Feature: ignite_clean & ignite_clean_cni resources #2
Description
Add resources:
ignite_clean: Kill all running Firecracker micro-VM's and clean all VM images.ignite_clean_cni: Remove all CNI network settings.
Use case:
These resources can be run before the install recipes when the host machine is not a pristine environment. Example, developer laptop and desktop machines.
These are based on the scripts posted by @stealthybox here on Slack.
For posterity the scripts are:
~/Repos/ignite-scratch
❯ cat ignite-clean.sh
#!/usr/bin/env bash
set -x
set -o pipefailignite="${ignite:-"sudo ./bin/ignite"}"
docker="${docker:-"docker"}"
ctr="${ctr:-"sudo ctr"}"
iptables="${iptables:-"sudo iptables"}"${ignite} vm ls -q | xargs -n1 ${ignite} vm rm -f${docker} ps | grep ignite- | awk '{print $1}' | xargs ${docker} rm -f
# stop containerd tasks
sudo pkill -9 firecracker
# sudo pkill -9 containerd-shim; # harms other containers
${ctr} -n firecracker c ls -q | xargs ${ctr} -n firecracker c delete${ignite} vm ls -q | xargs -n1 ${ignite} vm rm -f
sudo dmsetup remove_all${iptables} -S -t nat \
| grep ignite \
| sed "s/^-A/${iptables} -t nat -D/" \
| bash -x
sudo rm /etc/cni/net.d/10-ignite.conflist
sudo ifconfig cni0 down
sudo ip link delete cni0
sudo ifconfig ignite0 down
sudo ip link delete ignite0and
~/Repos/ignite-scratch
❯ cat iptables-clean-cni-ignite.sh
#!/usr/bin/env bash
set -o pipefailiptables="${iptables:-"sudo iptables"}"for t in filter nat mangle raw security; do
echo "# $t"
$iptables -S -t "$t" \
| grep -i -E 'cni|ignite|10\.42\.0|172\.18\.0' \
| tac \
| sed "s/^-N/$iptables -t $t -X/" \
| sed "s/^-A/$iptables -t $t -D/" \
| bash -x
done