unity-builder/src/model/cloud-runner/k8s/index.ts

import * as k8s from '@kubernetes/client-node';
import { BuildParameters } from '../..';
import * as core from '@actions/core';
import { CloudRunnerProviderInterface } from '../services/cloud-runner-provider-interface';
import CloudRunnerSecret from '../services/cloud-runner-secret';
import KubernetesStorage from './kubernetes-storage';
import CloudRunnerEnvironmentVariable from '../services/cloud-runner-environment-variable';
import KubernetesTaskRunner from './kubernetes-task-runner';
import KubernetesSecret from './kubernetes-secret';
import waitUntil from 'async-wait-until';
import KubernetesJobSpecFactory from './kubernetes-job-spec-factory';
import KubernetesServiceAccount from './kubernetes-service-account';
import CloudRunnerLogger from '../services/cloud-runner-logger';
import { CoreV1Api } from '@kubernetes/client-node';

class Kubernetes implements CloudRunnerProviderInterface {
  private kubeConfig: k8s.KubeConfig;
  private kubeClient: k8s.CoreV1Api;
  private kubeClientBatch: k8s.BatchV1Api;
  private buildGuid: string = '';
  private buildParameters: BuildParameters;
  private pvcName: string = '';
  private secretName: string = '';
  private jobName: string = '';
  private namespace: string;
  private podName: string = '';
  private containerName: string = '';
  private cleanupCronJobName: string = '';
  private serviceAccountName: string = '';

  constructor(buildParameters: BuildParameters) {
    this.kubeConfig = new k8s.KubeConfig();
    this.kubeConfig.loadFromDefault();
    this.kubeClient = this.kubeConfig.makeApiClient(k8s.CoreV1Api);
    this.kubeClientBatch = this.kubeConfig.makeApiClient(k8s.BatchV1Api);
    CloudRunnerLogger.log('Loaded default Kubernetes configuration for this environment');

    this.namespace = 'default';
    this.buildParameters = buildParameters;
  }
  public async setupSharedResources(
    buildGuid: string,
    buildParameters: BuildParameters,
    // eslint-disable-next-line no-unused-vars
    branchName: string,
    // eslint-disable-next-line no-unused-vars
    defaultSecretsArray: { ParameterKey: string; EnvironmentVariable: string; ParameterValue: string }[],
  ) {
    try {
      this.pvcName = `unity-builder-pvc-${buildGuid}`;
      this.cleanupCronJobName = `unity-builder-cronjob-${buildGuid}`;
      this.serviceAccountName = `service-account-${buildGuid}`;
      await KubernetesStorage.createPersistentVolumeClaim(
        buildParameters,
        this.pvcName,
        this.kubeClient,
        this.namespace,
      );

      await KubernetesServiceAccount.createServiceAccount(this.serviceAccountName, this.namespace, this.kubeClient);
    } catch (error) {
      throw error;
    }
  }

  async runTask(
    buildGuid: string,
    image: string,
    commands: string,
    mountdir: string,
    workingdir: string,
    environment: CloudRunnerEnvironmentVariable[],
    secrets: CloudRunnerSecret[],
  ): Promise<string> {
    try {
      // setup
      this.buildGuid = buildGuid;
      this.secretName = `build-credentials-${buildGuid}`;
      this.jobName = `unity-builder-job-${buildGuid}`;
      this.containerName = `main`;
      await KubernetesSecret.createSecret(secrets, this.secretName, this.namespace, this.kubeClient);
      const jobSpec = KubernetesJobSpecFactory.getJobSpec(
        commands,
        image,
        mountdir,
        workingdir,
        environment,
        secrets,
        this.buildGuid,
        this.buildParameters,
        this.secretName,
        this.pvcName,
        this.jobName,
        k8s,
      );

      //run
      const jobResult = await this.kubeClientBatch.createNamespacedJob(this.namespace, jobSpec);
      CloudRunnerLogger.log(`Creating build job ${JSON.stringify(jobResult.body.metadata, undefined, 4)}`);

      await new Promise((promise) => setTimeout(promise, 5000));
      CloudRunnerLogger.log('Job created');
      this.setPodNameAndContainerName(await Kubernetes.findPodFromJob(this.kubeClient, this.jobName, this.namespace));
      CloudRunnerLogger.log('Watching pod until running');
      let output = '';
      // eslint-disable-next-line no-constant-condition
      while (true) {
        try {
          await KubernetesTaskRunner.watchUntilPodRunning(this.kubeClient, this.podName, this.namespace);
          CloudRunnerLogger.log('Pod running, streaming logs');
          output = await KubernetesTaskRunner.runTask(
            this.kubeConfig,
            this.kubeClient,
            this.jobName,
            this.podName,
            'main',
            this.namespace,
            CloudRunnerLogger.log,
          );
          break;
        } catch (error: any) {
          if (error.message.includes(`HTTP`)) {
            continue;
          } else {
            throw error;
          }
        }
      }
      await this.cleanupTaskResources();
      return output;
    } catch (error) {
      CloudRunnerLogger.log('Running job failed');
      core.error(JSON.stringify(error, undefined, 4));
      await this.cleanupTaskResources();
      throw error;
    }
  }

  setPodNameAndContainerName(pod: k8s.V1Pod) {
    this.podName = pod.metadata?.name || '';
    this.containerName = pod.status?.containerStatuses?.[0].name || '';
  }

  async cleanupTaskResources() {
    CloudRunnerLogger.log('cleaning up');
    try {
      await this.kubeClientBatch.deleteNamespacedJob(this.jobName, this.namespace);
      await this.kubeClient.deleteNamespacedPod(this.podName, this.namespace);
      await this.kubeClient.deleteNamespacedSecret(this.secretName, this.namespace);
      await new Promise((promise) => setTimeout(promise, 5000));
    } catch (error) {
      CloudRunnerLogger.log('Failed to cleanup, error:');
      core.error(JSON.stringify(error, undefined, 4));
      CloudRunnerLogger.log('Abandoning cleanup, build error:');
      throw error;
    }
    try {
      await waitUntil(
        async () => {
          const jobBody = (await this.kubeClientBatch.readNamespacedJob(this.jobName, this.namespace)).body;
          const podBody = (await this.kubeClient.readNamespacedPod(this.podName, this.namespace)).body;
          return (jobBody === null || jobBody.status?.active === 0) && podBody === null;
        },
        {
          timeout: 500000,
          intervalBetweenAttempts: 15000,
        },
      );
      // eslint-disable-next-line no-empty
    } catch {}
  }

  async cleanupSharedResources(
    // eslint-disable-next-line no-unused-vars
    buildGuid: string,
    // eslint-disable-next-line no-unused-vars
    buildParameters: BuildParameters,
    // eslint-disable-next-line no-unused-vars
    branchName: string,
    // eslint-disable-next-line no-unused-vars
    defaultSecretsArray: { ParameterKey: string; EnvironmentVariable: string; ParameterValue: string }[],
  ) {
    CloudRunnerLogger.log(`deleting PVC`);
    await this.kubeClient.deleteNamespacedPersistentVolumeClaim(this.pvcName, this.namespace);
    CloudRunnerLogger.log(`deleted PVC`);
  }

  static async findPodFromJob(kubeClient: CoreV1Api, jobName: string, namespace: string) {
    const namespacedPods = await kubeClient.listNamespacedPod(namespace);
    const pod = namespacedPods.body.items.find((x) => x.metadata?.labels?.['job-name'] === jobName);
    if (pod === undefined) {
      throw new Error("pod with job-name label doesn't exist");
    }
    return pod;
  }
}
export default Kubernetes;
Get GKE cluster credentials directly 2021-05-23 13:31:02 +00:00			`import * as k8s from '@kubernetes/client-node';`
Cleanup remote builder folders 2021-09-22 20:05:21 +00:00			`import { BuildParameters } from '../..';`
error handling 2021-05-28 17:54:54 +00:00			`import * as core from '@actions/core';`
Refactor state and steps out of cloud-runner main class 2021-10-04 23:23:49 +00:00			`import { CloudRunnerProviderInterface } from '../services/cloud-runner-provider-interface';`
			`import CloudRunnerSecret from '../services/cloud-runner-secret';`
PVC handling refactoring and logging 2021-06-18 19:52:07 +00:00			`import KubernetesStorage from './kubernetes-storage';`
Refactor state and steps out of cloud-runner main class 2021-10-04 23:23:49 +00:00			`import CloudRunnerEnvironmentVariable from '../services/cloud-runner-environment-variable';`
cleanup k8s 2021-12-29 17:25:38 +00:00			`import KubernetesTaskRunner from './kubernetes-task-runner';`
Refactor, init k8s pvc build id separately 2021-06-19 23:06:44 +00:00			`import KubernetesSecret from './kubernetes-secret';`
do not wait for job deletion 2021-06-26 04:01:43 +00:00			`import waitUntil from 'async-wait-until';`
cronjob 2021-06-26 01:50:03 +00:00			`import KubernetesJobSpecFactory from './kubernetes-job-spec-factory';`
service account 2021-07-13 00:28:16 +00:00			`import KubernetesServiceAccount from './kubernetes-service-account';`
Refactor state and steps out of cloud-runner main class 2021-10-04 23:23:49 +00:00			`import CloudRunnerLogger from '../services/cloud-runner-logger';`
cleanup k8s 2021-12-29 17:25:38 +00:00			`import { CoreV1Api } from '@kubernetes/client-node';`
Using addon wait-until for improved waiting in k8s 2021-06-18 19:27:14 +00:00
Fix 2021-08-17 20:09:42 +00:00			`class Kubernetes implements CloudRunnerProviderInterface {`
Refactor, init k8s pvc build id separately 2021-06-19 23:06:44 +00:00			`private kubeConfig: k8s.KubeConfig;`
Kubernetes refactor 2021-06-06 19:39:06 +00:00			`private kubeClient: k8s.CoreV1Api;`
			`private kubeClientBatch: k8s.BatchV1Api;`
Refactor id and uid to Guid for consistency 2021-08-15 21:59:58 +00:00			`private buildGuid: string = '';`
Kubernetes refactor 2021-06-06 19:39:06 +00:00			`private buildParameters: BuildParameters;`
Fix: error handling 2021-06-06 21:22:22 +00:00			`private pvcName: string = '';`
			`private secretName: string = '';`
			`private jobName: string = '';`
Kubernetes refactor 2021-06-06 19:39:06 +00:00			`private namespace: string;`
Log json stringify error 2021-06-06 20:14:12 +00:00			`private podName: string = '';`
			`private containerName: string = '';`
cronjob 2021-06-26 01:50:03 +00:00			`private cleanupCronJobName: string = '';`
service account 2021-07-13 00:28:16 +00:00			`private serviceAccountName: string = '';`
Refactor action to typescript (#226) * Refactor to typescript (config part) * Refactor to typescript (convert extensions, minor fixes) * Refactor to typescript (move from `action` to `dist`) * Re-enable integrity-check for dist index.js * Fix all tests and lints * fix parsing major versions * Test patch level to be digits only * debug * debug * uncache * manual compile * debug * debug * Debug * Build lib - doh * remove diff check * Make kubernetes workflow manual * Properly generate 3 digit for simple major tags * Remove ts-ignore * re-enable cache 2021-03-13 23:44:01 +00:00
Remove stackName from generic buildPlatform interface 2021-06-19 20:35:22 +00:00			`constructor(buildParameters: BuildParameters) {`
cronjob 2021-06-26 01:50:03 +00:00			`this.kubeConfig = new k8s.KubeConfig();`
			`this.kubeConfig.loadFromDefault();`
			`this.kubeClient = this.kubeConfig.makeApiClient(k8s.CoreV1Api);`
			`this.kubeClientBatch = this.kubeConfig.makeApiClient(k8s.BatchV1Api);`
Logging cleanup 2021-09-21 18:27:04 +00:00			`CloudRunnerLogger.log('Loaded default Kubernetes configuration for this environment');`
Get GKE cluster credentials directly 2021-05-23 13:31:02 +00:00
Fix: error handling 2021-06-06 21:22:22 +00:00			`this.namespace = 'default';`
			`this.buildParameters = buildParameters;`
			`}`
Cleanup 2021-12-25 20:10:12 +00:00			`public async setupSharedResources(`
Refactor id and uid to Guid for consistency 2021-08-15 21:59:58 +00:00			`buildGuid: string,`
Implemented multi-step shared resources in interface 2021-06-19 22:15:44 +00:00			`buildParameters: BuildParameters,`
			`// eslint-disable-next-line no-unused-vars`
			`branchName: string,`
			`// eslint-disable-next-line no-unused-vars`
			`defaultSecretsArray: { ParameterKey: string; EnvironmentVariable: string; ParameterValue: string }[],`
			`) {`
catch setup resource errors 2021-06-26 01:54:37 +00:00			`try {`
Use a pvc per build for first PR 2021-09-08 20:21:15 +00:00			this.pvcName = `unity-builder-pvc-${buildGuid}`;
Refactor id and uid to Guid for consistency 2021-08-15 21:59:58 +00:00			this.cleanupCronJobName = `unity-builder-cronjob-${buildGuid}`;
			this.serviceAccountName = `service-account-${buildGuid}`;
catch setup resource errors 2021-06-26 01:54:37 +00:00			`await KubernetesStorage.createPersistentVolumeClaim(`
			`buildParameters,`
			`this.pvcName,`
			`this.kubeClient,`
			`this.namespace,`
			`);`
service account 2021-07-13 00:28:16 +00:00
			`await KubernetesServiceAccount.createServiceAccount(this.serviceAccountName, this.namespace, this.kubeClient);`
catch setup resource errors 2021-06-26 01:54:37 +00:00			`} catch (error) {`
			`throw error;`
			`}`
Implemented multi-step shared resources in interface 2021-06-19 22:15:44 +00:00			`}`

Cleanup 2021-12-25 20:10:12 +00:00			`async runTask(`
Refactor id and uid to Guid for consistency 2021-08-15 21:59:58 +00:00			`buildGuid: string,`
Refactoring Remote Builder to route to aws or k8s 2021-06-18 20:36:45 +00:00			`image: string,`
command start and end injector 2021-12-29 16:28:42 +00:00			`commands: string,`
Refactoring Remote Builder to route to aws or k8s 2021-06-18 20:36:45 +00:00			`mountdir: string,`
			`workingdir: string,`
Fix 2021-08-17 22:13:46 +00:00			`environment: CloudRunnerEnvironmentVariable[],`
			`secrets: CloudRunnerSecret[],`
fix 2021-12-30 20:25:28 +00:00			`): Promise<string> {`
Refactoring Remote Builder to route to aws or k8s 2021-06-18 20:36:45 +00:00			`try {`
			`// setup`
Refactor id and uid to Guid for consistency 2021-08-15 21:59:58 +00:00			`this.buildGuid = buildGuid;`
			this.secretName = `build-credentials-${buildGuid}`;
			this.jobName = `unity-builder-job-${buildGuid}`;
Stream from k8s main container 2021-09-15 03:35:57 +00:00			this.containerName = `main`;
Refactor, init k8s pvc build id separately 2021-06-19 23:06:44 +00:00			`await KubernetesSecret.createSecret(secrets, this.secretName, this.namespace, this.kubeClient);`
cronjob 2021-06-26 01:50:03 +00:00			`const jobSpec = KubernetesJobSpecFactory.getJobSpec(`
			`commands,`
			`image,`
			`mountdir,`
			`workingdir,`
			`environment,`
Kubernetes use env var based secrets 2021-12-29 20:49:13 +00:00			`secrets,`
Refactor id and uid to Guid for consistency 2021-08-15 21:59:58 +00:00			`this.buildGuid,`
cronjob 2021-06-26 01:50:03 +00:00			`this.buildParameters,`
			`this.secretName,`
			`this.pvcName,`
			`this.jobName,`
			`k8s,`
			`);`
Refactoring Remote Builder to route to aws or k8s 2021-06-18 20:36:45 +00:00
Refactoring, remote builder k8s and aws nearly aligned 2021-06-19 04:27:24 +00:00			`//run`
Delete k8s pod explicitly to free up pvc 2022-01-30 17:21:38 +00:00			`const jobResult = await this.kubeClientBatch.createNamespacedJob(this.namespace, jobSpec);`
Cleanup k8s logging 2022-01-30 18:55:49 +00:00			CloudRunnerLogger.log(`Creating build job ${JSON.stringify(jobResult.body.metadata, undefined, 4)}`);
Fix kubernetes cleanup to retry delete 2022-01-30 16:00:03 +00:00
Kubernetes use env var based secrets 2021-12-29 22:39:09 +00:00			`await new Promise((promise) => setTimeout(promise, 5000));`
Logging cleanup 2021-09-21 18:27:04 +00:00			`CloudRunnerLogger.log('Job created');`
cleanup k8s 2021-12-29 17:25:38 +00:00			`this.setPodNameAndContainerName(await Kubernetes.findPodFromJob(this.kubeClient, this.jobName, this.namespace));`
Logging cleanup 2021-09-21 18:27:04 +00:00			`CloudRunnerLogger.log('Watching pod until running');`
fix 2021-12-30 21:00:38 +00:00			`let output = '';`
			`// eslint-disable-next-line no-constant-condition`
			`while (true) {`
			`try {`
			`await KubernetesTaskRunner.watchUntilPodRunning(this.kubeClient, this.podName, this.namespace);`
			`CloudRunnerLogger.log('Pod running, streaming logs');`
			`output = await KubernetesTaskRunner.runTask(`
			`this.kubeConfig,`
			`this.kubeClient,`
			`this.jobName,`
			`this.podName,`
			`'main',`
			`this.namespace,`
			`CloudRunnerLogger.log,`
			`);`
			`break;`
			`} catch (error: any) {`
			if (error.message.includes(`HTTP`)) {
			`continue;`
			`} else {`
			`throw error;`
			`}`
			`}`
			`}`
Refactor, init k8s pvc build id separately 2021-06-19 23:06:44 +00:00			`await this.cleanupTaskResources();`
fix 2021-12-30 20:25:28 +00:00			`return output;`
Refactoring Remote Builder to route to aws or k8s 2021-06-18 20:36:45 +00:00			`} catch (error) {`
Logging cleanup 2021-09-21 18:27:04 +00:00			`CloudRunnerLogger.log('Running job failed');`
Remove stackName from generic buildPlatform interface 2021-06-19 20:35:22 +00:00			`core.error(JSON.stringify(error, undefined, 4));`
Refactor, init k8s pvc build id separately 2021-06-19 23:06:44 +00:00			`await this.cleanupTaskResources();`
Set logging options 2021-06-06 20:10:01 +00:00			`throw error;`
			`}`
k8s refactoring started, new k8s api client 2021-05-23 14:26:57 +00:00			`}`

Fix: error handling 2021-06-06 21:22:22 +00:00			`setPodNameAndContainerName(pod: k8s.V1Pod) {`
			`this.podName = pod.metadata?.name \|\| '';`
			`this.containerName = pod.status?.containerStatuses?.[0].name \|\| '';`
polling logs from kubernetes api 2021-05-28 17:37:30 +00:00			`}`

Refactor, init k8s pvc build id separately 2021-06-19 23:06:44 +00:00			`async cleanupTaskResources() {`
Logging cleanup 2021-09-21 18:27:04 +00:00			`CloudRunnerLogger.log('cleaning up');`
Delete k8s pod explicitly to free up pvc 2022-01-30 17:21:38 +00:00			`try {`
			`await this.kubeClientBatch.deleteNamespacedJob(this.jobName, this.namespace);`
			`await this.kubeClient.deleteNamespacedPod(this.podName, this.namespace);`
			`await this.kubeClient.deleteNamespacedSecret(this.secretName, this.namespace);`
deleted PVC log message 2022-01-30 21:11:13 +00:00			`await new Promise((promise) => setTimeout(promise, 5000));`
Delete k8s pod explicitly to free up pvc 2022-01-30 17:21:38 +00:00			`} catch (error) {`
			`CloudRunnerLogger.log('Failed to cleanup, error:');`
			`core.error(JSON.stringify(error, undefined, 4));`
			`CloudRunnerLogger.log('Abandoning cleanup, build error:');`
			`throw error;`
			`}`
do not wait for job deletion 2021-06-26 04:01:43 +00:00			`try {`
			`await waitUntil(`
Fix kubernetes cleanup to retry delete 2022-01-30 15:41:45 +00:00			`async () => {`
			`const jobBody = (await this.kubeClientBatch.readNamespacedJob(this.jobName, this.namespace)).body;`
Timeout pvc delete after 15s 2022-01-30 18:47:54 +00:00			`const podBody = (await this.kubeClient.readNamespacedPod(this.podName, this.namespace)).body;`
			`return (jobBody === null \|\| jobBody.status?.active === 0) && podBody === null;`
Fix kubernetes cleanup to retry delete 2022-01-30 15:41:45 +00:00			`},`
do not wait for job deletion 2021-06-26 04:01:43 +00:00			`{`
			`timeout: 500000,`
			`intervalBetweenAttempts: 15000,`
			`},`
			`);`
Fix K8s hang 2022-01-12 23:15:24 +00:00			`// eslint-disable-next-line no-empty`
			`} catch {}`
k8s full refactoring to simpler and better api client 2021-05-23 15:08:32 +00:00			`}`
Refactor, init k8s pvc build id separately 2021-06-19 23:06:44 +00:00
Cleanup 2021-12-25 20:10:12 +00:00			`async cleanupSharedResources(`
Refactor, init k8s pvc build id separately 2021-06-19 23:06:44 +00:00			`// eslint-disable-next-line no-unused-vars`
Refactor id and uid to Guid for consistency 2021-08-15 21:59:58 +00:00			`buildGuid: string,`
Refactor, init k8s pvc build id separately 2021-06-19 23:06:44 +00:00			`// eslint-disable-next-line no-unused-vars`
			`buildParameters: BuildParameters,`
			`// eslint-disable-next-line no-unused-vars`
			`branchName: string,`
			`// eslint-disable-next-line no-unused-vars`
			`defaultSecretsArray: { ParameterKey: string; EnvironmentVariable: string; ParameterValue: string }[],`
			`) {`
Timeout pvc delete after 15s 2022-01-30 18:47:54 +00:00			CloudRunnerLogger.log(`deleting PVC`);
cleanup log groups 2022-01-31 21:03:44 +00:00			`await this.kubeClient.deleteNamespacedPersistentVolumeClaim(this.pvcName, this.namespace);`
deleted PVC log message 2022-01-30 21:09:58 +00:00			CloudRunnerLogger.log(`deleted PVC`);
Refactor, init k8s pvc build id separately 2021-06-19 23:06:44 +00:00			`}`
cleanup log groups 2022-01-31 21:03:44 +00:00
cleanup k8s 2021-12-29 17:25:38 +00:00			`static async findPodFromJob(kubeClient: CoreV1Api, jobName: string, namespace: string) {`
			`const namespacedPods = await kubeClient.listNamespacedPod(namespace);`
			`const pod = namespacedPods.body.items.find((x) => x.metadata?.labels?.['job-name'] === jobName);`
			`if (pod === undefined) {`
			`throw new Error("pod with job-name label doesn't exist");`
			`}`
			`return pod;`
			`}`
K8s Feature (#124) Adds the ability to use a kubernetes container to run builds that are too large for the local machine running the unity-builder. Logs are streamed back during the build. Build results can then be downloaded separately. 2020-08-09 19:27:47 +00:00			`}`
			`export default Kubernetes;`