I have enabled LUKS2 encrypted SWAP. I won’t disable Secure Boot because of dual boot with Windows 11 which also needs secure boot and TPM2.0. I wish to enable Hybrid Sleep but now the suspend to disk is not available. I checked the kernel and it has the feature but restricted it. I checked the manual and found that the restriction only happens when SWAP is NOT encrypted because anyone can modify SWAP to add malicious content which might harm the system on wakeup.
I checked Stack Exchange and found this
However, I really have the required features mentioned there, and fwupdmgr only shows the unavailable feature of Encrypted RAM (I am using a laptop and neither AMD Epyc or Intel Xeon is available), and a TAINED kernel. I am using NVIDIA driver but the kernel is still tained before I install the kernel modules of nvidia, but the tained code is 4096 all the time.
Fine, that really should not matter. The question is, with the encrypted SWAP large enough and secure boot enabled, the hibernate feature is available in Leap as the website says, but not Tumbleweed. Have I missed anything?
My SWAP consists of a half-ram-size ZRAM using zstd compression with higher priority, and a SWAPFILE encrypted. They should be working just fine.
My kernel is just the default provided. I also tried lts kernel and no difference. I wish the Hybrid Sleep should be available as I wish a longer battery usage.
Thanks if anyone has ideas.