From 42307e4ec3f226547e4742f25cd92aa39db53627 Mon Sep 17 00:00:00 2001
From: Vincent Bernat <vincent@bernat.ch>
Date: Fri, 8 Feb 2019 11:26:32 +0100
Subject: Do not remove password when new line is missing

If the password file doesn't end with a new line, the last line is
ignored because `read -r` will return a non-zero status, while still
setting the `$line` variable. Some implementations of pass, like
`gopass` do not create a password file ending with a new line.
Therefore, using `pass otp append` on these files will result in the
password being remove from the file.

To fix that, we ensure we insert the new line if it is missing.

I have added a test, but this is not enough to catch the problem
because `pass` will add the new line even when it is missing (for
example, using `echo -n | pass insert -e passfile` won't help to
trigger the bug).
---
 otp.bash | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'otp.bash')

diff --git a/otp.bash b/otp.bash
index 15bd012..c62501a 100755
--- a/otp.bash
+++ b/otp.bash
@@ -268,7 +268,7 @@ cmd_otp_append() {
   [[ -f $passfile ]] || die "Passfile not found"
 
   local existing contents=""
-  while IFS= read -r line; do
+  while IFS= read -r line || [ -n "$line" ]; do
     [[ -z "$existing" && "$line" == otpauth://* ]] && existing="$line"
     [[ -n "$contents" ]] && contents+=$'\n'
     contents+="$line"
-- 
cgit v1.2.3