Firmware (XBL and other non OS components) are versioned with anti rollback values. If the version is less than the version burned into the fuses the firmware is rejected. The “boot” partition is typically the Linux kernel. Android Verified Boot loads and hashes the kernel image and compares it to the expected hash in the vbmeta partition. The signature of the hash of the entire vbmeta metadata is compared to a public key coded into the secondary boot loader (typically abl (fastboot before fastbootd was done in user space to support super partitions))

The abl firmware contains an anti rollback version that is checked with the eFuse version.

The super partition is a bunch of lvm logical partitions on top of a single physical partition. Of these, is the main root filesystem which is mounted read only and protected with dm-verity device mapping. The root hash of this verity rootfs is also stored in the signed vbmeta.

Android Verified Boot also has an anti rollback feature. The vbmeta partition is versioned and the minimum version value is stored cryptographically in a special flash partition called the Replay Protected Memory Block (rpmb). This prevents rollback of boot and super as vbmeta itself cannot be rolled back.

I've been seeing "that's vibe coded" comments a lot lately on posts. Comments that call out code that may or may not be vibe-coded. At what point should these types of posts start getting down-voted? It's not constructive, and IMO imparts a negative connotation.

HN: Show HN Awesome New LLM can Code!! Also HN: TFA is vibe coded angry pitchfork or ugh

I agree, this is becoming HN's new favourite way to detail a conversation unproductively. It's up there with doxxing and ad hominems in my opinion - unverifiable and usually antagonistic.

Yes, and low effort backhanded comments about "AI slop" are also getting tiresome.

Ugh, already have to deal with filtering out interviewees who are obviously using AI to answer questions. It's annoying when you ask someone how they go about troubleshooting a misbehaving SPI peripheral. Instead of their personal routine, they give a bulleted and summarized AI response. It's obvious, first they fumble the answer to buy time, while looking away from the camera, then they read off the bullet points.

Wonder if you could measure your breathing rate and heartbeat and cryptographically sign the time series data as ground truth. Then post process the video with Eulerian Video Magnification to recover the values and compare.

edit forgot the link: https://people.csail.mit.edu/mrub/vidmag/

RCT, Railroad Tycoon 2 (which has scripted scenarios and sandbox ), SimCopter and Streets of Sim City were great

RRT2 has it scenarios like Hell or High Water where you have fill in a giant crater with cement by orchestrating trains before ocean levels rise or just sandbox play building railways buying up business and watching connected cities boom. Always loved using cheats to make all competitors trains break down then take over their bankrupt company.

SimCopter and Streets of Sim City had missions/scenarios. Or you could just go fly/drive around any SimCity2000 map.

Remember a SimCopter cheat would essentially nuke the city and set everything in fire.

And Street let you blow up buildings by adding weapons to your car.

I always used the Do Not Enter marquee signs such that once guests entered the park they could never leave. Great for helping meet the total park population scenarios.

If you got enough people into a 2-long segment of footpath with "do not enter" signs containing them you can place a third "do not enter sign" in the middle, and cause all the people to explode from the path and onto the grass.

That and before The Minecraft Movie came out, you could play multiplayer LAN from Xbox to PC cross platform without an XBox Live subscription.

Once the movie was released and they updated the game to add movie related content, this feature stopped working. Now to play multiplayer cross platform LAN, you have to pay for M$ servers you don’t use.

You couldn’t even load your world locally on the XBox if it was marked for multiplayer unless you had an Xbox Live account, meaning you got locked out of your world.

Fortunately you can edit the world setting to remove the multiplayer option to recover, but this was not documented at the time encountered.

Making physical goods low quality, cheap, and therefore disposable is the equivalent of rent seeking.

Instead of growth and innovation, it’s how can the Company get recurring revenue after first sale.

The balance for the Company is finding a quality to price point ratio where either 1) the customer doesn’t care if it breaks because it was cheap and they know it’s cheap or 2) it’s cheap and breaks but the utility of it to the customer warrants (or with some goods, necessitates) them buying a replacement.

In the second case, the trade off would also include brand risk, but in the world of Amazon and TEMU, you can just sell the same thing under a new random name, there is no brand identity.

You make my comment's point without realizing, emphasizing my point.

The Debug Policy apdp partition is flashed with an ELF “mbn” file. It is possible that sections are encrypted. At the very least it is likely signed. From a security perspective, hopefully the vendor signed with a prod key and not a test key.

In my experience, it is possible read to the fuses with a TrustZone TA, at least on a non-secure device.