The question is: what's the purpose of the firmware that can be updated?
- Surely headunit communication
- Highly likely booting the kernel on ignition
- What else?
The second point would imply that it validates the kernel image using its signature. Doing so would also require the public key to be stored within that firmware code - but even that doesn't take us any further :-/
Para