Add disclaimer about raw key interface

resilar · Dec 20, 2018 · 957fbb8 · 957fbb8
1 parent fa222e1
commit 957fbb8
Showing 1 changed file with 18 additions and 13 deletions.
diff --git a/README.md b/README.md
@@ -135,19 +135,24 @@ In addition, there are `sqlite3_key_v2()` and `sqlite3_rekey_v2()` functions
 that accept the target database name as the second parameter. By default, the
 main database is used.
 
-The above functions pass the provided key string (password) to a key derivation
-algorithm (i.e., PBKDF2-HMAC-SHA256 with a 16-byte salt and 12345 iterations).
-Optionally, the user can bypass the key derivation by specifying a raw key in
-format `raw:K` where `K` is a 32-byte binary string or a 64-digit hex-encoded
-string. This is useful in programs that use sqleet as a library and want to
-handle key derivation by themselves. Additionally, the raw key string can also
-be followed by a 16-byte (or 32-hexdigit) salt which is stored in the beginning
-of the database file (otherwise a random salt is generated). **Warning:** In
-any way erroneous raw key (e.g., unsupported length or invalid hex-encoding)
-results in the key being handled as a normal key including the `raw:` prefix.
-Moreover, specifying a salt makes sense only when creating a new database or
-re-encrypting an existing database, because otherwise the specified salt is
-overridden by the salt stored in the database file.
+#### Raw keys
+
+**Disclaimer**: The current interface is experimental and likely to change in
+future versions (see issue #13 for discussion). Use at your own risk!
+
+The encryption functions pass the provided key string (password) to a key
+derivation algorithm (i.e., PBKDF2-HMAC-SHA256 with a 16-byte salt and 12345
+iterations). Optionally, the user can bypass the key derivation by specifying a
+raw key in format `raw:K` where `K` is a 32-byte binary string or a 64-digit
+hex-encoded string. This is useful in programs that use sqleet as a library and
+want to handle key derivation by themselves. Additionally, the raw key string
+can also be followed by a 16-byte (or 32-hexdigit) salt which is stored in the
+beginning of the database file (otherwise a random salt is generated).
+**Warning:** In any way erroneous raw key (e.g., unsupported length or invalid
+hex-encoding) results in the key being handled as a normal key including the
+`raw:` prefix. Moreover, specifying a salt makes sense only when creating a new
+database or re-encrypting an existing database, because otherwise the specified
+salt is overridden by the salt stored in the database file.
 
 
 Android support