FreeBSD Bugzilla – Attachment 219078 Details for
Bug 250601
[NEW PORT] security/py-onlykey: command line tool to work with OnlyKey hardware password manager
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Help
|
New Account
|
Log In
Remember
[x]
|
Forgot Password
Login:
[x]
[patch]
security/py-onlykey port, with removed PORTREVISION
security_py_onlykey.2.patch (text/plain), 10.93 KB, created by
Dmytro Bilokha
on 2020-10-25 18:06:49 UTC
(
hide
)
Description:
security/py-onlykey port, with removed PORTREVISION
Filename:
MIME Type:
Creator:
Dmytro Bilokha
Created:
2020-10-25 18:06:49 UTC
Size:
10.93 KB
patch
obsolete
>Index: security/py-onlykey/Makefile >=================================================================== >--- security/py-onlykey/Makefile (nonexistent) >+++ security/py-onlykey/Makefile (working copy) >@@ -0,0 +1,37 @@ >+ >+PORTNAME= onlykey >+PORTVERSION= 1.2.2 >+CATEGORIES= security python >+MASTER_SITES= CHEESESHOP >+PKGNAMEPREFIX= ${PYTHON_PKGNAMEPREFIX} >+ >+MAINTAINER= dmytro@posteo.net >+COMMENT= Python command line tool for configuring and using OnlyKey >+ >+LICENSE= MIT >+ >+RUN_DEPENDS= ${PYTHON_PKGNAMEPREFIX}prompt_toolkit>0:devel/py-prompt_toolkit@${PY_FLAVOR} \ >+ ${PYTHON_PKGNAMEPREFIX}libusb1>0:devel/py-libusb1@${PY_FLAVOR} \ >+ ${PYTHON_PKGNAMEPREFIX}pynacl>0:security/py-pynacl@${PY_FLAVOR} \ >+ ${PYTHON_PKGNAMEPREFIX}ecdsa>=0.13:security/py-ecdsa@${PY_FLAVOR} \ >+ ${PYTHON_PKGNAMEPREFIX}hidapi>0:comms/py-hidapi@${PY_FLAVOR} \ >+ ${PYTHON_PKGNAMEPREFIX}uhid-freebsd>0:devel/py-uhid-freebsd@${PY_FLAVOR} \ >+ ${PYTHON_PKGNAMEPREFIX}aenum>0:devel/py-aenum@${PY_FLAVOR} \ >+ u2f-host:security/libu2f-host >+ >+USES= python:3.7+ >+USE_PYTHON= autoplist distutils >+ >+SUB_FILES= pkg-message >+ >+PLIST_FILES= "${PREFIX}/etc/devd/onlykey.conf.sample" "${PREFIX}/man/man1/onlykey-cli.1.gz" >+ >+NO_ARCH= yes >+ >+post-install: >+ @${MKDIR} ${STAGEDIR}${PREFIX}/etc/devd >+ ${INSTALL_DATA} ${FILESDIR}/onlykey.conf.sample \ >+ ${STAGEDIR}${PREFIX}/etc/devd >+ ${INSTALL_MAN} ${FILESDIR}/onlykey-cli.1 ${STAGEDIR}${PREFIX}/man/man1 >+ >+.include <bsd.port.mk> > >Property changes on: security/py-onlykey/Makefile >___________________________________________________________________ >Added: svn:eol-style >## -0,0 +1 ## >+native >\ No newline at end of property >Added: svn:keywords >## -0,0 +1 ## >+FreeBSD=%H >\ No newline at end of property >Added: svn:mime-type >## -0,0 +1 ## >+text/plain >\ No newline at end of property >Index: security/py-onlykey/distinfo >=================================================================== >--- security/py-onlykey/distinfo (nonexistent) >+++ security/py-onlykey/distinfo (working copy) >@@ -0,0 +1,3 @@ >+TIMESTAMP = 1603049784 >+SHA256 (onlykey-1.2.2.tar.gz) = b17197715e9197885574a0806cce8af087756f99c87d27415be7d15e967a6be2 >+SIZE (onlykey-1.2.2.tar.gz) = 11911 > >Property changes on: security/py-onlykey/distinfo >___________________________________________________________________ >Added: fbsd:nokeywords >## -0,0 +1 ## >+yes >\ No newline at end of property >Added: svn:eol-style >## -0,0 +1 ## >+native >\ No newline at end of property >Added: svn:mime-type >## -0,0 +1 ## >+text/plain >\ No newline at end of property >Index: security/py-onlykey/files/onlykey-cli.1 >=================================================================== >--- security/py-onlykey/files/onlykey-cli.1 (nonexistent) >+++ security/py-onlykey/files/onlykey-cli.1 (working copy) >@@ -0,0 +1,230 @@ >+.Dd October 23, 2020 >+.Dt ONLYKEY-CLI 1 >+.Os >+.Sh NAME >+.Nm onlykey-cli >+.Nd Python client for interacting with the OnlyKey >+.Sh SYNOPSIS >+.Nm >+.Op Ar command >+.Sh DESCRIPTION >+.Nm >+is a command line interface to the OnlyKey that can be used for >+configuration (similar functionality to OnlyKey App). You can either >+provide a >+.Ar command >+to get it executed immediately or run >+.Nm >+without parameters to open an interactive prompt and type commands there. >+.Sh COMMANDS >+.Bl -tag -width 2n >+.It Xo >+.Cm init >+.Xc >+.Pp >+Sets OnlyKey into initial configuration mode (setting PIN). >+.It Xo >+.Cm settime >+.Xc >+.Pp >+Sets time on OnlyKey, time is needed for TOTP (Google Authenticator). >+.It Xo >+.Cm getlabels >+.Xc >+.Pp >+Prints label for each slot. >+.It Xo >+.Cm getkeylabels >+.Xc >+.Pp >+Prints key label for each RSA and ECC key. >+.It Xo >+.Cm setslot >+.Ar slot_id >+.Ar type >+.Ar value >+.Xc >+.Pp >+For the specified slot sets parameter of the specified >+.Ar type >+to the >+.Ar value >+provided. >+.Bl -tag -width indent >+.It Ar slot_id >+Slot id: 1a-6b. >+.It Ar type >+Type of the parameter to set. Must be one of the following: >+.Bl -tag -offset 4n -width 8n >+.It Sy label >+The slot label. >+.It Sy url >+URL of the login page. >+.It Sy delay1 >+Delay after entering URL, seconds: 0-9. >+.It Sy add_char1 >+Additional character before username: 1 for TAB, 0 to clear. >+.It Sy username >+Username to login. >+.It Sy add_char2 >+Additional character after username: 1 for TAB, 2 for RETURN. >+.It Sy delay2 >+Delay after entering username, seconds: 0-9. >+.It Sy password >+Password to login. >+.It Sy add_char3 >+Additional character after password: 1 for TAB, 2 for RETURN. >+.It Sy delay3 >+Delay after entering password, seconds: 0-9. >+.It Sy add_char4 >+Additional character before OTP: 1 for TAB, 2 for RETURN. >+.It Sy 2fa >+Type of two factor authentication: g for Google Authenticator, y - Yubico OTP, u - U2F. >+.It Sy totpkey >+Google Authenticator key. >+.It Sy add_char5 >+Additional character after OTP: 1 for TAB, 2 for RETURN. >+.El >+.It Ar value >+Value to set, see accepted values in each parameter type description above. >+.El >+.It Xo >+.Cm wipeslot >+.Ar slot_id >+.Xc >+.Pp >+Erases all the data (URL/username/password/label/etc.) of the slot with provided >+.Ar slot_id >+(1a-6b). >+.It Xo >+.Cm setkey >+.Ar key_slot >+.Ar key_type >+.Xc >+.Pp >+Sets custom key of provided >+.Ar key_type >+to the >+.Ar key_slot . >+.It Xo >+.Cm wipekey >+.Ar key_slot >+.Xc >+.Pp >+Wipes custom key from the provided >+.Ar key_slot . >+.It Xo >+.Cm idletimeout >+.Ar timeout >+.Xc >+.Pp >+Sets the OnlyKey auto-lock time value to >+.Ar timout >+minutes: 1-255; default is 30; 0 to disable. >+.It Xo >+.Cm wipemode >+.Ar mode_id >+.Xc >+.Pp >+Configures how the OnlyKey responds to a factory reset. Accepted >+.Ar mode_id >+values are: >+.Bl -tag -width indent >+.It 1 >+Only sensitive data will be wiped (default). >+.It 2 >+Entire OnlyKey device will be wiped, including firmware. Firmware must be >+reloaded after factory reset. This mode is recommended for plausible >+deniability users. WARNING: setting to this mode cannot be changed. >+.El >+.It Xo >+.Cm keylayout >+.Ar layout_id >+.Xc >+.Pp >+Configures the OnlyKey keyboard layout. Accepted >+.Ar layout_id >+values are: >+.Bl -tag -width indent >+.It 1 >+USA_ENGLISH (default). >+.It 2 >+CANADIAN_FRENCH. >+.It 3 >+CANADIAN_MULTILINGUAL. >+.It 4 >+DANISH. >+.It 5 >+FINNISH. >+.It 6 >+FRENCH. >+.It 7 >+FRENCH_BELGIAN. >+.It 8 >+FRENCH_SWISS. >+.It 9 >+GERMAN. >+.It 10 >+GERMAN_MAC. >+.It 11 >+GERMAN_SWISS. >+.It 12 >+ICELANDIC. >+.It 13 >+IRISH. >+.It 14 >+ITALIAN. >+.It 15 >+NORWEGIAN. >+.It 16 >+PORTUGUESE. >+.It 17 >+PORTUGUESE_BRAZILIAN. >+.It 18 >+SPANISH. >+.It 19 >+SPANISH_LATIN_AMERICA. >+.It 20 >+SWEDISH. >+.It 21 >+TURKISH. >+.It 22 >+UNITED_KINGDOM. >+.It 23 >+CZECH. >+.It 24 >+SERBIAN_LATIN_ONLY. >+.It 25 >+HUNGARIAN. >+.El >+.It Xo >+.Cm keytypespeed >+.Ar speed >+.Xc >+.Pp >+Sets type >+.Ar speed >+: 1 is slowest; 10 is fastest; 4 is default. >+.Sh BUGS >+Sometimes the >+.Nm >+doesn't recognize that PIN has been entered and the OnlyKey in unlocked >+successfully. >+In such case any command to the OnlyKey fails with an >+error 'OnlyKey is locked, enter PIN to unlock'. >+The workaround for such issue is to just retry one more time. >+.Sh AUTHORS >+This manual page is a >+.Xr mdoc 7 >+reimplementation of the OnlyKey PIP module's README.md, >+modified and customized for >+.Fx . The >+.Xr mdoc 7 >+implementation of this manual page was initially written by >+.An Dmytro Bilokha Aq dmytro@posteo.net . >+.Sh WWW >+Main OnlyKey product page: https://onlykey.io/ >+ >+OnlyKey documentation site: https://docs.crp.to/ >+ >+Source code: https://github.com/trustcrypto/python-onlykey > >Property changes on: security/py-onlykey/files/onlykey-cli.1 >___________________________________________________________________ >Added: svn:eol-style >## -0,0 +1 ## >+native >\ No newline at end of property >Added: svn:mime-type >## -0,0 +1 ## >+text/plain >\ No newline at end of property >Index: security/py-onlykey/files/onlykey.conf.sample >=================================================================== >--- security/py-onlykey/files/onlykey.conf.sample (nonexistent) >+++ security/py-onlykey/files/onlykey.conf.sample (working copy) >@@ -0,0 +1,35 @@ >+# OnlyKey Security KEY >+notify 100 { >+ match "system" "USB"; >+ match "subsystem" "DEVICE"; >+ match "type" "ATTACH"; >+ match "vendor" "0x1d50"; >+ match "product" "0x60fc"; >+# Instead of "u2f" below put the users group name who should be able to use OnlyKey >+ action "chgrp u2f /dev/$cdev; chmod g+rw /dev/$cdev"; >+}; >+ >+notify 100 { >+ match "system" "USB"; >+ match "subsystem" "DEVICE"; >+ match "type" "ATTACH"; >+ match "vendor" "0x16c0"; >+ match "product" "0x0486"; >+# Instead of "u2f" below put the users group name who should be able to use OnlyKey >+ action "chgrp u2f /dev/$cdev; chmod g+rw /dev/$cdev"; >+}; >+ >+attach 100 { >+ match "vendor" "0x1d50"; >+ match "product" "0x60fc"; >+# Instead of "u2f" below put the users group name who should be able to use OnlyKey >+ action "chgrp u2f /dev/$device-name; chmod g+rw /dev/$device-name"; >+}; >+ >+attach 100 { >+ match "vendor" "0x16c0"; >+ match "product" "0x0486"; >+# Instead of "u2f" below put the users group name who should be able to use OnlyKey >+ action "chgrp u2f /dev/$device-name; chmod g+rw /dev/$device-name"; >+}; >+ > >Property changes on: security/py-onlykey/files/onlykey.conf.sample >___________________________________________________________________ >Added: svn:eol-style >## -0,0 +1 ## >+native >\ No newline at end of property >Added: svn:mime-type >## -0,0 +1 ## >+text/plain >\ No newline at end of property >Index: security/py-onlykey/files/pkg-message.in >=================================================================== >--- security/py-onlykey/files/pkg-message.in (nonexistent) >+++ security/py-onlykey/files/pkg-message.in (working copy) >@@ -0,0 +1,13 @@ >+[ >+{ type: install >+ message: <<EOM >+To allow some group of non-root users access to the OnlyKey token: >+1. Copy sample devd config file: >+ >+$ cp %%PREFIX%%/etc/devd/onlykey.conf.sample %%PREFIX%%/etc/devd/onlykey.conf >+ >+2. Open %%PREFIX%%/etc/devd/onlykey.conf in your favourite text editor and >+set the users group name. >+EOM >+} >+] > >Property changes on: security/py-onlykey/files/pkg-message.in >___________________________________________________________________ >Added: fbsd:nokeywords >## -0,0 +1 ## >+yes >\ No newline at end of property >Added: svn:eol-style >## -0,0 +1 ## >+native >\ No newline at end of property >Added: svn:mime-type >## -0,0 +1 ## >+text/plain >\ No newline at end of property >Index: security/py-onlykey/pkg-descr >=================================================================== >--- security/py-onlykey/pkg-descr (nonexistent) >+++ security/py-onlykey/pkg-descr (working copy) >@@ -0,0 +1,4 @@ >+Python command line tool for configuring and using OnlyKey USB >+secrets manager. >+ >+WWW: https://github.com/trustcrypto/python-onlykey > >Property changes on: security/py-onlykey/pkg-descr >___________________________________________________________________ >Added: fbsd:nokeywords >## -0,0 +1 ## >+yes >\ No newline at end of property >Added: svn:eol-style >## -0,0 +1 ## >+native >\ No newline at end of property >Added: svn:mime-type >## -0,0 +1 ## >+text/plain >\ No newline at end of property
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=219078">View the attachment on a separate page</a>.</b>
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 250601
:
219069
|
219078
|
219257