Closed MrStutterZ closed 9 months ago
@MrStutterZ Agreed with this change. Will implement ASAP.
Additional finding on the creation of the tuned and kubeletconfig. I found that even if you are not installing any service that uses db2 both these still get created. I ran an install with only installing the platform, datastage and ws_pipelines and both the tuned and kubeletcofig were created.
@joeculli This has been resolved as well as part of this change.
Describe the bug A clear and concise description of what the bug is.
When installing the services listed in Changing kernel parameter settings (CPD v4.7 Docs) via Cloud Pak Deployer, the KubletConfig and/or Tuned resources are deployed. This doesn't align with expected default behavior (Db2U running with elevated privileges) described by CPD Documentation.
If you look at the cluster resources/objects after an install of CPD v4.7.x and any services using Db2U, then you will see a db2u-product-cm ConfigMap with no data entries.
A configuration option, DB2U_RUN_WITH_LIMITED_PRIVS: "true" or "false" (with "false" being the default), should be added to the deployer so that the ConfigMap is created correctly. Current installs using the deployer of CPD v4.7.x software result in implementations that align with limited privileges selections (KubeletConfig and Tuned object creation).
To Reproduce Steps to reproduce the behavior:
See error
Install CPD v4.7.x, WKC, and DV (Watson Query) on 'fresh' cluster. After successful completion, check the following resources/objects in the cluster:
Expected behavior A clear and concise description of what you expected to happen.
KubeletConfigs and Tuned resources should only be created if installers want Db2U to run with limited privileges.
Screenshots If applicable, add screenshots to help explain your problem.
None.
Desktop (please complete the following information):
Version [e.g. 22]
Not applicable.
Smartphone (please complete the following information):
Version [e.g. 22]
None.
Additional context Add any other context about the problem here.
None.