See here: https://fprint.freedesktop.org/
> fprint_demo is obsolete. Most features are integrated into fprintd’s
> helpers, and libfprint has an examples section.
It also doesn't build with the latest libfprint anymore.
Co-authored-by: Sheng-Yi Hung <aokblast@freebsd.org>
Signed-off-by: Daniel Schaefer <dhs@frame.work>
PR: 280749
Sponsored by: Framework Computer Inc
Sponsored by: The FreeBSD Foundation
Pull Request: https://github.com/freebsd/freebsd-ports/pull/291
See here: https://fprint.freedesktop.org/
> pam_fprint is replaced by fprintd’s pam_fprintd module, which splits
> the PAM conversation from hardware access.
It also doesn't work with the latest libfprint anymore.
Co-authored-by: Sheng-Yi Hung <aokblast@FreeBSD.org>
Signed-off-by: Daniel Schaefer <dhs@frame.work>
PR: 280749
Sponsored by: Framework Computer Inc
Sponsored by: The FreeBSD Foundation
Pull Request: https://github.com/freebsd/freebsd-ports/pull/291
AWS-LC is a general-purpose cryptographic library maintained by the AWS
Cryptography team for AWS and their customers. It is based on code from the
Google BoringSSL project and the OpenSSL project.
AWS-LC contains portable C implementations of algorithms needed for TLS and
common applications. For performance critical algorithms, optimized assembly
versions are included for x86 and ARM.
pykeepass_cache is a support library for pykeepass. It is a drop-in
replacement for pykeepass.PyKeePass which caches databases in a
background process to make database access faster.
This is useful in situations where the program is terminated between
invocations (e.g. CLI scripts). The background process will
automatically shut down after 300 seconds.
WWW: https://pypi.org/project/pykeepass-cache
PR: 277694
Event: EuroBSDcon 2024
pykeepass is a python library to interact with keepass databases
(supports KDBX3 and KDBX4). You can perform many tasks such as
finding entries, groups, manipulate entries, group entries,
attachments, and much more. All in a single Python library.
WWW: https://pypi.org/project/pykeepass
PR: 277695
Evenet: EuroBSDcon 2024
OpenBao exists to provide a software solution to manage, store, and
distribute sensitive data including secrets, certificates, and keys.
The OpenBao community intends to provide this software under an
OSI-approved open-source license, led by a community run under open
governance principles.
https://openbao.orghttps://github.com/openbao/openbao
PR: 280619
The Hydrogen library is a small, easy-to-use, hard-to-misuse cryptographic
library.
Features:
- Consistent high-level API, inspired by libsodium. Instead of low-level
primitives, it exposes simple functions to solve common problems that
cryptography can solve.
- 100% built using just two cryptographic building blocks: the Curve25519
elliptic curve, and the Gimli permutation.
- Small and easy to audit. Implemented as one tiny file for every set of
operation, and adding a single .c file to your project is all it takes to use
libhydrogen in your project.
- The whole code is released under a single, very liberal license (ISC).
- Zero dynamic memory allocations and low stack requirements (median: 32 bytes,
max: 128 bytes). This makes it usable in constrained environments such as
microcontrollers.
- Portable: written in standard C99. Supports Linux, *BSD, MacOS, Windows, and
the Arduino IDE out of the box.
- Can generate cryptographically-secure random numbers, even on Arduino boards.
- Attempts to mitigate the implications of accidental misuse, even on systems
with an unreliable PRG and/or no clock.
libaegis is a portable C implementations of the AEGIS family of high-performance
authenticated ciphers (AEGIS-128L, AEGIS-128X2, AEGIS-128X4, AEGIS-256,
AEGIS-256X2, AEGIS-256X4), with runtime CPU detection.
Features:
- AEGIS-128L with 16 and 32 bytes tags (software, AES-NI, ARM Crypto)
- AEGIS-128X2 with 16 and 32 bytes tags (software, VAES + AVX2, AES-NI, ARM
Crypto)
- AEGIS-128X4 with 16 and 32 bytes tags (software, AVX512, VAES + AVX2, AES-NI,
ARM Crypto)
- AEGIS-256 with 16 and 32 bytes tags (software, AES-NI, ARM Crypto)
- AEGIS-256X2 with 16 and 32 bytes tags (software, VAES + AVX2, AES-NI, ARM
Crypto)
- AEGIS-256X4 with 16 and 32 bytes tags (software, AVX512, VAES + AVX2, AES-NI,
ARM Crypto)
- All variants of AEGIS-MAC, supporting incremental updates.
- Encryption and decryption with attached and detached tags
- Incremental encryption and decryption.
- Unauthenticated encryption and decryption (not recommended - only implemented
for specific protocols)
- Deterministic pseudorandom stream generation.
qt-sudo is a clone of LXQt sudo tool (without LXQt libs). It is the ONLY
privilege escalation tool supported by Baiacu, Octopi, OctoPkg, OctoPkgin,
OctoXBPS and QTGZManager applications.
WWW: https://github.com/aarnt/qt-sudo
Python implementation of Metasploit's pattern generator and search.
Should be python version agnostic, tested and working with Python
2.7.12 up to and including Python 3.11.1
Starts faster and rolls both tools into one.
No extra dependencies required, works with vanilla python
https://github.com/Svenito/exploit-pattern
PR: 280341
We clone security/wpa_supplicant to security/wpa_supplicant210 in
preparation for the wpa_supplicant update to 2.11. In case anyone is
having issues with it they can fall back to security/wpa_supplicant210.
Library handling the communication with Apple's Tatsu Signing Server
(TSS).
This library is part of the libimobiledevice project and its main
purpose is to create TSS request payloads, send them to Apple's TSS
server, and ultimately retrieve and process the response.
PR: 280014
Reported by: <fabio.comolli@gmail.com>
This is not an official port/project from OpenBSD!
OpenBSD doas does not support persist option for non OpenBSD systems,
OpenDoas originally made for Linux and MacOS does support this.
This port includes a patch for the OpenDoas to supports persist on FreeBSD.
This commit adds the OpenDoas as an alternative to sudo that supports persist.
PR: 279598
Approved by: Cathal O'Grady <fierceinbattle@gmail.com> (maintainer)
CanCanCan is an authorization library for Ruby and Ruby on Rails which restricts
what resources a given user is allowed to access.
All permissions can be defined in one or multiple ability files and not
duplicated across controllers, views, and database queries, keeping your
permissions logic in one place for easy maintenance and testing.
It consists of two main parts:
- Authorizations library that allows you to define the rules to access different
objects, and provides helpers to check for those permissions.
- Rails helpers to simplify the code in Rails Controllers by performing the
loading and checking of permissions of models automatically and reduce
duplicated code.
Add security/pinentry-qt6 for the new Qt 6 pinentry frontend.
Make a more generic pkg-message for pinentry frontends that have a
dependency loop with the main port. Previously, only the gnome frontend
had this problem, but a dependency loop was also discovered in the efl
frontend.
https://dev.gnupg.org/T7046
