Enable Trim by default (Or provide installation option) for SSD drives

[t4777sd]

Qubes OS version:

Q 4.0

Expected behavior:

Trim is enabled if the user is using SSD or at least installation option is presented

Actual behavior:

User must enable trim through a cumbersome manual process outlined here: https://www.qubes-os.org/doc/disk-trim/

General notes:

I think most users in 2018 expect that trim is enabled by default. Almost all users of Qubes utilize an SSD so this affects almost every user I imagine.

I have been running Qubes for quite some time assuming it trimmed. So, at a minimum a big warning during installation should be made that Trim will not be done on the SSD unless manual action is taken post-installation. Not trimming is against user expectations in the current year I think.

Trim is far more secure than not using trim. Without Trim the machine is far more vulnerable to forensics. As a result it should be enabled by default to prevent forensics.

[andrewdavidwong]

Related to (possible duplicate of?): #3226

[andrewdavidwong]

Even more likely duplicate of #3686. Please have a look at the discussion there concerning the security considerations.

[ideologysec]

My head hurts after reading all of the linked discussions; how the heck does this even apply to a btrfs Qubes install?

[andrewdavidwong]

My head hurts after reading all of the linked discussions; how the heck does this even apply to a btrfs Qubes install?

You're the first to mention btrfs on this issue, so perhaps the first question is: How does btrfs apply here?