Puppet Class: docker::gc

Defined in:
modules/docker/manifests/gc.pp

Overview

Parameters:

  • ensure (Wmflib::Ensure) (defaults to: 'present')
  • interval (Systemd::Timer::Interval) (defaults to: '5m')
  • images_high_water_mark (String) (defaults to: '20gb')
  • images_low_water_mark (String) (defaults to: '10gb')
  • volumes_high_water_mark (String) (defaults to: '20gb')
  • volumes_low_water_mark (String) (defaults to: '10gb') 


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
 
# File 'modules/docker/manifests/gc.pp', line 1

class docker::gc(
    Wmflib::Ensure            $ensure                  = 'present',
    Systemd::Timer::Interval  $interval                = '5m',
    String                    $images_high_water_mark  = '20gb',
    String                    $images_low_water_mark   = '10gb',
    String                    $volumes_high_water_mark = '20gb',
    String                    $volumes_low_water_mark  = '10gb',
){

    systemd::service { 'docker-resource-monitor':
        ensure  => $ensure,
        content => file('docker/docker-resource-monitor.service'),
        restart => true,
    }

    # To start, I'm not including a volumes filter, so no volumes will
    # be deleted.  Need to see what volume names and/or labels are
    # created by Gitlab runners first.
    $command = "/usr/bin/docker run --rm \
        -v /var/run/docker.sock:/var/run/docker.sock \
        -v docker-resource-monitor:/state \
        docker-registry.wikimedia.org/docker-gc:1.0.0 \
        gc \
        --state-file /state/state.json \
        --image-filter 'id=~.*' \
        --images ${images_high_water_mark}:${images_low_water_mark} \
        --volumes ${volumes_high_water_mark}:${volumes_low_water_mark}"

    systemd::timer::job { 'docker-gc':
        ensure      => $ensure,
        description => 'Perform a round of docker image/volume garbage collection',
        command     => $command,
        user        => 'root',
        interval    => {
            'start'    => 'OnUnitInactiveSec',
            'interval' => $interval,
        },
    }
}