apt-get cleanup commands
Just a short post about some useful cleanup commands for Debian and Ubuntu systems. There are (to my knowledge) no build in task solving the following things
- Remove old kernels (while keeping the currently running and the latest)
- Purge removed packages (especially after autoremoving unneeded dependencies)
Remove old kernels
Debian and Ubuntu don’t remove old kernels when upgrading. Although this of course makes sense to keep the system bootable in case of a broken kernel, it can fill up /boot pretty quickly. Usually it should be sufficient to keep the currently running kernel, as well as the latest one. The rest can be safely deleted. This can be done with the following command:
Edit: Also purge other kernel packages, like modules and source
apt-get purge \$( \
dpkg --list | \
egrep 'linux-(image|image-unsigned|headers|modules|modules-extra|source|doc)-[0-9]' | \
awk '{print \$3,\$2}' | \
sort -nr | \
tail -n +2 | \
grep -v \$(uname -r) | \
awk '{print \$2}' | \
tr '[:space:]' ' ' \
)
A short explanation
apt-get purge remove packages (and purge configuration) selected by the following lines
dpkg --list list installed packages
egrep 'linux-(...)-[0-9]' grep installed kernels, modules, source, headers, ...
awk '{print $3,$2}' we need the version, as well as the package name
sort -nr sort by version
tail -n +2 filter out latest kernel
grep -v $(uname -r) filter out currently running kernel (failsafe)
awk '{print $2}' cut everything but the package name
tr '[:space:]' ' ' make sure all whitespace characters are real spaces
Purge removed packages
If you remove a package using
apt-get remove <packagename>
The packages configuration will be retained. Also, when autoremoving unneeded dependencies, apt-get by default removes packages instead of purging them.
To cleanup your system and purge all packages that are removed from the system and their dependencies, use this command
apt-get autoremove -y; apt-get purge -y $(dpkg --list |grep '^rc' |awk '{print $2}')
Explanation
apt-get autoremove -y remove all dependencies no longer required
apt-get purge -y purge packages selected with the following lines
dpkg --list list installed packages
grep '^rc' grep packages removed, but not purged (rc)
awk '{print $2}' cut everything but the package name
tr '[:space:]' ' ' make sure all whitespace characters are real spaces
Chef cookbook
Furthermore, I created the apt_cleanup Chef cookbook, which provides recipes to do all those tasks automatically.
For a convenient auto-cleanup, the following recipes can be used
apt_cleanup::default
Includes all other cleanup recipes
apt_cleanup::remove_old_kernels
Removes all old kernels, but the most recent as well as the currenlty used one.
apt_cleanup::remove_unneeded_packages
Runs apt-get autoremove to remove packages not required anymore.
apt_cleanup::purge_removed_packages
Purges already removed packages, to get rid of e.g. old config files.
apt_cleanup::clean_apt_cache
Runs apt-get clean to remove .dpkg files from /var/cache/apt/archives.
Saltstack formula
UPDATE 15th Oct. 2018: I’ve also created a salt formula to take care of cleaning up.
Either run it to clean up packages immediately:
# Clean up packages on this system
sudo salt-call state.apply apt.cleanup.now
# Clean up packages on all nodes
sudo salt '*' state.apply apt.cleanup.now
# Setup systemd timer to automatically clean packages once a day
sudo salt-call state.apply apt.cleanup
# Respectively, to install it on all nodes
sudo salt '*' state.apply apt.cleanup
Unlike Chef, Saltstack doesn’t run periodically. To run the cleanup scripts regularily (e.g. daily), the apt.cleanup state installs a systemd service and timer to cleanup your system automatically on a daily basis. Feel free to use the provided apt-cleanup.service and apt-cleanup.timer files independently of Saltstack!