Actions
Feature #9431
openmon: audit read-only commands on a lower level than default
Status:
New
Priority:
Normal
Assignee:
-
Category:
Monitor
Target version:
-
% Done:
0%
Source:
other
Tags:
Backport:
Reviewed:
Affected Versions:
Pull request ID:
Description
<jcsp> joao: the hot new audit_clog stuff gets quite spammy on a system with calamari (because of all the polling of e.g. "ceph status") <jcsp> joao: I'd say the log of RO operations should be DEBUG level, as they could be interesting in test logs but usually not for real life systems.
This will entail have fine-grained treatment of commands when logging. Currently with treat commands in broad-strokes, logging them all the same way.
This also means having the logging happening in each service, once we know whether it's a RO operation vs an operation with potential side-effects, instead upon Monitor::handle_command().
Updated by John Spray over 9 years ago
Maybe the readonly-ness could be inferred from the "r" or "rw" in the COMMAND definition from MonCommands.h, so the audit_clog stuff could still be generic?
Actions