[09/20] Document API of libfsverity

Message ID	20200424205504.2586682-10-Jes.Sorensen@gmail.com (mailing list archive)
State	Superseded
Headers	show Return-Path: <SRS0=ZedV=6I=vger.kernel.org=linux-fscrypt-owner@kernel.org> From: Jes Sorensen <jes.sorensen@gmail.com> To: linux-fscrypt@vger.kernel.org Cc: ebiggers@google.com, kernel-team@fb.com, jsorensen@fb.com Subject: [PATCH 09/20] Document API of libfsverity Date: Fri, 24 Apr 2020 16:54:53 -0400 Message-Id: <20200424205504.2586682-10-Jes.Sorensen@gmail.com> In-Reply-To: <20200424205504.2586682-1-Jes.Sorensen@gmail.com> References: <20200424205504.2586682-1-Jes.Sorensen@gmail.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Sender: linux-fscrypt-owner@vger.kernel.org Precedence: bulk
Series	Split fsverity-utils into a shared library \| expand [v4,00/20] Split fsverity-utils into a shared library [01/20] Build basic shared library framework [02/20] Change compute_file_measurement() to take a file descriptor as argument [03/20] Move fsverity_descriptor definition to libfsverity.h [04/20] Move hash algorithm code to shared library [05/20] Create libfsverity_compute_digest() and adapt cmd_sign to use it [06/20] Introduce libfsverity_sign_digest() [07/20] Validate input arguments to libfsverity_compute_digest() [08/20] Validate input parameters for libfsverity_sign_digest() [09/20] Document API of libfsverity [10/20] Change libfsverity_compute_digest() to take a read function [11/20] Make full_{read,write}() return proper error codes instead of bool [12/20] libfsverity: Remove dependencies on util.c [13/20] Update Makefile to install libfsverity and fsverity.h [14/20] Change libfsverity_find_hash_alg_by_name() to return the alg number [15/20] Make libfsverity_find_hash_alg_by_name() private to the shared library [16/20] libfsverity_sign_digest() use ARRAY_SIZE() [17/20] fsverity_cmd_sign() use sizeof() input argument instead of struct [18/20] fsverity_cmd_sign() don't exit on error without closing file descriptor [19/20] Improve documentation of libfsverity.h API [20/20] Fixup Makefile

Message ID

20200424205504.2586682-10-Jes.Sorensen@gmail.com (mailing list archive)

State

Superseded

Headers

From: Jes Sorensen <jes.sorensen@gmail.com>
To: linux-fscrypt@vger.kernel.org
Cc: ebiggers@google.com, kernel-team@fb.com, jsorensen@fb.com
Subject: [PATCH 09/20] Document API of libfsverity
Date: Fri, 24 Apr 2020 16:54:53 -0400
Message-Id: <20200424205504.2586682-10-Jes.Sorensen@gmail.com>
In-Reply-To: <20200424205504.2586682-1-Jes.Sorensen@gmail.com>
References: <20200424205504.2586682-1-Jes.Sorensen@gmail.com>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Sender: linux-fscrypt-owner@vger.kernel.org
Precedence: bulk

Series

Split fsverity-utils into a shared library | expand

Commit Message

Jes Sorensen April 24, 2020, 8:54 p.m. UTC

From: Jes Sorensen <jsorensen@fb.com>

Signed-off-by: Jes Sorensen <jsorensen@fb.com>
---
 libfsverity.h | 45 +++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 45 insertions(+)

diff --git a/libfsverity.h b/libfsverity.h
index a2abdb3..f6c4b13 100644
--- a/libfsverity.h
+++ b/libfsverity.h
@@ -64,18 +64,63 @@  struct fsverity_hash_alg {
 	struct hash_ctx *(*create_ctx)(const struct fsverity_hash_alg *alg);
 };
 
+/*
+ * libfsverity_compute_digest - Compute digest of a file
+ * @fd: open file descriptor of file to compute digest for
+ * @params: struct libfsverity_merkle_tree_params specifying hash algorithm,
+ *	    block size, version, and optional salt parameters.
+ *	    reserved parameters must be zero.
+ * @digest_ret: Pointer to pointer for computed digest
+ *
+ * Returns:
+ * * 0 for success, -EINVAL for invalid input arguments, -ENOMEM if failed
+ *   to allocate memory, -EBADF if fd is invalid, and -EAGAIN if root hash
+ *   fails to compute.
+ * * digest_ret returns a pointer to the digest on success.
+ */
 int
 libfsverity_compute_digest(int fd,
 			   const struct libfsverity_merkle_tree_params *params,
 			   struct libfsverity_digest **digest_ret);
 
+/*
+ * libfsverity_sign_digest - Sign previously computed digest of a file
+ * @digest: pointer to previously computed digest
+ * @sig_params: struct libfsverity_signature_params providing filenames of
+ *          the keyfile and certificate file. Reserved parameters must be zero.
+ * @sig_ret: Pointer to pointer for signed digest
+ * @sig_size_ret: Pointer to size of signed return digest
+ *
+ * Returns:
+ * * 0 for success, -EINVAL for invalid input arguments, -EAGAIN if key or
+ *   certificate files fail to read, or if signing the digest fails.
+ * * sig_ret returns a pointer to the signed digest on success.
+ * * sig_size_ret returns the size of the signed digest on success.
+ */
 int
 libfsverity_sign_digest(const struct libfsverity_digest *digest,
 			const struct libfsverity_signature_params *sig_params,
 			uint8_t **sig_ret, size_t *sig_size_ret);
 
+/*
+ * libfsverity_find_hash_alg_by_name - Find hash algorithm by name
+ * @name: Pointer to name of hash algorithm
+ *
+ * Returns:
+ * struct fsverity_hash_alg success
+ * NULL on error
+ */
 const struct fsverity_hash_alg *
 libfsverity_find_hash_alg_by_name(const char *name);
+
+/*
+ * libfsverity_find_hash_alg_by_num - Find hash algorithm by number
+ * @name: Number of hash algorithm
+ *
+ * Returns:
+ * struct fsverity_hash_alg success
+ * NULL on error
+ */
 const struct fsverity_hash_alg *
 libfsverity_find_hash_alg_by_num(unsigned int num);

[09/20] Document API of libfsverity

Commit Message

Patch