mbedtls_mpi_random: document MBEDTLS_ERR_MPI_NOT_ACCEPTABLE Note that this error has a negligible probability with a "crypto-sized" bound, but macroscopic probability with a small bound. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>

commit: 33701a62b2446f3959c64de63ed1c5f24f2ae646 [log] [tgz]
author: Gilles Peskine <Gilles.Peskine@arm.com> Tue Apr 13 21:28:38 2021 +0200
committer: Gilles Peskine <Gilles.Peskine@arm.com> Wed Jun 02 21:39:31 2021 +0200
tree: 1d227e2e078d0220f5937aeca5718b8966024861
parent: e39ee8e0a2c3d451ac38158859ca8c75acea5efe [diff] [blame]
diff --git a/include/mbedtls/bignum.h b/include/mbedtls/bignum.h
index 5c92503..f087035 100644
--- a/include/mbedtls/bignum.h
+++ b/include/mbedtls/bignum.h

@@ -896,6 +896,11 @@
  * \return         #MBEDTLS_ERR_MPI_ALLOC_FAILED if a memory allocation failed.
  * \return         #MBEDTLS_ERR_MPI_BAD_INPUT_DATA if \p min or \p N is invalid
  *                 or if they are incompatible.
+ * \return         #MBEDTLS_ERR_MPI_NOT_ACCEPTABLE if the implementation was
+ *                 unable to find a suitable value within a limited number
+ *                 of attempts. This has a negligible probability if \p N
+ *                 is significantly larger than \p min, which is the case
+ *                 for all usual cryptographic applications.
  * \return         Another negative error code on failure.
  */
 int mbedtls_mpi_random( mbedtls_mpi *X,
commit	33701a62b2446f3959c64de63ed1c5f24f2ae646	[log] [tgz]
author	Gilles Peskine <Gilles.Peskine@arm.com>	Tue Apr 13 21:28:38 2021 +0200
committer	Gilles Peskine <Gilles.Peskine@arm.com>	Wed Jun 02 21:39:31 2021 +0200
tree	1d227e2e078d0220f5937aeca5718b8966024861
parent	e39ee8e0a2c3d451ac38158859ca8c75acea5efe [diff] [blame]