Document the maximum seed size as well as the minimum

This commit is contained in:
Gilles Peskine 2018-11-16 11:02:49 +01:00 committed by avolinski
parent 0338ded2f4
commit ee2ffd311b

View File

@ -50,7 +50,8 @@ void mbedtls_psa_crypto_free( void );
#if ( defined(MBEDTLS_ENTROPY_NV_SEED) && defined(MBEDTLS_PSA_HAS_ITS_IO) ) #if ( defined(MBEDTLS_ENTROPY_NV_SEED) && defined(MBEDTLS_PSA_HAS_ITS_IO) )
/** /**
* \brief Inject an initial entropy seed for the random generator. * \brief Inject an initial entropy seed for the random generator into
* secure storage.
* *
* This function injects data to be used as a seed for the random generator * This function injects data to be used as a seed for the random generator
* used by the PSA Crypto implementation. On devices that lack a trusted * used by the PSA Crypto implementation. On devices that lack a trusted
@ -67,8 +68,10 @@ void mbedtls_psa_crypto_free( void );
* When this function returns successfully, it populates a file in * When this function returns successfully, it populates a file in
* persistent storage. Once the file has been created, this function * persistent storage. Once the file has been created, this function
* can no longer succeed. * can no longer succeed.
* If any error occurs, the file is not created, and you may call this *
* function again after correcting the reason for the error. * If any error occurs, this function does not change the system state.
* You can call this function again after correcting the reason for the
* error if possible.
* *
* \warning This function **can** fail! Callers MUST check the return status. * \warning This function **can** fail! Callers MUST check the return status.
* *
@ -88,8 +91,9 @@ void mbedtls_psa_crypto_free( void );
* *
* \param seed[in] Buffer containing the seed value to inject. * \param seed[in] Buffer containing the seed value to inject.
* \param seed_size Size of the \p seed buffer. * \param seed_size Size of the \p seed buffer.
* The minimum size of the seed is * The size of the seed must be
* #MBEDTLS_ENTROPY_MIN_PLATFORM. * at least #MBEDTLS_ENTROPY_MIN_PLATFORM bytes
* and at most #MBEDTLS_ENTROPY_MAX_SEED_SIZE bytes.
* *
* \retval #PSA_SUCCESS * \retval #PSA_SUCCESS
* The seed value was injected successfully. The random generator * The seed value was injected successfully. The random generator
@ -97,7 +101,7 @@ void mbedtls_psa_crypto_free( void );
* You may now call psa_crypto_init() and use the PSA Crypto * You may now call psa_crypto_init() and use the PSA Crypto
* implementation. * implementation.
* \retval #PSA_ERROR_INVALID_ARGUMENT * \retval #PSA_ERROR_INVALID_ARGUMENT
* \p seed_size is not large enough. * \p seed_size is out of range.
* \retval #PSA_ERROR_STORAGE_FAILURE * \retval #PSA_ERROR_STORAGE_FAILURE
* \retval `PSA_ITS_ERROR_XXX` * \retval `PSA_ITS_ERROR_XXX`
* There was a failure reading or writing from storage. * There was a failure reading or writing from storage.