Lines Matching +full:secure +full:- +full:only

1 /* SPDX-License-Identifier: GPL-2.0+ */
17 #define TOKTYPE_NON_CCA		 0x00 /* Non-CCA key token */
41 /* inside view of a CCA secure key token (only type 0x01 version 0x04) */
81 		      /*   AES-128  512  640		 */
82 		      /*   AES-192  576  640		 */
83 		      /*   AES-256  640  640		 */
97 /* inside view of an CCA secure ECC private key */
107 	u8  htype;    /* hash method, 0x02 for SHA-256 */
133  * Simple check if the token is a valid CCA secure AES data key
141  * Simple check if the token is a valid CCA secure AES cipher key
152  * Simple check if the token is a valid CCA secure ECC private
160  * Generate (random) CCA AES DATA secure key.
165  * Generate CCA AES DATA secure key with given clear key value.
171  * Derive proteced key from an CCA AES DATA secure key.
178  * Generate (random) CCA AES CIPHER secure key.
184  * Derive proteced key from CCA AES cipher secure key.
190  * Build CCA AES CIPHER secure key with a given clear key value.
196  * Derive proteced key from CCA ECC secure private key.
211  * Verification Pattern provided inside a secure key.
220  * - apqn is online and is in fact a CCA apqn
221  * - if cardnr is not FFFF only apqns with this cardnr
222  * - if domain is not FFFF only apqns with this domainnr
223  * - if minhwtype > 0 only apqns with hwtype >= minhwtype
224  * - if cur_mkvp != 0 only apqns where cur_mkvp == mkvp
225  * - if old_mkvp != 0 only apqns where old_mkvp == mkvp
226  * - if verify is enabled and a cur_mkvp and/or old_mkvp
230  *   0 = AES_MK_SET - AES MK set, 1 = APKA MK_SET - APKA MK set
236  * -ENODEV is returned.