a-c-m
/
community.crypto
mirror of https://github.com/ansible-collections/community.crypto.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
372 Commits
3 Branches
90 Tags
24 MiB
Commit Graph

372 Commits (7fbe649dc65685a1723b2f02cedf9cbdb87739e8)

Author SHA1 Message Date
patchback[bot] 426d70fbcf
luks_device: add built-in signature wiper to work around older wipefs versions with LUKS2 containers (#327) (#330) 
* Use 'cryptsetup erase' to kill LUKS signature.

* Adjust unit test.

* Use own wiper for LUKS headers.

* Add comments.

* Fix tests.

* Update changelog.

* Remove 'cryptsetup erase'.

* Improve error messages.

(cherry picked from commit ebbfd7c56f)

Co-authored-by: Felix Fontein <felix@fontein.de>
 2021-11-11 07:17:45 +01:00
patchback[bot] f315722b31
Replace Fedora 33 with Fedora 35 for devel tests. (#328) (#329) 
(cherry picked from commit 91d98c4413)

Co-authored-by: Felix Fontein <felix@fontein.de>
 2021-11-09 05:52:42 +01:00
patchback[bot] 73afe8e742
acme_certificate: fix crash when using fullchain_dest (#324) (#325) 
* Fix crash when using fullchain_dest.

* Adjust changelog.

* Update plugins/module_utils/acme/backend_cryptography.py

Co-authored-by: Ajpantuso <ajpantuso@gmail.com>

Co-authored-by: Ajpantuso <ajpantuso@gmail.com>
(cherry picked from commit 51b6bb210d)

Co-authored-by: Felix Fontein <felix@fontein.de>
 2021-11-05 09:35:10 +01:00
Felix Fontein db67b8a857 Next expected release is 1.9.7. 2021-10-30 18:21:40 +02:00
Felix Fontein e05475d58a Release 1.9.6. 2021-10-30 17:48:48 +02:00
Felix Fontein dceee8f50e Prepare 1.9.6 release. 2021-10-30 17:07:49 +02:00
Felix Fontein b893252ad1
[stable-1] cryptography support: improve Python 2 Unicode handling (#314) 
* Improve Python 2 Unicode handling. (#313)

(cherry picked from commit eb8dabce84)

* Remove test since it doesn't work with pyOpenSSL.

* Completely remove test.

* Update plugins/module_utils/crypto/cryptography_support.py
 2021-10-29 21:10:57 +02:00
patchback[bot] 0755a2b657
Remove centos8 for devel from CI. (#307) (#308) 
(cherry picked from commit 78b27ffedb)

Co-authored-by: Felix Fontein <felix@fontein.de>
 2021-10-16 09:27:45 +02:00
Felix Fontein 90bf8b0b2e Adjust to latest devel changes. 
(cherry picked from commit e735bdab60)
 2021-10-12 19:32:56 +02:00
patchback[bot] 5ff28c751d
Fix shellcheck error. (#303) (#304) 
(cherry picked from commit c68bfedbaa)

Co-authored-by: Felix Fontein <felix@fontein.de>
 2021-10-08 15:10:41 +02:00
Felix Fontein 7b08edb5a4 Next expected release is 1.9.6. 2021-10-06 13:35:44 +02:00
Felix Fontein fbadcbeb29 Release 1.9.5. 2021-10-06 13:08:43 +02:00
Felix Fontein e991375f55 Prepare 1.9.5 release. 2021-10-05 22:28:03 +02:00
Felix Fontein 33c99014ae
[stable-1] Fix PyOpenSSL backends with cryptography 35.0.0 (#300) 
* Try to make compatible with cryptography 35.0.0.

* Forgot import.

ci_complete

* Add changelog fragment.
 2021-10-05 22:19:11 +02:00
patchback[bot] fbd6ff6ead
x509_certificate: document that *notBefore/*notAfter are not used for idempotency (#298) (#301) 
* Document that *notBefore/*notAfter are not used for idempotency.

* Change formulation.

(cherry picked from commit ed03841fd1)

Co-authored-by: Felix Fontein <felix@fontein.de>
 2021-10-03 22:20:34 +02:00
patchback[bot] c4ab2eb3b5
Fix PKCS#12 friendly name extraction for cryptography 35.0.0. (#296) (#299) 
(cherry picked from commit d6c0d53442)

Co-authored-by: Felix Fontein <felix@fontein.de>
 2021-10-03 21:37:37 +02:00
patchback[bot] 44b6df0ce5
Support cryptography 35.0.0 for all modules except openssl_pkcs12 (#294) (#297) 
* Add some workarounds for cryptography 35.0.0.

* Make fix work with very old cryptography versions as well (which supported multiple backends).

* [TEMP] Disable openssl_pkcs12 tests to see whether everything else works.

* Revert "[TEMP] Disable openssl_pkcs12 tests to see whether everything else works."

This reverts commit 3f905bc795.

* Add changelog fragment.

* Remove unnecessary assignment.

* Simplify code change.

* [TEMP] Disable openssl_pkcs12 tests to see whether everything else works.

* Revert "[TEMP] Disable openssl_pkcs12 tests to see whether everything else works."

This reverts commit fdb210528e.

(cherry picked from commit a2a7d94055)

Co-authored-by: Felix Fontein <felix@fontein.de>
 2021-10-03 17:23:35 +02:00
Felix Fontein 14a42505a9 Ansible-core devel dropped support for Python 2.6. 
(cherry picked from commit 2a7e452cf8)
 2021-10-01 13:46:08 +02:00
Felix Fontein 44cbd33cb7 Run CI on stable branches only once per week. 
(cherry picked from commit 24e7d07973)
 2021-10-01 13:44:44 +02:00
Felix Fontein 4411a71d06 Temporarily fix CI for cryptography 35.0.0 release. (#292) 
(cherry picked from commit 57c364fe87)
 2021-09-30 13:45:38 +02:00
Felix Fontein bfe37bc668 Next expected 1.x.y release is 1.9.5. 2021-09-28 17:31:41 +02:00
Felix Fontein d784e0a52b Release 1.9.4. 2021-09-28 17:17:41 +02:00
Felix Fontein d73a2942a2 Prepare 1.9.4 release. 2021-09-28 16:53:56 +02:00
Felix Fontein 8af4847373
Update CI matrix to include ansible-core's stable-2.12 branch (#286) 
* Update CI matrix to include ansible-core's stable-2.12 branch.

* Adjust README.

* Fix stage names.
 2021-09-28 15:35:26 +02:00
Felix Fontein 44f7367e21
Extend CI (#283) 
* Run all tests on all targets. Remove hack in setup_acme.

* Fix some failing tests.

* OpenSSH tests do not work yet with default image on Ansible 2.9. Let's skip them on the cloud target.

* Make tests pass again.

* Make sure to install *latest* versions of cryptography and pyOpenSSL when not installing system packages, whenever possible.

ci_complete

* Update/fix aliases files.
 2021-09-25 17:21:06 +02:00
Felix Fontein 0733b0d521 Prepare ansible-core devel branch version bump that is planned for later today. 2021-09-24 18:45:50 +02:00
Ajpantuso 771a9eebcf
Initial commit (#285) 2021-09-24 06:59:52 +02:00
Felix Fontein 0fdede5d7a
Fix CI (1/2) (#284) 
* New default docker image no longer contains bcrypt.

* Install cryptography for ACME tests.

* Add constraints.
 2021-09-23 21:56:03 +02:00
Felix Fontein 56b2130c6e
openssl_privatekey_pipe is an action plugin. (#267) 2021-09-21 07:29:26 +02:00
Felix Fontein 6c018b94da
Improve CI (#281) 
* Install PyOpenSSL and cryptography from PyPi if target Python != system Python.

* Work around some CentOS6, 7, Ubuntu 16.04 problems. Improve jinja2 compatibility handling.

* Skip tasks that require properties that aren't always there.

* Only install OpenSSL when not present.

* Improve output.

* Improve get_certificate integration test graceful failing.

* Fix tests.

* Fix assert.

* OpenSSL peculiarities.

* Fix condition.
 2021-09-18 15:21:40 +02:00
Felix Fontein 63f4598737
acme_challenge_cert_helper: fail better to avoid crashes in Ansible (#282) 
* Prevent acme_challenge_cert_helper triggering a bug in Ansible.

* Add changelog fragment.
 2021-09-17 19:35:43 +02:00
Felix Fontein 598cdf0a21
Older openssl versions (1.0.1/1.0.2) do not seem to support '-' for /dev/stdin. (#279) 2021-09-15 20:42:52 +02:00
Ajpantuso eea7bfc6bf
openssh_cert - adding signature_algorithm option (#277) 
* Initial Commit

* Update supported OpenSSH versions for RSA SHA-2 signed certs

* Updating 'regenerate' documentation
 2021-09-15 08:53:53 +02:00
Felix Fontein 8521c96e8a Next expected release is 1.10.0. 2021-09-14 12:33:06 +02:00
Felix Fontein d90cc5142b Release 1.9.3. 2021-09-14 08:15:32 +02:00
Felix Fontein 37aab65396 Prepare 1.9.3 release. 2021-09-14 07:14:03 +02:00
Felix Fontein baff003ea8 Fix changelog from last time. 2021-09-14 07:13:25 +02:00
Felix Fontein 03427e35a7
Fix idempotency for non-ASCII string comparisons. (#271) 2021-09-14 07:06:35 +02:00
Felix Fontein 170fa40014
ipaddress is part of stdlib for Python 3. (#275) 2021-09-12 17:21:10 +02:00
Felix Fontein 330b30d5d2
certificate_complete_chain tests need cryptography installed on the target, so use setup_openssl. (#272) 2021-09-11 11:29:03 +02:00
Felix Fontein 67b8274faf
openssl_csr: fix error in docs (#269) 
* Fix error in docs.

* Add missing word.
 2021-09-10 20:53:50 +02:00
Felix Fontein 02ee3fb974
Improve CI (#268) 
* Remove superfluous remote_src.

* Use temp dir twice instead of output_dir.

* Use remote temp directory instead of output_dir.

* Fix syntax error.

* Add some fixes.

* Copy more files to remote.

* More fixes.

* Fixing ACME/'cloud' tests.

* Forgot when.

* Try to fix filters.

* Skip unnecessary steps.

* Avoid collision.
 2021-09-07 22:37:40 +02:00
Felix Fontein 93ced1956c The next expected release is again 1.10.0. 2021-08-30 22:01:49 +02:00
Felix Fontein a9e358ea57 Bugfix release 1.9.2. 2021-08-30 22:01:16 +02:00
Felix Fontein ffcdbc5d0c Add non-existing 1.9.1 release. 2021-08-30 22:00:39 +02:00
Felix Fontein 6740cae10f Next release is expected to be 1.10.0. 2021-08-30 20:46:46 +02:00
Felix Fontein 915379459d Release 1.9.0. 2021-08-30 20:12:47 +02:00
Felix Fontein a4a12bae27 Prepare 1.9.0 release. 2021-08-27 05:54:45 +02:00
Felix Fontein 94fc356338
https://github.com/diafygi/acme-tiny/pull/254 has been merged. (#265) 2021-08-22 12:41:41 +02:00
Ajpantuso 08ada24a53
openssh_keypair - Add diff support and general cleanup (#260) 
* Initial commit

* Matching tests to overwritten permissions behavior with cryptography

* Ensuring key validation only occurs when state=present and accomodating CentOS6 restrictions

* Making ssh-keygen behavior explicit by version in tests

* Ensuring cyrptography not excluded in new conditions

* Adding changelog fragment

* Fixing sanity checks

* Improving readability

* Applying review suggestions

* addressing restore_on_failure conflict
 2021-08-18 09:22:31 +02:00