Add 5-minute delay to recovery initramfs scripts |
|
Issue descriptionThis would prevent someone from switching to dev-mode and immediately using a recovery image to bypass the stateful wipe delay.
,
Jun 14 2018
Note that this behavior (switch to dev mode, reboot) is needed to run factory install shims. So we'd only want to fix this for normal recovery images. The delay should only be used if dev mode is enabled via the TPM, and not if it's set via GBB (indicating someone already modified or could modify RO firmware) or if soft WP is not enabled (ditto). |
|
►
Sign in to add a comment |
|
Comment 1 by rspangler@chromium.org
, May 18 2018