[solved] help caching node_modules when using docker plugin

Drone Support
1

May be the same as [solved] Mounting a volume when using the docker plugin

I have been trying to use caching to avoid npm -i starting from scratch every build but having no luck.

If I put RUN ls -la in my dockerfile before running npm -i I can see that node_modules doesn’t exist. Neither does /var/lb/docker

BUT If I put the ls commands in .drone.yml file, the directories exist and get listed out (but of course then it doesn’t run my docker file, and defeats the purpose)

---
kind: pipeline
type: docker
name: staging

steps:
  - name: restore-cache
    image: drillster/drone-volume-cache
    settings:
      restore: true
      mount:
        - ./node_modules
    volumes:
      - name: cache
        path: /cache

  - name: prepare-cache
    image: busybox
    commands:
      - mkdir -p /cache/${DRONE_REPO}/docker
    volumes:
      - name: cache
        path: /cache

  - name: build
    image: plugins/docker
    privileged: true
    settings:
      registry: my.registry.com
      repo: my.registry.com/img/img
      tags:
        - ${DRONE_COMMIT_SHA:0:7}
        - ${DRONE_COMMIT_BRANCH}
      force_tag: true
      use_cache: true
      username:
        from_secret: harbor_user
      password:
        from_secret: harbor_password
    volumes:
      - name: docker
        path: /var/lib/docker
      - name: node_modules
        path: /drone/src/node_modules

  - name: rebuild-cache
    image: drillster/drone-volume-cache
    settings:
      rebuild: true
      mount:
        - ./node_modules
    volumes:
      - name: cache
        path: /cache

  - name: deploy
    image: danielgormly/drone-plugin-kube:0.0.1
    settings:
      template: k8s/${DRONE_COMMIT_BRANCH}.yml
      ca:
        from_secret: microk8s_ca
      server:
        from_secret: microk8s_server
      token:
        from_secret: microk8s_token

volumes:
  - name: cache
    host:
      path: /var/lib/drone/cache
  - name: node_modules
    host:
      path: /var/lib/drone/cache/${DRONE_REPO}/node_modules
  - name: docker
    host:
      path: /var/lib/drone/cache/${DRONE_REPO}/docker
2

From what I can see in your yaml, you appear to be using the cache plugin to restore your cache from the host to the node_modules directory, which looks fine.

What looks problematic to me is that you mount /drone/src/node_modules in your docker step to a host volume, which overwrites the existing node_modules directory with the host directory, and negates your previous cache restore.

I cannot see a reason to mount host volumes into your docker step, so removing both volume mounts is recommended. Note that the docker plugin uses docker-in-docker and therefore does not require mounting the host volume.

  - name: build
    image: plugins/docker
    privileged: true
    settings:
      registry: my.registry.com
      repo: my.registry.com/img/img
      tags:
        - ${DRONE_COMMIT_SHA:0:7}
        - ${DRONE_COMMIT_BRANCH}
      force_tag: true
      use_cache: true
      username:
        from_secret: harbor_user
      password:
        from_secret: harbor_password
-   volumes:
-     - name: docker
-       path: /var/lib/docker
-     - name: node_modules
-       path: /drone/src/node_modules
1 Like
3

Thanks for the reply. I removed those entries, but it is not caching anything. I think I just don’t have a good understanding of how the pieces fit together. Here’s my updated conf:

---
kind: pipeline
type: docker
name: staging

steps:
  - name: restore-cache
    image: drillster/drone-volume-cache
    settings:
      restore: true
      mount:
        - ./node_modules
    volumes:
      - name: cache
        path: /cache

  - name: prepare-cache
    image: busybox
    commands:
      - mkdir -p /cache/${DRONE_REPO}/docker
    volumes:
      - name: cache
        path: /cache

  - name: build
    image: plugins/docker
    privileged: true
    settings:
      registry: my.registry.com
      repo: my.registry.com/img/img
      tags:
        - ${DRONE_COMMIT_SHA:0:7}
        - ${DRONE_COMMIT_BRANCH}
      force_tag: true
      use_cache: true
      username:
        from_secret: harbor_user
      password:
        from_secret: harbor_password
        debug: true

  - name: rebuild-cache
    image: drillster/drone-volume-cache
    settings:
      rebuild: true
      mount:
        - ./node_modules
    volumes:
      - name: cache
        path: /cache

  - name: deploy
    image: danielgormly/drone-plugin-kube:0.0.1
    settings:
      template: k8s/${DRONE_COMMIT_BRANCH}.yml
      ca:
        from_secret: microk8s_ca
      server:
        from_secret: microk8s_server
      token:
        from_secret: microk8s_token

volumes:
  - name: cache
    host:
      path: /var/lib/drone/cache
  - name: node_modules
    host:
      path: /var/lib/drone/cache/${DRONE_REPO}/node_modules
  - name: docker
    host:
      path: /var/lib/drone/cache/${DRONE_REPO}/docker

And my Dockerfile:

FROM node:lts-alpine3.14 as base

WORKDIR /drone/src
COPY . .
RUN npm i
RUN npx nx build www
RUN npx nx build api
CMD ["node", "./dist/apps/api/main.js"]
4

I think perhaps there is a minor misunderstanding with regards to how the docker plugin and volumes work in drone. The docker plugin runs docker-in-docker. This means the docker build is a container running in a container. The /drone/src volume is mounted to the outer container (plugins/docker) but not the inner container (dockerfile).

5

I definitely agree that I don’t understand how the layering is working. So that being said, I’m trying to accomplish 2 things:

  1. I don’t want to re-download docker images on every build
  2. I don’t want npm -i in my Dockerfile to re-download all my deps for every build.

I think #1 is working. But how can I accomplish #2? I want to retain my node_modules between builds while being able to push a docker image to my private repo.

6

I don’t want to re-download docker images on every build

The docker plugin is ephemeral and does have access to the host machine docker cache, for isolation and security reasons. If you need access to the host machine docker cache (for image caching, layer caching, etc) this particular plugin is not going to be a good fit. The docker plugin is not mandatory; you can use other plugins or even shell scripting. See this previous thread for further explanation:

http://discuss.harness.io/t/docker-build-does-not-use-cache-drone-cli-exec/2359/2

I don’t want npm -i in my Dockerfile to re-download all my deps for every build.

I think I see the disconnect. Docker builds your image in a temporary directory (note that this is a bit of an oversimplification). This means that under the hood, the COPY directive in your Dockerfile is copying /drone/src into the temporary directory. Therefore running npm install inside the Dockerfile is going to download your node_modules to the temporary directory, not to /drone/src/node_modules.

If you want to cache node_modules, you need to download your dependencies outside of your Dockerfile. Then you can use the ADD or COPY directive to add the node_modules folder to your Dockerfile. This eliminates the need for RUN npm i.

For example:

- name: restore
  image: drillster/drone-volume-cache
  settings:
    restore: true
    mount:
    - ./node_modules
  volumes:
  - name: cache
    path: /cache

- name: deps
  image: node
  commands:
  - npm install

- name: build
  image: plugins/docker
  settings:
    ...
7

Thanks for the help…Getting closer. The cache now works. I’m actually currently running my build command outside the docker plugin (nx build). So far so good, it’s shaved about 11 minutes off.

But my build process puts everything into a “dist” folder that I want to COPY in my Dockerfile. But it doesn’t exist, or is somewhere I can’t find it.

Where do I COPY from in the Dockerfile to access either node_modules or dist?

Again, my updated files.

---
kind: pipeline
type: docker
name: staging

steps:
  - name: restore-cache
    image: drillster/drone-volume-cache
    settings:
      restore: true
      mount:
        - ./node_modules
    volumes:
      - name: cache
        path: /cache

  - name: build
    image: node:lts-alpine3.14
    commands:
      - mkdir -p /cache/${DRONE_REPO}/docker
      - npm i
      - npx nx build www
      - npx nx build api
    volumes:
      - name: cache
        path: /cache

  - name: rebuild-cache
    image: drillster/drone-volume-cache
    settings:
      rebuild: true
      mount:
        - ./node_modules
    volumes:
      - name: cache
        path: /cache

  - name: dockerize
    image: plugins/docker
    privileged: true
    settings:
      registry: private
      repo: private
      tags:
        - ${DRONE_COMMIT_SHA:0:7}
        - ${DRONE_COMMIT_BRANCH}
      force_tag: true
      use_cache: true
      username:
        from_secret: harbor_user
      password:
        from_secret: harbor_password
        debug: true

  - name: deploy
    image: danielgormly/drone-plugin-kube:0.0.1
    settings:
      template: k8s/${DRONE_COMMIT_BRANCH}.yml
      ca:
        from_secret: microk8s_ca
      server:
        from_secret: microk8s_server
      token:
        from_secret: microk8s_token

volumes:
  - name: cache
    host:
      path: /var/lib/drone/cache
  - name: node_modules
    host:
      path: /var/lib/drone/cache/${DRONE_REPO}/node_modules
  - name: docker
    host:
      path: /var/lib/drone/cache/${DRONE_REPO}/docker

FROM node:lts-alpine3.14 as base

WORKDIR /opt/app
COPY ./dist .

CMD ["node", "./dist/apps/api/main.js"]
8

unfortunately without the ability to reproduce (access to source code and a sample pipeline) it is very difficult to advise on these matters. If you post a simple, sample project that can be used to reproduce, it may increase your chances that someone from the community will volunteer their time and help you come up with a solution.

9

I am facing a similar issue. No matter what I do, I cannot get to use the volume directory with plugins/docker in the example below. @bradrydzewski can you shed some light here?

kind: pipeline
type: docker
name: build and push


platform:
  os: linux
  arch: arm64


environment:
  UNBOUND_VERSION: "1.14.0"


steps:

- name: Add tags
  image: alpine:latest
  when:
    event:
      - push
  commands:
    - echo -n "$${UNBOUND_VERSION}, latest" > .tags
    - ls -lh .tags
    - cat .tags


- name: clone repository
  image: alpine:latest
  volumes: 
    - name: cache
      path: /unbound
  commands:
    - apk add --no-cache git
    - git clone https://github.com/MatthewVance/unbound-docker /unbound
    - ls -lh /unbound
  when:
    event:
      - push


- name: image build and push
  image: plugins/docker
  volumes: 
    - name: cache
      path: /unbound
  settings:
    context: /unbound/"$${UNBOUND_VERSION}"
    dockerfile: /unbound/"$${UNBOUND_VERSION}"/Dockerfile
    registry: example.com
    repo: example.com/unbound
    username:
      from_secret: registry_username
    password:
      from_secret: registry_password


volumes:
- name: cache
  temp: {}
10

@simao-silva per the latest post from kryptus36 they are not using volumes with the docker plugin, so not sure this thread applies to your particular use case. If you have questions about using volumes with the docker plugin, please direct to this existing thread: http://discuss.harness.io/t/mounting-a-volume-when-using-the-docker-plugin/10186/4

11

I figured out yesterday that I had node_modules and dist in my .dockerignore file.

Even if you explicitly COPY them, docker won’t do it if they are listed there. Maybe helpful info?

12

Glad to hear your were able to get this working.

Correct, when your run docker build, the docker client bundles all your files and folders in a tar file, excluding anything in dockerignore, and sends them to the docker daemon over the docker socket. The docker daemon then unpacks these files and folders to a temporary directory, and then executes your Dockerfile directives. Files and folders excluded by dockerignore are not bundled in the tar, and therefore cannot be reference by ADD or COPY directives.

Unfortunately the official Docker documentation on this topic is sparse, so here are some useful articles that it explain this concept further:

1 Like