Gardenhouse

Tools to bootstrap an immutable Gentoo-based system.

The root images are dm-verity verified by default.

The home directory of each user may be optionally encrypted.

Secureboot will automatically be set up during build. Just create the keys and build an image!

If your system has a TPM2 chip, each boot stage will automatically be measured. Allowing for verification of each boot.

Define checks to be performed during boot to ensure that the system is fully functional.