How can I let the gitlab-ci-runner DinD image cache intermediate images?

docker gitlab gitlab-ci gitlab-ci-runner
14,077

Solution 1

I suppose there's no simple answer to your question. Before adding some details, I strongly suggest to read this blog article from the maintainer of DinD, which was originally named "do not use Docker in Docker for CI".

What you might try is declaring /var/lib/docker as a volume for your GitLab runner. But be warned, depending on your file-system drivers you may use AUFS in the container on an AUFS filesystem on your host, which is very likely to cause problems.

What I'd suggest to you is creating a separate Docker-VM, only for the runner(s), and bind-mount docker.sock from the VM into your runner-container. We are using this setup with GitLab with great success (>27.000 builds in about 12 months).

You can take a look at our runner with docker-compose support which is actually based on the shell-executor of GitLab's runner.

Solution 2

Currently you cannot cache intermediate layers in GitLab Docker-in-Docker. Altough there are plans to add that (that are mentioned in the link below). What you can do today to speed up your DinD build is to use the overlay filesystem. To do this you need to be running a liunx kernel >=3.18 and make sure you load the overlay kernel module. Then you set this variable in your gitlab-ci.yml:

variables:
  DOCKER_DRIVER: overlay

For more information see this issue and in particular this comment on "The state of optimising Docker Builds!", see the "Using docker executor with dind" section.

https://gitlab.com/gitlab-org/gitlab-ce/issues/17861#note_12991518

Share:
14,077
Roel Harbers
Author by

Roel Harbers

Updated on June 06, 2022

Comments

  • Roel Harbers
    Roel Harbers almost 2 years

    I have a Dockerfile that starts with installing the texlive-full package, which is huge and takes a long time. If I docker build it locally, the intermedate image created after installation is cached, and subsequent builds are fast.

    However, if I push to my own GitLab install and the GitLab-CI build runner starts, this always seems to start from scratch, redownloading the FROM image, and doing the apt-get install again. This seems like a huge waste to me, so I'm trying to figure out how to get the GitLab DinD image to cache the intermediate images between builds, without luck so far.

    I have tried using the --cache-dir and --docker-cache-dir for the gitlab-runner register command, to no avail.

    Is this even something the gitlab-runner DinD image is supposed to be able to do?

    My .gitlab-ci.yml:

    build_job:
    script:
    - docker build --tag=example/foo .

    My Dockerfile:

    FROM php:5.6-fpm
MAINTAINER Roel Harbers <[email protected]>
RUN apt-get update && apt-get install -qq -y --fix-missing --no-install-recommends texlive-full
RUN echo Do other stuff that has to be done every build.

    I use GitLab CE 8.4.0 and gitlab/gitlab-runner:latest as runner, started as

    docker run -d --name gitlab-runner --restart always \
    -v /var/run/docker.sock:/var/run/docker.sock \
    -v /usr/local/gitlab-ci-runner/config:/etc/gitlab-runner \
    gitlab/gitlab-runner:latest \
; \

    The runner is registered using:

    docker exec -it gitlab-runner gitlab-runner register \
    --name foo.example.com \
    --url https://gitlab.example.com/ci \
    --cache-dir /cache/build/ \
    --executor docker \
    --docker-image gitlab/dind:latest \
    --docker-privileged \
    --docker-disable-cache false \
    --docker-cache-dir /cache/docker/ \
; \

    This creates the following config.toml:

    concurrent = 1
[[runners]]
    name = "foo.example.com"
    url = "https://gitlab.example.com/ci"
    token = "foobarsldkflkdsjfkldsj"
    tls-ca-file = ""
    executor = "docker"
    cache_dir = "/cache/build/"
    [runners.docker]
        image = "gitlab/dind:latest"
        privileged = true
        disable_cache = false
        volumes = ["/cache"]
        cache_dir = "/cache/docker/"

    (I have experimented with different values for cache_dir, docker_cache_dir and disable_cache, all with the same result: no caching whatsoever)

  • AndreKR
    AndreKR over 7 years
    If two builds run concurrently and both create for example an image named "temp", wouldn't that result in a conflict? Isn't that exactly the reason why people use DinD?
  • schmunk
    schmunk over 7 years
    We're setting COMPOSE_PROJECT_NAME to buildpipeline CI_BUILD_PIPELINE, see github.com/dmstr/phd5-app/blob/… - which results in a perfect isolation of the stacks.
  • schmunk
    schmunk over 7 years
    Another option is to build tagged images with docker-compose (v2-syntax), like so: image: mynamespace/myimage:${APP_VERSION}

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Why is postgres container ignoring /docker-entrypoint-initdb.d/* in Gitlab CI
gitlab-ci-runner choose executer "Please enter the executor:"
Gitlab CI runner configuration with cache on docker
What is the special gitlab-ci-token user?
How to make GitLab Runner in Docker see a custom CA Root certificate
Gitlab CI/CD runner : mvn command not found
Runner is not healthy and will be disabled
Why am I getting "Pipeline failed due to the user not being verified" & "Detached merge request pipeline" on a Gitlab merge request?
Gitlab Ci unable to push on a branch from runner
Docker build failed: tag invalid reference format (Gitlab CI)