Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / external / python / cryptography / 2918db0b72f841ace8561bc0f85d8d4c190bc169^1..2918db0b72f841ace8561bc0f85d8d4c190bc169 / .
commit2918db0b72f841ace8561bc0f85d8d4c190bc169[log] [tgz]
authorPaul Kehrer <paul.l.kehrer@gmail.com>Wed May 20 13:21:30 2015 -0700
committerPaul Kehrer <paul.l.kehrer@gmail.com>Wed May 20 13:21:30 2015 -0700
tree765696acc84a04d5f1134bb34857d32311715f2d
parentf2646557cbe6ee7dc8c338ad60b188a8ab1978ab [diff]
parent0bef7722f4d394a7fa67f724d9f13eca2eaf7d41 [diff]
Merge pull request #1985 from eeshangarg/documentation-1971

Docs for CTR and GCM should say that IV/nonce must be unique
diff --git a/docs/glossary.rst b/docs/glossary.rst
index dc6f3eb..202fa2d 100644
--- a/docs/glossary.rst
+++ b/docs/glossary.rst

@@ -64,3 +64,11 @@
     text
         This type corresponds to ``unicode`` on Python 2 and ``str`` on Python
         3.  This is equivalent to ``six.text_type``.
+
+    nonce
+        A nonce is a **n**\ umber used **once**. Nonces are used in many
+        cryptographic protocols. Generally, a nonce does not have to be secret
+        or unpredictable, but it must be unique. A nonce is often a random
+        or pseudo-random number (see :doc:`Random number generation
+        </random-numbers>`). Since a nonce does not have to be unpredictable,
+        it can also take a form of a counter.

diff --git a/docs/hazmat/primitives/symmetric-encryption.rst b/docs/hazmat/primitives/symmetric-encryption.rst
index 4748689..309c6fd 100644
--- a/docs/hazmat/primitives/symmetric-encryption.rst
+++ b/docs/hazmat/primitives/symmetric-encryption.rst

@@ -240,7 +240,7 @@
 
     **This mode does not require padding.**
 
-    :param bytes nonce: Should be :doc:`random bytes </random-numbers>`. It is
+    :param bytes nonce: Should be unique, a :term:`nonce`. It is
         critical to never reuse a ``nonce`` with a given key.  Any reuse of a
         nonce with the same key compromises the security of every message
         encrypted with that key. Must be the same number of bytes as the
@@ -305,12 +305,11 @@
 
     **This mode does not require padding.**
 
-    :param bytes initialization_vector: Must be :doc:`random bytes
-        </random-numbers>`. They do not need to be kept secret and they can be
-        included in a transmitted message. NIST `recommends a 96-bit IV
-        length`_ for performance critical situations but it can be up to
-        2\ :sup:`64` - 1 bits. Do not reuse an ``initialization_vector`` with a
-        given ``key``.
+    :param bytes initialization_vector: Must be unique, a :term:`nonce`.
+        They do not need to be kept secret and they can be included in a
+        transmitted message. NIST `recommends a 96-bit IV length`_ for
+        performance critical situations but it can be up to 2\ :sup:`64` - 1
+        bits. Do not reuse an ``initialization_vector`` with a given ``key``.
 
     .. note::
 

diff --git a/docs/spelling_wordlist.txt b/docs/spelling_wordlist.txt
index badb500..8151013 100644
--- a/docs/spelling_wordlist.txt
+++ b/docs/spelling_wordlist.txt

@@ -40,6 +40,7 @@
 naïve
 namespace
 namespaces
+Nonces
 online
 paddings
 pickleable