Merge pull request #44221 from BenoitKnecht/ceph-mon-device-metrics

mon: Abort device health when device not found Reviewed-by: Yaarit Hatuka <yaarit@redhat.com>
author: Yuri Weinstein <yweinste@redhat.com> 2022-01-10 16:56:29 +0100
committer: GitHub <noreply@github.com> 2022-01-10 16:56:29 +0100
commit: 0a23e6d3413c6474becee074967281e38b1b0dcc (patch)
tree: 95c7f0db0870b69fa0dbae9f8585b091095def7a /systemd
parent: Merge pull request #43362 from ybwang0211/pubsub_settingng_spell (diff)
parent: systemd: Set PrivateDevices=false in ceph-mon@.service (diff)
download: ceph-0a23e6d3413c6474becee074967281e38b1b0dcc.tar.xz
ceph-0a23e6d3413c6474becee074967281e38b1b0dcc.zip
1 files changed, 4 insertions, 1 deletions
diff --git a/systemd/ceph-mon@.service.in b/systemd/ceph-mon@.service.in
index b7c92f278e3..2eba83c3cc9 100644
--- a/systemd/ceph-mon@.service.in
+++ b/systemd/ceph-mon@.service.in
@@ -20,7 +20,10 @@ LockPersonality=true
 MemoryDenyWriteExecute=true
 # Need NewPrivileges via `sudo smartctl`
 NoNewPrivileges=false
-PrivateDevices=yes
+# We need access to block devices to check the health of the disk backing the
+# monitor DB store. It can be set to `true` if you're not interested in that
+# feature.
+PrivateDevices=false
 PrivateTmp=true
 ProtectControlGroups=true
 ProtectHome=true
author	Yuri Weinstein <yweinste@redhat.com>	2022-01-10 16:56:29 +0100
committer	GitHub <noreply@github.com>	2022-01-10 16:56:29 +0100
commit	0a23e6d3413c6474becee074967281e38b1b0dcc (patch)
tree	95c7f0db0870b69fa0dbae9f8585b091095def7a /systemd
parent	Merge pull request #43362 from ybwang0211/pubsub_settingng_spell (diff)
parent	systemd: Set PrivateDevices=false in ceph-mon@.service (diff)
download	ceph-0a23e6d3413c6474becee074967281e38b1b0dcc.tar.xz ceph-0a23e6d3413c6474becee074967281e38b1b0dcc.zip