Add warning about untrusted private keys

author: Alex Stapleton <alexs@prol.etari.at> 2014-02-07 08:15:39 +0000
committer: Alex Stapleton <alexs@prol.etari.at> 2014-02-07 17:11:07 +0000
commit: be5da2d7e3a22904f93b56ab54df06d975588d8e (patch)
tree: a099eecd425922f121dd394a9492f60484f6ec10
parent: a3b85506a5ca19d4469679e2cbc665f423066baf (diff)
download: cryptography-be5da2d7e3a22904f93b56ab54df06d975588d8e.tar.gz
cryptography-be5da2d7e3a22904f93b56ab54df06d975588d8e.tar.bz2
cryptography-be5da2d7e3a22904f93b56ab54df06d975588d8e.zip
1 files changed, 7 insertions, 0 deletions
diff --git a/docs/hazmat/primitives/rsa.rst b/docs/hazmat/primitives/rsa.rst
index 3c509cf9..d62aa101 100644
--- a/docs/hazmat/primitives/rsa.rst
+++ b/docs/hazmat/primitives/rsa.rst
@@ -16,6 +16,13 @@ RSA
     Normally you do not need to directly construct private keys because you'll
     be loading them from a file or generating them automatically.
 
+    .. warning::
+        This method only checks a limited set of properties of its arguments.
+        Using an RSA that you do not trust or with incorrect parameters may
+        lead to insecure operation, crashes, and other undefined behavior. We
+        recommend that you only ever load private keys that were generated with
+        software you trust.
+
     This class conforms to the
     :class:`~cryptography.hazmat.primitives.interfaces.RSAPrivateKey`
     interface.
author	Alex Stapleton <alexs@prol.etari.at>	2014-02-07 08:15:39 +0000
committer	Alex Stapleton <alexs@prol.etari.at>	2014-02-07 17:11:07 +0000
commit	be5da2d7e3a22904f93b56ab54df06d975588d8e (patch)
tree	a099eecd425922f121dd394a9492f60484f6ec10
parent	a3b85506a5ca19d4469679e2cbc665f423066baf (diff)
download	cryptography-be5da2d7e3a22904f93b56ab54df06d975588d8e.tar.gz cryptography-be5da2d7e3a22904f93b56ab54df06d975588d8e.tar.bz2 cryptography-be5da2d7e3a22904f93b56ab54df06d975588d8e.zip