BootloadersFreedom » History » Version 28
Denis 'GNUtoo' Carikli, 02/02/2020 11:50 PM
| 1 | 1 | Denis 'GNUtoo' Carikli | h1. Bootloaders |
|---|---|---|---|
| 2 | |||
| 3 | 7 | Denis 'GNUtoo' Carikli | |_. Device and documentation |_. Freedom situation | |
| 4 | 6 | Denis 'GNUtoo' Carikli | | [[NexusSI902xBootloader| Samsung Nexus S (i902x)]] | Proprietary, Signed on the tested devices | |
| 5 | | [[I9100Bootloader| Samsung Galaxy S2 (i9100)]] | Proprietary, probably Signed | |
||
| 6 | 28 | Denis 'GNUtoo' Carikli | | [[GalaxyTab2Bootloader| Samsung Galaxy Tab 2]] | Proprietary, most probably signed | |
| 7 | 6 | Denis 'GNUtoo' Carikli | | [[OptimusBlackBootloader| LG Optimus black (p970)]] | unsigned, can be replaced with upstream u-boot | |
| 8 | 10 | Denis 'GNUtoo' Carikli | | [[Exynos4Bootrom|Galaxy SIII (I9300) |
| 9 | Galaxy SIII 4G (I9305) |
||
| 10 | Galaxy Note II (N7100) |
||
| 11 | Galaxy Note II 4G (N7105)]] | * Proprietary, Signed |
||
| 12 | * There is work in progress to understand if we can avoid the signature | |
||
| 13 | 8 | Denis 'GNUtoo' Carikli | | Golden Delicous GTA04 | unsigned, free software | |
| 14 | |||
| 15 | 11 | Denis 'GNUtoo' Carikli | h2. Other attempts that involves bypassing the bootrom |
| 16 | |||
| 17 | 23 | Denis 'GNUtoo' Carikli | There have been several security issues in bootrom, which can enable to run fully free software bootloaders, that are under the user control, even on devices that are configured to enforce bootloader signatures. |
| 18 | |||
| 19 | The most interesting security issues is when it enables to just replace the nonfree bootloader by a free bootloader that is controlled by the user. |
||
| 20 | 24 | Denis 'GNUtoo' Carikli | |
| 21 | While being able to load a free bootloader through USB is nice, it's not enough per se as it has usability concerns: it's not convenient to need another computer each time you need to power on your smartphone or tablet. So while the protocol could still be implemented in some tiny micro-usb device with a microcontroller, it would still require way more work to write the software, manufacture such devices, etc. |
||
| 22 | 23 | Denis 'GNUtoo' Carikli | |
| 23 | 15 | Denis 'GNUtoo' Carikli | |_. Affected SOCs |_. Type |_. Link | |
| 24 | 17 | Denis 'GNUtoo' Carikli | | Tegra | USB boot | "fusee_gelee":https://github.com/Qyriad/fusee-launcher/blob/master/report/fusee_gelee.md | |
| 25 | 22 | Denis 'GNUtoo' Carikli | | IMX 5 and 6 | Normal boot, and maybe USB boot too | "Ref_QBVR2017-0001.txt":https://github.com/f-secure-foundry/usbarmory/blob/master/software/secure_boot/Security_Advisory-Ref_QBVR2017-0001.txt | |
| 26 | 15 | Denis 'GNUtoo' Carikli | |
| 27 | Other links to cathegorize: |
||
| 28 | |||
| 29 | 14 | Denis 'GNUtoo' Carikli | * http://www.droid-developers.org : This attempts to run user code on several Motorolla smartphones. It includes analysis of the boot chain: |
| 30 | 11 | Denis 'GNUtoo' Carikli | ** "Application_Processor_Boot_ROM":www.droid-developers.org/wiki/Application_Processor_Boot_ROM |
| 31 | 13 | Denis 'GNUtoo' Carikli | ** "Booting_chain":http://www.droid-developers.org/wiki/Booting_chain |
| 32 | 25 | Denis 'GNUtoo' Carikli | * https://www.theiphonewiki.com/ has a list of "Bootrom security issues":https://www.theiphonewiki.com/wiki/Bootrom for apple devices. |
| 33 | 26 | Denis 'GNUtoo' Carikli | * "Ti Nspire":https://hackspire.org ? RSA exponent issues? |
| 34 | 10 | Denis 'GNUtoo' Carikli | |
| 35 | 9 | Denis 'GNUtoo' Carikli | == See also == |
| 36 | 8 | Denis 'GNUtoo' Carikli | |
| 37 | * [[Upstream]] |