Hi,
I’ve built a module for managing the decryption keys associated a LUKS volume. I’m trying to assess if it would be generally useful (and hence worth contributing) or whether it’s too specific to my use case to be worth while.
The basic function of the module is: Given a list of key files / passwords and a LUKS volume where at least one key is currently valid, ensure that all provided key files / passwords are valid and remove any other decryption keys currently associated with the volume.
Example:
- luks_keys:
device: /dev/sda1
keys: - password: “p@55w0rd”
- key_file: “/disk-key”
Does anyone think this is a generally useful capability that would be worth tidying up and contributing? Or is this just weirdly specific for my problem?
Thanks