Uploaded image for project: 'OpenShift Bugs'
  1. OpenShift Bugs
  2. OCPBUGS-13659

User can't set evaluationInterval via PolicyGenTemplate

    XMLWordPrintable

Details

    • Bug
    • Resolution: Unresolved
    • Major
    • None
    • 4.10.z
    • GitOps ZTP
    • No
    • CNF RAN Sprint 237, CNF RAN Sprint 238, CNF RAN Sprint 239, CNF RAN Sprint 240
    • 4
    • False
    • Hide

      None

      Show
      None

    Description

      Description of problem:

      User can't set evaluationInterval on generated policy CRs via PolicyGenTemplate. This results in policies with a default evaluation intervals of 10s/10s which significantly increases CPU load on the spoke cluster.

      Version-Release number of selected component (if applicable):

      4.10.z

      How reproducible:

      100%

      Steps to Reproduce:

      1. Use 4.10 ZTP policyGen to create policies.
2. Note that evaluationInterval is not set resulting in default 10s/10s
3.

      Actual results:

      evaluationInterval is not set, defaulting to to 10s/10s

      Expected results:

      Expect evaluationInterval set to 10m/10s

      Additional info:

      As a workaround, the user can apply the following content in their kustomization.yaml in git to insert the evaluationInterval into the policies. Note that you need to copy this once per policyName:

patchesJSON6902:
- target:
    kind: Policy
    name: common-config-policy
  patch: |-
    - op: add
      path: '/spec/policy-templates/0/objectDefinition/spec/evaluationInterval'
      value:
        compliant: 10m
        noncompliant: 10s

       

      Attachments

        Activity

          People

            tali@redhat.com Tao Liu
            rhn-support-imiller Ian Miller
            Periyamaruthu Mohanraj Periyamaruthu Mohanraj
            Votes:
            0 Vote for this issue
            Watchers:
            7 Start watching this issue

            Dates

              Created:
              Updated: