Disk encryption with read-only filesystem

Robotics & Edge Computing Jetson & Embedded Systems Jetson Xavier NX
,
1

Hi,
I have a Xavier NX, 16GB eMMC, L4T 32.7.3(Jetpack 4.6.3).

I try to enable disk encryption with a read-only filesystem using overlayfs.

I was able to enable disk encryption after following instructions from the thread Topic 276275.
To enable read-only mode I use a script from the repository.
https://github.com/forecr/jetson_overlayroot
I tested both procedures independently and they work.

The problem occurs when I want to combine both procedures. First, I encrypt the disk, then run the script to enable read-only.
Below is a screenshot of the system startup process.

screen_1
screen_11920×2504 602 KB

As you can see, the system startup process ends in emergency mode.

I also tried editing the /etc/overlayroot.conf file:

overlayroot=“/dev/mapper/cryp_root”
overlayroot_cfgdisk=“enabled”
Unfortunately, this approach also did not work with an error message.

screen_2
screen_21050×741 111 KB

However, the system starts but does not have read-only mode enabled.

I appreciate any help in solving my problem.

1 Like
3

hello grzegorz.suwala,

we’ve never test disk encryption with a read-only filesystem.
actually, we’ve only support disk encryption.

4

Hi JerryChang,

I am aware of this.
Considering that several threads on the forum are dedicated to read-only file systems, I hope someone could advise me on how to solve this problem.

6

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.