By default, we permit non-root mlock of up to 4k. gpg tries to lock 32k, and fails. We could either: a) try to fix gpg to work with 4k b) bump the limit in /etc/security/limits.conf
The limit should probably be bumped to 32kB, in /etc/security/limits.conf That way we can: 1) test the mlock patch better 2) see if there are issues with eg. sshd not obeying the limits in /etc/security/limits.conf
kernel defaults to 32k btw
And, it actually works now.