import pivy-0.6.0

Pivy is an implementation of a simple PIV client with minimal dependencies. It contains a pivy-tool binary which can conduct basic operations using PIV cards, and the pivy-agent, which implements the SSH agent protocol as a drop-in replacement for the OpenSSH ssh-agent command (except that the keys it contains are always on a PIV card). "PIV cards" notably includes Yubico Yubikey devices such as the NEO and Yubikey4, which can store up to 24 keys by using the "retired key" slots (which this agent supports). ok (and much help from) sthen@
2020-06-08 10:42:59 +00:00 · 2020-06-08 10:42:59 +00:00 · 7549cc7d6f
commit 7549cc7d6f
parent 09d500090e
5 changed files with 60 additions and 0 deletions
--- a/security/pivy/Makefile
+++ b/security/pivy/Makefile
@ -0,0 +1,31 @@
+# $OpenBSD: Makefile,v 1.1.1.1 2020/06/08 10:42:59 jmatthew Exp $
+
+V =		0.6.0
+COMMENT =	tools for using PIV tokens as an SSH agent, encryption, etc.
+DISTNAME =	pivy-$V
+
+HOMEPAGE =	https://github.com/arekinath/pivy
+
+MASTER_SITES =	https://github.com/arekinath/pivy/releases/download/v$V/
+
+CATEGORIES =	security
+
+MAINTAINER =	Jonathan Matthew <jmatthew@openbsd.org>
+
+# MPLv2
+PERMIT_PACKAGE =	Yes
+
+WANTLIB =		c edit crypto pcsclite z
+
+LIB_DEPENDS =		security/pcsc-lite
+RUN_DEPENDS =		security/ccid
+
+USE_GMAKE =		Yes
+
+NO_TEST =		Yes
+
+MAKE_FLAGS =		CC="${CC}" \
+			COPTFLAGS="${CFLAGS}" \
+			prefix=${PREFIX}
+
+.include <bsd.port.mk>
--- a/security/pivy/distinfo
+++ b/security/pivy/distinfo
@ -0,0 +1,2 @@
+SHA256 (pivy-0.6.0.tar.gz) = bUImi41jwsOEE5QmQO5zIhDbU8GlTaoou4yC4IkAVjw=
+SIZE (pivy-0.6.0.tar.gz) = 288098
--- a/security/pivy/patches/patch-Makefile
+++ b/security/pivy/patches/patch-Makefile
@ -0,0 +1,14 @@
+$OpenBSD: patch-Makefile,v 1.1.1.1 2020/06/08 10:42:59 jmatthew Exp $
+
+Index: Makefile
+--- Makefile.orig
+++ Makefile
+@@ -194,7 +194,7 @@ PIVTOOL_CFLAGS=		$(PCSC_CFLAGS) \
+ 			$(ZLIB_CFLAGS) \
+ 			$(SYSTEM_CFLAGS) \
+ 			$(SECURITY_CFLAGS) \
+-			-O2 -g -D_GNU_SOURCE
+			$(COPTFLAGS) -D_GNU_SOURCE
+ PIVTOOL_LDFLAGS=	$(SYSTEM_LDFLAGS)
+ PIVTOOL_LIBS=		$(PCSC_LIBS) \
+ 			$(CRYPTO_LIBS) \
--- a/security/pivy/pkg/DESCR
+++ b/security/pivy/pkg/DESCR
@ -0,0 +1,9 @@
+Pivy is an implementation of a simple PIV client with minimal dependencies.
+It contains a pivy-tool binary which can conduct basic operations using
+PIV cards, and the pivy-agent, which implements the SSH agent protocol as
+a drop-in replacement for the OpenSSH ssh-agent command (except that the
+keys it contains are always on a PIV card).
+
+"PIV cards" notably includes Yubico Yubikey devices such as the NEO and
+Yubikey4, which can store up to 24 keys by using the "retired key" slots
+(which this agent supports).
--- a/security/pivy/pkg/PLIST
+++ b/security/pivy/pkg/PLIST
@ -0,0 +1,4 @@
+@comment $OpenBSD: PLIST,v 1.1.1.1 2020/06/08 10:42:59 jmatthew Exp $
+@bin bin/pivy-agent
+@bin bin/pivy-box
+@bin bin/pivy-tool