Secure Suspend With LUKS: When Linux Didn’t Wipe Keys From RAM
Since Linux 6.9, LUKS suspend-to-RAM stopped wiping encryption keys from memory due to a kernel refactor, leaving keys resident across suspend. The fix focuses on restoring key scrubbing plus tests and warnings to prevent silent regressions.