[DEPRECATION WARNING]: ANSIBLE_COLLECTIONS_PATHS option, does not fit var naming standard, use the singular form ANSIBLE_COLLECTIONS_PATH instead. This feature will be removed from ansible-core in version 2.19. Deprecation warnings can be disabled by setting deprecation_warnings=False in ansible.cfg. ansible-playbook [core 2.17.2] config file = None configured module search path = ['/root/.ansible/plugins/modules', '/usr/share/ansible/plugins/modules'] ansible python module location = /usr/local/lib/python3.12/site-packages/ansible ansible collection location = /tmp/tmp.AFtbzpDWHx executable location = /usr/local/bin/ansible-playbook python version = 3.12.4 (main, Jul 17 2024, 00:00:00) [GCC 14.1.1 20240607 (Red Hat 14.1.1-5)] (/usr/bin/python3.12) jinja version = 3.1.4 libyaml = True No config file found; using defaults running playbook inside collection fedora.linux_system_roles redirecting (type: callback) ansible.builtin.debug to ansible.posix.debug redirecting (type: callback) ansible.builtin.debug to ansible.posix.debug redirecting (type: callback) ansible.builtin.profile_tasks to ansible.posix.profile_tasks Skipping callback 'default', as we already have a stdout callback. Skipping callback 'minimal', as we already have a stdout callback. Skipping callback 'oneline', as we already have a stdout callback. PLAYBOOK: tests_role_applied.yml *********************************************** 1 plays in /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/tests/sudo/tests_role_applied.yml PLAY [Test rewrite default sudoers and remove unauthorized files] ************** TASK [Gathering Facts] ********************************************************* task path: /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/tests/sudo/tests_role_applied.yml:2 Tuesday 30 July 2024 15:07:34 -0400 (0:00:00.029) 0:00:00.029 ********** [WARNING]: Platform linux on host managed_node1 is using the discovered Python interpreter at /usr/bin/python3.12, but future installation of another Python interpreter could change the meaning of that path. See https://docs.ansible.com/ansible- core/2.17/reference_appendices/interpreter_discovery.html for more information. ok: [managed_node1] TASK [Test setup] ************************************************************** task path: /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/tests/sudo/tests_role_applied.yml:7 Tuesday 30 July 2024 15:07:35 -0400 (0:00:01.141) 0:00:01.171 ********** included: /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/setup.yml for managed_node1 TASK [Create temp test directory] ********************************************** task path: /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/setup.yml:3 Tuesday 30 July 2024 15:07:35 -0400 (0:00:00.019) 0:00:01.190 ********** changed: [managed_node1] => { "changed": true, "gid": 0, "group": "root", "mode": "0700", "owner": "root", "path": "/var/tmp/sudo_jynm1e8a", "secontext": "unconfined_u:object_r:user_tmp_t:s0", "size": 6, "state": "directory", "uid": 0 } TASK [Backup sudoers] ********************************************************** task path: /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/setup.yml:10 Tuesday 30 July 2024 15:07:36 -0400 (0:00:00.412) 0:00:01.603 ********** changed: [managed_node1] => { "changed": true, "checksum": "ab0033aa8d46a209d71bfd49f8a2548c86b30be8", "dest": "/var/tmp/sudo_jynm1e8a/sudoers", "gid": 0, "group": "root", "md5sum": "a5290df67c7ed217bff527e10cd87040", "mode": "0644", "owner": "root", "secontext": "system_u:object_r:etc_t:s0", "size": 4375, "src": "/etc/sudoers", "state": "file", "uid": 0 } TASK [Backup sudoers.d] ******************************************************** task path: /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/setup.yml:19 Tuesday 30 July 2024 15:07:36 -0400 (0:00:00.432) 0:00:02.035 ********** changed: [managed_node1] => { "changed": true, "checksum": null, "dest": "/var/tmp/sudo_jynm1e8a/sudoers.d", "gid": 0, "group": "root", "md5sum": null, "mode": "0644", "owner": "root", "secontext": "unconfined_u:object_r:user_tmp_t:s0", "size": 23, "src": "/etc/sudoers.d", "state": "directory", "uid": 0 } TASK [Run the role] ************************************************************ task path: /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/tests/sudo/tests_role_applied.yml:10 Tuesday 30 July 2024 15:07:37 -0400 (0:00:00.346) 0:00:02.381 ********** included: fedora.linux_system_roles.sudo for managed_node1 TASK [fedora.linux_system_roles.sudo : Set version specific variables] ********* task path: /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:2 Tuesday 30 July 2024 15:07:37 -0400 (0:00:00.036) 0:00:02.418 ********** included: /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/set_vars.yml for managed_node1 TASK [fedora.linux_system_roles.sudo : Ensure ansible_facts used by role] ****** task path: /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/set_vars.yml:2 Tuesday 30 July 2024 15:07:37 -0400 (0:00:00.022) 0:00:02.441 ********** skipping: [managed_node1] => { "changed": false, "false_condition": "__sudo_required_facts | difference(ansible_facts.keys() | list) | length > 0", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.sudo : Check if system is ostree] ************** task path: /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/set_vars.yml:10 Tuesday 30 July 2024 15:07:37 -0400 (0:00:00.021) 0:00:02.462 ********** ok: [managed_node1] => { "changed": false, "stat": { "exists": false } } TASK [fedora.linux_system_roles.sudo : Set flag to indicate system is ostree] *** task path: /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/set_vars.yml:15 Tuesday 30 July 2024 15:07:37 -0400 (0:00:00.423) 0:00:02.885 ********** ok: [managed_node1] => { "ansible_facts": { "__sudo_is_ostree": false }, "changed": false } TASK [fedora.linux_system_roles.sudo : Check if transactional-update exists in /sbin] *** task path: /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/set_vars.yml:22 Tuesday 30 July 2024 15:07:37 -0400 (0:00:00.022) 0:00:02.908 ********** ok: [managed_node1] => { "changed": false, "stat": { "exists": false } } TASK [fedora.linux_system_roles.sudo : Set flag if transactional-update exists] *** task path: /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/set_vars.yml:27 Tuesday 30 July 2024 15:07:37 -0400 (0:00:00.330) 0:00:03.238 ********** ok: [managed_node1] => { "ansible_facts": { "__sudo_is_transactional": false }, "changed": false } TASK [fedora.linux_system_roles.sudo : Set platform/version specific variables] *** task path: /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/set_vars.yml:31 Tuesday 30 July 2024 15:07:37 -0400 (0:00:00.023) 0:00:03.262 ********** skipping: [managed_node1] => (item=RedHat.yml) => { "ansible_loop_var": "item", "changed": false, "false_condition": "__vars_file is file", "item": "RedHat.yml", "skip_reason": "Conditional result was False" } skipping: [managed_node1] => (item=CentOS.yml) => { "ansible_loop_var": "item", "changed": false, "false_condition": "__vars_file is file", "item": "CentOS.yml", "skip_reason": "Conditional result was False" } skipping: [managed_node1] => (item=CentOS_10.yml) => { "ansible_loop_var": "item", "changed": false, "false_condition": "__vars_file is file", "item": "CentOS_10.yml", "skip_reason": "Conditional result was False" } skipping: [managed_node1] => (item=CentOS_10.yml) => { "ansible_loop_var": "item", "changed": false, "false_condition": "__vars_file is file", "item": "CentOS_10.yml", "skip_reason": "Conditional result was False" } skipping: [managed_node1] => { "changed": false } MSG: All items skipped TASK [fedora.linux_system_roles.sudo : Ensure sudo is installed] *************** task path: /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:5 Tuesday 30 July 2024 15:07:38 -0400 (0:00:00.033) 0:00:03.295 ********** ok: [managed_node1] => { "changed": false, "rc": 0, "results": [] } MSG: Nothing to do TASK [fedora.linux_system_roles.sudo : Notify user that reboot is needed to apply changes] *** task path: /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:17 Tuesday 30 July 2024 15:07:38 -0400 (0:00:00.739) 0:00:04.034 ********** skipping: [managed_node1] => { "false_condition": "__sudo_is_transactional | d(false)" } TASK [fedora.linux_system_roles.sudo : Reboot transactional update systems] **** task path: /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:22 Tuesday 30 July 2024 15:07:38 -0400 (0:00:00.020) 0:00:04.055 ********** skipping: [managed_node1] => { "changed": false, "false_condition": "__sudo_is_transactional | d(false)", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.sudo : Fail if reboot is needed and not set] *** task path: /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:27 Tuesday 30 July 2024 15:07:38 -0400 (0:00:00.018) 0:00:04.074 ********** skipping: [managed_node1] => { "changed": false, "false_condition": "__sudo_is_transactional | d(false)", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.sudo : Set include directories variable] ******* task path: /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:35 Tuesday 30 July 2024 15:07:38 -0400 (0:00:00.019) 0:00:04.093 ********** ok: [managed_node1] => { "ansible_facts": { "sudo_include_dirs": [ "/etc/sudoers.d" ] }, "changed": false } TASK [fedora.linux_system_roles.sudo : Set sudoer file paths variable] ********* task path: /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:39 Tuesday 30 July 2024 15:07:38 -0400 (0:00:00.026) 0:00:04.119 ********** ok: [managed_node1] => { "ansible_facts": { "sudo_file_paths": [ "/etc/sudoers" ] }, "changed": false } TASK [fedora.linux_system_roles.sudo : Ensure include directories are created] *** task path: /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:43 Tuesday 30 July 2024 15:07:38 -0400 (0:00:00.026) 0:00:04.146 ********** ok: [managed_node1] => (item=/etc/sudoers.d) => { "ansible_loop_var": "item", "changed": false, "gid": 0, "group": "root", "item": "/etc/sudoers.d", "mode": "0750", "owner": "root", "path": "/etc/sudoers.d", "secontext": "system_u:object_r:etc_t:s0", "size": 50, "state": "directory", "uid": 0 } TASK [fedora.linux_system_roles.sudo : Ensure sudoers include files are configured] *** task path: /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:53 Tuesday 30 July 2024 15:07:39 -0400 (0:00:00.450) 0:00:04.596 ********** skipping: [managed_node1] => (item=/etc/sudoers) => { "ansible_loop_var": "item", "changed": false, "false_condition": "item.path != \"/etc/sudoers\"", "item": { "defaults": [ "!visiblepw", "always_set_home", "match_group_by_gid", "always_query_group_plugin", "env_reset", { "secure_path": [ "/sbin", "/bin", "/usr/sbin", "/usr/bin" ] }, { "env_keep": [ "COLORS", "DISPLAY", "HOSTNAME", "HISTSIZE", "KDEDIR", "LS_COLORS", "MAIL", "PS1", "PS2", "QTDIR", "USERNAME", "LANG", "LC_ADDRESS", "LC_CTYPE", "LC_COLLATE", "LC_IDENTIFICATION", "LC_MEASUREMENT", "LC_MESSAGES", "LC_MONETARY", "LC_NAME", "LC_NUMERIC", "LC_PAPER", "LC_TELEPHONE", "LC_TIME", "LC_ALL", "LANGUAGE", "LINGUAS", "_XKB_CHARSET", "XAUTHORITY" ] } ], "include_directories": [ "/etc/sudoers.d" ], "path": "/etc/sudoers", "user_specifications": [ { "commands": [ "ALL" ], "hosts": [ "ALL" ], "operators": [ "ALL" ], "users": [ "root" ] }, { "commands": [ "ALL" ], "hosts": [ "ALL" ], "operators": [ "ALL" ], "users": [ "%wheel" ] } ] }, "skip_reason": "Conditional result was False" } skipping: [managed_node1] => { "changed": false } MSG: All items skipped TASK [fedora.linux_system_roles.sudo : Ensure /etc/sudoers is configured] ****** task path: /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:66 Tuesday 30 July 2024 15:07:39 -0400 (0:00:00.019) 0:00:04.616 ********** changed: [managed_node1] => (item=/etc/sudoers) => { "ansible_loop_var": "item", "changed": true, "checksum": "fc5c161eed42bf4d12f49c476bfc46e8e56097d2", "dest": "/etc/sudoers", "gid": 0, "group": "root", "item": { "defaults": [ "!visiblepw", "always_set_home", "match_group_by_gid", "always_query_group_plugin", "env_reset", { "secure_path": [ "/sbin", "/bin", "/usr/sbin", "/usr/bin" ] }, { "env_keep": [ "COLORS", "DISPLAY", "HOSTNAME", "HISTSIZE", "KDEDIR", "LS_COLORS", "MAIL", "PS1", "PS2", "QTDIR", "USERNAME", "LANG", "LC_ADDRESS", "LC_CTYPE", "LC_COLLATE", "LC_IDENTIFICATION", "LC_MEASUREMENT", "LC_MESSAGES", "LC_MONETARY", "LC_NAME", "LC_NUMERIC", "LC_PAPER", "LC_TELEPHONE", "LC_TIME", "LC_ALL", "LANGUAGE", "LINGUAS", "_XKB_CHARSET", "XAUTHORITY" ] } ], "include_directories": [ "/etc/sudoers.d" ], "path": "/etc/sudoers", "user_specifications": [ { "commands": [ "ALL" ], "hosts": [ "ALL" ], "operators": [ "ALL" ], "users": [ "root" ] }, { "commands": [ "ALL" ], "hosts": [ "ALL" ], "operators": [ "ALL" ], "users": [ "%wheel" ] } ] }, "md5sum": "10930d4d72a2804fdbc804a21a30f856", "mode": "0440", "owner": "root", "secontext": "system_u:object_r:etc_t:s0", "size": 813, "src": "/root/.ansible/tmp/ansible-tmp-1722366459.382987-7273-192574759307924/.source", "state": "file", "uid": 0 } TASK [fedora.linux_system_roles.sudo : Search for sudoers files in included directories] *** task path: /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:86 Tuesday 30 July 2024 15:07:40 -0400 (0:00:00.708) 0:00:05.324 ********** ok: [managed_node1] => { "changed": false, "examined": 12, "files": [ { "atime": 1722366447.8938622, "ctime": 1722366446.5608459, "dev": 51714, "gid": 0, "gr_name": "root", "inode": 201326786, "isblk": false, "ischr": false, "isdir": false, "isfifo": false, "isgid": false, "islnk": false, "isreg": true, "issock": false, "isuid": false, "mode": "0440", "mtime": 1722366432.7096756, "nlink": 1, "path": "/etc/sudoers.d/pingers", "pw_name": "root", "rgrp": true, "roth": false, "rusr": true, "size": 106, "uid": 0, "wgrp": false, "woth": false, "wusr": false, "xgrp": false, "xoth": false, "xusr": false }, { "atime": 1722366434.3416955, "ctime": 1722366433.637687, "dev": 51714, "gid": 0, "gr_name": "root", "inode": 125829314, "isblk": false, "ischr": false, "isdir": false, "isfifo": false, "isgid": false, "islnk": false, "isreg": true, "issock": false, "isuid": false, "mode": "0440", "mtime": 1722366433.3766837, "nlink": 1, "path": "/etc/sudoers.d/root", "pw_name": "root", "rgrp": true, "roth": false, "rusr": true, "size": 154, "uid": 0, "wgrp": false, "woth": false, "wusr": false, "xgrp": false, "xoth": false, "xusr": false }, { "atime": 1722366453.151927, "ctime": 1722366453.1509268, "dev": 51714, "gid": 0, "gr_name": "root", "inode": 232784064, "isblk": false, "ischr": false, "isdir": true, "isfifo": false, "isgid": false, "islnk": false, "isreg": false, "issock": false, "isuid": false, "mode": "0644", "mtime": 1722366443.62281, "nlink": 3, "path": "/etc/sudoers.d/sudoers.d", "pw_name": "root", "rgrp": true, "roth": true, "rusr": true, "size": 23, "uid": 0, "wgrp": false, "woth": false, "wusr": true, "xgrp": false, "xoth": false, "xusr": false }, { "atime": 1722366453.151927, "ctime": 1722366453.1509268, "dev": 51714, "gid": 0, "gr_name": "root", "inode": 234881216, "isblk": false, "ischr": false, "isdir": true, "isfifo": false, "isgid": false, "islnk": false, "isreg": false, "issock": false, "isuid": false, "mode": "0755", "mtime": 1722366443.6238098, "nlink": 3, "path": "/etc/sudoers.d/sudoers.d/sudoers.d", "pw_name": "root", "rgrp": true, "roth": true, "rusr": true, "size": 50, "uid": 0, "wgrp": false, "woth": false, "wusr": true, "xgrp": true, "xoth": true, "xusr": true }, { "atime": 1722366457.0419748, "ctime": 1722366453.149927, "dev": 51714, "gid": 0, "gr_name": "root", "inode": 234881217, "isblk": false, "ischr": false, "isdir": false, "isfifo": false, "isgid": false, "islnk": false, "isreg": true, "issock": false, "isuid": false, "mode": "0440", "mtime": 1722366443.62281, "nlink": 1, "path": "/etc/sudoers.d/sudoers.d/sudoers.d/pingers", "pw_name": "root", "rgrp": true, "roth": false, "rusr": true, "size": 216, "uid": 0, "wgrp": false, "woth": false, "wusr": false, "xgrp": false, "xoth": false, "xusr": false }, { "atime": 1722366457.0419748, "ctime": 1722366453.149927, "dev": 51714, "gid": 0, "gr_name": "root", "inode": 234881218, "isblk": false, "ischr": false, "isdir": false, "isfifo": false, "isgid": false, "islnk": false, "isreg": true, "issock": false, "isuid": false, "mode": "0440", "mtime": 1722366443.6238098, "nlink": 1, "path": "/etc/sudoers.d/sudoers.d/sudoers.d/root", "pw_name": "root", "rgrp": true, "roth": false, "rusr": true, "size": 154, "uid": 0, "wgrp": false, "woth": false, "wusr": false, "xgrp": false, "xoth": false, "xusr": false }, { "atime": 1722366453.151927, "ctime": 1722366453.1509268, "dev": 51714, "gid": 0, "gr_name": "root", "inode": 236978368, "isblk": false, "ischr": false, "isdir": true, "isfifo": false, "isgid": false, "islnk": false, "isreg": false, "issock": false, "isuid": false, "mode": "0644", "mtime": 1722366430.0306427, "nlink": 3, "path": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "pw_name": "root", "rgrp": true, "roth": true, "rusr": true, "size": 23, "uid": 0, "wgrp": false, "woth": false, "wusr": true, "xgrp": false, "xoth": false, "xusr": false }, { "atime": 1722366453.151927, "ctime": 1722366453.1509268, "dev": 51714, "gid": 0, "gr_name": "root", "inode": 239075520, "isblk": false, "ischr": false, "isdir": true, "isfifo": false, "isgid": false, "islnk": false, "isreg": false, "issock": false, "isuid": false, "mode": "0755", "mtime": 1722366430.0316427, "nlink": 3, "path": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "pw_name": "root", "rgrp": true, "roth": true, "rusr": true, "size": 23, "uid": 0, "wgrp": false, "woth": false, "wusr": true, "xgrp": true, "xoth": true, "xusr": true }, { "atime": 1722366453.151927, "ctime": 1722366453.1509268, "dev": 51714, "gid": 0, "gr_name": "root", "inode": 241172672, "isblk": false, "ischr": false, "isdir": true, "isfifo": false, "isgid": false, "islnk": false, "isreg": false, "issock": false, "isuid": false, "mode": "0644", "mtime": 1722366402.9663825, "nlink": 3, "path": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "pw_name": "root", "rgrp": true, "roth": true, "rusr": true, "size": 23, "uid": 0, "wgrp": false, "woth": false, "wusr": true, "xgrp": false, "xoth": false, "xusr": false }, { "atime": 1722366453.151927, "ctime": 1722366453.1509268, "dev": 51714, "gid": 0, "gr_name": "root", "inode": 243269824, "isblk": false, "ischr": false, "isdir": true, "isfifo": false, "isgid": false, "islnk": false, "isreg": false, "issock": false, "isuid": false, "mode": "0755", "mtime": 1722366424.5105748, "nlink": 3, "path": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "pw_name": "root", "rgrp": true, "roth": true, "rusr": true, "size": 23, "uid": 0, "wgrp": false, "woth": false, "wusr": true, "xgrp": true, "xoth": true, "xusr": true }, { "atime": 1722366453.151927, "ctime": 1722366453.1509268, "dev": 51714, "gid": 0, "gr_name": "root", "inode": 245366976, "isblk": false, "ischr": false, "isdir": true, "isfifo": false, "isgid": false, "islnk": false, "isreg": false, "issock": false, "isuid": false, "mode": "0644", "mtime": 1722366402.9663825, "nlink": 3, "path": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "pw_name": "root", "rgrp": true, "roth": true, "rusr": true, "size": 23, "uid": 0, "wgrp": false, "woth": false, "wusr": true, "xgrp": false, "xoth": false, "xusr": false }, { "atime": 1722366453.151927, "ctime": 1722366453.1509268, "dev": 51714, "gid": 0, "gr_name": "root", "inode": 247464128, "isblk": false, "ischr": false, "isdir": true, "isfifo": false, "isgid": false, "islnk": false, "isreg": false, "issock": false, "isuid": false, "mode": "0755", "mtime": 1722366402.9663825, "nlink": 2, "path": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "pw_name": "root", "rgrp": true, "roth": true, "rusr": true, "size": 6, "uid": 0, "wgrp": false, "woth": false, "wusr": true, "xgrp": true, "xoth": true, "xusr": true } ], "matched": 12, "skipped_paths": {} } MSG: All paths examined TASK [fedora.linux_system_roles.sudo : Set unauthorized included sudoers files variable] *** task path: /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:94 Tuesday 30 July 2024 15:07:40 -0400 (0:00:00.438) 0:00:05.762 ********** ok: [managed_node1] => { "ansible_facts": { "sudo_unauthorized_files": [ "/etc/sudoers.d/root", "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "/etc/sudoers.d/sudoers.d/sudoers.d/pingers", "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "/etc/sudoers.d/sudoers.d/sudoers.d/root", "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "/etc/sudoers.d/pingers", "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "/etc/sudoers.d/sudoers.d", "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "/etc/sudoers.d/sudoers.d/sudoers.d" ] }, "changed": false } TASK [fedora.linux_system_roles.sudo : Remove unauthorized included sudoers files] *** task path: /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:98 Tuesday 30 July 2024 15:07:40 -0400 (0:00:00.035) 0:00:05.798 ********** changed: [managed_node1] => (item=/etc/sudoers.d/root) => { "ansible_loop_var": "item", "changed": true, "item": "/etc/sudoers.d/root", "path": "/etc/sudoers.d/root", "state": "absent" } changed: [managed_node1] => (item=/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d) => { "ansible_loop_var": "item", "changed": true, "item": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "path": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "state": "absent" } ok: [managed_node1] => (item=/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d) => { "ansible_loop_var": "item", "changed": false, "item": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "path": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "state": "absent" } changed: [managed_node1] => (item=/etc/sudoers.d/sudoers.d/sudoers.d/pingers) => { "ansible_loop_var": "item", "changed": true, "item": "/etc/sudoers.d/sudoers.d/sudoers.d/pingers", "path": "/etc/sudoers.d/sudoers.d/sudoers.d/pingers", "state": "absent" } changed: [managed_node1] => (item=/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d) => { "ansible_loop_var": "item", "changed": true, "item": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "path": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "state": "absent" } changed: [managed_node1] => (item=/etc/sudoers.d/sudoers.d/sudoers.d/root) => { "ansible_loop_var": "item", "changed": true, "item": "/etc/sudoers.d/sudoers.d/sudoers.d/root", "path": "/etc/sudoers.d/sudoers.d/sudoers.d/root", "state": "absent" } ok: [managed_node1] => (item=/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d) => { "ansible_loop_var": "item", "changed": false, "item": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "path": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "state": "absent" } changed: [managed_node1] => (item=/etc/sudoers.d/pingers) => { "ansible_loop_var": "item", "changed": true, "item": "/etc/sudoers.d/pingers", "path": "/etc/sudoers.d/pingers", "state": "absent" } ok: [managed_node1] => (item=/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d) => { "ansible_loop_var": "item", "changed": false, "item": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "path": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "state": "absent" } changed: [managed_node1] => (item=/etc/sudoers.d/sudoers.d) => { "ansible_loop_var": "item", "changed": true, "item": "/etc/sudoers.d/sudoers.d", "path": "/etc/sudoers.d/sudoers.d", "state": "absent" } ok: [managed_node1] => (item=/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d) => { "ansible_loop_var": "item", "changed": false, "item": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "path": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "state": "absent" } ok: [managed_node1] => (item=/etc/sudoers.d/sudoers.d/sudoers.d) => { "ansible_loop_var": "item", "changed": false, "item": "/etc/sudoers.d/sudoers.d/sudoers.d", "path": "/etc/sudoers.d/sudoers.d/sudoers.d", "state": "absent" } TASK [Check sudoers] *********************************************************** task path: /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/tests/sudo/tests_role_applied.yml:17 Tuesday 30 July 2024 15:07:44 -0400 (0:00:03.978) 0:00:09.776 ********** included: /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/assert_files_identical.yml for managed_node1 TASK [Get stat of files/tests_role_applied.ok] ********************************* task path: /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/assert_files_identical.yml:3 Tuesday 30 July 2024 15:07:44 -0400 (0:00:00.024) 0:00:09.801 ********** ok: [managed_node1 -> localhost] => { "changed": false, "stat": { "atime": 1722366394.5974774, "attr_flags": "", "attributes": [], "block_size": 4096, "blocks": 8, "charset": "us-ascii", "checksum": "59865a2d50f870e99cabad1aa9832881ebe54d4e70f16b9688e677f647d680d8", "ctime": 1722366398.154518, "dev": 32, "device_type": 0, "executable": false, "exists": true, "gid": 0, "gr_name": "root", "inode": 448, "isblk": false, "ischr": false, "isdir": false, "isfifo": false, "isgid": false, "islnk": false, "isreg": true, "issock": false, "isuid": false, "mimetype": "text/x-c", "mode": "0644", "mtime": 1722366394.4264755, "nlink": 1, "path": "files/tests_role_applied.ok", "pw_name": "root", "readable": true, "rgrp": true, "roth": true, "rusr": true, "size": 813, "uid": 0, "version": null, "wgrp": false, "woth": false, "writeable": true, "wusr": true, "xgrp": false, "xoth": false, "xusr": false } } TASK [Get stat of /etc/sudoers] ************************************************ task path: /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/assert_files_identical.yml:10 Tuesday 30 July 2024 15:07:44 -0400 (0:00:00.223) 0:00:10.024 ********** ok: [managed_node1] => { "changed": false, "stat": { "atime": 1722366456.6979706, "attr_flags": "", "attributes": [], "block_size": 4096, "blocks": 8, "charset": "us-ascii", "checksum": "59865a2d50f870e99cabad1aa9832881ebe54d4e70f16b9688e677f647d680d8", "ctime": 1722366459.989011, "dev": 51714, "device_type": 0, "executable": false, "exists": true, "gid": 0, "gr_name": "root", "inode": 291504322, "isblk": false, "ischr": false, "isdir": false, "isfifo": false, "isgid": false, "islnk": false, "isreg": true, "issock": false, "isuid": false, "mimetype": "text/x-c", "mode": "0440", "mtime": 1719187200.0, "nlink": 1, "path": "/etc/sudoers", "pw_name": "root", "readable": true, "rgrp": true, "roth": false, "rusr": true, "size": 813, "uid": 0, "version": "3292628242", "wgrp": false, "woth": false, "writeable": true, "wusr": false, "xgrp": false, "xoth": false, "xusr": false } } TASK [Assert that files are identical] ***************************************** task path: /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/assert_files_identical.yml:16 Tuesday 30 July 2024 15:07:45 -0400 (0:00:00.341) 0:00:10.365 ********** ok: [managed_node1] => { "changed": false } MSG: All assertions passed TASK [Test cleanup] ************************************************************ task path: /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/tests/sudo/tests_role_applied.yml:24 Tuesday 30 July 2024 15:07:45 -0400 (0:00:00.017) 0:00:10.382 ********** included: /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/cleanup.yml for managed_node1 TASK [Restore sudoers] ********************************************************* task path: /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/cleanup.yml:3 Tuesday 30 July 2024 15:07:45 -0400 (0:00:00.023) 0:00:10.406 ********** changed: [managed_node1] => { "changed": true, "checksum": "ab0033aa8d46a209d71bfd49f8a2548c86b30be8", "dest": "/etc/sudoers", "gid": 0, "group": "root", "md5sum": "a5290df67c7ed217bff527e10cd87040", "mode": "0644", "owner": "root", "secontext": "system_u:object_r:etc_t:s0", "size": 4375, "src": "/var/tmp/sudo_jynm1e8a/sudoers", "state": "file", "uid": 0 } TASK [Restore sudoers.d] ******************************************************* task path: /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/cleanup.yml:12 Tuesday 30 July 2024 15:07:45 -0400 (0:00:00.340) 0:00:10.746 ********** changed: [managed_node1] => { "changed": true, "checksum": null, "dest": "/etc/sudoers.d/sudoers.d", "gid": 0, "group": "root", "md5sum": null, "mode": "0644", "owner": "root", "secontext": "unconfined_u:object_r:user_tmp_t:s0", "size": 23, "src": "/var/tmp/sudo_jynm1e8a/sudoers.d", "state": "directory", "uid": 0 } TASK [Clean up temp directory] ************************************************* task path: /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/cleanup.yml:21 Tuesday 30 July 2024 15:07:45 -0400 (0:00:00.344) 0:00:11.091 ********** changed: [managed_node1] => { "changed": true, "path": "/var/tmp/sudo_jynm1e8a", "state": "absent" } PLAY RECAP ********************************************************************* managed_node1 : ok=27 changed=8 unreachable=0 failed=0 skipped=6 rescued=0 ignored=0 Tuesday 30 July 2024 15:07:46 -0400 (0:00:00.345) 0:00:11.437 ********** =============================================================================== fedora.linux_system_roles.sudo : Remove unauthorized included sudoers files --- 3.98s /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:98 Gathering Facts --------------------------------------------------------- 1.14s /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/tests/sudo/tests_role_applied.yml:2 fedora.linux_system_roles.sudo : Ensure sudo is installed --------------- 0.74s /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:5 fedora.linux_system_roles.sudo : Ensure /etc/sudoers is configured ------ 0.71s /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:66 fedora.linux_system_roles.sudo : Ensure include directories are created --- 0.45s /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:43 fedora.linux_system_roles.sudo : Search for sudoers files in included directories --- 0.44s /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:86 Backup sudoers ---------------------------------------------------------- 0.43s /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/setup.yml:10 fedora.linux_system_roles.sudo : Check if system is ostree -------------- 0.42s /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/set_vars.yml:10 Create temp test directory ---------------------------------------------- 0.41s /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/setup.yml:3 Backup sudoers.d -------------------------------------------------------- 0.35s /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/setup.yml:19 Clean up temp directory ------------------------------------------------- 0.35s /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/cleanup.yml:21 Restore sudoers.d ------------------------------------------------------- 0.34s /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/cleanup.yml:12 Get stat of /etc/sudoers ------------------------------------------------ 0.34s /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/assert_files_identical.yml:10 Restore sudoers --------------------------------------------------------- 0.34s /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/cleanup.yml:3 fedora.linux_system_roles.sudo : Check if transactional-update exists in /sbin --- 0.33s /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/set_vars.yml:22 Get stat of files/tests_role_applied.ok --------------------------------- 0.22s /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/assert_files_identical.yml:3 Run the role ------------------------------------------------------------ 0.04s /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/tests/sudo/tests_role_applied.yml:10 fedora.linux_system_roles.sudo : Set unauthorized included sudoers files variable --- 0.04s /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:94 fedora.linux_system_roles.sudo : Set platform/version specific variables --- 0.03s /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/set_vars.yml:31 fedora.linux_system_roles.sudo : Set sudoer file paths variable --------- 0.03s /tmp/tmp.AFtbzpDWHx/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:39