Javascript is a horrible choice but I think having a scripting language for this is actually quite a good idea. If only there was a popular scripting language that didn't totally suck balls.
madduci 13 hours ago||
But why?
monax 13 hours ago||
It's just a silly experiment; the real endgame is to make a bootloader that is customisable using HTML/CSS/JS
magicalhippo 13 hours ago||
Since PDFs can contain JS, presumably that should be the preferred way of modifying your boot loader.
monax 13 hours ago||
Yeah that's the natural next step, I'll work on that next
ThrowawayTestr 12 hours ago||
Why not?
madduci 12 hours ago||
Because this can end very badly. It is a new surface to attack
M95D 12 hours ago|||
Exactly! It's actually great! More ways to jailbreak stuff.
eqvinox 12 hours ago||||
Why is it a new surface? Either you can run UEFI code, or you can't. Attacking the JS interpreter itself is unrealistic IMHO, it's the poorly written JavaScript running on top of this that might open new surfaces of attack. But other UEFI code is mostly written in C or C++, so let's call that a wash?