OpenTelemetry Proposal: Introduce semantic conventions for CI/CD observability #223
There are no files selected for viewing
| Original file line number | Diff line number | Diff line change | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|
| @@ -0,0 +1,75 @@ | ||||||||||||
| # OpenTelemetry Proposal: CI/CD Observability Support by OpenTelemetry | ||||||||||||
|
|
||||||||||||
| OpenTelemetry project can serve Continuous Integration & Continuous Delivery (CI/CD) observability use cases. | ||||||||||||
|
|
||||||||||||
| ## Motivation | ||||||||||||
|
|
||||||||||||
| OpenTelemetry is already known for DevOps use cases around monitoring production systems and reducing mean time to identification and resolution/recovery (MTTI/MTTR). | ||||||||||||
| However, the project can also bring value for pre-production DevOps use cases, by enabling monitoring of the Continuous Integration & Continuous Delivery (CI/CD) pipelines. CI/CD observability helps to reduce the Lead Time for Changes, which is another crucial [DORA metric](https://horovits.medium.com/improving-devops-performance-with-dora-metrics-918b9604f8e2) measuring how much time it takes a commit to get into production. | ||||||||||||
|
|
||||||||||||
| This enhancement will broaden the target audience of the project also to Release Engineering teams, and will unleash a whole new value proposition of OpenTelemetry in the software release process, in close collaboration and integration with the CI/CD ecosystem, specifications and tooling. | ||||||||||||
|
|
||||||||||||
| ## Explanation | ||||||||||||
|
|
||||||||||||
| Lack of CI/CD observability results in unnecessarily long Lead Time for Changes, which is a crucial metric measuring how much time it takes a commit to get into production. | ||||||||||||
|
|
||||||||||||
horovits marked this conversation as resolved.
Show resolved
Hide resolved
|
||||||||||||
| CI/CD tools today emit various telemetry data, whether logs, metrics or trace data to report on the release pipeline state, to help pinpoint flakyness, and accelerate root cause analysis of failures, whether stemming from the application code, a configuration, or from the CI/CD environment. However, these tools do not follow any particular standard, specification, or semantic conventions. This makes it hard to use observability tools for monitoring these pipelines. Some of these tools provide some observability visualization and analytics capabilities out of the box, but in addition to the tight coupling the offered capabilities are oftentime not enough, especially when one wishes to monitor aggregated information across different tools and different stages of the release process. | ||||||||||||
|
|
||||||||||||
| Some tools have started adopting OpenTelemetry, which is an important step in creating standardization. A good example is [Jenkins](https://github.com/jenkinsci/jenkins), a popular CI OSS project, which offers the [Jenkins OpenTelemetry plugin](https://plugins.jenkins.io/opentelemetry/) for emitting telemetry data in order to: | ||||||||||||
|
There was a problem hiding this comment. GitHub Actions also support sending OpenTelemetry data using the action otel-export-trace-action |
||||||||||||
| 1. Visualize jobs and pipelines executions as distributed traces | ||||||||||||
| 2. Visualize Jenkins and pipeline health indicators | ||||||||||||
| 3. Troubleshoot Jenkins performances with distributed tracing of HTTPs requests | ||||||||||||
|
|
||||||||||||
| Building CI/CD observability involves four stages: Collect → Store → Visualize → Alert. OpenTelemetry provides a unified way for the first step, namely collecting and ingesting the telemetry data in an open and uniform manner. | ||||||||||||
horovits marked this conversation as resolved.
Show resolved
Hide resolved
|
||||||||||||
|
|
||||||||||||
| If you are a CI/CD tool builder, the specification and instrumentation will enable you to properly structure your telemetry, package and emit it over OTLP. OpenTelemetry specification will determine which data to collect, the semantic convention of the data, and how different signal types can be correlated based on that, to support downstream analytics of that data by various tools. | ||||||||||||
|
There was a problem hiding this comment. I think there is another potential spec here considering a lot of CI/CD is a combination of tooling in a repeatable fashion. For example if you're able to generate a trace of your pipeline, the existing tooling is unaware of what is being used as your trace context. This means that your tools could be generating their own trace contexts that are disjointed to the CI/CD trace context, making it extremely difficult to combine those two together. There was a problem hiding this comment. VCS and the use cases you mention such as "track PR size, contributors, and time to merge" are not in the scope of this OTEP. this proposal is about the release pipelines. it can carry metadata such as the build number being deployed and perhaps the commit SHA, but not getting into the internals of the build process. monitoring VCS may be a valid use case for a separate proposal. |
||||||||||||
|
|
||||||||||||
| If you are an end user looking to gain observability over your pipelines, you will be able to collect OpenTelemetry-formatted telemetry using the OpenTelemetry Collector, ingest, process and then export to a rich ecosystem of observability analytics backend tools, independent of your CI/CD tools in use. | ||||||||||||
|
|
||||||||||||
| Here are some examples of potential resulting observability visualization over popular backend tools such as Jaeger, Grafana and OpenSearch: | ||||||||||||
|
|
||||||||||||
| Monitoring Jenkins metrics for nodes, queues, jobs and executors with Grafana dashboard: | ||||||||||||
|  | ||||||||||||
|
|
||||||||||||
| Jenkins pipeline run visualized as a trace in the Timeline View in Jaeger UI: | ||||||||||||
|  | ||||||||||||
|
|
||||||||||||
| OpenSearch dashboard for monitoring Jenkins pipelines: | ||||||||||||
|  | ||||||||||||
|
|
||||||||||||
|
There was a problem hiding this comment. Worth to mention also the Elastic Stack as the primary integration of the Jenkins Opentelemetry plugin
Suggested change
|
||||||||||||
| For more examples, see [this article](https://logz.io/learn/cicd-observability-jenkins/) on CI/CD observability using currently available open source tools. | ||||||||||||
|
There was a problem hiding this comment. Could we add more articles and presentations here? We have been a bunch in the last three years.
|
||||||||||||
|
|
||||||||||||
| ## Internal details | ||||||||||||
|
|
||||||||||||
| OpenTelemetry specification should be enhanced to cover semantics relevant to pipelines, such as the branch, build, step (ID, duration, status), commit SHA (or other UUID), run (type, status, duration). These should be geared for observability into issues in the released application code. | ||||||||||||
| In addition, oftentimes release issues are not code-based but rather environmental, stemming from issues in the build machines, garbage collection issues of the tool or even a malstructured pipeline step. In order to provide observability into CI/CD environment, especially one with distributed execution mechanism, there's need to monitor various entities such as nodes, queues, jobs and executors (using the Jenkins terms, other tools having respective equivalents, which the specification should abstract with the semantic convention). | ||||||||||||
|
There was a problem hiding this comment. This feels like another area that is conflating what the goal of this OTEP is. Internal operations of Jenkins (or any build system) should be separated out into their own section. There was a problem hiding this comment. If it is within your control (ie self hosted runners), you can use the otel collector and auto instrumentation agents (where possible and not provided by the vendor) on build nodes to surface this information. There was a problem hiding this comment. many times pipeline runs fail due to environmental issues rather than ones related to the deployed code. There was a problem hiding this comment. Indeed issues with the environment in a distributed build system can be very difficult to track down even if both CI and nodes are instrumented to emit OTEL data. For example CI could use https://plugins.jenkins.io/opentelemetry/ to send traces of the job executions and build agents could use https://github.com/prometheus/node_exporter and/or https://github.com/open-telemetry/opentelemetry-collector to export host metrics. Even in this scenario it can be difficult to correlate a failing pipeline run with the metrics host(s) that executed the build. The plugin https://plugins.jenkins.io/opentelemetry-agent-metrics/ builds on https://plugins.jenkins.io/opentelemetry/ to solve this issue by running dedicated otel collectors on each build agent and adding attributes to the metrics identifying the run and main CI controller (https://github.com/jenkinsci/opentelemetry-agent-metrics-plugin/blob/main/src/main/resources/io/jenkins/plugins/onmonit/otel.yaml.tmpl) |
||||||||||||
|
|
||||||||||||
| The CDF (Continuous Delivery Foundation) has the Events Special Interest Group ([SIG Events](https://github.com/cdfoundation/sig-events)) which explores standardizing on CI/CD event to facilitate interoperability (it is a work-stream within the CDF SIG Interoperability.). The group is working on [CDEvents](https://cdevents.dev/), a standardized event protocol that caters for technology agnostic machine-to-machine communication in CI/CD systems. It makes sense to evaluate alignment between the standards. | ||||||||||||
|
There was a problem hiding this comment.
Suggested change
|
||||||||||||
|
|
||||||||||||
| OpenTelemetry instrumentation should then support in collecting and emitting the new data. | ||||||||||||
|
There was a problem hiding this comment. This is more language semantic but the instrumentation provided by open telemetry doesn't need to be updated, but rather, our definitions for events that should be captured within this domain of interest.
Suggested change
|
||||||||||||
|
|
||||||||||||
| OpenTelemetry Collector can then offer designated processors for these payloads, as well as new exporters for designated backend analytics tools, as such prove useful for release engineering needs beyond existing ecosystem. | ||||||||||||
|
There was a problem hiding this comment. I would suggest moving this to a stretch goal to be honest, mostly contributing components to the collector requires (hopefully an contributors from that company) to help maintain that component. Gathering interest to develop and contribute components from vendors may take a bit of effort and I wouldn't want it to block this OTEP. |
||||||||||||
|
|
||||||||||||
|
There was a problem hiding this comment. Not only the CI/CD system can send OpenTelemetry data, the tools used as part of the CI/CD pipeline can also send its own OpenTelemetry data. Distributed tracing allows combining all these spans in a single stream of spans. This process gives you more fine-grained details about your pipeline and process. These are some of the tools integrated into your pipelines give you more details: |
||||||||||||
| ## Trade-offs and mitigations | ||||||||||||
|
|
||||||||||||
| Today’s tools already emit some telemetry, some of which may not easily fit into vendor-agnostic unified semantic conventions. These can be accommodated within extra baggage payload, which may be parsed on a tool-specific fashion. | ||||||||||||
|
|
||||||||||||
| ## Prior art and alternatives | ||||||||||||
|
|
||||||||||||
| Today’s tools already emit some telemetry, which can be visualized by the tool’s designated backend, or by general-purpose tools with custom-built dashboards and queries for this specific data. These, however, use proprietary specifications. | ||||||||||||
|
|
||||||||||||
| ## Open questions | ||||||||||||
|
|
||||||||||||
| Open questions include: | ||||||||||||
| - Which entity model should be supported to best represent CI/CD domain and pipelines? | ||||||||||||
|
There was a problem hiding this comment. There is some work done in the Jenkins OpenTelemetry plugin to try to have a general model for naming conventions There was a problem hiding this comment. Also in the junit2otlp for the testing naming conventions |
||||||||||||
| - What are the common CI/CD workflows we aim to support? | ||||||||||||
|
There was a problem hiding this comment. The major CI/CD tools
And build systems/tools:
Test frameworks:
Deploy/devOps tools
There was a problem hiding this comment. While it isn't mentioned here, I am happy to advocate this internally to be added to Atlassian's Bitbucket Pipelines. There was a problem hiding this comment. good listing, thanks for putting it up. |
||||||||||||
| - What are the primary tools that should be supported with instrumentation in order to gain critical mass on CI/CD coverage? | ||||||||||||
|
There was a problem hiding this comment. This should be made its own area of interest mostly because there is a lot of scope and how would we standardise tooling to work and link back to the build pipeline natively. |
||||||||||||
| - Is CDEvents a good fit of a specification to integrate with? what is the aligmment, overlap and gaps? and if so, how to establish the cross-foundation and cross-group collaboration in an effective manner? | ||||||||||||
|
There was a problem hiding this comment. OpenTelemetry is more general purpose. It has spans, metrics, and logs. Overall you can replace CDEvents with OpenTelemetry but not the other way around. There was a problem hiding this comment. Thanks @horovits for this proposal and for mentioning CDEvents here! CDEvents aims to define shared semantics for interoperability in the CI/CD space. Interoperability includes the observability space too - common semantics in the events generated by the different tools enable things like visualization, metrics and more across tools. The transport layer we use today for such events is So, I definitely agree we should collaborate, I think it would be really valuable for the ecosystem. I'd be happy to join one of the open telemetry community meetings to present CDEvents, if that is helpful. There was a problem hiding this comment. CDEvents could be attached to spans as span events and thus best of both worlds. |
||||||||||||
| - How can we bring the existing ecosystem players, both open source and others, to form a concensus and leverage existing knowledge and experience? | ||||||||||||
| - Which receivers are needed beyond OTLP to support the use cases and workflows? | ||||||||||||
| - Which exporters are needed to support common backends? | ||||||||||||
| - Which processors are needed to support the defined workflows? | ||||||||||||
|
Comment on lines
+69
to
+71
There was a problem hiding this comment. I would considered these out of scope considering that we are not looking to bring additional instrumentation from tooling and vendors, but rather having agreed upon convention that each implement |
||||||||||||
|
|
||||||||||||
|
There was a problem hiding this comment.
Suggested change
There are tools which already implement some basic context propagation. Such as the mentioned Jenkins plugin or OTEL-CLI which use environment variables for that use case. There was a problem hiding this comment. I don't have the exhaustive list of tool integrations, and glad to collect it with other contributors here. There was a problem hiding this comment. Sorry for the late answer @horovits There was a problem hiding this comment. @horovits I agree that shared semantics will help. For a tool to propagate context, it needs to know where to look for it in any incoming trigger or data/policy that is used to decide to perform an action. It also needs how to enrich the context and where to send it to propagate it further. Shared semantics definitely help here, which is very much aligned with the mission of CDEvents. CDEvents has a simple model for deployment related of events today - it would be great to have shared semantics here as well. /cc @AloisReitbauer I think this would be of interest to the App Delivery Tag as well. There was a problem hiding this comment. I would like to retrigger this discussion as I'm facing some decisions which will have an effect on how we are tackling things. I see 3 basic ways we should support to propagate context. HTTP headersBasically what is already in place the W3C standard. Environment variablesI'm imagining here one process handing over context to another. e.g. a pipeline run handing over context to a tool used inside of the run. OtherOther ways are possible too, tough I would add them to the specification and make them optional e.g. CLI parameters or files containing the necessary information. There was a problem hiding this comment. @secustor - not sure if you've seen it but there's another OTEP that is specifically related to context propagation at the environment levels that's in progress. open-telemetry/opentelemetry-specification#740 @deejgregor has an working branch for that addition as well that was brought up on today's SIG alongside this OTEP. |
||||||||||||
| ## Future possibilities | ||||||||||||
|
|
||||||||||||
| This OTEP will enable customized instrumentation options, as well as processing within the Collector, which will be designated to the capabilities and evolution of the CI/CD tools and domain. | ||||||||||||
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.