ansible/community.general
1
0
Fork 0
mirror of https://github.com/ansible-collections/community.general.git synced 2024-09-14 20:13:21 +02:00
Code Releases Activity

feat(ssh_config): host_key_algorithms option (#5605)

Browse source 
* feat(ssh_config): host_key_algorithms option

* chore: add changelog fragment

* chore(ssh_config): add version info to option and update fragment
This commit is contained in:
Arek Kalandyk 2022-12-04 12:57:54 +01:00 committed by GitHub
parent 632fc07e65
commit fb2833d34d
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
3 changed files with 22 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
changelogs/fragments/5605-ssh-config-add-host-key-algorithms.yaml Normal file
View file

@ -0,0 +1,2 @@
minor_changes:
- ssh_config - add ``host_key_algorithms`` option (https://github.com/ansible-collections/community.general/pull/5605).

7
plugins/modules/ssh_config.py
View file

@ -88,6 +88,11 @@ options:
- If I(user) and this option are not specified, C(/etc/ssh/ssh_config) is used. - If I(user) and this option are not specified, C(/etc/ssh/ssh_config) is used.
- Mutually exclusive with I(user). - Mutually exclusive with I(user).
type: path type: path
host_key_algorithms:
description:
- Sets the C(HostKeyAlgorithms) option.
type: str
version_added: 6.1.0
requirements: requirements:
- StormSSH - StormSSH
notes: notes:
@ -207,6 +212,7 @@ class SSHConfig():
strict_host_key_checking=self.params.get('strict_host_key_checking'), strict_host_key_checking=self.params.get('strict_host_key_checking'),
user_known_hosts_file=self.params.get('user_known_hosts_file'), user_known_hosts_file=self.params.get('user_known_hosts_file'),
proxycommand=self.params.get('proxycommand'), proxycommand=self.params.get('proxycommand'),
host_key_algorithms=self.params.get('host_key_algorithms'),
) )
# Convert True / False to 'yes' / 'no' for usage in ssh_config # Convert True / False to 'yes' / 'no' for usage in ssh_config
@ -297,6 +303,7 @@ def main():
group=dict(default=None, type='str'), group=dict(default=None, type='str'),
host=dict(type='str', required=True), host=dict(type='str', required=True),
hostname=dict(type='str'), hostname=dict(type='str'),
host_key_algorithms=dict(type='str', no_log=False),
identity_file=dict(type='path'), identity_file=dict(type='path'),
port=dict(type='str'), port=dict(type='str'),
proxycommand=dict(type='str', default=None), proxycommand=dict(type='str', default=None),

13
tests/integration/targets/ssh_config/tasks/options.yml
View file

@ -15,6 +15,7 @@
host: "options.example.com" host: "options.example.com"
proxycommand: "ssh jumphost.example.com -W %h:%p" proxycommand: "ssh jumphost.example.com -W %h:%p"
forward_agent: true forward_agent: true
host_key_algorithms: "+ssh-rsa"
state: present state: present
register: options_add register: options_add
check_mode: yes check_mode: yes
@ -43,6 +44,7 @@
host: "options.example.com" host: "options.example.com"
proxycommand: "ssh jumphost.example.com -W %h:%p" proxycommand: "ssh jumphost.example.com -W %h:%p"
forward_agent: true forward_agent: true
host_key_algorithms: "+ssh-rsa"
state: present state: present
register: options_add register: options_add
@ -60,6 +62,7 @@
host: "options.example.com" host: "options.example.com"
proxycommand: "ssh jumphost.example.com -W %h:%p" proxycommand: "ssh jumphost.example.com -W %h:%p"
forward_agent: true forward_agent: true
host_key_algorithms: "+ssh-rsa"
state: present state: present
register: options_add_again register: options_add_again
@ -81,6 +84,7 @@
that: that:
- "'proxycommand ssh jumphost.example.com -W %h:%p' in slurp_ssh_config['content'] | b64decode" - "'proxycommand ssh jumphost.example.com -W %h:%p' in slurp_ssh_config['content'] | b64decode"
- "'forwardagent yes' in slurp_ssh_config['content'] | b64decode" - "'forwardagent yes' in slurp_ssh_config['content'] | b64decode"
- "'hostkeyalgorithms +ssh-rsa' in slurp_ssh_config['content'] | b64decode"
- name: Options - Update host - name: Options - Update host
community.general.ssh_config: community.general.ssh_config:
@ -88,6 +92,7 @@
host: "options.example.com" host: "options.example.com"
proxycommand: "ssh new-jumphost.example.com -W %h:%p" proxycommand: "ssh new-jumphost.example.com -W %h:%p"
forward_agent: no forward_agent: no
host_key_algorithms: "+ssh-ed25519"
state: present state: present
register: options_update register: options_update
@ -107,6 +112,7 @@
host: "options.example.com" host: "options.example.com"
proxycommand: "ssh new-jumphost.example.com -W %h:%p" proxycommand: "ssh new-jumphost.example.com -W %h:%p"
forward_agent: no forward_agent: no
host_key_algorithms: "+ssh-ed25519"
state: present state: present
register: options_update register: options_update
@ -129,6 +135,7 @@
that: that:
- "'proxycommand ssh new-jumphost.example.com -W %h:%p' in slurp_ssh_config['content'] | b64decode" - "'proxycommand ssh new-jumphost.example.com -W %h:%p' in slurp_ssh_config['content'] | b64decode"
- "'forwardagent no' in slurp_ssh_config['content'] | b64decode" - "'forwardagent no' in slurp_ssh_config['content'] | b64decode"
- "'hostkeyalgorithms +ssh-ed25519' in slurp_ssh_config['content'] | b64decode"
- name: Options - Ensure no update in case option exist in ssh_config file but wasn't defined in playbook - name: Options - Ensure no update in case option exist in ssh_config file but wasn't defined in playbook
community.general.ssh_config: community.general.ssh_config:
@ -156,6 +163,11 @@
that: that:
- "'proxycommand ssh new-jumphost.example.com -W %h:%p' in slurp_ssh_config['content'] | b64decode" - "'proxycommand ssh new-jumphost.example.com -W %h:%p' in slurp_ssh_config['content'] | b64decode"
- "'forwardagent no' in slurp_ssh_config['content'] | b64decode" - "'forwardagent no' in slurp_ssh_config['content'] | b64decode"
- "'hostkeyalgorithms +ssh-ed25519' in slurp_ssh_config['content'] | b64decode"
- name: Debug
debug:
msg: "{{ slurp_ssh_config['content'] | b64decode }}"
- name: Options - Delete a host - name: Options - Delete a host
community.general.ssh_config: community.general.ssh_config:
@ -197,3 +209,4 @@
that: that:
- "'proxycommand ssh new-jumphost.example.com -W %h:%p' not in slurp_ssh_config['content'] | b64decode" - "'proxycommand ssh new-jumphost.example.com -W %h:%p' not in slurp_ssh_config['content'] | b64decode"
- "'forwardagent no' not in slurp_ssh_config['content'] | b64decode" - "'forwardagent no' not in slurp_ssh_config['content'] | b64decode"
- "'hostkeyalgorithms +ssh-ed25519' not in slurp_ssh_config['content'] | b64decode"