From 1976600876a3f0724b52c61d96998560dc4c0acb Mon Sep 17 00:00:00 2001
From: Daiki Ueno <ueno@gnu.org>
Date: Mon, 25 May 2020 15:33:49 +0200
Subject: gnutls_load_file: document limitation regarding partial failure

Signed-off-by: Daiki Ueno <ueno@gnu.org>
---
 lib/file.c | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/lib/file.c b/lib/file.c
index 03aa265c38..ed044ff842 100644
--- a/lib/file.c
+++ b/lib/file.c
@@ -46,6 +46,10 @@ int _gnutls_file_exists(const char *file)
  * zero terminated but the terminating null is not included in length.
  * The returned data are allocated using gnutls_malloc().
  *
+ * Note that this function is not designed for reading sensitive materials,
+ * such as private keys, on practical applications. When the reading fails
+ * in the middle, the partially loaded content might remain on memory.
+ *
  * Returns: On success, %GNUTLS_E_SUCCESS (0) is returned, otherwise
  *   an error code is returned.
  *
-- 
cgit v1.2.1