PAM module for unlocking transparently encrypted directories on ext4
This is a PAM module for unlocking transparently encrypted directories on ext4.
Since version 4.1, the Linux kernel supports transparent encryption in ext4. The mechanism relies on the keyrings facility of the kernel.
This module will create keys for (de)ciphering files and file-names in encrypted directories during the authentication phase. During the session setup phase, those keys are added to the session keyring, giving the user (instant) access to directories for which she previously set a "policy" matching her passphrase (e.g. using e4crypt from the e2fsprogs).
Note that the only encryption mode currently supported is aes256-xts.