From 36f375572203e017bdfa0d59b4ef9689c0a00ccd Mon Sep 17 00:00:00 2001
From: Nikhil Komawar <nik.komawar@gmail.com>
Date: Wed, 1 Jun 2016 00:05:55 -0400
Subject: [PATCH] Add release notes for newton-1

This commit adds release notes for newton-1. They will help build the
release notes for Newton overall.

Change-Id: If0b8b731c2a1a1c41fc612d506c350073d832efa
---
 .../newton-1-release-065334d464f78fc5.yaml    | 35 +++++++++++++++++++
 1 file changed, 35 insertions(+)
 create mode 100644 releasenotes/notes/newton-1-release-065334d464f78fc5.yaml

diff --git a/releasenotes/notes/newton-1-release-065334d464f78fc5.yaml b/releasenotes/notes/newton-1-release-065334d464f78fc5.yaml
new file mode 100644
index 0000000000..5c764c1295
--- /dev/null
+++ b/releasenotes/notes/newton-1-release-065334d464f78fc5.yaml
@@ -0,0 +1,35 @@
+---
+prelude: >
+    Several in-tree documentation updates exist in newton-1.
+    An important bug 1570789 that will handle 4 byte unicode
+    chars for metadefs APIs is fixed which will prevent 500s
+    on the same. Deprecated sign-the-hash approach for image
+    signing and old run_tests and related scripts have been
+    removed.
+upgrade:
+  - The image signature verification feature has been updated
+    to follow the "sign-the-data" approach, which uses a
+    signature of the image data directly. The prior deprecated
+    "sign-the-hash" approach, which uses a signature of an MD5
+    hash of the image data, has been removed.
+security:
+  - The initial implementation of the image signature
+    verification feature in Glance was insecure, because it
+    relied on an MD5 hash of the image data. More details can
+    be found in bug 1516031. This "sign-the-hash" approach was
+    deprecated in Mitaka, and removed in newton-1.
+    Related CVE-2015-8234.
+fixes:
+  - |
+    Please find below a list of some other important bugs along with
+    their descriptions that have been fixed in newton-1.
+
+    * bug 1580848: There's no exception when import task is created
+      without properties
+    * bug 1585584: Glare v0.1 is unable to create public artifact draft
+    * bug 1582304: Allow tests to run when http proxy is set
+    * bug 1570789: various md-* create and update api's
+      return 500 error if 4 bytes unicode characters is passed
+    * bug 1568894: glance_store opts missing in glance-scrubber.conf
+      and glance-cache.conf sample files
+    * bug 1568723: secure_proxy_ssl_header not in sample config files