kiwi-el8

History

Marcus Schäfer 2252087593 Added LUKS reencryption support Added rd.kiwi.oem.luks.reencrypt boot option consumed by the kiwi-repart dracut module. For OEM LUKS2 encrypted disk images. If set, reencrypts the disk prior an eventual resize and therefore creates a new key pool and master key. The reencryption is advisable if the image binary is not protected. With access to the image binary it's possible to extract the luks header which then allows to decrypt the data unless it was reencrypted. The reencryption process only runs if the checksum of the luks header still matches the one from the original disk image. Be aware that the reencryption will ask for the passphrase if the image has been built with an initial luks passphrase.	2025-01-10 15:12:24 +01:00
..
image	Added LUKS reencryption support	2025-01-10 15:12:24 +01:00
__init__.py	Re-structure unit tests folders	2019-10-21 14:00:05 +02:00

Marcus Schäfer 2252087593

Added rd.kiwi.oem.luks.reencrypt boot option consumed by the
kiwi-repart dracut module. For OEM LUKS2 encrypted disk images.
If set, reencrypts the disk prior an eventual resize and therefore
creates a new key pool and master key. The reencryption is advisable
if the image binary is not protected. With access to the image
binary it's possible to extract the luks header which then allows to
decrypt the data unless it was reencrypted. The reencryption process
only runs if the checksum of the luks header still matches the one
from the original disk image. Be aware that the reencryption will
ask for the passphrase if the image has been built with an initial
luks passphrase.

2025-01-10 15:12:24 +01:00

image

Added LUKS reencryption support

2025-01-10 15:12:24 +01:00

__init__.py

Re-structure unit tests folders

2019-10-21 14:00:05 +02:00