doc: mention stricter caps checking in PendingReleaseNotes

author Nathan Cutler <ncutler@suse.com>

Thu, 12 Apr 2018 02:39:19 +0000 (04:39 +0200)

committer Kefu Chai <kchai@redhat.com>

Fri, 25 May 2018 14:48:17 +0000 (22:48 +0800)
author Nathan Cutler <ncutler@suse.com>
Thu, 12 Apr 2018 02:39:19 +0000 (04:39 +0200)
committer Kefu Chai <kchai@redhat.com>
Fri, 25 May 2018 14:48:17 +0000 (22:48 +0800)
diff --git a/PendingReleaseNotes b/PendingReleaseNotes

index 383ea6c1bd6a50c7b81c154324b388e2624c762c..5e1c34f3b820ba3c43beaf0adddb22295b478cfa 100644 (file)
--- a/PendingReleaseNotes
+++ b/PendingReleaseNotes
@@ -28,3 +28,7 @@
    develop. The new option client_die_on_failed_dentry_invalidate (default:
    true) may be turned off to allow the client to proceed (dangerous!).
  
+* In 10.2.10 and earlier releases, keyring caps were not checked for validity,
+  so the caps string could be anything. As of 10.2.11, caps strings are
+  validated and providing a keyring with an invalid caps string to, e.g.,
+  "ceph auth add" will result in an error.
author	Nathan Cutler <ncutler@suse.com>
	Thu, 12 Apr 2018 02:39:19 +0000 (04:39 +0200)
committer	Kefu Chai <kchai@redhat.com>
	Fri, 25 May 2018 14:48:17 +0000 (22:48 +0800)