Red Hat SummitChapter 3. Customizing GitLab pipelines and rebuilding container images
When customizing pipelines in GitLab, rebuilding container image is a critical step to ensure your changes are included in the updated workflow.
Pipelines in GitLab rely on specific container image, such as the GitLab runner image, to execute the tasks defined in your CI/CD workflow. The GitLab runner image provides the necessary tools, configuration, and scripts required for your pipeline to run. If you modify tasks in the pipeline, you must update and rebuild the container image to include those changes. This ensures that you pipeline tasks are properly executed when the pipeline is triggered.
Rebuilding container image involves the following steps:
-
Running
podmanto extract the existing pipeline files. - Customizing the pipeline tasks as per your requirements.
- Rebuilding the container image.
- Pushing the updated image to a container registry.
Prerequisites
Before making changes, ensure that:
-
You have
podmaninstalled on your system. - You have login credentials for Quay.io to push the updated image.
- You have forked and cloned the Sample templates repository.
- Your forked repository is up to date and synced with the upstream repository.
Procedure
Create a directory for the build resources. The location of the directory depends on your role:
-
Platform engineer: If you are rebuilding the image to update the default pipeline for your organization, you may create the directory within the location where you forked the
tssc-sample-templatesrepository. For example,rebuild-image. -
Developers: If you are rebuilding the image for your own use or a specific project, create a directory in a location outside the organization-wide fork of
tssc-sample-templatesto avoid conflicts.
mkdir rebuild-image-
Platform engineer: If you are rebuilding the image to update the default pipeline for your organization, you may create the directory within the location where you forked the
Run the following command and copy the container
imageURL:more ../tssc-sample-templates/skeleton/ci/source-repo/gitlabci/.gitlab-ci.yml # Example: ... image: registry.access.redhat.com/rhtap-task-runner/rhtap-task-runner-rhel9:1.5 ...Copy the existing pipeline content locally by running the following command:
podman run -v $(pwd):/pwd:z <The_url_you_copied_in_step_2> cp -r /work/rhtap /pwd1 - 1
- This command starts the container using the
<the_url_you_copied_in_step_2>image. It then copies the pipeline files from /work/rhtap inside the container to your working directory ($(pwd)). Additionally, if you are not on a system with SELinux enabled (for example, Fedora, RHEL, pr CentOS), remove the:zoption in the command to ensure compatibility.
-
Navigate to the
rhtapdirectory and customize the pipelines tasks as required. Create a
Dockerfilein therebuild-imagedirectory and add the following content to include your changes in the container. Additionally, the base imageregistry.access.redhat.com/rhtap-task-runner/rhtap-task-runner-rhel9:1.5is built onubi/ubi-minimal, which provides a lightweight Universal Base Image (UBI). If you need to install additional software and dependencies, usemicrodnf. An example command:FROM registry.access.redhat.com/rhtap-task-runner/rhtap-task-runner-rhel9:1.51 #Copy the updated pipeline tasks COPY ./rhtap /work/rhtap2 # Example: Install additional software (for example, git) RUN microdnf -y install make3 Build the new container image with the following command:
podman build -f Dockerfile -t quay.io/<namespace>/<new_image_name>1 - 1
-f Dockerfilespecifies the Dockerfile to use for the build the container image. The-fflag allows you to explicitly point to the Dockerfile if it’s not namedDockerfileor is located in a different directory.-t quay.io/<namespace>/<new_image_name>assigns a tag (name) to the container image for easy identification.
Login to Quay.io and push the updated image:
podman login quay.io # Enter username and password podman push quay.io/<namespace>/<new_image_name>1 - 1
- This uploads the customized container image to Quay.io, making it available for use in GitLab pipelines.
Platform engineer only: Navigate to tssc-sample-templates > skeleton > ci > source-repo > gitlabci >
.gitlab-ci.ymlfile and replace the container image URL with the one you just created. This makes the new container image as the default.image: quay.io/<namespace>/<new_image_name>For developers only: To update the container image just for a single repository in GitLab:
-
Navigate to the source repository >
.gitlab-ci.yamland replace the container image URL with the one you just created.
image: quay.io/<namespace>/<new_image_name>-
Navigate to the source repository >
- Commit and push the changes to apply the updated pipeline configuration.
'%20d='M201.5%20305.5c-13.8%200-24.9-11.1-24.9-24.6%200-13.8%2011.1-24.9%2024.9-24.9%2013.6%200%2024.6%2011.1%2024.6%2024.9%200%2013.6-11.1%2024.6-24.6%2024.6zM504%20256c0%20137-111%20248-248%20248S8%20393%208%20256%20119%208%20256%208s248%20111%20248%20248zm-132.3-41.2c-9.4%200-17.7%203.9-23.8%2010-22.4-15.5-52.6-25.5-86.1-26.6l17.4-78.3%2055.4%2012.5c0%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.3%2024.9-24.9s-11.1-24.9-24.9-24.9c-9.7%200-18%205.8-22.1%2013.8l-61.2-13.6c-3-.8-6.1%201.4-6.9%204.4l-19.1%2086.4c-33.2%201.4-63.1%2011.3-85.5%2026.8-6.1-6.4-14.7-10.2-24.1-10.2-34.9%200-46.3%2046.9-14.4%2062.8-1.1%205-1.7%2010.2-1.7%2015.5%200%2052.6%2059.2%2095.2%20132%2095.2%2073.1%200%20132.3-42.6%20132.3-95.2%200-5.3-.6-10.8-1.9-15.8%2031.3-16%2019.8-62.5-14.9-62.5zM302.8%20331c-18.2%2018.2-76.1%2017.9-93.6%200-2.2-2.2-6.1-2.2-8.3%200-2.5%202.5-2.5%206.4%200%208.6%2022.8%2022.8%2087.3%2022.8%20110.2%200%202.5-2.2%202.5-6.1%200-8.6-2.2-2.2-6.1-2.2-8.3%200zm7.7-75c-13.6%200-24.6%2011.1-24.6%2024.9%200%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.1%2024.9-24.6%200-13.8-11-24.9-24.9-24.9z'/%3e%3c/svg%3e){kind=small}