IBM 2 Computer Hardware User Manual


 
CCA Release 2.54 Cryptographic_Facility_Control
Parameters
For the definitions of the return_code, reason_code, exit_data_length, and exit_data
parameters, see “Parameters Common to All Verbs” on page 1-11.
rule_array_count
The rule_array_count parameter is a pointer to an integer variable containing
the number of elements in the rule_array variable. The value must be one or
two for this verb.
rule_array
The rule_array parameter is a pointer to a string variable containing an array of
keywords. The keywords are eight bytes in length, and must be left-justified
and padded on the right with space characters.
This verb requires two keywords in the rule array. One specifies the
Coprocessor for which the request is intended, the other specifies the function
to perform. No rule-array elements are set by the verb. The rule_array
keywords are shown below:
Keyword Meaning
Coprocessor to use (optional)
ADAPTER1 This keyword is ignored. It is accepted for backward
compatibility.
Control function to perform (one required)
RQ-TOKEN Requests a random eight-byte token from the adapter, which
is returned in the verb_data variable. This is the first step
when reinitializing the Coprocessor.
The second step for reinitialization uses RQ-REINT, described
below.
RQ-REINT Reinitializes the CCA application in the Coprocessor. For
RQ-REINT, you must set the verb_data field to the one's
complement of the token that was returned by the
Coprocessor when you executed the verb using the
RQ-TOKEN keyword. This is the second and final step when
reinitializing the Coprocessor.
This two-step process provides protection against accidental
reinitialization of the Coprocessor.
SETCLOCK Sets the date and time of the Coprocessor's secure clock.
You must put the date and time values in the verb_data
variable, as described under the description of that parameter.
RESET-IL Clears the Intrusion Latch on the Coprocessor.
RESETBAT Clears the Battery-Low Indicator (latch) on the Coprocessor.
LOAD-FCV Loads a new Function Control Vector into the Coprocessor.
CLR-FCV Clears the Function Control Vector from the Coprocessor.
SET-EID Sets an environment identifier (EID) value.
SET-MOFN Sets the minimum and maximum number of “cloning
information” shares that are required and that can be used to
pass sensitive information from one Coprocessor to another
Coprocessor.
Chapter 2. CCA Node-Management and Access-Control 2-31