| Bug ID | 1198583 |
|---|---|
| Summary | Fix full disk encryption |
| Classification | openSUSE |
| Product | openSUSE Tumbleweed |
| Version | Current |
| Hardware | Other |
| OS | Other |
| Status | NEW |
| Severity | Normal |
| Priority | P5 - None |
| Component | Basesystem |
| Assignee | lnussel@suse.com |
| Reporter | lnussel@suse.com |
| QA Contact | qa-bugs@suse.de |
| Found By | --- |
| Blocker | --- |
Full disk encryption starting from 15 on sucks. Prompting for the passphrase twice is an unacceptable annoyance but also technically the situation is not satisfactory. Eg relying on grub to unlock the encrypted volume hinders eg adoption of LUKS2 with Argon2 or hardware token support. So let's find a solution that works better technically and usability wise. See also https://0pointer.net/blog/authenticated-boot-and-disk-encryption-on-linux.html