I want to implement full disk encryption for Jetson TK1 with R24.4 rootfs on eMMC.
I haven’t found any useful information for this feature neither on docs nor on forum topics. Supposed it’s some kind of essential and common used feature, but seems not.
It will be great if someone can share his experience of implementing full disk encryption (or at least rootfs (APP) partition) or at least provide rough steps.
My ideas according to this:
I’ve found that it’s hard to get direct access to device partitions from the host it connected to. Because of this I suppose that images for flashing should be prepared in advance. Encrypted and sparsed system.img with rootfs could be created, but how to unlock it on boot? Seems boot partition with suitable initrd required.
With proper images nvflash could be used instead of flash.sh. Or it could be done with flash.sh?