Lines Matching +full:secure +full:- +full:only

1 /* SPDX-License-Identifier: GPL-2.0+ */
18 #define TOKTYPE_NON_CCA		 0x00 /* Non-CCA key token */
42 /* inside view of a CCA secure key token (only type 0x01 version 0x04) */
82 		      /*   AES-128  512  640		 */
83 		      /*   AES-192  576  640		 */
84 		      /*   AES-256  640  640		 */
98 /* inside view of an CCA secure ECC private key */
108 	u8  htype;    /* hash method, 0x02 for SHA-256 */
134  * Simple check if the token is a valid CCA secure AES data key
142  * Simple check if the token is a valid CCA secure AES cipher key
153  * Simple check if the token is a valid CCA secure ECC private
161  * Generate (random) CCA AES DATA secure key.
166  * Generate CCA AES DATA secure key with given clear key value.
172  * Derive proteced key from an CCA AES DATA secure key.
179  * Generate (random) CCA AES CIPHER secure key.
185  * Derive proteced key from CCA AES cipher secure key.
191  * Build CCA AES CIPHER secure key with a given clear key value.
197  * Derive proteced key from CCA ECC secure private key.
212  * Verification Pattern provided inside a secure key.
221  * - apqn is online and is in fact a CCA apqn
222  * - if cardnr is not FFFF only apqns with this cardnr
223  * - if domain is not FFFF only apqns with this domainnr
224  * - if minhwtype > 0 only apqns with hwtype >= minhwtype
225  * - if cur_mkvp != 0 only apqns where cur_mkvp == mkvp
226  * - if old_mkvp != 0 only apqns where old_mkvp == mkvp
227  * - if verify is enabled and a cur_mkvp and/or old_mkvp
231  *   0 = AES_MK_SET - AES MK set, 1 = APKA MK_SET - APKA MK set
237  * -ENODEV is returned.