Situation: obvious format error in an audit configuration file.
Result: the apiserver somehow proceeded generating audit events after restart.
- what configuration did it use?
- how to check the currently active audit policy?
- is there any helpful logs to determine that there was an error in audit policy file format?
Kubernetes version: v1.21.5
Cloud being used: bare-metal
Installation method: kubespray
Host OS: Ubunto 20.04.3 LTS