Your message dated Tue, 30 Sep 2025 16:05:46 +0000
with message-id <[email protected]>
and subject line Bug#1098822: fixed in otpclient 4.1.1-1
has caused the Debian Bug report #1098822,
regarding otpclient: otpclient complains about lock memory limits
(show_memlock_warning)
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
1098822: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098822
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: otpclient
Version: 4.0.2-1
Severity: normal
Recently, otpclient started complaining to me about the memory limits.
if `~/.config/otpclient.cfg` does not contain:
```
show_memlock_warning=false
```
then i get a modal dialog when starting it up that says:
```
Warning: memlock value too low
------------------------------
Your operating system's memlock limit (8388608 bytes) may be too low.
This could cause the program to crash or, worse, use insecure
memeory.Please review the [secure memory wiki
page](https://github.com/paolostivanin/OTPClient/wiki/Secure-Memory-Limitations)
before using this software with the current settings.
[ ] I confirm that I want to use the current, possibly too low, memlock
value. Do not show this warning again.
[ Exit ] [ OK ]
```
Indeed, the limit for my user account is 8MiB:
```
0 dkg@bob:~$ ulimit -a | grep locked
max locked memory (kbytes, -l) 8192
0 dkg@bob:~$
```
I have not changed this recently, so i don't know why the warning would
start showing up now.
If an upgrade of some other part of the system might have changed this
default, feel free to reassign this bug report to the other package and
note that it affects otpclient.
Overall, i think warnings like this are harmful if they're not obviously
actionable -- they tell the user that maybe something scary is
happening, but not really what they should do about it.
Also, it's unclear to me why otpclient would need to lock up more than
8MiB of RAM; and it's not even clear to me what defense memory locking
provides in 2025 -- for example, when running within a VM i think the
hypervisor can still have access to even locked memory.
Can we make this friendier/less scary/more fixable for users?
--dkg
-- System Information:
Debian Release: trixie/sid
APT prefers testing-debug
APT policy: (500, 'testing-debug'), (500, 'testing'), (200,
'unstable-debug'), (200, 'unstable'), (1, 'experimental-debug'), (1,
'experimental')
Architecture: amd64 (x86_64)
Kernel: Linux 6.12.12-amd64 (SMP w/20 CPU threads; PREEMPT)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
Versions of packages otpclient depends on:
ii libc6 2.40-7
ii libcotp3 3.1.0-1
ii libgcrypt20 1.11.0-7
ii libgdk-pixbuf-2.0-0 2.42.12+dfsg-2
ii libglib2.0-0t64 2.83.3-2
ii libgtk-3-0t64 3.24.48-4
ii libjansson4 2.14-2+b3
ii libpng16-16t64 1.6.46-4
ii libprotobuf-c1 1.5.1-1
ii libqrencode4 4.1.1-2
ii libsecret-1-0 0.21.6-3
ii libuuid1 2.40.4-4
ii libzbar0t64 0.23.93-7
otpclient recommends no packages.
Versions of packages otpclient suggests:
ii otpclient-cli 4.0.2-1
-- no debconf information
signature.asc
Description: PGP signature
--- End Message ---
--- Begin Message ---
Source: otpclient
Source-Version: 4.1.1-1
Done: Francisco Vilmar Cardoso Ruviaro <[email protected]>
We believe that the bug you reported is fixed in the latest version of
otpclient, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Francisco Vilmar Cardoso Ruviaro <[email protected]> (supplier of updated
otpclient package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Tue, 30 Sep 2025 15:26:00 +0000
Source: otpclient
Architecture: source
Version: 4.1.1-1
Distribution: unstable
Urgency: medium
Maintainer: Francisco Vilmar Cardoso Ruviaro <[email protected]>
Changed-By: Francisco Vilmar Cardoso Ruviaro <[email protected]>
Closes: 1098822
Changes:
otpclient (4.1.1-1) unstable; urgency=medium
.
* New upstream version 4.1.1. (Closes: #1098822)
* Bump Standards-Version to 4.7.2.
* Remove "Rules-Requires-Root: no" (default since dpkg 1.22.13).
* Update upstream and packaging copyright years.
* Refresh patch.
* Update debian/watch from the old "version=4" syntax
to the new "Version: 5" RFC-822 style format.
Checksums-Sha1:
fbc3aa3adf63f7cc7594325cc49b6b8850871072 2379 otpclient_4.1.1-1.dsc
7b759f1c91ee995474ee50f94214a4dd45dcad3d 206377 otpclient_4.1.1.orig.tar.gz
55568c0b32dd498e5421980068695287f99cb6e4 833 otpclient_4.1.1.orig.tar.gz.asc
18456ecc866759b00cd3071c870bec95b6604220 11620 otpclient_4.1.1-1.debian.tar.xz
d7fa28ba6b0998cfd88b0891f782af1b55276c3d 17666
otpclient_4.1.1-1_amd64.buildinfo
Checksums-Sha256:
b46b6f68ae27780c4a55e93515beae494fa6cdcfb0127a42ca6a45447295ef1f 2379
otpclient_4.1.1-1.dsc
5f0e3954fbe6f88c006478ea03ac690b22fb7d752d82f83bdf2c770c1550d5aa 206377
otpclient_4.1.1.orig.tar.gz
fc460633c3ef078389701feaf9eaff862a00b0dd7c317b4ec8c9c06dfe926be3 833
otpclient_4.1.1.orig.tar.gz.asc
3e0c34b3d2a427cc7d97449327e84d992ebb18364f521078a0cd978c0f9b806a 11620
otpclient_4.1.1-1.debian.tar.xz
874fce6d4cf89a9997791e05a02ad3f6a092e54e02c2956baa3f3ec273c84977 17666
otpclient_4.1.1-1_amd64.buildinfo
Files:
23c301c5f58fdfa150f386bd77636ab7 2379 utils optional otpclient_4.1.1-1.dsc
e5d1817317bbeb48ec5a109cee7aa7e1 206377 utils optional
otpclient_4.1.1.orig.tar.gz
bf462ed6c79bb9c0bd7929c1b836527c 833 utils optional
otpclient_4.1.1.orig.tar.gz.asc
6009adafd2802ed90dc4dc3421495e93 11620 utils optional
otpclient_4.1.1-1.debian.tar.xz
7bb51f0be27fb8051bc9de3181c90bb0 17666 utils optional
otpclient_4.1.1-1_amd64.buildinfo
-----BEGIN PGP SIGNATURE-----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=IuAg
-----END PGP SIGNATURE-----
pgpxEp4nbdJ8I.pgp
Description: PGP signature
--- End Message ---
