[sigmar]

Wondering if this is firmware is signed, hoping they removed signing or it was never signed. I've used the controller a bit this week to play games on my android phone and quite like it.

[obnauticus]

Often times signature checking is fused in during provisioning. That is to say, if they had it enabled before there is a good chance they’re unable to disable it. You’ll probably need to find a vulnerability in the iMX8 bootROM which checks these fuse bits to bypass it.

You’d need to read the iMX8 docs to know for sure, but it does support full secure boot IIRC.

Edit: Yup this appears to be true.

“The public key is included in the final binary and a hash of the public key is programmed in the SoC, in One-Time Programmable e-fuses, for establishing the root of trust.”

See https://www.variscite.com/blog/i-mx8-secure-boot-made-easy-c...

[solarkraft]

I love it when e-waste is created through this type of security theater.

They may not be able to disable signature checking, but they can and should publish the private key.

[sgtnoodle]

They could potentially develop a shim bootloader, unless the ROM bootloader validates the entire flash range.

[seba_dos1]

How is i.MX8 related to these controllers?

(typing it from a i.MX8 phone right now - putting it into a gaming controller sounds hilariously ridiculous)

[detaro]

from what I've read (sorry, can't find the link again right now) they didn't change the update mechanism at all, still requiring signatures.