Instance Agent Lifecycle
Every EC2 runner instance runs a persistent, state-driven agent responsible for its entire lifecycle. This agent allows an instance to be safely reused across multiple, distinct CI workflows by observing state changes in DynamoDB. It transitions between states like "Waiting for Assignment" and "Executing Job" based on commands from the control plane, making each runner a reusable, warm asset.
One-Time Initialization
Upon first boot, the agent performs a brief, one-time setup sequence:
- It configures logging and fetches necessary metadata from the EC2 environment.
- It executes an operator-provided pre-run script. This allows for custom setup like installing dependencies or warming caches before the runner is used. The success or failure of this script is signaled back to the control plane.
- It downloads the GitHub Actions runner software.
- Finally, it launches its background agents and enters the main reusability lifecycle (registration loop).
Parallel Support Agents
Two independent agents run in parallel to the main lifecycle, providing continuous health monitoring and a safety net:
- Heartbeat Agent: This agent periodically writes a "PING" record to DynamoDB with a timestamp. This allows the control plane to continuously monitor the instance's liveness.
- Self-Termination Agent: This agent periodically checks the instance's
thresholdtimestamp in its DynamoDB record. If the current time exceeds this deadline, the agent will command the EC2 instance to terminate itself. This acts as a fail-safe against orphaned or runaway instances, helping to control costs.
The Reusability Lifecycle: A Coordinated Sequence
After initialization, the agent enters its main reusability loop. This lifecycle is a coordinated sequence of interactions between the instance, the control plane (acting via DynamoDB), and GitHub, allowing the instance to handle multiple jobs securely.
sequenceDiagram
participant CP as "Control Plane"
participant DDB as "DynamoDB"
participant Agent as "Instance Agent"
participant GH as "GitHub"
loop Reusability Cycle
%% Part 1: Wait for Assignment and Register %%
Note over Agent, DDB: Agent is in a<br>"Waiting for Assignment" state.
CP->>DDB: Assigns runId to instance record<br>(when claimed or created)
Agent->>+DDB: Polls for runId
DDB-->>-Agent: Returns runId
Agent->>+GH: Register runner with runId as label
GH-->>-Agent: Registration successful
Agent->>DDB: Write UD_REG_OK signal
%% Part 2: Execute Job and Wait for Release %%
Note over Agent, GH: Runner is now active<br>executing jobs for this runId ⚡
Note over Agent, DDB: Agent now waits for release signal.
CP->>DDB: Clears runId from instance record<br>(when released)
Agent->>+DDB: Polls for runId change
DDB-->>-Agent: Returns empty runId
%% Part 3: Deregister and Cleanup %%
Agent->>+GH: Deregister runner API call
GH-->>-Agent: Deregistration OK
Agent->>DDB: Write completion signal
Note over Agent: Agent returns to "Waiting for Assignment" state ⬆️
endThe lifecycle shown in the diagram consists of three main phases:
- Wait for Assignment & Register: The agent polls DynamoDB until the control plane assigns it a
runId. It then uses this ID to register with GitHub. - Execute & Wait for Release: The runner is active and executing jobs. The agent concurrently polls DynamoDB, waiting for the control plane to signal completion by clearing the
runId. - Deregister & Cleanup: Once the
runIdis cleared, the agent deregisters from GitHub, signals its completion, and returns to the beginning of the loop, ready for a new assignment.
Architectural Decisions
- Indirect Signalling via DynamoDB: The agent communicates its status (e.g.,
UD_REG_OK) back to the control plane by writing signals to its DynamoDB record. This decoupled, asynchronous communication is fundamental to the system's design. - Job Isolation with
runIdLabeling: Using the uniquerunIdas the runner's sole label is a critical feature. It guarantees that jobs from one workflow can only land on a runner that has been specifically provisioned or claimed for it.
