The proof of concept boots using uboot scripting and environment variables. Currently these variables are writable meaning that someone could easily bypass verified boot by running a few simple commands.
We need to either lock down the uEnv to RO (some things might break if we do this) or modify the verified boot mechanism so that security is not effected by env variables.
The proof of concept boots using uboot scripting and environment variables. Currently these variables are writable meaning that someone could easily bypass verified boot by running a few simple commands.
We need to either lock down the uEnv to RO (some things might break if we do this) or modify the verified boot mechanism so that security is not effected by env variables.