84c1a20af7
CI: add community ansible-test images ( #404 )
...
* Use community ansible-test images.
* Adjust tests for new operating systems, and pass on Python version as well.
* Fix Python version.
Co-authored-by: David Moreau Simard <moi@dmsimard.com>
* Fix package name.
Co-authored-by: David Moreau Simard <moi@dmsimard.com>
2022-02-17 22:29:50 +01:00
28729657ac
x509_certificate: check existing certificate's signature for selfsigned and ownca provider ( #407 )
...
* Verify whether signature matches.
* Add changelog fragment.
* Forgot imports.
* Fix wrong name.
* Check whether the CA private key fits to the CA certificate. Use correct key in tests.
* Refactor code.
2022-02-16 07:38:11 +01:00
3ebc132c03
Regenerate certificate on CA's subject change. ( #402 )
2022-02-14 18:04:29 +01:00
11a14543c8
certificate_complete_chain: handle duplicate intermediate subjects ( #403 )
...
* Allow multiple intermediate CAs to have same subject.
* Add tests.
* Fix test name.
* Don't use CN for SAN.
* Make a bit more compatible.
* Include jinja2 compat for CentOS 6.
2022-02-14 13:29:19 +01:00
7e92f04c93
Next expected release is 2.3.0.
2022-02-05 21:51:19 +01:00
8a74b3e259
Release 2.2.1.
2022-02-05 21:28:47 +01:00
a9fcd584e9
Prepare 2.2.1 release.
2022-02-05 20:18:32 +01:00
a307618872
openssh_cert - fix full_idempotence for host certificates ( #396 )
...
* fixing host cert idempotence
* adding changelog fragment
2022-02-04 20:53:50 +01:00
12749088a0
Next expected release is 2.3.0.
2022-02-01 06:25:49 +01:00
90da233341
Release 2.2.0.
2022-02-01 05:49:27 +01:00
23226dce8f
Drop CentOS 8 from CI. ( #393 )
2022-01-31 21:17:41 +00:00
9faed1dad0
Prepare 2.2.0 release.
2022-01-31 06:02:48 +01:00
ea2e45d63f
Set LANG and similar env variables to prevent translated cryptsetup output. ( #388 )
2022-01-30 21:30:56 +01:00
5abfe8fca9
PyOpenSSL 22.0.0 no longer supports Python 2.7. ( #387 )
2022-01-30 13:59:32 +01:00
b339e71973
Added 'ignore_timestamps' parameter ( #381 )
...
* Added 'ignore_timestamps' parameter
* Update plugins/modules/openssh_cert.py
Co-authored-by: Andrew Pantuso <ajpantuso@gmail.com>
* Update plugins/modules/openssh_cert.py
Co-authored-by: Andrew Pantuso <ajpantuso@gmail.com>
* Update plugins/modules/openssh_cert.py
Co-authored-by: Andrew Pantuso <ajpantuso@gmail.com>
* Added fragment
* Update plugins/modules/openssh_cert.py
Co-authored-by: Andrew Pantuso <ajpantuso@gmail.com>
* added ignore_timestamps to example
* corrected styling
* fixed styling (again)
* Update changelogs/fragments/381_openssh_cert_add_ignore_timestamps.yml
Co-authored-by: Felix Fontein <felix@fontein.de>
* splitted description as suggested by felixfontein
* fixed linebreak
* Mentioned ignore_timestamps in regenerate
Co-authored-by: Andrew Pantuso <ajpantuso@gmail.com>
Co-authored-by: Felix Fontein <felix@fontein.de>
2022-01-20 16:15:50 +01:00
a467f036b1
Fix indentation of when in example. ( #382 )
2022-01-18 21:52:53 +01:00
cd5ed011a5
Update CI matrix for Remote Devel ( #377 )
...
* Update CI matrix for Remote Devel.
* Add Python info entries.
2022-01-13 09:18:48 +01:00
9dfdaaf471
Next expected release is 2.2.0.
2022-01-10 23:03:02 +01:00
950d1d072f
Release 2.1.0.
2022-01-10 22:48:03 +01:00
cb14e73c61
Prepare 2.1.0 release.
2022-01-10 21:03:19 +01:00
bd2bd79497
Add openssl_privatekey_convert module ( #362 )
...
* Add openssl_privatekey_convert module.
* Extend tests and fix bugs.
* Fix wrong required.
* Fix condition.
* Fix bad tests.
* Fix documentation for format.
* Fix copyright lines.
2022-01-10 21:01:52 +01:00
62272296da
Small docs improvements ( #374 )
...
* Small improvements.
* Document behavior changes.
2022-01-10 12:05:09 +00:00
1b0fcde862
Fix comment. ( #372 )
2022-01-06 12:56:10 +00:00
46f39efc43
Use vendored copy of distutils.version. ( #369 )
2022-01-05 21:30:11 +01:00
b2ea4a7ce5
Add basic crypto_info module ( #363 )
...
* Add basic crypto_info module.
* Improve check.
* Actually test capabilities.
* Also output EC curve list.
* Fix detections.
* Ed25519 and Ed448 are not supported on FreeBSD 12.1.
* Refactor.
* Also retrieve information on the OpenSSL binary.
* Improve splitting.
* Update plugins/modules/crypto_info.py
Co-authored-by: Andrew Pantuso <ajpantuso@gmail.com>
* Replace list by tuple.
Co-authored-by: Andrew Pantuso <ajpantuso@gmail.com>
2022-01-05 18:19:42 +01:00
3e307fe062
Fix typo. ( #367 )
2022-01-05 18:16:27 +01:00
6ee238d961
certificate_complete_chain: avoid infinite loops, and double roots when root certificate was already part of chain ( #360 )
...
* Avoid infinite loops, and double roots when root certificate was already part of chain.
* Refactor tests for readability.
2022-01-04 07:00:09 +01:00
f3e431912d
Fix indentation in docs. ( #364 )
2022-01-03 21:38:37 +01:00
471506c5d4
Improve changed / nonchanged validations by using new modules from community.internal_test_tools ( #183 )
...
* Use modules from internal_test_tools instead of stat workaround to check whether file actually changed.
* Properly add testing dependency.
2022-01-03 18:43:17 +01:00
2c05221d89
Feature/rename test cases ( #356 )
...
* Name test tasks in a more explicite manner
* Space test + verification blocks apart
* Apply suggestions from code review
Co-authored-by: Jens Heinrich <github.com/JensHeinrich>
Co-authored-by: Felix Fontein <felix@fontein.de>
2021-12-30 10:06:43 +01:00
a539cd6939
Prepare for distutils.version being removed in Python 3.12 ( #353 )
...
* Prepare for distutils.version being removed in Python 2.12.
* Fix copy'n'paste error.
* Re-add Loose prefix.
* Fix Python version typo.
* Improve formulation.
* Move message into own line.
* Fix casing, now that the object is no longer called Version.
2021-12-24 11:28:14 +01:00
11c3974b0f
Next expected release is 2.1.0.
2021-12-20 20:37:59 +01:00
605cf2631e
Release 2.0.2.
2021-12-20 20:20:32 +01:00
ee196fd8a3
Prepare 2.0.2 release.
2021-12-20 20:15:27 +01:00
45b7aa797e
Fix module reference in example ( #351 )
...
openssl_privatekey -> openssl_publickey
2021-12-13 06:48:59 +01:00
32dab841d7
Fix CSR copy/paste error ( #349 )
...
The first case about ca_csr has been copy/pasted.
But in the following cases, the CSR must be the certificate csr.
2021-12-09 20:52:18 +01:00
5b1816719f
Next expected release is 2.1.0.
2021-11-22 12:19:10 +01:00
bd2270fb05
Release 2.0.1.
2021-11-22 11:41:56 +01:00
3f40795a98
Extension parsing: add new fallback code which uses the new cryptography API ( #331 )
...
* Add new code as fallback which re-serializes de-serialized extensions using the new cryptography API.
* Forgot Base64 encoding.
* Add extension by OID tests.
* There's one value which is different with the new code.
* Differences in CI.
* Working around older Jinjas.
* Value depends on which SAN was included.
* Force complete CI run now since cryptography 36.0.0 is out.
ci_complete
2021-11-22 07:42:49 +01:00
73bc0f5de7
Use new PKCS#12 deserialization code from cryptography 36.0.0 if available ( #302 )
...
* Use new PKCS#12 deserialization code from cryptography 36.0.0 if available.
* Refactor into smaller functions.
* Force complete CI run now since cryptography 36.0.0 is out.
ci_complete
2021-11-22 07:41:54 +01:00
f832c0a4ac
Fix missing s.
2021-11-22 07:41:39 +01:00
10579c8834
Prepare 2.0.1 release.
2021-11-22 07:40:23 +01:00
f1a6baadc7
Fix collection dependency installation in CI. ( #341 )
2021-11-18 20:42:57 +01:00
5de50b9f91
Fix compatibility to fetch_url change in ansible-core devel ( #339 )
...
* Fix compatibility to fetch_url change in ansible-core devel.
* Adjust tests.
2021-11-17 21:26:49 +01:00
cf0d2679aa
Replace RHEL 8.4 by RHEL 8.5 for devel. ( #337 )
2021-11-17 07:18:08 +01:00
2d388bf8d0
This is no longer a problem with the dev version of cryptography. ( #335 )
2021-11-13 17:59:17 +01:00
056a86fcae
Replace Bash codecov uploader by new Python codecov uploader. ( #333 )
...
ci_coverage
2021-11-13 12:06:10 +01:00
ebbfd7c56f
luks_device: add built-in signature wiper to work around older wipefs versions with LUKS2 containers ( #327 )
...
* Use 'cryptsetup erase' to kill LUKS signature.
* Adjust unit test.
* Use own wiper for LUKS headers.
* Add comments.
* Fix tests.
* Update changelog.
* Remove 'cryptsetup erase'.
* Improve error messages.
2021-11-11 06:59:35 +01:00
91d98c4413
Replace Fedora 33 with Fedora 35 for devel tests. ( #328 )
2021-11-08 22:17:30 +01:00
51b6bb210d
acme_certificate: fix crash when using fullchain_dest ( #324 )
...
* Fix crash when using fullchain_dest.
* Adjust changelog.
* Update plugins/module_utils/acme/backend_cryptography.py
Co-authored-by: Ajpantuso <ajpantuso@gmail.com>
Co-authored-by: Ajpantuso <ajpantuso@gmail.com>
2021-11-05 08:51:43 +01:00
Felix Fontein
Andrew Pantuso
JochenKorge
Jens Heinrich
Jasmine Hegman
Bruno Vernay