[Pkg-gnupg-maint] Bug#772780: gnupg: "out of secure memory" even with only 4096-RSA keys when using addkey in --edit-key interface

NIIBE Yutaka gniibe at fsij.org
Fri Dec 12 00:33:16 UTC 2014 

On 12/11/2014 11:29 PM, David Z wrote:
> Would increasing the amount of secure memory that's allocated be a
> reasonable fix?

Right.  That would make sense, given the condition: Something like
that has been introduced in the Debian build of gnupg 1.4.x for jessie
(the forthcoming release).

But I am a bit conservative for such a change into stable release of
Debian (and gnupg 1.4.x series).



Here is another way to fix the issue.

Well, yesterday, I wanted to know the specific reason why your
configuration kicked the error.  The change of s2k (string to key)
cipher configuration shouldn't had affected the memory pressure (much)
for signature computation.

The computation goes like this:

    A private key (of primary key-pair) is saved in an encrypted
    format by DEK (Data Encryption Key).  DEK is computed by s2k
    function.  When adding a subkey, user will be asked the passphrase
    to decrypt the saved data into raw private key.  Decrypted, the
    raw private key is used to sign the subkey.

Here is the problem I found in the current implementation.  We don't
need to keep the DEK (Data Encryption Key), once we got the private
key.  Following is the patch I created to fix the issue.

With this patch, it is possible for me successfully adding subkey with:
"s2k-cipher-algo S10".

I'm going to submit this change to upstream, too.


Debian GnuPG-Maintainers:

For wheezy, I think that it's worth to apply this change, because it
is a regression which was introduced by the security fix.

For jessie, I think that this is not required, but it makes sense to
apply, because there would be some corner cases which will cause
similar errors.


diff --git a/g10/keygen.c b/g10/keygen.c
index 9020908..5af0043 100644
--- a/g10/keygen.c
+++ b/g10/keygen.c
@@ -3447,6 +3447,7 @@ generate_subkeypair( KBNODE pub_keyblock, KBNODE sec_keyblock )

     rc = do_create (algo, nbits, pub_keyblock, sec_keyblock,
 		    dek, s2k, &sub_sk, timestamp, expire, 1 );
+    xfree( dek );
     if (!rc)
 	rc = write_keybinding (pub_keyblock, pub_keyblock, pri_sk, sub_sk,
                                use, timestamp);
@@ -3463,7 +3464,6 @@ generate_subkeypair( KBNODE pub_keyblock, KBNODE sec_keyblock )
     if( rc )
 	log_error(_("Key generation failed: %s\n"), g10_errstr(rc) );
     xfree( passphrase );
-    xfree( dek );
     xfree( s2k );
     /* release the copy of the (now unprotected) secret keys */
     if( pri_sk )
--

More information about the Pkg-gnupg-maint mailing list