Set a device key into the KVStore.

If entropy support is missing, call this method before calling device_key_derived_key. This method should be called only once!

Parameters

value	Input buffer contain the key.
isize	Size of the supplied key. Must be 16 bytes or 32 bytes.

Returns

0 on success, negative error code on failure

Derive a new key based on the salt string.

Parameters

isalt	Input buffer used to create the new key. Same input always generates the same key
isalt_size	Size of the data in salt buffer.
output	Buffer to receive the derived key. Size must be 16 bytes or 32 bytes according to the ikey_type parameter
ikey_type	Type of the required key. Must be 16 bytes or 32 bytes.

Returns

0 on success, negative error code on failure

Generate Root of Trust.

Uses TRNG or various other entropy sources to generate random device key and inject it into device's KVStore. Device Key can only be generated once.

Parameters

key_size

Size of key in bytes to generate. Must be 16 bytes or 32 bytes. Default is 16 bytes.

Returns

DEVICEKEY_SUCCESS, when device key successfully generated and injected.

DEVICEKEY_ALREADY_EXIST, if the key has already been written.

DEVICEKEY_GENERATE_RANDOM_ERROR if this device does not contain entropy sources and cannot generate a key.

DEVICEKEY_INVALID_KEY_SIZE if key_size is not 32 or 16 bytes.

error codes on other failures.

As a singleton, return the single instance of the class.

Reason for this class being a singleton is the following:

• Ease of use for users of this class not having to coordinate instantiations.
• Lazy instantiation of internal data (which we can't achieve with simple static classes).

Returns

Singleton instance reference.

Definition at line 82 of file DeviceKey.h.