To update 10th-gen Honda Civics, Honda ships updates on specially-formatted USB drives. They're essentially Android 4.2.2rc1-era recovery packages with some Honda-added version checks (which can be spoofed). The packages are signed with the publicly-known AOSP test key, so with physical access to the front USB port you can sign and flash your own package for arbitrary code execution on the headunit. This doesn't require root/su. I've run it end-to-end on my own 2021 Civic and separately confirmed an official EU update file carries the AOSP test-key signature. Tooling and writeup in the post.
DANmode•21m ago
EvilValet, sick
rootsudo•13m ago
Yeah jealous he even got to name an attack surface. Damn.
t1234s•18m ago
Could you use this to get a version of lineage OS running on it?
baby_souffle•10m ago
Yes, but it'll still be using their kernel so not all functionality from lineage might work.
librick•1h ago