community.crypto.crypto_info module – Retrieve cryptographic capabilities
Note
This module is part of the community.crypto collection (version 2.3.4).
You might already have this collection installed if you are using the ansible package.
It is not included in ansible-core.
To check whether it is installed, run ansible-galaxy collection list.
To install it, use: ansible-galaxy collection install community.crypto.
To use it in a playbook, specify: community.crypto.crypto_info.
New in version 2.1.0: of community.crypto
Synopsis
Retrieve information on cryptographic capabilities.
The current version retrieves information on the Python cryptography library available to Ansible modules, and on the OpenSSL binary
opensslfound in the path.
Examples
- name: Retrieve information
community.crypto.crypto_info:
account_key_src: /etc/pki/cert/private/account.key
register: crypto_information
- name: Show retrieved information
ansible.builtin.debug:
var: crypto_information
Return Values
Common return values are documented here, the following are the fields unique to this module:
Key |
Description |
|---|---|
Information on the installed OpenSSL binary. Returned: when openssl_present=true |
|
Path of the OpenSSL binary. Returned: success Sample: “/usr/bin/openssl” |
|
The OpenSSL version. Returned: success Sample: “1.1.1m” |
|
The complete output of Returned: success Sample: “OpenSSL 1.1.1m 14 Dec 2021 “ |
|
Whether the OpenSSL binary Returned: always Sample: true |
|
Information on the installed Python cryptography library. Returned: when python_cryptography_installed=true |
|
List of all supported elliptic curves. Theoretically this should be non-empty for version 0.5 and higher, depending on the libssl version used. Returned: success |
|
Whether DSA keys are supported. Theoretically this should be the case for version 0.5 and higher. Returned: success |
|
Whether signing with DSA keys is supported. Theoretically this should be the case for version 1.5 and higher. Returned: success |
|
Whether elliptic curves are supported. Theoretically this should be the case for version 0.5 and higher, depending on the libssl version used. Returned: success |
|
Whether signing with elliptic curves is supported. Theoretically this should be the case for version 1.5 and higher, depending on the libssl version used. Returned: success |
|
Whether Ed25519 keys are supported. Theoretically this should be the case for version 2.6 and higher, depending on the libssl version used. Returned: success |
|
Whether signing with Ed25519 keys is supported. Theoretically this should be the case for version 2.6 and higher, depending on the libssl version used. Returned: success |
|
Whether Ed448 keys are supported. Theoretically this should be the case for version 2.6 and higher, depending on the libssl version used. Returned: success |
|
Whether signing with Ed448 keys is supported. Theoretically this should be the case for version 2.6 and higher, depending on the libssl version used. Returned: success |
|
Whether RSA keys are supported. Theoretically this should be the case for version 0.5 and higher. Returned: success |
|
Whether signing with RSA keys is supported. Theoretically this should be the case for version 1.4 and higher. Returned: success |
|
Whether X25519 keys are supported. Theoretically this should be the case for version 2.0 and higher, depending on the libssl version used. Returned: success |
|
Whether serialization of X25519 keys is supported. Theoretically this should be the case for version 2.5 and higher, depending on the libssl version used. Returned: success |
|
Whether X448 keys are supported. Theoretically this should be the case for version 2.5 and higher, depending on the libssl version used. Returned: success |
|
The library version. Returned: success |
|
Import error when trying to import the Python cryptography library. Returned: when python_cryptography_installed=false |
|
Authors
Felix Fontein (@felixfontein)
Collection links
Issue Tracker Repository (Sources) Submit a bug report Request a feature Communication