GitHub

Build signed efi binaries which mount a dm-verity verified squashfs image as rootfs on boot.

The goal of this project is to reduce the harm a successful attacker can do to a system. It prevents an attacker of persistently modifying the root-filesystem. This gets accomplished via building a ...