There are a few ways one could implement this, some of them more invasive than others. One way that might work is to simply prevent the user from proceeding past the partitioning screen if encryption is enabled but a passphrase isn’t set, and then have the disk encryption checkbox checked by default. In that instance a user would be required to either choose a passphrase or disable encryption. IMO this is the best solution since it should be reasonably obvious to the user why they can’t proceed, and it forces them to make a conscious choice, which is the goal.
It’s also possible to make the “Encrypt system” checkbox tristate, but that comes with some disadvantages and probably won’t have good UX (it might not be clear to the user why they can’t proceed, especially since users oftentimes don’t even notice that the disk encryption checkbox is there at all).
There are a few ways one could implement this, some of them more
invasive than others. One way that might work is to simply prevent the
user from proceeding past the partitioning screen if encryption is
enabled but a passphrase isn’t set, and then have the disk encryption
checkboxchecked by default.
In that instance a user would be required to either choose a passphrase
or disable encryption. IMO this is the best solution since it should be
reasonably obvious to the userwhy they can’t proceed, and it forces them to make a conscious choice, which is the goal.
This “easy” solution sounds good for now.
Later maybe…
Do you wish to use Full Disk Encryption (FDE)?
[ ] use FDE
[ ] do not use FDE
Setting up FDE later is very difficult.
The text needs more work probably if this is even realistic. The text
could be improved to explain what FDE is and whatnot.
“Setting up FDE later is very difficult.” - maybe only show if selecting
“no”
Could be difficult since that might require modifications to the
calamares partition module, which is not written in python.