1 files changed, 7 insertions, 13 deletions

diff --git a/arch/arm/mach-tegra/tegra124/bct.c b/arch/arm/mach-tegra/tegra124/bct.c
index 4dc4b7138ab..676b68dc5de 100644
--- a/arch/arm/mach-tegra/tegra124/bct.c
+++ b/arch/arm/mach-tegra/tegra124/bct.c
@@ -9,12 +9,10 @@
 #include <vsprintf.h>
 #include <linux/string.h>
 #include <asm/arch-tegra/crypto.h>
+#include <asm/arch-tegra/fuse.h>
 #include "bct.h"
 #include "uboot_aes.h"
 
-/* Device with "sbk burned: false" will expose zero key */
-const u8 nosbk[AES128_KEY_LENGTH] = { 0 };
-
 /*
  * @param  bct		boot config table start in RAM
  * @param  ect		bootloader start in RAM
@@ -26,29 +24,25 @@ static int bct_patch(u8 *bct, u8 *ebt, u32 ebt_size)
 	struct nvboot_config_table *bct_tbl = NULL;
 	u8 ebt_hash[AES128_KEY_LENGTH] = { 0 };
 	u8 bct_hash[AES128_KEY_LENGTH] = { 0 };
-	u8 sbk[AES128_KEY_LENGTH] = { 0 };
 	u8 *sbct = bct + UBCT_LENGTH;
 	bool encrypted;
 	int ret;
 
 	ebt_size = roundup(ebt_size, EBT_ALIGNMENT);
 
-	memcpy(sbk, (u8 *)(bct + UBCT_LENGTH + SBCT_LENGTH),
-	       NVBOOT_CMAC_AES_HASH_LENGTH * 4);
-
-	encrypted = memcmp(&sbk, &nosbk, AES128_KEY_LENGTH);
+	encrypted = tegra_fuse_get_operation_mode() == MODE_ODM_PRODUCTION_SECURE;
 
 	if (encrypted) {
-		ret = decrypt_data_block(sbct, SBCT_LENGTH, sbk);
+		ret = decrypt_data_block(sbct, sbct, SBCT_LENGTH);
 		if (ret)
 			return 1;
 
-		ret = encrypt_data_block(ebt, ebt_size, sbk);
+		ret = encrypt_data_block(ebt, ebt, ebt_size);
 		if (ret)
 			return 1;
 	}
 
-	ret = sign_enc_data_block(ebt, ebt_size, ebt_hash, sbk);
+	ret = sign_data_block(ebt, ebt_size, ebt_hash);
 	if (ret)
 		return 1;
 
@@ -61,12 +55,12 @@ static int bct_patch(u8 *bct, u8 *ebt, u32 ebt_size)
 	bct_tbl->bootloader[0].length = ebt_size;
 
 	if (encrypted) {
-		ret = encrypt_data_block(sbct, SBCT_LENGTH, sbk);
+		ret = encrypt_data_block(sbct, sbct, SBCT_LENGTH);
 		if (ret)
 			return 1;
 	}
 
-	ret = sign_enc_data_block(sbct, SBCT_LENGTH, bct_hash, sbk);
+	ret = sign_data_block(sbct, SBCT_LENGTH, bct_hash);
 	if (ret)
 		return 1;