I don't think it's impossible. Manufacturers should provide the software for audit and assessment. Car tinkerers[1] can usually quite easily pull various firmwares directly off chip, and if the two diverge in a significant way the car company will have a LOT of explaining to do.

[1] http://opengarages.org/handbook/