Merge branch 'fix_maintenance' into 'main'

Fix maintenance task See merge request qontainers/pipglr!7
Fix maintenance task
2022-11-23 17:12:59 +00:00 · 2022-11-23 12:10:07 -05:00 · 2022-11-22 22:31:28 +00:00 · 2022-11-22 11:35:36 -05:00
3 changed files with 19 additions and 4 deletions
--- a/8
+++ b/8
@@ -104,7 +104,8 @@ RUN sed -i -r \
 # Runtime rootless-mode configuration
 USER podman
 VOLUME ["/home/podman/.local/share/containers/storage/",\
-        "/home/podman/.gitlab-runner/"]
+        "/home/podman/.gitlab-runner/", \
+        "/cache"]
 WORKDIR /home/podman
 ENTRYPOINT ["/usr/local/bin/gitlab-runner-wrapper"]

@@ -121,7 +122,10 @@ ARG PRIVILEGED_RUNNER="true"
 ARG RUNNER_TAGS="podman-in-podman"
 # Permit running jobs without any tag at all
 ARG RUNNER_UNTAGGED="true"
-ENV REGISTER_NON_INTERACTIVE="true" \
+# Adjust based on usage and storage size to prevent ENOSPACE problems
+ARG CLEAN_INTERVAL="24h"
+ENV CLEAN_INTERVAL="$CLEAN_INTERVAL" \
+    REGISTER_NON_INTERACTIVE="true" \
    RUNNER_TAG_LIST="$RUNNER_TAGS" \
    REGISTER_RUN_UNTAGGED="$RUNNER_UNTAGGED" \
    REGISTER_ACCESS_LEVEL="ref_protected" \
--- a/README.md
+++ b/README.md
@@ -154,6 +154,10 @@ Several build arguments are available to control the output image:
  exact podman version.  Possible values include, `latest`, `vX`, `vX.Y`,
  and `vX.Y.Z` (where, `X`, `Y`, and `Z` represent the podman semantic
  version numbers).  It's also possible to specify an image SHA.
+* `CLEAN_INTERVAL` - A `sleep` (command) compatible time-argument that
+  determines how often to clean out podman storage of disused containers and
+  images.  Defaults to 24-hours, but should be adjusted based on desired caching-effect
+  versus available storage space and rate of job execution.
 * `EXCLUDE_PACKAGES` - A space-separated list of RPM packages to prevent
  their existence in the final image.  This is intended as a security measure
  to limit the attack-surface should a gitlab-runner process escape it's
--- a/11
+++ b/11
@@ -4,16 +4,23 @@
 # a podman-in-podman gitlab runner container.  Any usage
 # outside that context is not supported and may cause harm.

-set -e
+set -eo pipefail

 maintain_podman() {
  # Two days seems to be a good happy-medium beween filling up
  # about 40gig of storage space from moderate CI activity,
  # and maintaining a useful level of caching.
-  while sleep 2d; do
+  while sleep "$CLEAN_INTERVAL"; do
    if [[ -n "$PODMAN_RUNNER_DEBUG" ]]; then
      echo "$(date --iso-8601=second) ${BASH_SOURCE[0] performing podman maintenance}"
    fi
    podman system prune --all --force
  done
 }
+
+if [[ -z "$CLEAN_INTERVAL" ]]; then
+  echo "ERROR: Empty/unset \$CLEAN_INTERVAL"
+  exit 1
+fi
+
+maintain_podman
Author	SHA1	Message	Date
Chris Evich	63b00ad2e7	Merge branch 'fix_maintenance' into 'main' Fix maintenance task See merge request qontainers/pipglr!7	2022-11-23 17:12:59 +00:00
Chris Evich	2bda4c3be6	Fix maintenance task The function was defined but never called, resulting in immediate exit of the maintenance script. Fix this, also add a configuration build-arg and ENV to control the cleaning interval. Signed-off-by: Chris Evich <chris_gitlab@icuc.me>	2022-11-23 12:10:07 -05:00
Chris Evich	3b72178739	Merge branch 'cachevol' into 'main' Add missing cache volume See merge request qontainers/pipglr!6	2022-11-22 22:31:28 +00:00
Chris Evich	a1931efcc1	Add missing cache volume Signed-off-by: Chris Evich <chris_gitlab@icuc.me>	2022-11-22 11:35:36 -05:00