Proposal: Make PipelineResourceResult generic #1392
Comments
|
In order to do this backwards-compatibly, I think we would basically add both versions for a release: type PipelineResourceResult struct {
ResourceRef PipelineResourceRef
Key string `json:"key"`
Value string `json:"value"`
Name string `json:"name"`
Digest string `json:"digest"`
}Then drop name/digest later. |
|
Another idea could maybe be to dump the entire Resource as-is into the result? For inputs it would be the Resource as provided, for outputs it would be (in an immutable world) the Resource that will be created. Pro: Resources dont need to specify in any way what to include |
Added a note on why Resources may not contain enough information in the initial proposal. |
|
@bobcatfish had another proposal from chat:
I think in this case, the extra data around the exact contents that have been resolved would be written to the Resource CRD instance's status section (which is empty today), then the TaskRun would contain this full entity. I think this could work, but some possible problems:
I think (in my mental model anyway), PipelineResource objects are stateless - and they have no status today which makes sense. They are simply pointers to actual, physical systems. They take on shape when they are "resolved" or "dereferenced" by a TaskRun. I could see storing this information in a place other than a TaskRun, but it is important that the information be stored at TaskRun time. |
I think this highlights that reusing a PipelineResource is kind of weird - since #215 I've been in favor of defaulting to embedding, in which case a PipelineResource instance could be ephemeral, and the lifecycle managed by the pipeline controller. At the moment no backing instance is created at all, but it could be!
One idea here is to have PipelineResources go through an (idempotent) "setup" phase where they could update their own status before being used (much like the volume resource in its current form will need to create the backing PVC before executing if not provided).
I can get behind this too! A different way of looking at PipelineResources I suppose. One upside to making them a bit more "stateful" would be being add features like caching - e.g. pre-fetching a git resource before execution ever starts. I'm just hand waving tho. |
|
Talked about this some more with @dlorenc - if we want to support reusing a PipelineResource, then there is no practical way to limit the number of Runs that might try to update its status, so appending data like this to the status is not a great design. I also got very fixated on the idea that if you are using a PipelineResource such as type git and you specify a commitish such as "master" that actually resolves to something else at runtime, the behavior for users is probably not going to be what they expect - every Task in a Pipeline could end up using a different actual commit. I was trying to solve that at the same time (by putting the resolved commit into the status of the PipelineResource) but that's actually a separate issue we can tackle on its own (#1401). So anyway long story short I am 👍 to @dlorenc 's proposal to add this to the TaskRun status. |
|
I think this is completed via #1406 but plz reopen if not! |
The `Name` and `Digest` field have been deprecated in a previous release. This removes the fields from the struct. See tektoncd#1392 for the inital issue. It also reduce code duplication by aliasing some types between v1alpha1 and v1alpha2. Signed-off-by: Vincent Demeester <vdemeest@redhat.com>
The `Name` and `Digest` field have been deprecated in a previous release. This removes the fields from the struct. See tektoncd#1392 for the inital issue. It also reduce code duplication by aliasing some types between v1alpha1 and v1alpha2. Signed-off-by: Vincent Demeester <vdemeest@redhat.com>
The `Name` and `Digest` field have been deprecated in a previous release. This removes the fields from the struct. See tektoncd#1392 for the inital issue. It also reduce code duplication by aliasing some types between v1alpha1 and v1alpha2. Signed-off-by: Vincent Demeester <vdemeest@redhat.com>
The `Name` and `Digest` field have been deprecated in a previous release. This removes the fields from the struct. See #1392 for the inital issue. It also reduce code duplication by aliasing some types between v1alpha1 and v1alpha2. Signed-off-by: Vincent Demeester <vdemeest@redhat.com>
Today the TaskRunStatus object contains a field called
PipelineResourceResultwhich is used to record the digest of a built container image output.I propose we make this object more generic, to handle recording information for all types of resources.
Today's spec:
Desired Information
We would like to include all the information required to audit a pipelinerun or taskrun later. This varies per resource:
In a future with extensible resources, this spec should be flexible enough to support a wide array of information. In general, more is better for auditing.
Note: the data contained in the PipelineResource CRD instance itself is insufficient for full auditing in many cases. Consider a git repository specified by tag or branch. At the time of TaskRun execution, this is resolved to an exact commit digest. The commit digest may be needed later for reference, but would not be contained in the PipelineResource CRD instance.
Proposed spec:
We propose this spec:
Similar to how image digests are parsed out of container logs, we will need to define a mechanism for resources to write this information back as well.
The text was updated successfully, but these errors were encountered: