Closed ancorgs closed 2 months ago
sounds good. who can put an official review on this?
I only miss changelog and new version.
Added.
:heavy_check_mark: Internal Jenkins job #1156 successfully finished :heavy_check_mark: Created OBS submit request #1172660
how does the control.xml snippet have to look like for that?
E.g.:
<partitioning>
<expert_partitioner_warning config:type="boolean">false</expert_partitioner_warning>
<proposal>
<lvm config:type="boolean">false</lvm>
<encryption_method>luks2</encryption_method>
<encryption_pbkdf>argon2i</encryption_pbkdf>
</proposal>
Problem
We have been discussing for some time how to make LUKS2 easily configurable (and the default option) when installing Tumbleweed with YaST.
This relatively old comment summarizes my proposal, which was:
Solution
This pull request implements exactly that. One commit per item.
There are no user-visible changes in the installation workflow or in the Guided Setup. YaST will now simply use LUKS2 and PBKDF2 if configured to do so at control.xml and the user decided to encrypt the system.
The default encryption step at the Expert partitioner now looks like this (for all systems, it does not depend on control.xml).
Testing
I just did some preliminary manual tests of the Partitioner (see screenshot above).