Owen Taylor, mlengi wa GNOME Shell ndi laibulale ya Pango, komanso membala wa Fedora for Workstation Development Working Group, wapereka dongosolo la encryption magawo amagawo ndi zolemba za ogwiritsa ntchito kunyumba ku Fedora Workstation mwachisawawa. Ubwino wosamukira ku encryption mwachisawawa ndi monga kuteteza deta ngati laputopu itabedwa, kuteteza ku zida zomwe zasiyidwa mosayang'aniridwa, kusunga chinsinsi ndi kukhulupirika kunja kwa bokosi popanda kufunikira kwachinyengo kosayenera.
Mogwirizana ndi dongosolo lokonzekera, akukonzekera kugwiritsa ntchito Btrfs fscrypt pobisa. Pa magawo a dongosolo, makiyi obisala amakonzedwa kuti asungidwe mu gawo la TPM ndipo amagwiritsidwa ntchito limodzi ndi siginecha ya digito yomwe imagwiritsidwa ntchito kutsimikizira kukhulupirika kwa bootloader, kernel, ndi initrd (ndiko kuti, pagawo la boot system, wogwiritsa sangafunike lowetsani mawu achinsinsi kuti muchepetse magawo a dongosolo). Akamasunga zolemba zakunyumba, akukonzekera kupanga makiyi potengera malowedwe ndi mawu achinsinsi a wogwiritsa ntchito (chilolezo chanyumba chosungidwa chidzalumikizidwa wogwiritsa ntchito akalowa mudongosolo).
Nthawi yoyambira imadalira kusintha kwa zida zogawa kupita ku chithunzi chogwirizana cha kernel UKI (Unified Kernel Image), chomwe chimaphatikiza mufayilo imodzi chothandizira kutsitsa kernel kuchokera ku UEFI (UEFI boot stub), chithunzi cha Linux kernel ndi initrd system chilengedwe chodzaza kukumbukira. Popanda thandizo la UKI, ndizosatheka kutsimikizira kusagwirizana kwa zomwe zili mu initrd chilengedwe, momwe makiyi osinthira mafayilo amatsimikiziridwa (mwachitsanzo, wowukirayo amatha kusintha initrd ndikutengera mawu achinsinsi, kupewa izi, boot yotsimikizika ya unyolo wonse ikufunika musanayike fayilo).
M'mawonekedwe ake apano, okhazikitsa Fedora ali ndi mwayi wosankha kubisa magawo pamlingo wa block ndi dm-crypt pogwiritsa ntchito mawu achinsinsi omwe sanamangidwe ku akaunti ya ogwiritsa ntchito. Yankholi likuwonetsa mavuto monga kusayenerera kubisa kwapadera pamakina ogwiritsa ntchito ambiri, kusowa kothandizira kumayiko ena ndi zida za anthu olumala, kuthekera kochita ziwopsezo kudzera m'malo mwa bootloader (bootloader yoyikidwa ndi wowukira imatha kunamizira kuti ndiye bootloader yoyambirira. ndikupempha chinsinsi chachinsinsi), kufunika kothandizira framebuffer mu initrd kuti mufunse achinsinsi.
Source: opennet.ru