure web dashboard for your cluster and push the "Connect" button. A list of commands will be displayed to connect to your cluster. Something like the following:
az account set --subscription ... az aks get-credentials ...
Gitlab
Register the new runner [7].
Gitlab Runner
Now it's time to install the Gitlab runner with Helm [8].
Create a namespace:
kubectl create namespace "gitlab-runner"
Create a values.yaml file for your runner configuration [9]
like the snippet below.
Enabling RBAC support [10] seems to be needed [11] with the default AKS configuration.
gitlabUrl: "https://gitlab.com/" runnerRegistrationToken: "" rbac: create: true
Deploy the runner:
helm install --namespace gitlab-runner gitlab-runner -f values.yaml gitlab/gitlab-runner
If you change the configuration in values.yaml, apply it with the command below. Pause your runner before upgrading it to avoid service disruptions. [12]
helm upgrade --namespace gitlab-runner gitlab-runner -f values.yaml gitlab/gitlab-runner
Docker
QEMU jobs require Docker-in-Docker. Additional configuration is necessary. [13]
Update your values.yaml:
runners:
config: |
[[runners]]
[runners.kubernetes]
image = "ubuntu:20.04"
privileged = true
[[runners.kubernetes.volumes.empty_dir]]
name = "docker-certs"
mount_path = "/certs/client"
medium = "Memory"
Update your job definitions to use the following:
image: docker:20.10.16 services: - docker:20.10.16-dind variables: DOCKER_HOST: tcp://docker:2376 DOCKER_TLS_CERTDIR: "/certs" DOCKER_TLS_VERIFY: 1 DOCKER_CERT_PATH: "$DOCKER_TLS_CERTDIR/client" before_script: - until docker info; do sleep 1; done