Add documentation for AesCcm and AesGcm (#2771)

* Add documentation for AesCcm and AesGcm

* Update AesCcm.xml

* Update AesGcm.xml

* Update AesCcm.xml

* Update AesGcm.xml

* Apply suggestions from code review

Co-Authored-By: Carlos Sanchez Lopez <[email protected]>
Co-Authored-By: Ron Petrusha <[email protected]>

* Remove paramrefs from summaries.

Author: bartonjs

xml/System.Security.Cryptography/AesCcm.xml

@@ -18,7 +18,7 @@
     </Interface>
   </Interfaces>
   <Docs>
-    <summary>To be added.</summary>
+    <summary>Represents an Advanced Encryption Standard (AES) key to be used with the Counter with CBC-MAC (CCM) mode of operation.</summary>
     <remarks>To be added.</remarks>
   </Docs>
   <Members>
@@ -38,9 +38,11 @@
         <Parameter Name="key" Type="System.Byte[]" />
       </Parameters>
       <Docs>
-        <param name="key">To be added.</param>
-        <summary>To be added.</summary>
+        <param name="key">The secret key to use for this instance.</param>
+        <summary>Initializes a new instance of the <see cref="T:System.Security.Cryptography.AesCcm" /> class with a provided key.</summary>
         <remarks>To be added.</remarks>
+        <exception cref="T:System.ArgumentNullException">The <paramref name="key" /> parameter is <see langword="null" />.</exception>
+        <exception cref="T:System.Security.Cryptography.CryptographicException">The <paramref name="key" /> parameter length is other than 16, 24, or 32 bytes (128, 192, or 256 bits).</exception>
       </Docs>
     </Member>
     <Member MemberName=".ctor">
@@ -59,9 +61,10 @@
         <Parameter Name="key" Type="System.ReadOnlySpan&lt;System.Byte&gt;" />
       </Parameters>
       <Docs>
-        <param name="key">To be added.</param>
-        <summary>To be added.</summary>
+        <param name="key">The secret key to use for this instance.</param>
+        <summary>Initializes a new instance of the <see cref="T:System.Security.Cryptography.AesCcm" /> class with a provided key.</summary>
         <remarks>To be added.</remarks>
+        <exception cref="T:System.Security.Cryptography.CryptographicException">The <paramref name="key" /> parameter length is other than 16, 24, or 32 bytes (128, 192, or 256 bits).</exception>
       </Docs>
     </Member>
     <Member MemberName="Decrypt">
@@ -86,13 +89,32 @@
         <Parameter Name="associatedData" Type="System.Byte[]" />
       </Parameters>
       <Docs>
-        <param name="nonce">To be added.</param>
-        <param name="ciphertext">To be added.</param>
-        <param name="tag">To be added.</param>
-        <param name="plaintext">To be added.</param>
-        <param name="associatedData">To be added.</param>
-        <summary>To be added.</summary>
-        <remarks>To be added.</remarks>
+        <param name="nonce">The nonce associated with this message, which must match the value provided during encryption.</param>
+        <param name="ciphertext">The encrypted content to decrypt.</param>
+        <param name="tag">The authentication tag produced for this message during encryption.</param>
+        <param name="plaintext">The byte array to receive the decrypted contents.</param>
+        <param name="associatedData">Extra data associated with this message, which must match the value provided during encryption.</param>
+        <summary>Decrypts the ciphertext into the provided destination buffer if the authentication tag can be validated.</summary>
+        <remarks>
+          <format type="text/markdown"><![CDATA[
+
+## Remarks
+
+If `tag` cannot be validated (using the key, `nonce`, `ciphertext`, and `associatedData` values), then `plaintext` is cleared.
+
+          ]]></format>
+        </remarks>
+        <exception cref="T:System.ArgumentException">The <paramref name="plaintext" /> parameter and the <paramref name="ciphertext" /> do not have the same length.
+
+-or-
+
+The <paramref name="nonce"/> parameter length is not permitted by <see cref="P:System.Security.Cryptography.AesCcm.NonceByteSizes" />.
+
+-or-
+
+The <paramref name="tag"/> parameter length is not permitted by <see cref="P:System.Security.Cryptography.AesCcm.TagByteSizes" />.</exception>
+        <exception cref="T:System.ArgumentNullException">The <paramref name="nonce" />, <paramref name="ciphertext" />, <paramref name="tag" />, or <paramref name="plaintext"/> parameter is <see langword="null" />.</exception>
+        <exception cref="T:System.Security.Cryptography.CryptographicException">The tag value could not be verified, or the decryption operation otherwise failed.</exception>
       </Docs>
     </Member>
     <Member MemberName="Decrypt">
@@ -117,13 +139,31 @@
         <Parameter Name="associatedData" Type="System.ReadOnlySpan&lt;System.Byte&gt;" />
       </Parameters>
       <Docs>
-        <param name="nonce">To be added.</param>
-        <param name="ciphertext">To be added.</param>
-        <param name="tag">To be added.</param>
-        <param name="plaintext">To be added.</param>
-        <param name="associatedData">To be added.</param>
-        <summary>To be added.</summary>
-        <remarks>To be added.</remarks>
+        <param name="nonce">The nonce associated with this message, which must match the value provided during encryption.</param>
+        <param name="ciphertext">The encrypted content to decrypt.</param>
+        <param name="tag">The authentication tag produced for this message during encryption.</param>
+        <param name="plaintext">The byte span to receive the decrypted contents.</param>
+        <param name="associatedData">Extra data associated with this message, which must match the value provided during encryption.</param>
+        <summary>Decrypts the ciphertext into the provided destination buffer if the authentication tag can be validated.</summary>
+        <remarks>
+          <format type="text/markdown"><![CDATA[
+
+## Remarks
+
+If `tag` cannot be validated (using the key, `nonce`, `ciphertext`, and `associatedData` values), then `plaintext` is cleared.
+
+          ]]></format>
+        </remarks>
+        <exception cref="T:System.ArgumentException">The <paramref name="plaintext" /> parameter and the <paramref name="ciphertext" /> do not have the same length.
+
+-or-
+
+The <paramref name="nonce"/> parameter length is not permitted by <see cref="P:System.Security.Cryptography.AesCcm.NonceByteSizes" />.
+
+-or-
+
+The <paramref name="tag"/> parameter length is not permitted by <see cref="P:System.Security.Cryptography.AesCcm.TagByteSizes" />.</exception>
+        <exception cref="T:System.Security.Cryptography.CryptographicException">The tag value could not be verified, or the decryption operation otherwise failed.</exception>
       </Docs>
     </Member>
     <Member MemberName="Dispose">
@@ -146,7 +186,7 @@
       </ReturnValue>
       <Parameters />
       <Docs>
-        <summary>To be added.</summary>
+        <summary>Releases the resources used by the current instance of the <see cref="T:System.Security.Cryptography.AesCcm" /> class.</summary>
         <remarks>To be added.</remarks>
       </Docs>
     </Member>
@@ -172,13 +212,32 @@
         <Parameter Name="associatedData" Type="System.Byte[]" />
       </Parameters>
       <Docs>
-        <param name="nonce">To be added.</param>
-        <param name="plaintext">To be added.</param>
-        <param name="ciphertext">To be added.</param>
-        <param name="tag">To be added.</param>
-        <param name="associatedData">To be added.</param>
-        <summary>To be added.</summary>
-        <remarks>To be added.</remarks>
+        <param name="nonce">The nonce associated with this message, which should be a unique value for every operation with the same key.</param>
+        <param name="plaintext">The content to encrypt.</param>
+        <param name="tag">The byte array to receive the generated authentication tag.</param>
+        <param name="ciphertext">The byte array to receive the encrypted contents.</param>
+        <param name="associatedData">Extra data associated with this message, which must also be provided during decryption.</param>
+        <summary>Encrypts the plaintext into the ciphertext destination buffer and generates the authentication tag into a separate buffer.</summary>
+        <remarks>
+          <format type="text/markdown"><![CDATA[
+
+## Remarks
+
+The security guarantees of the AES-CCM algorithm mode require that the same nonce value is never used twice with the same key.
+
+          ]]></format>
+        </remarks>
+        <exception cref="T:System.ArgumentException">The <paramref name="plaintext" /> parameter and the <paramref name="ciphertext" /> do not have the same length.
+
+-or-
+
+The <paramref name="nonce"/> parameter length is not permitted by <see cref="P:System.Security.Cryptography.AesCcm.NonceByteSizes" />.
+
+-or-
+
+The <paramref name="tag"/> parameter length is not permitted by <see cref="P:System.Security.Cryptography.AesCcm.TagByteSizes" />.</exception>
+        <exception cref="T:System.ArgumentNullException">The <paramref name="nonce" />, <paramref name="ciphertext" />, <paramref name="tag" />, or <paramref name="plaintext"/> parameter is <see langword="null" />.</exception>
+        <exception cref="T:System.Security.Cryptography.CryptographicException">The encryption operation failed.</exception>
       </Docs>
     </Member>
     <Member MemberName="Encrypt">
@@ -203,13 +262,31 @@
         <Parameter Name="associatedData" Type="System.ReadOnlySpan&lt;System.Byte&gt;" />
       </Parameters>
       <Docs>
-        <param name="nonce">To be added.</param>
-        <param name="plaintext">To be added.</param>
-        <param name="ciphertext">To be added.</param>
-        <param name="tag">To be added.</param>
-        <param name="associatedData">To be added.</param>
-        <summary>To be added.</summary>
-        <remarks>To be added.</remarks>
+        <param name="nonce">The nonce associated with this message, which should be a unique value for every operation with the same key.</param>
+        <param name="plaintext">The content to encrypt.</param>
+        <param name="tag">The byte span to receive the generated authentication tag.</param>
+        <param name="ciphertext">The byte span to receive the encrypted contents.</param>
+        <param name="associatedData">Extra data associated with this message, which must also be provided during decryption.</param>
+        <summary>Encrypts the plaintext into the ciphertext destination buffer and generates the authentication tag into a separate buffer.</summary>
+        <remarks>
+          <format type="text/markdown"><![CDATA[
+
+## Remarks
+
+The security guarantees of the AES-CCM algorithm mode require that the same nonce value is never used twice with the same key.
+
+          ]]></format>
+        </remarks>
+        <exception cref="T:System.ArgumentException">The <paramref name="plaintext" /> parameter and the <paramref name="ciphertext" /> do not have the same length.
+
+-or-
+
+The <paramref name="nonce"/> parameter length is not permitted by <see cref="P:System.Security.Cryptography.AesCcm.NonceByteSizes" />.
+
+-or-
+
+The <paramref name="tag"/> parameter length is not permitted by <see cref="P:System.Security.Cryptography.AesCcm.TagByteSizes" />.</exception>
+        <exception cref="T:System.Security.Cryptography.CryptographicException">The encryption operation failed.</exception>
       </Docs>
     </Member>
     <Member MemberName="NonceByteSizes">
@@ -228,8 +305,8 @@
         <ReturnType>System.Security.Cryptography.KeySizes</ReturnType>
       </ReturnValue>
       <Docs>
-        <summary>To be added.</summary>
-        <value>To be added.</value>
+        <summary>Gets the nonce sizes, in bytes, supported by this instance.</summary>
+        <value>The nonce sizes supported by this instance: 7, 8, 9, 10, 11, 12, or 13 bytes (56, 64, 72, 80, 88, 96, or 104 bits).</value>
         <remarks>To be added.</remarks>
       </Docs>
     </Member>
@@ -249,10 +326,10 @@
         <ReturnType>System.Security.Cryptography.KeySizes</ReturnType>
       </ReturnValue>
       <Docs>
-        <summary>To be added.</summary>
-        <value>To be added.</value>
+        <summary>Gets the tag sizes, in bytes, supported by this instance.</summary>
+        <value>The tag sizes supported by this instance: 4, 6, 8, 10, 12, 14, or 16 bytes (32, 48, 64, 80, 96, 112, or 128 bits).</value>
         <remarks>To be added.</remarks>
       </Docs>
     </Member>
   </Members>
-</Type>
+</Type>