This feature gives 2 types of granularity for storage encryption. Data volume encryption allows the user to create encryption partition with a passphrase typed by the end user. Root filesystem encryption enables the data encryption on the entire rootfs except the boot partition.

Setup information

Git repository

https://github.com/Wind-River/meta-secure-core web repo

Subdirectory

meta-encrypted-storage web subdirectory

Last commit: 4 years ago (gatesgarth branch)

Maintainer

  • Jia Zhang (Author and maintainer) email

Dependencies

The meta-encrypted-storage layer depends upon:

Recipe name Version Description
cryptfs-tpm2 0.7.0+gitX A tool used to create, persist, evict a passphrase for full-disk-encryption with TPM 2.0
packagegroup-luks 1.0 The packages used for LUKS.
packagegroup-luks-initramfs 1.0 The packages used for luks in initramfs.