If a deployment is using directory based OSD's mounted under /srv/ceph, the 'l' permission is required for ceph-osd operation OR over time the ceph-osd daemons will fail internal ops and eventually core dump.
syslog:Feb 9 10:55:36 ucs-5a-block-3 kernel: [714046.268570] audit: type=1400 audit(1518173736.395:34384): apparmor="ALLOWED" operation="link" profile="/usr/bin/ceph-osd" name="/srv/ceph/bcache-sdg/current/1.4b_head/DIR_B/DIR_4/gnocchi\u0c24d173-d667-434d-b4e6-95bdd773d531\u1517400000.0\umin\u300.0\uv3__head_372A954B__1" pid=358592 comm="tp_fstore_op" requested_mask="l" denied_mask="l" fsuid=64045 ouid=64045 target="/srv/ceph/bcache-sdg/current/1.4b_head/DIR_B/gnocchi\u0c24d173-d667-434d-b4e6-95bdd773d531\u1517400000.0\umin\u300.0\uv3__head_372A954B__1"
syslog:Feb 9 10:55:36 ucs-5a-block-3 kernel: [714046.268602] audit: type=1400 audit(1518173736.395:34385): apparmor="ALLOWED" operation="link" profile="/usr/bin/ceph-osd" name="/srv/ceph/bcache-sdg/current/1.4b_head/DIR_B/DIR_4/gnocchi\u0ce05e5b-41de-4f04-9efc-70053dfde9ec\u1517400000.0\umean\u300.0\uv3__head_C058744B__1" pid=358592 comm="tp_fstore_op" requested_mask="l" denied_mask="l" fsuid=64045 ouid=64045 target="/srv/ceph/bcache-sdg/current/1.4b_head/DIR_B/gnocchi\u0ce05e5b-41de-4f04-9efc-70053dfde9ec\u1517400000.0\umean\u300.0\uv3__head_C058744B__1"
syslog:Feb 9 10:55:36 ucs-5a-block-3 kernel: [714046.268695] audit: type=1400 audit(1518173736.395:34386): apparmor="ALLOWED" operation="link" profile="/usr/bin/ceph-osd" name="/srv/ceph/bcache-sdg/current/1.4b_head/DIR_B/DIR_4/gnocchi\u0e0ecab3-1aee-477d-bf6b-f622e194e18a\unone\uv3__head_D27C7C4B__1" pid=358592 comm="tp_fstore_op" requested_mask="l" denied_mask="l" fsuid=64045 ouid=64045 target="/srv/ceph/bcache-sdg/current/1.4b_head/DIR_B/gnocchi\u0e0ecab3-1aee-477d-bf6b-f622e194e18a\unone\uv3__head_D27C7C4B__1"
syslog:Feb 9 10:55:36 ucs-5a-block-3 kernel: [714046.268736] audit: type=1400 audit(1518173736.395:34387): apparmor="ALLOWED" operation="link" profile="/usr/bin/ceph-osd" name="/srv/ceph/bcache-sdg/current/1.4b_head/DIR_B/DIR_4/gnocchi\u0fbe65eb-a029-4e2f-9885-46524f1cd91b\u1517400000.0\usum\u300.0\uv3__head_1B6CAB4B__1" pid=358592 comm="tp_fstore_op" requested_mask="l" denied_mask="l" fsuid=64045 ouid=64045 target="/srv/ceph/bcache-sdg/current/1.4b_head/DIR_B/gnocchi\u0fbe65eb-a029-4e2f-9885-46524f1cd91b\u1517400000.0\usum\u300.0\uv3__head_1B6CAB4B__1"
syslog:Feb 9 10:55:36 ucs-5a-block-3 kernel: [714046.268774] audit: type=1400 audit(1518173736.395:34388): apparmor="ALLOWED" operation="link" profile="/usr/bin/ceph-osd" name="/srv/ceph/bcache-sdg/current/1.4b_head/DIR_B/DIR_4/gnocchi\u10356080-cb66-4c0f-9e58-30bc28467936\u1517400000.0\umax\u300.0\uv3__head_8DE6B14B__1" pid=358592 comm="tp_fstore_op" requested_mask="l" denied_mask="l" fsuid=64045 ouid=64045 target="/srv/ceph/bcache-sdg/current/1.4b_head/DIR_B/gnocchi\u10356080-cb66-4c0f-9e58-30bc28467936\u1517400000.0\umax\u300.0\uv3__head_8DE6B14B__1"
syslog:Feb 9 10:55:36 ucs-5a-block-3 kernel: [714046.268811] audit: type=1400 audit(1518173736.395:34389): apparmor="ALLOWED" operation="link" profile="/usr/bin/ceph-osd" name="/srv/ceph/bcache-sdg/current/1.4b_head/DIR_B/DIR_4/gnocchi\u1065bcf4-2961-41f5-bf8f-8aeeb67065a1\unone\uv3__head_4788C34B__1" pid=358592 comm="tp_fstore_op" requested_mask="l" denied_mask="l" fsuid=64045 ouid=64045 target="/srv/ceph/bcache-sdg/current/1.4b_head/DIR_B/gnocchi\u1065bcf4-2961-41f5-bf8f-8aeeb67065a1\unone\uv3__head_4788C34B__1"
syslog:Feb 9 10:55:36 ucs-5a-block-3 kernel: [714046.268847] audit: type=1400 audit(1518173736.395:34390): apparmor="ALLOWED" operation="link" profile="/usr/bin/ceph-osd" name="/srv/ceph/bcache-sdg/current/1.4b_head/DIR_B/DIR_4/gnocchi\u151b1ac5-deed-4124-af1f-23853e46cbd7\u1517400000.0\usum\u300.0\uv3__head_C33E234B__1" pid=358592 comm="tp_fstore_op" requested_mask="l" denied_mask="l" fsuid=64045 ouid=64045 target="/srv/ceph/bcache-sdg/current/1.4b_head/DIR_B/gnocchi\u151b1ac5-deed-4124-af1f-23853e46cbd7\u1517400000.0\usum\u300.0\uv3__head_C33E234B__1"
(for clarity 'l' is permissions to hard link)