Skip to content
/ circleci-runner-k8s Public

Repository with Helm charts to install CircleCI's runner on a Kubernetes cluster.

License

Apache-2.0 license
11 stars 30 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

CircleCI-Public/circleci-runner-k8s

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

72 Commits

.circleci

.circleci

 
 

.github

.github

 
 

scripts

scripts

 
 

templates

templates

 
 

.gitignore

.gitignore

 
 

.helmignore

.helmignore

 
 

Chart.yaml

Chart.yaml

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

values.yaml

values.yaml

 
 

Repository files navigation

Warning Container runner is the supported method for using self-hosted runners with Kubernetes. This documentation is meant for existing users who have not yet migrated to using the container runner.

Deprecated method for using self-hosted runners on k8s

This guide is a reference for setting up self-hosted runners that use launch-agent on your Kubernetes cluster. This is the deprecated way of using self-hosted runners with Kubernetes. The reference guide is being kept here for users still using this deprecated method. Users looking to use self-hosted runners with Kubernetes should be using the container runner for current documentation.

This Helm chart will spin up one or more pods of the same self-hosted runner resource class. Each runner will pull jobs off the queue on an as-available basis.

If you want to have different self-hosted runners specialized for different workloads, use the container runner to have multiple resource classes associated with the same container runner.

If you are using CircleCI's Server offering, please make sure you read CircleCI server installation.

Prerequisites

  • Have a Kubernetes cluster up and running where you'd like to deploy your self-hosted runner(s).
  • Generate a token and resource class. For each different type of self-hosted runner you want to run, you will need to repeat these same steps.
    • For example, if you want ten runners that pull the same types of jobs or run the same parallel job based on availability, you only need to create one runner resource class. All ten runners would share the same token.

Setup

  1. Clone this repository.

  2. Modify values as needed in values.yaml:

    Value Description Default Required
    image.repository
    image.tag    		 You can extend a custom Docker image from the CircleCI default runner and use that instead.
    For CircleCI server installations, see the compatible version tags here.    		 circleci/runner
    launch-agent    		 Y
    replicaCount The number of replicas of this runner you want in your cluster. Must currently be set and updated manually. See limitations. 1 Y
    resourceClass The resource class you created for your runner. We recommend not inserting it into values.yaml directly and setting it when you install your chart instead. See next step. " " Y
    runnerToken The token you created for your runner. We recommend not inserting it into values.yaml directly and setting it when you install your chart instead. See next step. " " Y
    All other values Modify at your own discretion and risk. N/A N/A
    {: class="table table-striped"}

  3. Using the resource class name and token you created in the Prerequisites section, you'll want to set parameters as you install the Helm chart:

    $ helm install "circleci-runner" ./ \
  --set runnerToken=$CIRCLECI_RUNNER_TOKEN \
  --set resourceClass=$CIRCLECI_RUNNER_RESOURCE_CLASS \
  --namespace your-namespace

  4. Call your runner class(es) in your job(s). Example:

    version: 2.1
executors:
  my-runner:
    machine: true
    resource_class: my-namespace/my-runner-resource-class
  
workflows:
  my-workflow:
    jobs:
      - my-job
jobs:
  my-job:
    executor: my-runner
    steps:
      - checkout
      - run: echo "Hello from my custom runner!"

Set Environment Variables

Environment variables can be configured in env section of the values.yaml file. Environment variables can be used to further configure CircleCI's self-hosted runner using the environment variables described on the Runner configuration reference page. It's also possible to add additional Kubernetes secret references (see example in env section of values.yaml).

Setup with Optional Secret Creation

There may be cases where you do not want Helm to create the Secret resource for you. One case would be if you were using a GitOps deployment tool such as ArgoCD or Flux. In these cases you would need to create a secret manually in the same namespace and cluster where the Helm managed runner resources will be deployed.

  1. Create the secret:
$ kubectl create secret generic config-values \
  --namespace your-namespace \
  --from-literal resourceClass=$CIRCLECI_RUNNER_RESOURCE_CLASS \
  --from-literal runnerToken=$CIRCLECI_RUNNER_TOKEN
  1. Install the Helm chart:
$ helm install "circleci-runner" ./ \
  --set configSecret.create=false \
  --namespace your-namespace

Setup with parameterized Service Account

There may be cases where a service account does not need to be created, or one already exists that should be reused. The values.yaml file can be modified to accommodate this scenario.

A new service account is created by default with the suggested values.yaml file. Setting the account name to circleci-runner. The serviceAccount.name value in values.yaml can be modified to a different name as required for deployment.

An existing service account can be reused by setting the serviceAccount.name parameter in the values.yaml file to the name of the existing account, and setting serviceAccount.create to false. This may be required when creating multiple helm releases from this chart.

More details about using and configuring a service account can be found in the Helm documentation.

Support Scope

Customers who modify the chart beyond values in values.yaml do so at their own risk. The type of support CircleCI provides for those customizations will be limited. Container runner is the recommended method for using self-hosted runners with Kubernetes.

Limitations

  • Autoscaling is not supported. Container runner supports autoscaling.
  • Containers are not privileged, so you cannot execute privileged workloads (e.g., Docker in Docker).

CircleCI Server Installation

When installing the Helm chart for use with a CircleCI server installation, the image.tag will need to be set to the pinned launch agent version specified in the Self-hosted runner installation instructions. The LAUNCH_AGENT_API_URL will also need to be set as an environment variable. This can be done with the --set flag, or in the env section of the values.yaml file, specifying the hostname or address of the server installation.

Upgrading Self-hosted Runner Deployment for Server

  1. Modify the values.yaml file to specify the new image.tag to update to. Refer to the setup section of this document for more details about the values.yaml file.

  2. Deploy the changes to the cluster:

$ helm upgrade -f values.yaml "circleci-runner" ./ \
  --set runnerToken=$CIRCLECI_RUNNER_TOKEN \
  --set resourceClass=$CIRCLECI_RUNNER_RESOURCE_CLASS \
  --set env.LAUNCH_AGENT_API_URL=<server_host> \
  --namespace your-namespace

Further information about the $ helm upgrade command and its usage can be found in the Helm documentation.

About

Repository with Helm charts to install CircleCI's runner on a Kubernetes cluster.

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

11 stars

Watchers

16 watching

Forks

30 forks
Report repository

Releases

No releases published

Contributors 15

Languages