Uploaded image for project: 'OpenShift Bugs'
  1. OpenShift Bugs
  2. OCPBUGS-20126

TALM: CGU creates thousands of policies in a loop


    • Important
    • No
    • False
    • Hide



      Description of problem:

      CGU creates a huge number of enforced policies. The CGU does not report any state.
      The hub cluster started to have issues enforcing policies on a speficic managed cluster. Then, the SNO cluster was redeployed using ZTP, but the CGU got in a bad state and a huge number of policies was created.

      Version-Release number of selected component (if applicable):


      How reproducible:

      For now, only seen once on a specific managedcluster

      Steps to Reproduce:

      1. Once the issue is seen on a site. CGU does not enforces policies
      2. Redeploy it or create a CGU.

      Actual results:

      CGU does not have state and policies not enforced
      oc get cgu -A
      ztp-install   cloudransno-site4                     52m  
      number of policies on the managed cluster keeps growing.
      $ oc get policies -A | grep site4 | wc -l
      $ oc get policies -A | grep site4 | wc -l

      Expected results:

      CGU has a state and enforces the right policies policies

      Additional info:

      System impact: One SNO cluster cannot be managed using TALM/GitOps properly. Number of policies is growing in an uncontrolled manner.

            jche@redhat.com Jun Chen
            rlopezma@redhat.com Rodrigo Lopez Manrique
            Yang Liu Yang Liu
            Rodrigo Lopez Manrique
            0 Vote for this issue
            6 Start watching this issue