Closed ancorgs closed 2 months ago
coveralls
commented
2 months ago coverage: 97.8% (-0.002%) from 97.802% when pulling 57dc977275f956ffb18225529a7de3195c6b3d6b on ancorgs:luks2_configurable into 0e39eba1e111101ec528d8cc7c4430f66faee764 on yast:master.
lnussel
commented
2 months ago sounds good. who can put an official review on this?
ancorgs
commented
2 months ago I only miss changelog and new version.
Added.
yast-bot
commented
2 months ago :heavy_check_mark: Internal Jenkins job #1156 successfully finished :heavy_check_mark: Created OBS submit request #1172660
lnussel
commented
2 months ago how does the control.xml snippet have to look like for that?
schubi2
commented
2 months ago E.g.:
<partitioning>
<expert_partitioner_warning config:type="boolean">false</expert_partitioner_warning>
<proposal>
<lvm config:type="boolean">false</lvm>
<encryption_method>luks2</encryption_method>
<encryption_pbkdf>argon2i</encryption_pbkdf>
</proposal>
Problem
We have been discussing for some time how to make LUKS2 easily configurable (and the default option) when installing Tumbleweed with YaST.
This relatively old comment summarizes my proposal, which was:
Solution
This pull request implements exactly that. One commit per item.
There are no user-visible changes in the installation workflow or in the Guided Setup. YaST will now simply use LUKS2 and PBKDF2 if configured to do so at control.xml and the user decided to encrypt the system.
The default encryption step at the Expert partitioner now looks like this (for all systems, it does not depend on control.xml).
Testing
I just did some preliminary manual tests of the Partitioner (see screenshot above).