Welcome to HalogenOS!

HalogenOS is an image-based, Android-like Linux distribution, designed to take advantage of security features present on PC platforms, as well as security concepts that are not implemented by many popular distributions or operating systems.

What features does it offer?

Fully verified boot, using Secure Boot, verity, and LUKS
A/B system partition allows seamless, recoverable updates
Read-only system partition guarantees reliability, security, and reproducibility
Per-user home directory encryption ensures user data confidentiality
Hardened compiler flags, kernel patch sets, USE flags, parameters, and tunables
Sandboxed applications allowed via Flatpak, BubbleWrap, and Distrobox with gvisor
Developers can modify system indirectly via overlays
System updates are signed and verified
Encryption keys are generated locally and encrypted themselves
TPM is used to perform cryptography securely
Provisioning is done automatically on boot, reset is as simple as destroying the root partition
Gentoo and emerge used to build system images

What is this repository?

This repository is all the files needed to build, sign, and distribute update images. In essence, it is HalogenOS, in the sense that it defines how the OS is built and configured.

What does it take inspiration from?

Clip OS, a no-longer-maintained project by the French government, also based on Gentoo.
GrapheneOS, a highly secure Android distribution.
ParticleOS, systemd's fully integrated realization of this concept.