diff options
author | Paul Kehrer <paul.l.kehrer@gmail.com> | 2013-11-29 16:24:56 -0600 |
---|---|---|
committer | Paul Kehrer <paul.l.kehrer@gmail.com> | 2013-11-29 17:19:46 -0600 |
commit | 26c8c6adcb9a6485966070418080a17cd2445bed (patch) | |
tree | ceec4d04f3a509494a929d773f23396a957ee152 /docs | |
parent | 67abc864cb64033333aa08a03fba1dd153074dfd (diff) | |
download | cryptography-26c8c6adcb9a6485966070418080a17cd2445bed.tar.gz cryptography-26c8c6adcb9a6485966070418080a17cd2445bed.tar.bz2 cryptography-26c8c6adcb9a6485966070418080a17cd2445bed.zip |
begin adding warnings to GCM mode
Diffstat (limited to 'docs')
-rw-r--r-- | docs/hazmat/primitives/symmetric-encryption.rst | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/docs/hazmat/primitives/symmetric-encryption.rst b/docs/hazmat/primitives/symmetric-encryption.rst index 70c3d2f4..a77e0e79 100644 --- a/docs/hazmat/primitives/symmetric-encryption.rst +++ b/docs/hazmat/primitives/symmetric-encryption.rst @@ -320,6 +320,12 @@ Modes .. class:: GCM(initialization_vector, tag=None) + .. warning:: + + When using this mode you MUST not use the decrypted data until every + byte has been decrypted. GCM provides NO guarantees of ciphertext + integrity until decryption is complete. + GCM (Galois Counter Mode) is a mode of operation for block ciphers. It is an AEAD (authenticated encryption with additional data) mode. AEAD is a type of block cipher mode that encrypts the message as well as |