security/hakurei.app
security/hakurei.app
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 4 Wiki Activity

improve extended wipe-without-reboot explanation

Browse Source
This commit is contained in:
Daniel Micay 2024-06-04 16:58:10 -04:00 committed by GrapheneOS
parent 94af51e894
commit 8b18aaaaf6
1 changed files with 1 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
static/releases.html
View File

@ -805,8 +805,7 @@
<ul> <ul>
<li>full 2024-06-01 security patch level</li> <li>full 2024-06-01 security patch level</li>
<li>extend the standard wipe-without-reboot implementation to run a secure element erase in addition to wiping the hardware keystore</li> <li>extend the standard wipe-without-reboot implementation beyond wiping the hardware keystores (which prevents recovering any OS data by preventing deriving the key encryption keys) by also wiping the secdiscardable data on the SSD needed to derive key encryption keys, the encrypted storage keys on the SSD and the Weaver slots in the secure element needed to derive per-user key encryption keys via a secure element erase</li>
<li>extend the standard wipe-without-reboot implementation to wipe the encrypted disk encryption keys in addition to preventing deriving the key encryption keys used to encrypt them by wiping the hardware keystore</li>
<li>kernel (5.10): update to latest GKI LTS branch revision</li> <li>kernel (5.10): update to latest GKI LTS branch revision</li>
<li>kernel (5.15): update to latest GKI LTS branch revision</li> <li>kernel (5.15): update to latest GKI LTS branch revision</li>
<li>kernel (6.1): update to latest GKI LTS branch revision</li> <li>kernel (6.1): update to latest GKI LTS branch revision</li>