Any plans for this tool to support disk encryption?

[DaleMitchell]

Looks like it is possible. From NVIDIA documentation:

Following is an example of commands that use l4t_initrd_flash.sh to flash an encrypted rootfs to an NVMe SSD attached to a Jetson AGX Xavier series device:

https://docs.nvidia.com/jetson/l4t/index.html#page/Tegra%20Linux%20Driver%20Package%20Development%20Guide/bootloader_disk_encryption.html

[jetsonhacks]

No plans to support disk encryption. The idea behind the scripts is that "Here's the outline to get started" which brings together the steps in the NVIDIA documentation that are required to boot from NVMe. Currently the steps are in several different places in the documentation, and can be a little difficult to follow in sequence.

With that said, this can be used as a stepping stone towards the different variations of flashing such as disk encryption. The key line in flash_jetson_external_storage.sh:

$ sudo ./nvsdkmanager_flash.sh --storage "${storage}"

Can be replaced by the appropriate _l4t_initrdflash.sh command to set the desired feature(s).

[DaleMitchell]

Thank you for the prompt reply! I guess this can be closed for now.

[jasonjalufka]

@DaleMitchell Did you have a chance to try flashing with disk encryption? If so, did you have any luck?

[DaleMitchell]

@jasonjalufka not yet, it's pretty complicated! I'm guessing that's why you've asked, you're probably wondering how to do it... well, me to. Whoever figures it out first should write a tutorial!

[jasonjalufka]

@DaleMitchell It's definitely proving to be more complicated than I'd hoped!

Whoever figures it out first should write a tutorial!

I'll agree to that 😂

In the meantime I've created a post on the NVIDIA Forums. Hopefully someone can point out what I'm doing wrong!