z/OS Cryptographic Services ICSF Application Programmer's Guide
Previous topic | Next topic | Contents | Index | Contact z/OS | Library | PDF


Parameters

z/OS Cryptographic Services ICSF Application Programmer's Guide
SA22-7522-16

return_code
Direction: OutputType: Integer

The return code specifies the general result of the callable service. Appendix A. ICSF and TSS Return and Reason Codes lists the return codes.

reason_code
Direction: OutputType: Integer

The reason code specifies the result of the callable service that is returned to the application program. Each return code has different reason codes assigned to it that indicate specific processing problems. Appendix A. ICSF and TSS Return and Reason Codes lists the reason codes.

exit_data_length
Direction: Input/OutputType: Integer

The length of the data that is passed to the installation exit. The length can be from X'00000000' to X'7FFFFFFF' (2 gigabytes). The data is identified in the exit_data parameter.

exit_data
Direction: Input/OutputType: String

The data that is passed to the installation exit.

rule_array_count
Direction: InputType: Integer

The number of keywords you supplied in the rule_array parameter. The value can be 2, 3 or 4.

rule_array
Direction: InputType: String

Keywords provide control information to the callable service. Table 52 lists the keywords. The keywords must be in contiguous storage with each of the keywords left-justified in its own 8-byte location and padded on the right with blanks.

Table 52. Keywords for Key Test Control Information
KeywordMeaning
Key or key part rule (one keyword required)
CLR-A128Process a 128–bit AES clear key.
CLR-A192Process a 192–bit AES clear key.
CLR-A256Process a 256–bit AES clear key.
KEY-CLRSpecifies the key supplied in key_identifier is a single-length clear key.
KEY-CLRDSpecifies the key supplied in key_identifier is a double-length clear key.
KEY-ENCSpecifies the key supplied in key_identifier is a single-length encrypted key.
KEY-ENCDSpecifies the key supplied in key_identifier is a double-length encrypted key.
TOKENProcess an AES clear or encrypted key token.
Process Rule (one keyword required)
GENERATEGenerate a verification pattern for the key supplied in key_identifier.
VERIFYVerify a verification pattern for the key supplied in key_identifier.
Parity Adjustment - can not be specified with any of the AES keywords (optional)
ADJUSTAdjust the parity of test key to odd prior to generating or verifying the verification pattern. The key_identifier field itself is not adjusted.
NOADJUSTDo not adjust the parity of test key to odd prior to generating or verifying the verification pattern. This is the default.
Verification Process Rule (optional)
ENC-ZEROENC-ZERO can be used with any of the rules. It is not supported on systems with CCFs.
SHA-256Use the 'SHA-256' method. Use with CLR-A128, CLR-A192, CLR-A256, and TOKEN. SHA-256 is also the default for the AES rules.
key_identifier
Direction: Input/OutputType: String

The key for which to generate or verify the verification pattern. The parameter is a 64-byte string of an internal token, key label, or a clear key value left-justified.

Note:
If you supply a key label for this parameter, it must be unique on the CKDS.
random_number
Direction: Input/OutputType: String

This is an 8-byte field that contains a random number supplied as input for the test pattern verification process and returned as output with the test pattern generation process. random_number is only used with the default algorithm for DES operational keys.

verification_pattern
Direction: Input/OutputType: String

This is an 8-byte field that contains a verification pattern supplied as input for the test pattern verification process and returned as output with the test pattern generation process.

Go to the previous page Go to the next page

Notices | Terms of use | Support | Contact z/OS | zFavorites



Copyright IBM Corporation 1990, 2014