summaryrefslogtreecommitdiff
path: root/Documentation/security
diff options
context:
space:
mode:
authorBagas Sanjaya <bagasdotme@gmail.com>2022-04-17 10:50:57 +0300
committerJason A. Donenfeld <Jason@zx2c4.com>2022-04-25 18:26:40 +0300
commitec862155c3ccbde59644336eec58468e7d07519b (patch)
tree303023ca740780bb07f915ca1a5c29408e8a1b4c /Documentation/security
parent8717627d6ac53251ee012c3c7aca392f29f38a42 (diff)
downloadlinux-ec862155c3ccbde59644336eec58468e7d07519b.tar.xz
Documentation: siphash: convert danger note to warning for HalfSipHash
Render danger paragraph into warning block for emphasization. Cc: Jonathan Corbet <corbet@lwn.net> Cc: Eric Biggers <ebiggers@google.com> Cc: Herbert Xu <herbert@gondor.apana.org.au> Cc: Mauro Carvalho Chehab <mchehab+huawei@kernel.org> Cc: linux-kernel@vger.kernel.org Signed-off-by: Bagas Sanjaya <bagasdotme@gmail.com> Signed-off-by: Jonathan Corbet <corbet@lwn.net> Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
Diffstat (limited to 'Documentation/security')
-rw-r--r--Documentation/security/siphash.rst12
1 files changed, 6 insertions, 6 deletions
diff --git a/Documentation/security/siphash.rst b/Documentation/security/siphash.rst
index bd9363025fcb..42794a7e052f 100644
--- a/Documentation/security/siphash.rst
+++ b/Documentation/security/siphash.rst
@@ -121,12 +121,12 @@ even scarier, uses an easily brute-forcable 64-bit key (with a 32-bit output)
instead of SipHash's 128-bit key. However, this may appeal to some
high-performance `jhash` users.
-Danger!
-
-Do not ever use HalfSipHash except for as a hashtable key function, and only
-then when you can be absolutely certain that the outputs will never be
-transmitted out of the kernel. This is only remotely useful over `jhash` as a
-means of mitigating hashtable flooding denial of service attacks.
+.. warning::
+ Do not ever use HalfSipHash except for as a hashtable key function, and
+ only then when you can be absolutely certain that the outputs will never
+ be transmitted out of the kernel. This is only remotely useful over
+ `jhash` as a means of mitigating hashtable flooding denial of service
+ attacks.
Generating a HalfSipHash key
============================