The presence of gpg key disables ulimit and coredump in X11 session
Closed, WontfixPublic

Description

After gpg key generation, coredumps are disabled as "ulimit -c" is set to zero via the gpg-agent, see SUSE bug [0]. Could the disable_core_dumps() call be securely moved to the fork code path? See the patch in [1] and the comments about [2].

[0] https://bugzilla.suse.com/show_bug.cgi?id=1124847
[1] https://bugzilla.suse.com/show_bug.cgi?id=1124847#c6
[2] https://dev.gnupg.org/T1509

Details

pmgdeb created this task.Apr 29 2019, 5:28 PM
werner closed this task as Wontfix.Apr 29 2019, 10:12 PM
werner claimed this task.
werner added a subscriber: werner.

Since 2.1 the standard use of gpg-agent is to have it started on demand by the components which require it. The use of
"gpg-agent --daemon /bin/sh " should be used for debugging only.