aboot: mdtp: Remove crypto engine init workaround
A fix was introduced in TrustZone, such that the CE is initialized
by MDTP component in TrustZone.
The workaround of calling hash_find to initialize the CE is not
needed anymore.
Change-Id: I99b7d7245dc13eeeed7c2231fd86a960b7e9d9c5
diff --git a/app/aboot/mdtp.c b/app/aboot/mdtp.c
index 8ed312b..578f4de 100644
--- a/app/aboot/mdtp.c
+++ b/app/aboot/mdtp.c
@@ -752,7 +752,6 @@
static int mdtp_tzbsp_dec_verify_DIP(DIP_t *enc_dip, DIP_t *dec_dip, uint32_t *verified)
{
unsigned char hash[HASH_LEN];
- unsigned char buf[HASH_LEN], digest[HASH_LEN];
SHA256_CTX sha256_ctx;
int ret;
@@ -763,9 +762,6 @@
arch_clean_invalidate_cache_range((addr_t)enc_dip, sizeof(DIP_t));
arch_invalidate_cache_range((addr_t)dec_dip, sizeof(DIP_t));
- /* workaround: Dummy call to hash_find prevents a boot loop when using the CE from TZ */
- hash_find(buf, HASH_LEN, digest, CRYPTO_AUTH_ALG_SHA1);
-
ret = mdtp_cipher_dip_cmd((uint8_t*)enc_dip, sizeof(DIP_t),
(uint8_t*)dec_dip, sizeof(DIP_t),
DIP_DECRYPT);
@@ -799,7 +795,6 @@
/* Encrypt a given DIP and calculate its integrity information */
static int mdtp_tzbsp_enc_hash_DIP(DIP_t *dec_dip, DIP_t *enc_dip)
{
- unsigned char buf[HASH_LEN], digest[HASH_LEN];
SHA256_CTX sha256_ctx;
int ret;
@@ -813,9 +808,6 @@
arch_clean_invalidate_cache_range((addr_t)dec_dip, sizeof(DIP_t));
arch_invalidate_cache_range((addr_t)enc_dip, sizeof(DIP_t));
- /* workaround: Dummy call to hash_find prevents a boot loop when using the CE from TZ */
- hash_find(buf, HASH_LEN, digest, CRYPTO_AUTH_ALG_SHA1);
-
ret = mdtp_cipher_dip_cmd((uint8_t*)dec_dip, sizeof(DIP_t),
(uint8_t*)enc_dip, sizeof(DIP_t),
DIP_ENCRYPT);