ubiquity should support encryption by default with zfsroot, with users able to opt in to running change-key after install
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
ubiquity (Ubuntu) |
Confirmed
|
Undecided
|
Unassigned | ||
zfs-linux (Ubuntu) |
Confirmed
|
Undecided
|
Unassigned |
Bug Description
zfs supports built-in encryption support, but the decision of whether a pool is encrypted or not must be made at pool creation time; it is possible to add encrypted datasets on top of an unencrypted pool but it is not possible to do an online change of a dataset (or a whole pool) to toggle encryption.
We should therefore always install with encryption enabled on zfs systems, with a non-secret key by default, and allow the user to use 'zfs change-key -o keylocation=prompt' after install to take ownership of the encryption and upgrade the security.
This is also the simplest way to allow users to avoid having to choose between the security of full-disk encryption, and the advanced filesystem features of zfs since it requires no additional UX work in ubiquity.
We should make sure that https:/
Related branches
- Dimitri John Ledkov: Disapprove
- Didier Roche-Tolomelli (community): Needs Information
-
Diff: 37 lines (+11/-0)2 files modifieddebian/changelog (+7/-0)
scripts/zsys-setup (+4/-0)
tags: | added: patch |
Here is a proof-of-concept patch for the zfs-initramfs side of such a feature.