The “disk” in this terminology is actually referring to the partition, which is the active disk when an OS boots. Different partitions are treated as different disks, it’s not about the physical disk.
Say you have 2 drives: one could contain only unencrypted portions of boot information, and the second drive could only contain encrypted partitions.
Then it would meet your definition of how it should work by terminology 😂
There is full disk encryption on Tumbleweeds using TPM and systems boot. It encrypts the ESP (EFI) partition and you supply password or fido2 key to unlock boot loader and disk
No, not what I’m saying. Any distro can do what you’re describing, they just don’t. It’s not proprietary technology or anything. I could go and make my LUKS whatever open with a key right now, it’s just problematic.
The OP wasn’t asking about any of this though, you’re just throwing your own unrelated “AKSHUALLY” nonsense into the thread. Question was asked and answered.
Apparently its a patched grub2 for opensuse, and systemd boot systems.
Makes a binary file that is verified by the TPM , different than just using LUKS encryption.
The “disk” in this terminology is actually referring to the partition, which is the active disk when an OS boots. Different partitions are treated as different disks, it’s not about the physical disk.
Say you have 2 drives: one could contain only unencrypted portions of boot information, and the second drive could only contain encrypted partitions.
Then it would meet your definition of how it should work by terminology 😂
There is full disk encryption on Tumbleweeds using TPM and systems boot. It encrypts the ESP (EFI) partition and you supply password or fido2 key to unlock boot loader and disk
That’s not what the question is asking…
True, other distros don’t have full disk encryption, they have partition encryption.
No, not what I’m saying. Any distro can do what you’re describing, they just don’t. It’s not proprietary technology or anything. I could go and make my LUKS whatever open with a key right now, it’s just problematic.
The OP wasn’t asking about any of this though, you’re just throwing your own unrelated “AKSHUALLY” nonsense into the thread. Question was asked and answered.
See ya.
Apparently its a patched grub2 for opensuse, and systemd boot systems. Makes a binary file that is verified by the TPM , different than just using LUKS encryption.
Just sharing for awareness because people often assume that because one diatro does not do it, means Linux doesn’t do it.
Like when everyone complains about Linux not having hibernation, it does.