parcelcat
commented
2 years ago The documentation on verified boot doesn't mention that re-locking the bootloader would prevent updates until the bootloader is unlocked again, which requires wiping all data. That came as a shock to me, since I had wrongly assumed that ProtonAOSP's web installer would support updates on devices with locked bootloaders (with the ProtonAOSP key).
ProtonAOSP should ideally support OTA updates on devices with locked bootloaders like GrapheneOS and CalyxOS do. It's too inconvenient for most people to wipe and set up a personal device every month. Until then, the documentation should warn the user that updates are not currently possible when the bootloader is locked. The FAQ should also be updated, since this section also does not make clear that locking the bootloader would prevent security updates.
Hello, I apologise if this is meant to be easy to resolve, but I cannot find a way to update the device if its bootloader has been relocked after installing ProtonAOSP. Is this intentional? Having to wipe data every time to update isn't a particularly user-friendly experience. If it is possible to produce OTA files like Google's, which seem to be signed with the secure boot key to allow them to be installed without unlocking, that would be ideal.