[DEPRECATION WARNING]: ANSIBLE_COLLECTIONS_PATHS option, does not fit var naming standard, use the singular form ANSIBLE_COLLECTIONS_PATH instead. This feature will be removed from ansible-core in version 2.19. Deprecation warnings can be disabled by setting deprecation_warnings=False in ansible.cfg. ansible-playbook [core 2.17.2] config file = None configured module search path = ['/root/.ansible/plugins/modules', '/usr/share/ansible/plugins/modules'] ansible python module location = /usr/local/lib/python3.12/site-packages/ansible ansible collection location = /tmp/tmp.sVTqlYo0ky executable location = /usr/local/bin/ansible-playbook python version = 3.12.4 (main, Jul 17 2024, 00:00:00) [GCC 14.1.1 20240607 (Red Hat 14.1.1-5)] (/usr/bin/python3.12) jinja version = 3.1.4 libyaml = True No config file found; using defaults running playbook inside collection fedora.linux_system_roles redirecting (type: callback) ansible.builtin.debug to ansible.posix.debug redirecting (type: callback) ansible.builtin.debug to ansible.posix.debug redirecting (type: callback) ansible.builtin.profile_tasks to ansible.posix.profile_tasks Skipping callback 'default', as we already have a stdout callback. Skipping callback 'minimal', as we already have a stdout callback. Skipping callback 'oneline', as we already have a stdout callback. PLAYBOOK: tests_role_applied.yml *********************************************** 1 plays in /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/tests/sudo/tests_role_applied.yml PLAY [Test rewrite default sudoers and remove unauthorized files] ************** TASK [Gathering Facts] ********************************************************* task path: /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/tests/sudo/tests_role_applied.yml:2 Saturday 03 August 2024 19:25:14 -0400 (0:00:00.024) 0:00:00.024 ******* [WARNING]: Platform linux on host managed_node1 is using the discovered Python interpreter at /usr/bin/python3.12, but future installation of another Python interpreter could change the meaning of that path. See https://docs.ansible.com/ansible- core/2.17/reference_appendices/interpreter_discovery.html for more information. ok: [managed_node1] TASK [Test setup] ************************************************************** task path: /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/tests/sudo/tests_role_applied.yml:7 Saturday 03 August 2024 19:25:15 -0400 (0:00:01.045) 0:00:01.070 ******* included: /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/setup.yml for managed_node1 TASK [Create temp test directory] ********************************************** task path: /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/setup.yml:3 Saturday 03 August 2024 19:25:15 -0400 (0:00:00.017) 0:00:01.087 ******* changed: [managed_node1] => { "changed": true, "gid": 0, "group": "root", "mode": "0700", "owner": "root", "path": "/var/tmp/sudo_pwciddgw", "secontext": "unconfined_u:object_r:user_tmp_t:s0", "size": 6, "state": "directory", "uid": 0 } TASK [Backup sudoers] ********************************************************** task path: /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/setup.yml:10 Saturday 03 August 2024 19:25:16 -0400 (0:00:00.366) 0:00:01.453 ******* changed: [managed_node1] => { "changed": true, "checksum": "ab0033aa8d46a209d71bfd49f8a2548c86b30be8", "dest": "/var/tmp/sudo_pwciddgw/sudoers", "gid": 0, "group": "root", "md5sum": "a5290df67c7ed217bff527e10cd87040", "mode": "0644", "owner": "root", "secontext": "system_u:object_r:etc_t:s0", "size": 4375, "src": "/etc/sudoers", "state": "file", "uid": 0 } TASK [Backup sudoers.d] ******************************************************** task path: /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/setup.yml:19 Saturday 03 August 2024 19:25:16 -0400 (0:00:00.390) 0:00:01.844 ******* changed: [managed_node1] => { "changed": true, "checksum": null, "dest": "/var/tmp/sudo_pwciddgw/sudoers.d", "gid": 0, "group": "root", "md5sum": null, "mode": "0644", "owner": "root", "secontext": "unconfined_u:object_r:user_tmp_t:s0", "size": 23, "src": "/etc/sudoers.d", "state": "directory", "uid": 0 } TASK [Run the role] ************************************************************ task path: /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/tests/sudo/tests_role_applied.yml:10 Saturday 03 August 2024 19:25:17 -0400 (0:00:00.312) 0:00:02.156 ******* included: fedora.linux_system_roles.sudo for managed_node1 TASK [fedora.linux_system_roles.sudo : Set version specific variables] ********* task path: /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:2 Saturday 03 August 2024 19:25:17 -0400 (0:00:00.030) 0:00:02.187 ******* included: /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/set_vars.yml for managed_node1 TASK [fedora.linux_system_roles.sudo : Ensure ansible_facts used by role] ****** task path: /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/set_vars.yml:2 Saturday 03 August 2024 19:25:17 -0400 (0:00:00.019) 0:00:02.207 ******* skipping: [managed_node1] => { "changed": false, "false_condition": "__sudo_required_facts | difference(ansible_facts.keys() | list) | length > 0", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.sudo : Check if system is ostree] ************** task path: /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/set_vars.yml:10 Saturday 03 August 2024 19:25:17 -0400 (0:00:00.030) 0:00:02.237 ******* ok: [managed_node1] => { "changed": false, "stat": { "exists": false } } TASK [fedora.linux_system_roles.sudo : Set flag to indicate system is ostree] *** task path: /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/set_vars.yml:15 Saturday 03 August 2024 19:25:17 -0400 (0:00:00.374) 0:00:02.612 ******* ok: [managed_node1] => { "ansible_facts": { "__sudo_is_ostree": false }, "changed": false } TASK [fedora.linux_system_roles.sudo : Check if transactional-update exists in /sbin] *** task path: /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/set_vars.yml:22 Saturday 03 August 2024 19:25:17 -0400 (0:00:00.020) 0:00:02.632 ******* ok: [managed_node1] => { "changed": false, "stat": { "exists": false } } TASK [fedora.linux_system_roles.sudo : Set flag if transactional-update exists] *** task path: /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/set_vars.yml:27 Saturday 03 August 2024 19:25:17 -0400 (0:00:00.301) 0:00:02.934 ******* ok: [managed_node1] => { "ansible_facts": { "__sudo_is_transactional": false }, "changed": false } TASK [fedora.linux_system_roles.sudo : Set platform/version specific variables] *** task path: /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/set_vars.yml:31 Saturday 03 August 2024 19:25:17 -0400 (0:00:00.021) 0:00:02.956 ******* skipping: [managed_node1] => (item=RedHat.yml) => { "ansible_loop_var": "item", "changed": false, "false_condition": "__vars_file is file", "item": "RedHat.yml", "skip_reason": "Conditional result was False" } skipping: [managed_node1] => (item=CentOS.yml) => { "ansible_loop_var": "item", "changed": false, "false_condition": "__vars_file is file", "item": "CentOS.yml", "skip_reason": "Conditional result was False" } skipping: [managed_node1] => (item=CentOS_10.yml) => { "ansible_loop_var": "item", "changed": false, "false_condition": "__vars_file is file", "item": "CentOS_10.yml", "skip_reason": "Conditional result was False" } skipping: [managed_node1] => (item=CentOS_10.yml) => { "ansible_loop_var": "item", "changed": false, "false_condition": "__vars_file is file", "item": "CentOS_10.yml", "skip_reason": "Conditional result was False" } skipping: [managed_node1] => { "changed": false } MSG: All items skipped TASK [fedora.linux_system_roles.sudo : Ensure sudo is installed] *************** task path: /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:5 Saturday 03 August 2024 19:25:17 -0400 (0:00:00.029) 0:00:02.986 ******* ok: [managed_node1] => { "changed": false, "rc": 0, "results": [] } MSG: Nothing to do lsrpackages: sudo TASK [fedora.linux_system_roles.sudo : Notify user that reboot is needed to apply changes] *** task path: /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:17 Saturday 03 August 2024 19:25:18 -0400 (0:00:00.683) 0:00:03.669 ******* skipping: [managed_node1] => { "false_condition": "__sudo_is_transactional | d(false)" } TASK [fedora.linux_system_roles.sudo : Reboot transactional update systems] **** task path: /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:22 Saturday 03 August 2024 19:25:18 -0400 (0:00:00.029) 0:00:03.699 ******* skipping: [managed_node1] => { "changed": false, "false_condition": "__sudo_is_transactional | d(false)", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.sudo : Fail if reboot is needed and not set] *** task path: /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:27 Saturday 03 August 2024 19:25:18 -0400 (0:00:00.028) 0:00:03.728 ******* skipping: [managed_node1] => { "changed": false, "false_condition": "__sudo_is_transactional | d(false)", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.sudo : Set include directories variable] ******* task path: /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:35 Saturday 03 August 2024 19:25:18 -0400 (0:00:00.028) 0:00:03.756 ******* ok: [managed_node1] => { "ansible_facts": { "sudo_include_dirs": [ "/etc/sudoers.d" ] }, "changed": false } TASK [fedora.linux_system_roles.sudo : Set sudoer file paths variable] ********* task path: /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:39 Saturday 03 August 2024 19:25:18 -0400 (0:00:00.033) 0:00:03.790 ******* ok: [managed_node1] => { "ansible_facts": { "sudo_file_paths": [ "/etc/sudoers" ] }, "changed": false } TASK [fedora.linux_system_roles.sudo : Ensure include directories are created] *** task path: /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:43 Saturday 03 August 2024 19:25:18 -0400 (0:00:00.035) 0:00:03.825 ******* ok: [managed_node1] => (item=/etc/sudoers.d) => { "ansible_loop_var": "item", "changed": false, "gid": 0, "group": "root", "item": "/etc/sudoers.d", "mode": "0750", "owner": "root", "path": "/etc/sudoers.d", "secontext": "system_u:object_r:etc_t:s0", "size": 50, "state": "directory", "uid": 0 } TASK [fedora.linux_system_roles.sudo : Ensure sudoers include files are configured] *** task path: /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:53 Saturday 03 August 2024 19:25:19 -0400 (0:00:00.415) 0:00:04.241 ******* skipping: [managed_node1] => (item=/etc/sudoers) => { "ansible_loop_var": "item", "changed": false, "false_condition": "item.path != \"/etc/sudoers\"", "item": { "defaults": [ "!visiblepw", "always_set_home", "match_group_by_gid", "always_query_group_plugin", "env_reset", { "secure_path": [ "/sbin", "/bin", "/usr/sbin", "/usr/bin" ] }, { "env_keep": [ "COLORS", "DISPLAY", "HOSTNAME", "HISTSIZE", "KDEDIR", "LS_COLORS", "MAIL", "PS1", "PS2", "QTDIR", "USERNAME", "LANG", "LC_ADDRESS", "LC_CTYPE", "LC_COLLATE", "LC_IDENTIFICATION", "LC_MEASUREMENT", "LC_MESSAGES", "LC_MONETARY", "LC_NAME", "LC_NUMERIC", "LC_PAPER", "LC_TELEPHONE", "LC_TIME", "LC_ALL", "LANGUAGE", "LINGUAS", "_XKB_CHARSET", "XAUTHORITY" ] } ], "include_directories": [ "/etc/sudoers.d" ], "path": "/etc/sudoers", "user_specifications": [ { "commands": [ "ALL" ], "hosts": [ "ALL" ], "operators": [ "ALL" ], "users": [ "root" ] }, { "commands": [ "ALL" ], "hosts": [ "ALL" ], "operators": [ "ALL" ], "users": [ "%wheel" ] } ] }, "skip_reason": "Conditional result was False" } skipping: [managed_node1] => { "changed": false } MSG: All items skipped TASK [fedora.linux_system_roles.sudo : Ensure /etc/sudoers is configured] ****** task path: /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:66 Saturday 03 August 2024 19:25:19 -0400 (0:00:00.018) 0:00:04.259 ******* changed: [managed_node1] => (item=/etc/sudoers) => { "ansible_loop_var": "item", "changed": true, "checksum": "fc5c161eed42bf4d12f49c476bfc46e8e56097d2", "dest": "/etc/sudoers", "gid": 0, "group": "root", "item": { "defaults": [ "!visiblepw", "always_set_home", "match_group_by_gid", "always_query_group_plugin", "env_reset", { "secure_path": [ "/sbin", "/bin", "/usr/sbin", "/usr/bin" ] }, { "env_keep": [ "COLORS", "DISPLAY", "HOSTNAME", "HISTSIZE", "KDEDIR", "LS_COLORS", "MAIL", "PS1", "PS2", "QTDIR", "USERNAME", "LANG", "LC_ADDRESS", "LC_CTYPE", "LC_COLLATE", "LC_IDENTIFICATION", "LC_MEASUREMENT", "LC_MESSAGES", "LC_MONETARY", "LC_NAME", "LC_NUMERIC", "LC_PAPER", "LC_TELEPHONE", "LC_TIME", "LC_ALL", "LANGUAGE", "LINGUAS", "_XKB_CHARSET", "XAUTHORITY" ] } ], "include_directories": [ "/etc/sudoers.d" ], "path": "/etc/sudoers", "user_specifications": [ { "commands": [ "ALL" ], "hosts": [ "ALL" ], "operators": [ "ALL" ], "users": [ "root" ] }, { "commands": [ "ALL" ], "hosts": [ "ALL" ], "operators": [ "ALL" ], "users": [ "%wheel" ] } ] }, "md5sum": "10930d4d72a2804fdbc804a21a30f856", "mode": "0440", "owner": "root", "secontext": "system_u:object_r:etc_t:s0", "size": 813, "src": "/root/.ansible/tmp/ansible-tmp-1722727519.1906826-7222-110077108626258/.source", "state": "file", "uid": 0 } TASK [fedora.linux_system_roles.sudo : Search for sudoers files in included directories] *** task path: /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:86 Saturday 03 August 2024 19:25:19 -0400 (0:00:00.648) 0:00:04.908 ******* ok: [managed_node1] => { "changed": false, "examined": 12, "files": [ { "atime": 1722727507.9407375, "ctime": 1722727506.7317264, "dev": 51714, "gid": 0, "gr_name": "root", "inode": 18874501, "isblk": false, "ischr": false, "isdir": false, "isfifo": false, "isgid": false, "islnk": false, "isreg": true, "issock": false, "isuid": false, "mode": "0440", "mtime": 1722727494.02861, "nlink": 1, "path": "/etc/sudoers.d/pingers", "pw_name": "root", "rgrp": true, "roth": false, "rusr": true, "size": 106, "uid": 0, "wgrp": false, "woth": false, "wusr": false, "xgrp": false, "xoth": false, "xusr": false }, { "atime": 1722727495.5076237, "ctime": 1722727494.8646176, "dev": 51714, "gid": 0, "gr_name": "root", "inode": 421527683, "isblk": false, "ischr": false, "isdir": false, "isfifo": false, "isgid": false, "islnk": false, "isreg": true, "issock": false, "isuid": false, "mode": "0440", "mtime": 1722727494.6286156, "nlink": 1, "path": "/etc/sudoers.d/root", "pw_name": "root", "rgrp": true, "roth": false, "rusr": true, "size": 154, "uid": 0, "wgrp": false, "woth": false, "wusr": false, "xgrp": false, "xoth": false, "xusr": false }, { "atime": 1722727512.6977813, "ctime": 1722727512.6967812, "dev": 51714, "gid": 0, "gr_name": "root", "inode": 88080513, "isblk": false, "ischr": false, "isdir": true, "isfifo": false, "isgid": false, "islnk": false, "isreg": false, "issock": false, "isuid": false, "mode": "0644", "mtime": 1722727503.9827013, "nlink": 3, "path": "/etc/sudoers.d/sudoers.d", "pw_name": "root", "rgrp": true, "roth": true, "rusr": true, "size": 23, "uid": 0, "wgrp": false, "woth": false, "wusr": true, "xgrp": false, "xoth": false, "xusr": false }, { "atime": 1722727512.6977813, "ctime": 1722727512.6967812, "dev": 51714, "gid": 0, "gr_name": "root", "inode": 90177792, "isblk": false, "ischr": false, "isdir": true, "isfifo": false, "isgid": false, "islnk": false, "isreg": false, "issock": false, "isuid": false, "mode": "0755", "mtime": 1722727503.9837012, "nlink": 3, "path": "/etc/sudoers.d/sudoers.d/sudoers.d", "pw_name": "root", "rgrp": true, "roth": true, "rusr": true, "size": 50, "uid": 0, "wgrp": false, "woth": false, "wusr": true, "xgrp": true, "xoth": true, "xusr": true }, { "atime": 1722727516.9808204, "ctime": 1722727512.6957812, "dev": 51714, "gid": 0, "gr_name": "root", "inode": 90177793, "isblk": false, "ischr": false, "isdir": false, "isfifo": false, "isgid": false, "islnk": false, "isreg": true, "issock": false, "isuid": false, "mode": "0440", "mtime": 1722727503.9837012, "nlink": 1, "path": "/etc/sudoers.d/sudoers.d/sudoers.d/pingers", "pw_name": "root", "rgrp": true, "roth": false, "rusr": true, "size": 216, "uid": 0, "wgrp": false, "woth": false, "wusr": false, "xgrp": false, "xoth": false, "xusr": false }, { "atime": 1722727516.9808204, "ctime": 1722727512.6967812, "dev": 51714, "gid": 0, "gr_name": "root", "inode": 90177794, "isblk": false, "ischr": false, "isdir": false, "isfifo": false, "isgid": false, "islnk": false, "isreg": true, "issock": false, "isuid": false, "mode": "0440", "mtime": 1722727503.9837012, "nlink": 1, "path": "/etc/sudoers.d/sudoers.d/sudoers.d/root", "pw_name": "root", "rgrp": true, "roth": false, "rusr": true, "size": 154, "uid": 0, "wgrp": false, "woth": false, "wusr": false, "xgrp": false, "xoth": false, "xusr": false }, { "atime": 1722727512.6977813, "ctime": 1722727512.6967812, "dev": 51714, "gid": 0, "gr_name": "root", "inode": 92274944, "isblk": false, "ischr": false, "isdir": true, "isfifo": false, "isgid": false, "islnk": false, "isreg": false, "issock": false, "isuid": false, "mode": "0644", "mtime": 1722727491.5185869, "nlink": 3, "path": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "pw_name": "root", "rgrp": true, "roth": true, "rusr": true, "size": 23, "uid": 0, "wgrp": false, "woth": false, "wusr": true, "xgrp": false, "xoth": false, "xusr": false }, { "atime": 1722727512.6977813, "ctime": 1722727512.6967812, "dev": 51714, "gid": 0, "gr_name": "root", "inode": 94372096, "isblk": false, "ischr": false, "isdir": true, "isfifo": false, "isgid": false, "islnk": false, "isreg": false, "issock": false, "isuid": false, "mode": "0755", "mtime": 1722727491.519587, "nlink": 3, "path": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "pw_name": "root", "rgrp": true, "roth": true, "rusr": true, "size": 23, "uid": 0, "wgrp": false, "woth": false, "wusr": true, "xgrp": true, "xoth": true, "xusr": true }, { "atime": 1722727512.6977813, "ctime": 1722727512.6967812, "dev": 51714, "gid": 0, "gr_name": "root", "inode": 96469248, "isblk": false, "ischr": false, "isdir": true, "isfifo": false, "isgid": false, "islnk": false, "isreg": false, "issock": false, "isuid": false, "mode": "0644", "mtime": 1722727469.1103559, "nlink": 3, "path": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "pw_name": "root", "rgrp": true, "roth": true, "rusr": true, "size": 23, "uid": 0, "wgrp": false, "woth": false, "wusr": true, "xgrp": false, "xoth": false, "xusr": false }, { "atime": 1722727512.6977813, "ctime": 1722727512.6967812, "dev": 51714, "gid": 0, "gr_name": "root", "inode": 98566400, "isblk": false, "ischr": false, "isdir": true, "isfifo": false, "isgid": false, "islnk": false, "isreg": false, "issock": false, "isuid": false, "mode": "0755", "mtime": 1722727487.2235477, "nlink": 3, "path": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "pw_name": "root", "rgrp": true, "roth": true, "rusr": true, "size": 23, "uid": 0, "wgrp": false, "woth": false, "wusr": true, "xgrp": true, "xoth": true, "xusr": true }, { "atime": 1722727512.6977813, "ctime": 1722727512.6967812, "dev": 51714, "gid": 0, "gr_name": "root", "inode": 100663424, "isblk": false, "ischr": false, "isdir": true, "isfifo": false, "isgid": false, "islnk": false, "isreg": false, "issock": false, "isuid": false, "mode": "0644", "mtime": 1722727469.1103559, "nlink": 3, "path": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "pw_name": "root", "rgrp": true, "roth": true, "rusr": true, "size": 23, "uid": 0, "wgrp": false, "woth": false, "wusr": true, "xgrp": false, "xoth": false, "xusr": false }, { "atime": 1722727512.6977813, "ctime": 1722727512.6967812, "dev": 51714, "gid": 0, "gr_name": "root", "inode": 102760704, "isblk": false, "ischr": false, "isdir": true, "isfifo": false, "isgid": false, "islnk": false, "isreg": false, "issock": false, "isuid": false, "mode": "0755", "mtime": 1722727469.1103559, "nlink": 2, "path": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "pw_name": "root", "rgrp": true, "roth": true, "rusr": true, "size": 6, "uid": 0, "wgrp": false, "woth": false, "wusr": true, "xgrp": true, "xoth": true, "xusr": true } ], "matched": 12, "skipped_paths": {} } MSG: All paths examined TASK [fedora.linux_system_roles.sudo : Set unauthorized included sudoers files variable] *** task path: /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:94 Saturday 03 August 2024 19:25:20 -0400 (0:00:00.404) 0:00:05.312 ******* ok: [managed_node1] => { "ansible_facts": { "sudo_unauthorized_files": [ "/etc/sudoers.d/sudoers.d/sudoers.d/root", "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "/etc/sudoers.d/sudoers.d", "/etc/sudoers.d/sudoers.d/sudoers.d", "/etc/sudoers.d/pingers", "/etc/sudoers.d/sudoers.d/sudoers.d/pingers", "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "/etc/sudoers.d/root", "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d" ] }, "changed": false } TASK [fedora.linux_system_roles.sudo : Remove unauthorized included sudoers files] *** task path: /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:98 Saturday 03 August 2024 19:25:20 -0400 (0:00:00.042) 0:00:05.355 ******* changed: [managed_node1] => (item=/etc/sudoers.d/sudoers.d/sudoers.d/root) => { "ansible_loop_var": "item", "changed": true, "item": "/etc/sudoers.d/sudoers.d/sudoers.d/root", "path": "/etc/sudoers.d/sudoers.d/sudoers.d/root", "state": "absent" } changed: [managed_node1] => (item=/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d) => { "ansible_loop_var": "item", "changed": true, "item": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "path": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "state": "absent" } ok: [managed_node1] => (item=/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d) => { "ansible_loop_var": "item", "changed": false, "item": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "path": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "state": "absent" } changed: [managed_node1] => (item=/etc/sudoers.d/sudoers.d) => { "ansible_loop_var": "item", "changed": true, "item": "/etc/sudoers.d/sudoers.d", "path": "/etc/sudoers.d/sudoers.d", "state": "absent" } ok: [managed_node1] => (item=/etc/sudoers.d/sudoers.d/sudoers.d) => { "ansible_loop_var": "item", "changed": false, "item": "/etc/sudoers.d/sudoers.d/sudoers.d", "path": "/etc/sudoers.d/sudoers.d/sudoers.d", "state": "absent" } changed: [managed_node1] => (item=/etc/sudoers.d/pingers) => { "ansible_loop_var": "item", "changed": true, "item": "/etc/sudoers.d/pingers", "path": "/etc/sudoers.d/pingers", "state": "absent" } ok: [managed_node1] => (item=/etc/sudoers.d/sudoers.d/sudoers.d/pingers) => { "ansible_loop_var": "item", "changed": false, "item": "/etc/sudoers.d/sudoers.d/sudoers.d/pingers", "path": "/etc/sudoers.d/sudoers.d/sudoers.d/pingers", "state": "absent" } ok: [managed_node1] => (item=/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d) => { "ansible_loop_var": "item", "changed": false, "item": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "path": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "state": "absent" } ok: [managed_node1] => (item=/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d) => { "ansible_loop_var": "item", "changed": false, "item": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "path": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "state": "absent" } changed: [managed_node1] => (item=/etc/sudoers.d/root) => { "ansible_loop_var": "item", "changed": true, "item": "/etc/sudoers.d/root", "path": "/etc/sudoers.d/root", "state": "absent" } ok: [managed_node1] => (item=/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d) => { "ansible_loop_var": "item", "changed": false, "item": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "path": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "state": "absent" } ok: [managed_node1] => (item=/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d) => { "ansible_loop_var": "item", "changed": false, "item": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "path": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "state": "absent" } TASK [Check sudoers] *********************************************************** task path: /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/tests/sudo/tests_role_applied.yml:17 Saturday 03 August 2024 19:25:23 -0400 (0:00:03.587) 0:00:08.942 ******* included: /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/assert_files_identical.yml for managed_node1 TASK [Get stat of files/tests_role_applied.ok] ********************************* task path: /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/assert_files_identical.yml:3 Saturday 03 August 2024 19:25:23 -0400 (0:00:00.021) 0:00:08.964 ******* ok: [managed_node1 -> localhost] => { "changed": false, "stat": { "atime": 1722727460.6708555, "attr_flags": "", "attributes": [], "block_size": 4096, "blocks": 8, "charset": "us-ascii", "checksum": "59865a2d50f870e99cabad1aa9832881ebe54d4e70f16b9688e677f647d680d8", "ctime": 1722727464.0678444, "dev": 51714, "device_type": 0, "executable": false, "exists": true, "gid": 0, "gr_name": "root", "inode": 197132577, "isblk": false, "ischr": false, "isdir": false, "isfifo": false, "isgid": false, "islnk": false, "isreg": true, "issock": false, "isuid": false, "mimetype": "text/x-c", "mode": "0644", "mtime": 1722727460.545856, "nlink": 1, "path": "files/tests_role_applied.ok", "pw_name": "root", "readable": true, "rgrp": true, "roth": true, "rusr": true, "size": 813, "uid": 0, "version": "518381580", "wgrp": false, "woth": false, "writeable": true, "wusr": true, "xgrp": false, "xoth": false, "xusr": false } } TASK [Get stat of /etc/sudoers] ************************************************ task path: /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/assert_files_identical.yml:10 Saturday 03 August 2024 19:25:24 -0400 (0:00:00.200) 0:00:09.165 ******* ok: [managed_node1] => { "changed": false, "stat": { "atime": 1722727516.6698177, "attr_flags": "", "attributes": [], "block_size": 4096, "blocks": 8, "charset": "us-ascii", "checksum": "59865a2d50f870e99cabad1aa9832881ebe54d4e70f16b9688e677f647d680d8", "ctime": 1722727519.7368457, "dev": 51714, "device_type": 0, "executable": false, "exists": true, "gid": 0, "gr_name": "root", "inode": 165675266, "isblk": false, "ischr": false, "isdir": false, "isfifo": false, "isgid": false, "islnk": false, "isreg": true, "issock": false, "isuid": false, "mimetype": "text/x-c", "mode": "0440", "mtime": 1719187200.0, "nlink": 1, "path": "/etc/sudoers", "pw_name": "root", "readable": true, "rgrp": true, "roth": false, "rusr": true, "size": 813, "uid": 0, "version": "2806597337", "wgrp": false, "woth": false, "writeable": true, "wusr": false, "xgrp": false, "xoth": false, "xusr": false } } TASK [Assert that files are identical] ***************************************** task path: /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/assert_files_identical.yml:16 Saturday 03 August 2024 19:25:24 -0400 (0:00:00.308) 0:00:09.473 ******* ok: [managed_node1] => { "changed": false } MSG: All assertions passed TASK [Test cleanup] ************************************************************ task path: /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/tests/sudo/tests_role_applied.yml:24 Saturday 03 August 2024 19:25:24 -0400 (0:00:00.015) 0:00:09.488 ******* included: /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/cleanup.yml for managed_node1 TASK [Restore sudoers] ********************************************************* task path: /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/cleanup.yml:3 Saturday 03 August 2024 19:25:24 -0400 (0:00:00.019) 0:00:09.508 ******* changed: [managed_node1] => { "changed": true, "checksum": "ab0033aa8d46a209d71bfd49f8a2548c86b30be8", "dest": "/etc/sudoers", "gid": 0, "group": "root", "md5sum": "a5290df67c7ed217bff527e10cd87040", "mode": "0644", "owner": "root", "secontext": "system_u:object_r:etc_t:s0", "size": 4375, "src": "/var/tmp/sudo_pwciddgw/sudoers", "state": "file", "uid": 0 } TASK [Restore sudoers.d] ******************************************************* task path: /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/cleanup.yml:12 Saturday 03 August 2024 19:25:24 -0400 (0:00:00.305) 0:00:09.814 ******* changed: [managed_node1] => { "changed": true, "checksum": null, "dest": "/etc/sudoers.d/sudoers.d", "gid": 0, "group": "root", "md5sum": null, "mode": "0644", "owner": "root", "secontext": "unconfined_u:object_r:user_tmp_t:s0", "size": 23, "src": "/var/tmp/sudo_pwciddgw/sudoers.d", "state": "directory", "uid": 0 } TASK [Clean up temp directory] ************************************************* task path: /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/cleanup.yml:21 Saturday 03 August 2024 19:25:25 -0400 (0:00:00.312) 0:00:10.127 ******* changed: [managed_node1] => { "changed": true, "path": "/var/tmp/sudo_pwciddgw", "state": "absent" } PLAY RECAP ********************************************************************* managed_node1 : ok=27 changed=8 unreachable=0 failed=0 skipped=6 rescued=0 ignored=0 Saturday 03 August 2024 19:25:25 -0400 (0:00:00.311) 0:00:10.438 ******* =============================================================================== fedora.linux_system_roles.sudo : Remove unauthorized included sudoers files --- 3.59s /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:98 Gathering Facts --------------------------------------------------------- 1.05s /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/tests/sudo/tests_role_applied.yml:2 fedora.linux_system_roles.sudo : Ensure sudo is installed --------------- 0.68s /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:5 fedora.linux_system_roles.sudo : Ensure /etc/sudoers is configured ------ 0.65s /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:66 fedora.linux_system_roles.sudo : Ensure include directories are created --- 0.42s /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:43 fedora.linux_system_roles.sudo : Search for sudoers files in included directories --- 0.40s /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:86 Backup sudoers ---------------------------------------------------------- 0.39s /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/setup.yml:10 fedora.linux_system_roles.sudo : Check if system is ostree -------------- 0.37s /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/set_vars.yml:10 Create temp test directory ---------------------------------------------- 0.37s /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/setup.yml:3 Restore sudoers.d ------------------------------------------------------- 0.31s /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/cleanup.yml:12 Backup sudoers.d -------------------------------------------------------- 0.31s /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/setup.yml:19 Clean up temp directory ------------------------------------------------- 0.31s /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/cleanup.yml:21 Get stat of /etc/sudoers ------------------------------------------------ 0.31s /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/assert_files_identical.yml:10 Restore sudoers --------------------------------------------------------- 0.31s /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/cleanup.yml:3 fedora.linux_system_roles.sudo : Check if transactional-update exists in /sbin --- 0.30s /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/set_vars.yml:22 Get stat of files/tests_role_applied.ok --------------------------------- 0.20s /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/assert_files_identical.yml:3 fedora.linux_system_roles.sudo : Set unauthorized included sudoers files variable --- 0.04s /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:94 fedora.linux_system_roles.sudo : Set sudoer file paths variable --------- 0.04s /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:39 fedora.linux_system_roles.sudo : Set include directories variable ------- 0.03s /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:35 Run the role ------------------------------------------------------------ 0.03s /tmp/tmp.sVTqlYo0ky/ansible_collections/fedora/linux_system_roles/tests/sudo/tests_role_applied.yml:10