Skip to content

Skip trailing newlines in pin-source files #610

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
mtrojnar merged 2 commits into from
Jul 16, 2025
Merged

Skip trailing newlines in pin-source files #610

mtrojnar merged 2 commits into from
Jul 16, 2025

Conversation

@haxtibal
Copy link
Contributor

@haxtibal haxtibal commented Jun 27, 2025

Text editors usually append '\n' to the last line when saving a text file. Also echo "mypin" > ~/pinfile.txt appends a newline. It's therefore likely we encounter PIN files where the PIN is delimited with '\n'. Currently, PIN validation would fail in such a case since libp11 passes on the newline to PKCS#11 modules as if it was part of the PIN.

We now ignore trailing newlines. There's no specification mandating this, but since PINs are meant for interactive input it seems safe to assume PINs will never be allowed to contain a trailing newline. Further, the pkcs11-provider project is doing the same in their src/util.c:get_pin_file.

The change is backwards compatible. PIN files without trailing newline will work as well.

haxtibal added 2 commits June 27, 2025 11:44
@haxtibal
Skip trailing newlines in pin-source files
22d5836 
Text editors usually append '\n' to the last line when saving a text
file. Also 'echo "mypin" > ~/pinfile.txt' appends a newline. It's
therefore likely we encounter PIN files where the PIN is delimited with
'\n'. Currently, PIN validation would fail in such a case since libp11
passes on the newline to PKCS#11 modules as if it was part of the PIN.

We now ignore trailing newlines. There's no specification mandating
this, but since PINs are meant for interactive input it seems safe to
assume PINs will never be allowed to contain a trailing newline.
Further, the pkcs11-provider project is doing the same in their
src/util.c:get_pin_file.

The change is backwards compatible. PIN files without trailing newline
will work as well.
@haxtibal
Add tests dedicated to pin-source
a55a906
@mtrojnar mtrojnar merged commit 5c3fa23 into OpenSC:master Jul 16, 2025
10 checks passed
mtrojnar added a commit that referenced this pull request Jul 16, 2025
@mtrojnar
Make the PR #610 code less ugly
49ac23f
@mtrojnar
Copy link
Member

mtrojnar commented Jul 16, 2025

Thank you for your contribution.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@haxtibal @mtrojnar