crypto: doc - RNG API documentation

The API function calls exported by the kernel crypto API for RNGs to be used by consumers are documented. Signed-off-by: Stephan Mueller <smueller@chronox.de> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
author: Stephan Mueller <smueller@chronox.de> 2014-11-11 23:25:31 -0500
committer: Herbert Xu <herbert@gondor.apana.org.au> 2014-11-13 09:31:38 -0500
commit: aa1b6fbcbeaca21038db3e7a98d739786ae93511 (patch)
tree: c2310c484350b19604440987868afb410261b80a /include/crypto
parent: e63b673f601dda77c668e6fd5240425b5331ec7f (diff)
1 files changed, 80 insertions, 0 deletions
diff --git a/include/crypto/rng.h b/include/crypto/rng.h
index c93f9b917925..a16fb10142bf 100644
--- a/include/crypto/rng.h
+++ b/include/crypto/rng.h
@@ -20,11 +20,38 @@ extern struct crypto_rng *crypto_default_rng;
 int crypto_get_default_rng(void);
 void crypto_put_default_rng(void);
+/**
+ * DOC: Random number generator API
+ *
+ * The random number generator API is used with the ciphers of type
+ * CRYPTO_ALG_TYPE_RNG (listed as type "rng" in /proc/crypto)
+ */
 static inline struct crypto_rng *__crypto_rng_cast(struct crypto_tfm *tfm)
 {
        return (struct crypto_rng *)tfm;
 }
+/**
+ * crypto_alloc_rng() -- allocate RNG handle
+ * @alg_name: is the cra_name / name or cra_driver_name / driver name of the
+ *            message digest cipher
+ * @type: specifies the type of the cipher
+ * @mask: specifies the mask for the cipher
+ *
+ * Allocate a cipher handle for a random number generator. The returned struct
+ * crypto_rng is the cipher handle that is required for any subsequent
+ * API invocation for that random number generator.
+ *
+ * For all random number generators, this call creates a new private copy of
+ * the random number generator that does not share a state with other
+ * instances. The only exception is the "krng" random number generator which
+ * is a kernel crypto API use case for the get_random_bytes() function of the
+ * /dev/random driver.
+ *
+ * Return: allocated cipher handle in case of success; IS_ERR() is true in case
+ *         of an error, PTR_ERR() returns the error code.
+ */
 static inline struct crypto_rng *crypto_alloc_rng(const char *alg_name,
                                                  u32 type, u32 mask)
 {
@@ -40,6 +67,14 @@ static inline struct crypto_tfm *crypto_rng_tfm(struct crypto_rng *tfm)
        return &tfm->base;
 }
+/**
+ * crypto_rng_alg - obtain name of RNG
+ * @tfm: cipher handle
+ *
+ * Return the generic name (cra_name) of the initialized random number generator
+ *
+ * Return: generic name string
+ */
 static inline struct rng_alg *crypto_rng_alg(struct crypto_rng *tfm)
 {
        return &crypto_rng_tfm(tfm)->__crt_alg->cra_rng;
@@ -50,23 +85,68 @@ static inline struct rng_tfm *crypto_rng_crt(struct crypto_rng *tfm)
        return &crypto_rng_tfm(tfm)->crt_rng;
 }
+/**
+ * crypto_free_rng() - zeroize and free RNG handle
+ * @tfm: cipher handle to be freed
+ */
 static inline void crypto_free_rng(struct crypto_rng *tfm)
 {
        crypto_free_tfm(crypto_rng_tfm(tfm));
 }
+/**
+ * crypto_rng_get_bytes() - get random number
+ * @tfm: cipher handle
+ * @rdata: output buffer holding the random numbers
+ * @dlen: length of the output buffer
+ *
+ * This function fills the caller-allocated buffer with random numbers using the
+ * random number generator referenced by the cipher handle.
+ *
+ * Return: > 0 function was successful and returns the number of generated
+ *         bytes; < 0 if an error occurred
+ */
 static inline int crypto_rng_get_bytes(struct crypto_rng *tfm,
                                       u8 *rdata, unsigned int dlen)
 {
        return crypto_rng_crt(tfm)->rng_gen_random(tfm, rdata, dlen);
 }
+/**
+ * crypto_rng_reset() - re-initialize the RNG
+ * @tfm: cipher handle
+ * @seed: seed input data
+ * @slen: length of the seed input data
+ *
+ * The reset function completely re-initializes the random number generator
+ * referenced by the cipher handle by clearing the current state. The new state
+ * is initialized with the caller provided seed or automatically, depending
+ * on the random number generator type (the ANSI X9.31 RNG requires
+ * caller-provided seed, the SP800-90A DRBGs perform an automatic seeding).
+ * The seed is provided as a parameter to this function call. The provided seed
+ * should have the length of the seed size defined for the random number
+ * generator as defined by crypto_rng_seedsize.
+ *
+ * Return: 0 if the setting of the key was successful; < 0 if an error occurred
+ */
 static inline int crypto_rng_reset(struct crypto_rng *tfm,
                                   u8 *seed, unsigned int slen)
 {
        return crypto_rng_crt(tfm)->rng_reset(tfm, seed, slen);
 }
+/**
+ * crypto_rng_seedsize() - obtain seed size of RNG
+ * @tfm: cipher handle
+ *
+ * The function returns the seed size for the random number generator
+ * referenced by the cipher handle. This value may be zero if the random
+ * number generator does not implement or require a reseeding. For example,
+ * the SP800-90A DRBGs implement an automated reseeding after reaching a
+ * pre-defined threshold.
+ *
+ * Return: seed size for the random number generator
+ */
 static inline int crypto_rng_seedsize(struct crypto_rng *tfm)
 {
        return crypto_rng_alg(tfm)->seedsize;
author	Stephan Mueller <smueller@chronox.de>	2014-11-11 23:25:31 -0500
committer	Herbert Xu <herbert@gondor.apana.org.au>	2014-11-13 09:31:38 -0500
commit	aa1b6fbcbeaca21038db3e7a98d739786ae93511 (patch)
tree	c2310c484350b19604440987868afb410261b80a /include/crypto
parent	e63b673f601dda77c668e6fd5240425b5331ec7f (diff)

diff --git a/include/crypto/rng.h b/include/crypto/rng.h index c93f9b917925..a16fb10142bf 100644 --- a/include/crypto/rng.h +++ b/include/crypto/rng.h
@@ -20,11 +20,38 @@ extern struct crypto_rng *crypto_default_rng;
20	int crypto_get_default_rng(void);	20	int crypto_get_default_rng(void);
21	void crypto_put_default_rng(void);	21	void crypto_put_default_rng(void);
22		22
		23	/**
		24	* DOC: Random number generator API
		25	*
		26	* The random number generator API is used with the ciphers of type
		27	* CRYPTO_ALG_TYPE_RNG (listed as type "rng" in /proc/crypto)
		28	*/
		29
23	static inline struct crypto_rng __crypto_rng_cast(struct crypto_tfm tfm)	30	static inline struct crypto_rng __crypto_rng_cast(struct crypto_tfm tfm)
24	{	31	{
25	return (struct crypto_rng *)tfm;	32	return (struct crypto_rng *)tfm;
26	}	33	}
27		34
		35	/**
		36	* crypto_alloc_rng() -- allocate RNG handle
		37	* @alg_name: is the cra_name / name or cra_driver_name / driver name of the
		38	* message digest cipher
		39	* @type: specifies the type of the cipher
		40	* @mask: specifies the mask for the cipher
		41	*
		42	* Allocate a cipher handle for a random number generator. The returned struct
		43	* crypto_rng is the cipher handle that is required for any subsequent
		44	* API invocation for that random number generator.
		45	*
		46	* For all random number generators, this call creates a new private copy of
		47	* the random number generator that does not share a state with other
		48	* instances. The only exception is the "krng" random number generator which
		49	* is a kernel crypto API use case for the get_random_bytes() function of the
		50	* /dev/random driver.
		51	*
		52	* Return: allocated cipher handle in case of success; IS_ERR() is true in case
		53	* of an error, PTR_ERR() returns the error code.
		54	*/
28	static inline struct crypto_rng crypto_alloc_rng(const char alg_name,	55	static inline struct crypto_rng crypto_alloc_rng(const char alg_name,
29	u32 type, u32 mask)	56	u32 type, u32 mask)
30	{	57	{
@@ -40,6 +67,14 @@ static inline struct crypto_tfm crypto_rng_tfm(struct crypto_rng tfm)
40	return &tfm->base;	67	return &tfm->base;
41	}	68	}
42		69
		70	/**
		71	* crypto_rng_alg - obtain name of RNG
		72	* @tfm: cipher handle
		73	*
		74	* Return the generic name (cra_name) of the initialized random number generator
		75	*
		76	* Return: generic name string
		77	*/
43	static inline struct rng_alg crypto_rng_alg(struct crypto_rng tfm)	78	static inline struct rng_alg crypto_rng_alg(struct crypto_rng tfm)
44	{	79	{
45	return &crypto_rng_tfm(tfm)->__crt_alg->cra_rng;	80	return &crypto_rng_tfm(tfm)->__crt_alg->cra_rng;
@@ -50,23 +85,68 @@ static inline struct rng_tfm crypto_rng_crt(struct crypto_rng tfm)
50	return &crypto_rng_tfm(tfm)->crt_rng;	85	return &crypto_rng_tfm(tfm)->crt_rng;
51	}	86	}
52		87
		88	/**
		89	* crypto_free_rng() - zeroize and free RNG handle
		90	* @tfm: cipher handle to be freed
		91	*/
53	static inline void crypto_free_rng(struct crypto_rng *tfm)	92	static inline void crypto_free_rng(struct crypto_rng *tfm)
54	{	93	{
55	crypto_free_tfm(crypto_rng_tfm(tfm));	94	crypto_free_tfm(crypto_rng_tfm(tfm));
56	}	95	}
57		96
		97	/**
		98	* crypto_rng_get_bytes() - get random number
		99	* @tfm: cipher handle
		100	* @rdata: output buffer holding the random numbers
		101	* @dlen: length of the output buffer
		102	*
		103	* This function fills the caller-allocated buffer with random numbers using the
		104	* random number generator referenced by the cipher handle.
		105	*
		106	* Return: > 0 function was successful and returns the number of generated
		107	* bytes; < 0 if an error occurred
		108	*/
58	static inline int crypto_rng_get_bytes(struct crypto_rng *tfm,	109	static inline int crypto_rng_get_bytes(struct crypto_rng *tfm,
59	u8 *rdata, unsigned int dlen)	110	u8 *rdata, unsigned int dlen)
60	{	111	{
61	return crypto_rng_crt(tfm)->rng_gen_random(tfm, rdata, dlen);	112	return crypto_rng_crt(tfm)->rng_gen_random(tfm, rdata, dlen);
62	}	113	}
63		114
		115	/**
		116	* crypto_rng_reset() - re-initialize the RNG
		117	* @tfm: cipher handle
		118	* @seed: seed input data
		119	* @slen: length of the seed input data
		120	*
		121	* The reset function completely re-initializes the random number generator
		122	* referenced by the cipher handle by clearing the current state. The new state
		123	* is initialized with the caller provided seed or automatically, depending
		124	* on the random number generator type (the ANSI X9.31 RNG requires
		125	* caller-provided seed, the SP800-90A DRBGs perform an automatic seeding).
		126	* The seed is provided as a parameter to this function call. The provided seed
		127	* should have the length of the seed size defined for the random number
		128	* generator as defined by crypto_rng_seedsize.
		129	*
		130	* Return: 0 if the setting of the key was successful; < 0 if an error occurred
		131	*/
64	static inline int crypto_rng_reset(struct crypto_rng *tfm,	132	static inline int crypto_rng_reset(struct crypto_rng *tfm,
65	u8 *seed, unsigned int slen)	133	u8 *seed, unsigned int slen)
66	{	134	{
67	return crypto_rng_crt(tfm)->rng_reset(tfm, seed, slen);	135	return crypto_rng_crt(tfm)->rng_reset(tfm, seed, slen);
68	}	136	}
69		137
		138	/**
		139	* crypto_rng_seedsize() - obtain seed size of RNG
		140	* @tfm: cipher handle
		141	*
		142	* The function returns the seed size for the random number generator
		143	* referenced by the cipher handle. This value may be zero if the random
		144	* number generator does not implement or require a reseeding. For example,
		145	* the SP800-90A DRBGs implement an automated reseeding after reaching a
		146	* pre-defined threshold.
		147	*
		148	* Return: seed size for the random number generator
		149	*/
70	static inline int crypto_rng_seedsize(struct crypto_rng *tfm)	150	static inline int crypto_rng_seedsize(struct crypto_rng *tfm)
71	{	151	{
72	return crypto_rng_alg(tfm)->seedsize;	152	return crypto_rng_alg(tfm)->seedsize;