Feature #9431: mon: audit read-only commands on a lower level than default - Ceph - Ceph

Actions

Copy link

Feature #9431

open

mon: audit read-only commands on a lower level than default

Added by Joao Eduardo Luis over 9 years ago. Updated over 9 years ago.

Status:

New

Priority:

Normal

Assignee:

Category:

Monitor

Target version:

% Done:

Source:

other

Tags:

Backport:

Reviewed:

Affected Versions:

Pull request ID:

Description

<jcsp> joao: the hot new audit_clog stuff gets quite spammy on a system with calamari (because of all the polling of e.g. "ceph status")
<jcsp> joao: I'd say the log of RO operations should be DEBUG level, as they could be interesting in test logs but usually not for real life systems.

This will entail have fine-grained treatment of commands when logging. Currently with treat commands in broad-strokes, logging them all the same way.

This also means having the logging happening in each service, once we know whether it's a RO operation vs an operation with potential side-effects, instead upon Monitor::handle_command().

Actions

Copy link

Updated by John Spray over 9 years ago

Maybe the readonly-ness could be inferred from the "r" or "rw" in the COMMAND definition from MonCommands.h, so the audit_clog stuff could still be generic?

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Ceph

Custom queries

Feature #9431

mon: audit read-only commands on a lower level than default

Updated by John Spray over 9 years ago