92ef500185
* Add cryptography backend for openssl_privatekey. * Adding ECC support. No support for X25519 and X449, since they don't support serialization. * Improve finterprint calculation to work with Python 3. * Add fingerprint check. * Fix typo. * Use separate curve option for elliptic curves, and use type 'ECC'. * Using curve names as defined in IANA registry. * Bump minimal supported cryptography version. Older versions might work as well, but I couldn't test them. * Improve documentation.
34 lines
1 KiB
YAML
34 lines
1 KiB
YAML
---
|
|
- name: Incluse OS-specific variables
|
|
include_vars: '{{ ansible_os_family }}.yml'
|
|
when: not ansible_os_family == "Darwin"
|
|
|
|
- name: Install pyOpenSSL
|
|
become: True
|
|
package:
|
|
name: '{{ pyopenssl_package_name_python3 }}'
|
|
when: not ansible_os_family == 'Darwin' and ansible_python_version is version('3.0', '>=')
|
|
|
|
- name: Install pyOpenSSL
|
|
become: True
|
|
package:
|
|
name: '{{ pyopenssl_package_name }}'
|
|
when: not ansible_os_family == 'Darwin' and ansible_python_version is version('3.0', '<')
|
|
|
|
- name: Install pyOpenSSL
|
|
become: True
|
|
pip:
|
|
name: pyOpenSSL
|
|
when: ansible_os_family == 'Darwin'
|
|
|
|
- name: register pyOpenSSL version
|
|
command: "{{ ansible_python.executable }} -c 'import OpenSSL; print(OpenSSL.__version__)'"
|
|
register: pyopenssl_version
|
|
|
|
- name: register openssl version
|
|
shell: "openssl version | cut -d' ' -f2"
|
|
register: openssl_version
|
|
|
|
- name: register cryptography version
|
|
command: "{{ ansible_python.executable }} -c 'import cryptography; print(cryptography.__version__)'"
|
|
register: cryptography_version
|