Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Audit Scanner overloading a single pod from policy server #689

Open
1 task done
brunorene opened this issue Mar 21, 2024 · 0 comments
Open
1 task done

Audit Scanner overloading a single pod from policy server #689

brunorene opened this issue Mar 21, 2024 · 0 comments
Labels
kind/to-be-refined

Comments

@brunorene
Copy link

brunorene commented Mar 21, 2024
edited

Is there an existing issue for this?

  • I have searched the existing issues

Current Behavior

I noticed that when Audit Scanner starts to run all request load is targetted into a single policy server pod, instead of being spread out throughout all available replicas, making the pod struggle to respond to all Audit scanner requests and making the auditing process take much longer. It does seem that Audit scanner also has very little concurrency when validating resources. I tried it on a large cluster (thousands of namespaces) and at the moment is taking around 2 days to finish.

Expected Behavior

Audit Scanner should take advantage of all replicas available from policy server to spread the request load

Steps To Reproduce

No response

Environment

- OS: Linux
- Architecture: amd64

Anything else?

No response
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
kind/to-be-refined
Projects
Kubewarden
Status: No status
Milestone
No milestone
Development

No branches or pull requests
2 participants
@flavio @brunorene