garden job from garden-runc/1.10.0
Github source:
e18e037
or
master branch
Properties¶
garden
¶
additional_dns_servers
¶Additional DNS servers to be used in containers; extends those used on the host or those set by dns_servers property
- Default
[]
allow_host_access
¶A boolean stating whether or not containers started on this host should be able to reach this host.
- Default
false
allow_networks
¶List of CIDR blocks to which containers will be allowed access (applied after deny).
- Default
[]
apparmor_profile
¶AppArmor profile to use for unprivileged container processes
- Default
garden-default
cleanup_process_dirs_on_wait
¶A boolean stating whether or not to cleanup process state after waiting for it. If set a process can be waited for only once.
- Default
false
cpu_quota_per_share_in_us
¶Maximum number of microseconds each cpu share assigned to a container allows per quota period. When set to zero cpu limit is disabled.
- Default
0
debug_listen_address
¶tcp address on which to serve debug info
default_container_blockio_weight
¶default blkio.weight value for containers. Valid values are 0 (use system default), or 10 - 1000.
- Default
0
default_container_grace_time
¶duration after which to reap idle containers
- Default
0
default_container_rootfs
¶path to the rootfs to use when a container specifies no rootfs
- Default
/var/vcap/packages/busybox
deny_networks
¶List of CIDR blocks to which containers will be denied access.
- Default
[]
destroy_containers_on_start
¶If true, all existing containers will be destroyed any time the garden server starts up
- Default
false
dns_servers
¶Override DNS servers to be used in containers; defaults to the same as the host
- Default
[]
docker_registry_endpoint
¶An URL pointing to the Docker registry to use to fetch Docker images. If unset, this will default to the Docker default.
dropsonde
¶
destination
¶A URL that points at the Metron agent to which metrics are forwarded. By default, it matches with the default of Metron.
origin
¶A string identifier that will be used when reporting metrics to Dropsonde.
experimental_rootless_mode
¶A boolean stating whether or not to run garden-server as a non-root user
- Default
false
experimental_tcp_mem_limit_in_bytes
¶Hard limit for the tcp buffer memory in bytes. When set to zero tcp memory limit is disabled.
- Default
0
graph_cleanup_threshold_in_mb
¶Total size of all filesystem layers downloaded from Docker registries before graph cleanup is activated. -1 disables graph cleanup.
- Default
-1
http_proxy
¶Http proxy that Garden process should use
https_proxy
¶Https proxy that Garden process should use
image_plugin
¶Path to an optional image plugin binary
image_plugin_extra_args
¶An array of additional arguments which will be passed to the image plugin binary
- Default
[]
insecure_docker_registry_list
¶A list of IP:PORT tuples that we allow pulling docker images from using self-signed certificates.
- Default
[]
listen_address
¶Garden server listening address.
- Default
/var/vcap/data/garden/garden.sock
listen_network
¶Garden server connection mode (tcp or unix).
- Default
unix
log_level
¶log level for the Garden server - can be debug, info, error or fatal
- Default
info
max_containers
¶Maximum container capacity to advertise. It is not recommended to set this larger than 250.
- Default
250
network_mtu
¶Maximum network transmission unit length in bytes. Defaults to the mtu of the interface that the host uses for outbound connections. Max allowed value is 1500.
- Default
0
network_plugin
¶Path to an optional network plugin binary
network_plugin_extra_args
¶An array of additional arguments which will be passed to the network plugin binary
- Default
[]
network_pool
¶A CIDR subnet mask specifying the range of subnets available to be assigned to containers.
- Default
10.254.0.0/22
no_proxy
¶List of comma-separated hosts that should skip connecting to the proxy
persistent_image_list
¶List of Rootfs Paths (directories or docker URLs) which will never be deleted during graph cleanup
- Default
[]
port_pool
¶
size
¶An integer used to denote how many ports are avaliable for Net In calls. Uses the Garden default if not set.
start
¶An integer port number used to denote where ports should start being allocated for Net In calls. Uses the Garden default if not set.
privileged_image_plugin
¶Path to an optional privileged image plugin binary
privileged_image_plugin_extra_args
¶An array of additional arguments which will be passed to the privileged image plugin binary when creating privileged containers - these will be passed instead of the contents of image_plugin_extra_args
- Default
[]
runtime_plugin
¶Path to a runtime plugin binary
Templates¶
Templates are rendered and placed onto corresponding
instances during the deployment process. This job's templates
will be placed into /var/vcap/jobs/garden/
directory
(learn more).
bin/auplink
(fromauplink
)bin/envs
(fromenvs.erb
)bin/garden_start
(fromgarden_start.erb
)bin/garden_stop
(fromgarden_stop.erb
)config/garden-default
(fromgarden-default.erb
)
Packages¶
Packages are compiled and placed onto corresponding
instances during the deployment process. Packages will be
placed into /var/vcap/packages/
directory.