pal_rot.h File Reference

Device key types supported in PAL.

Device key types supported in PAL.

Enumerator:

palOsStorageSignatureKey128Bit	128bit storage encryption key derived from RoT.
palOsStorageHmacSha256	128bit storage signature key derived from RoT.

Definition at line 41 of file pal_rot.h.

Return a device unique key derived from the root of trust.

Parameters:

[in]	keyType	The type of key to derive.
[in,out]	key	A 128-bit OR 256-bit buffer to hold the derived key, size is defined according to the `keyType`.
[in]	keyLenBytes	The size of buffer to hold the 128-bit OR 256-bit key.

Returns:

PAL_SUCCESS in case of success and one of the following error codes in case of failure:
PAL_ERR_GET_DEV_KEY - an error in key derivation.
PAL_ERR_INVALID_ARGUMENT - invalid parameter.

Definition at line 32 of file pal_rot.c.

Sets a root of trust key. The size of the key must be 16 bytes. This function is not implemented for HW RoT configuration.

Parameters:

[in]	key	A 16 bytes buffer with a root of trust key to set.
[in]	keyLenBytes	The size of the buffer must be 16 bytes.

Returns:

PAL_SUCCESS in case of success and one of the following error codes in case of failure:
PAL_ERR_ITEM_EXIST - RoT key already exists.
PAL_ERR_INVALID_ARGUMENT - invalid parameter.
PAL_ERR_GENERIC_FAILURE - set operation failed.
PAL_ERR_NOT_IMPLEMENTED - the function is not implemented for current configuration.

Definition at line 122 of file pal_rot.c.