begin adding warnings to GCM mode

author: Paul Kehrer <paul.l.kehrer@gmail.com> 2013-11-29 16:24:56 -0600
committer: Paul Kehrer <paul.l.kehrer@gmail.com> 2013-11-29 17:19:46 -0600
commit: 26c8c6adcb9a6485966070418080a17cd2445bed (patch)
tree: ceec4d04f3a509494a929d773f23396a957ee152 /docs
parent: 67abc864cb64033333aa08a03fba1dd153074dfd (diff)
download: cryptography-26c8c6adcb9a6485966070418080a17cd2445bed.tar.gz
cryptography-26c8c6adcb9a6485966070418080a17cd2445bed.tar.bz2
cryptography-26c8c6adcb9a6485966070418080a17cd2445bed.zip
1 files changed, 6 insertions, 0 deletions
diff --git a/docs/hazmat/primitives/symmetric-encryption.rst b/docs/hazmat/primitives/symmetric-encryption.rst
index 70c3d2f4..a77e0e79 100644
--- a/docs/hazmat/primitives/symmetric-encryption.rst
+++ b/docs/hazmat/primitives/symmetric-encryption.rst
@@ -320,6 +320,12 @@ Modes
 
 .. class:: GCM(initialization_vector, tag=None)
 
+    .. warning::
+
+        When using this mode you MUST not use the decrypted data until every
+        byte has been decrypted. GCM provides NO guarantees of ciphertext
+        integrity until decryption is complete.
+
     GCM (Galois Counter Mode) is a mode of operation for block ciphers. It
     is an AEAD (authenticated encryption with additional data) mode. AEAD
     is a type of block cipher mode that encrypts the message as well as
author	Paul Kehrer <paul.l.kehrer@gmail.com>	2013-11-29 16:24:56 -0600
committer	Paul Kehrer <paul.l.kehrer@gmail.com>	2013-11-29 17:19:46 -0600
commit	26c8c6adcb9a6485966070418080a17cd2445bed (patch)
tree	ceec4d04f3a509494a929d773f23396a957ee152 /docs
parent	67abc864cb64033333aa08a03fba1dd153074dfd (diff)
download	cryptography-26c8c6adcb9a6485966070418080a17cd2445bed.tar.gz cryptography-26c8c6adcb9a6485966070418080a17cd2445bed.tar.bz2 cryptography-26c8c6adcb9a6485966070418080a17cd2445bed.zip