[DEPRECATION WARNING]: ANSIBLE_COLLECTIONS_PATHS option, does not fit var naming standard, use the singular form ANSIBLE_COLLECTIONS_PATH instead. This feature will be removed from ansible-core in version 2.19. Deprecation warnings can be disabled by setting deprecation_warnings=False in ansible.cfg. ansible-playbook [core 2.17.4] config file = None configured module search path = ['/root/.ansible/plugins/modules', '/usr/share/ansible/plugins/modules'] ansible python module location = /usr/local/lib/python3.12/site-packages/ansible ansible collection location = /tmp/collections-aYS executable location = /usr/local/bin/ansible-playbook python version = 3.12.5 (main, Aug 23 2024, 00:00:00) [GCC 14.2.1 20240801 (Red Hat 14.2.1-1)] (/usr/bin/python3.12) jinja version = 3.1.4 libyaml = True No config file found; using defaults running playbook inside collection fedora.linux_system_roles redirecting (type: callback) ansible.builtin.debug to ansible.posix.debug redirecting (type: callback) ansible.builtin.debug to ansible.posix.debug redirecting (type: callback) ansible.builtin.profile_tasks to ansible.posix.profile_tasks Skipping callback 'default', as we already have a stdout callback. Skipping callback 'minimal', as we already have a stdout callback. Skipping callback 'oneline', as we already have a stdout callback. PLAYBOOK: tests_match.yml ****************************************************** 1 plays in /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/tests/ssh/tests_match.yml PLAY [Verify Match and Host keywords are rendered as expected] ***************** TASK [Gathering Facts] ********************************************************* task path: /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/tests/ssh/tests_match.yml:2 Saturday 21 September 2024 17:15:16 -0400 (0:00:00.008) 0:00:00.008 **** [WARNING]: Platform linux on host managed_node1 is using the discovered Python interpreter at /usr/bin/python3.12, but future installation of another Python interpreter could change the meaning of that path. See https://docs.ansible.com/ansible- core/2.17/reference_appendices/interpreter_discovery.html for more information. ok: [managed_node1] TASK [Backup configuration files] ********************************************** task path: /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/tests/ssh/tests_match.yml:11 Saturday 21 September 2024 17:15:18 -0400 (0:00:01.185) 0:00:01.193 **** included: /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/tests/ssh/tasks/backup.yml for managed_node1 TASK [Setup] ******************************************************************* task path: /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/tests/ssh/tasks/backup.yml:2 Saturday 21 September 2024 17:15:18 -0400 (0:00:00.023) 0:00:01.217 **** included: /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/tests/ssh/tasks/setup.yml for managed_node1 TASK [Ensure facts used by test] *********************************************** task path: /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/tests/ssh/tasks/setup.yml:2 Saturday 21 September 2024 17:15:18 -0400 (0:00:00.029) 0:00:01.246 **** skipping: [managed_node1] => { "changed": false, "false_condition": "'os_family' not in ansible_facts", "skip_reason": "Conditional result was False" } TASK [Check if system is ostree] *********************************************** task path: /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/tests/ssh/tasks/setup.yml:10 Saturday 21 September 2024 17:15:18 -0400 (0:00:00.020) 0:00:01.266 **** ok: [managed_node1] => { "changed": false, "stat": { "exists": false } } TASK [Set flag to indicate system is ostree] *********************************** task path: /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/tests/ssh/tasks/setup.yml:15 Saturday 21 September 2024 17:15:18 -0400 (0:00:00.492) 0:00:01.759 **** ok: [managed_node1] => { "ansible_facts": { "__ssh_is_ostree": false }, "changed": false } TASK [Make sure openssh is installed before creating backup] ******************* task path: /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/tests/ssh/tasks/setup.yml:19 Saturday 21 September 2024 17:15:18 -0400 (0:00:00.037) 0:00:01.796 **** ok: [managed_node1] => { "changed": false, "rc": 0, "results": [] } MSG: Nothing to do lsrpackages: openssh-clients TASK [Define common variables] ************************************************* task path: /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/tests/ssh/tasks/setup.yml:31 Saturday 21 September 2024 17:15:19 -0400 (0:00:00.799) 0:00:02.596 **** ok: [managed_node1] => { "ansible_facts": { "main_ssh_config": "/etc/ssh/ssh_config", "main_ssh_config_name": "ssh_config", "main_ssh_config_path": "/etc/ssh/" }, "changed": false } TASK [Define specific variables] *********************************************** task path: /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/tests/ssh/tasks/setup.yml:37 Saturday 21 September 2024 17:15:19 -0400 (0:00:00.013) 0:00:02.609 **** ok: [managed_node1] => { "ansible_facts": { "main_ssh_config": "/etc/ssh/ssh_config.d/00-ansible.conf", "main_ssh_config_name": "00-ansible.conf", "main_ssh_config_path": "/etc/ssh/ssh_config.d/" }, "changed": false } TASK [Create a temporary directory for backup files] *************************** task path: /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/tests/ssh/tasks/backup.yml:5 Saturday 21 September 2024 17:15:19 -0400 (0:00:00.033) 0:00:02.642 **** ok: [managed_node1] => { "changed": false, "gid": 0, "group": "root", "mode": "0700", "owner": "root", "path": "/tmp/ansible.mos7i4dz", "secontext": "unconfined_u:object_r:user_tmp_t:s0", "size": 6, "state": "directory", "uid": 0 } TASK [Backup files] ************************************************************ task path: /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/tests/ssh/tasks/backup.yml:13 Saturday 21 September 2024 17:15:20 -0400 (0:00:00.405) 0:00:03.048 **** ok: [managed_node1] => (item=/etc/ssh/ssh_config.d/00-ansible.conf) => { "ansible_loop_var": "item", "changed": false, "cmd": "if test -f /etc/ssh/ssh_config.d/00-ansible.conf; then\n mkdir -p /tmp/ansible.mos7i4dz/$(dirname /etc/ssh/ssh_config.d/00-ansible.conf);\n cp -a /etc/ssh/ssh_config.d/00-ansible.conf /tmp/ansible.mos7i4dz/$(dirname /etc/ssh/ssh_config.d/00-ansible.conf)\nfi\n", "delta": "0:00:00.007432", "end": "2024-09-21 17:15:20.449472", "item": "/etc/ssh/ssh_config.d/00-ansible.conf", "rc": 0, "start": "2024-09-21 17:15:20.442040" } ok: [managed_node1] => (item=/etc/ssh/ssh_config) => { "ansible_loop_var": "item", "changed": false, "cmd": "if test -f /etc/ssh/ssh_config; then\n mkdir -p /tmp/ansible.mos7i4dz/$(dirname /etc/ssh/ssh_config);\n cp -a /etc/ssh/ssh_config /tmp/ansible.mos7i4dz/$(dirname /etc/ssh/ssh_config)\nfi\n", "delta": "0:00:00.007388", "end": "2024-09-21 17:15:20.817385", "item": "/etc/ssh/ssh_config", "rc": 0, "start": "2024-09-21 17:15:20.809997" } TASK [Run role] **************************************************************** task path: /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/tests/ssh/tests_match.yml:14 Saturday 21 September 2024 17:15:20 -0400 (0:00:00.859) 0:00:03.908 **** included: fedora.linux_system_roles.ssh for managed_node1 TASK [fedora.linux_system_roles.ssh : Set platform/version specific variables] *** task path: /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/main.yml:2 Saturday 21 September 2024 17:15:20 -0400 (0:00:00.066) 0:00:03.974 **** included: /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/set_vars.yml for managed_node1 TASK [fedora.linux_system_roles.ssh : Ensure ansible_facts used by role] ******* task path: /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/set_vars.yml:2 Saturday 21 September 2024 17:15:20 -0400 (0:00:00.034) 0:00:04.009 **** skipping: [managed_node1] => { "changed": false, "false_condition": "__ssh_required_facts | difference(ansible_facts.keys() | list) | length > 0", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.ssh : Check if system is ostree] *************** task path: /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/set_vars.yml:10 Saturday 21 September 2024 17:15:21 -0400 (0:00:00.043) 0:00:04.053 **** skipping: [managed_node1] => { "changed": false, "false_condition": "not __ssh_is_ostree is defined", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.ssh : Set flag to indicate system is ostree] *** task path: /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/set_vars.yml:15 Saturday 21 September 2024 17:15:21 -0400 (0:00:00.026) 0:00:04.079 **** skipping: [managed_node1] => { "changed": false, "false_condition": "not __ssh_is_ostree is defined", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.ssh : Check if transactional-update exists in /sbin] *** task path: /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/set_vars.yml:22 Saturday 21 September 2024 17:15:21 -0400 (0:00:00.026) 0:00:04.106 **** ok: [managed_node1] => { "changed": false, "stat": { "exists": false } } TASK [fedora.linux_system_roles.ssh : Set flag if transactional-update exists] *** task path: /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/set_vars.yml:27 Saturday 21 September 2024 17:15:21 -0400 (0:00:00.357) 0:00:04.463 **** ok: [managed_node1] => { "ansible_facts": { "__ssh_is_transactional": false }, "changed": false } TASK [fedora.linux_system_roles.ssh : Set platform/version specific variables] *** task path: /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/set_vars.yml:31 Saturday 21 September 2024 17:15:21 -0400 (0:00:00.022) 0:00:04.485 **** skipping: [managed_node1] => (item=RedHat.yml) => { "ansible_loop_var": "item", "changed": false, "false_condition": "__vars_file is file", "item": "RedHat.yml", "skip_reason": "Conditional result was False" } skipping: [managed_node1] => (item=CentOS.yml) => { "ansible_loop_var": "item", "changed": false, "false_condition": "__vars_file is file", "item": "CentOS.yml", "skip_reason": "Conditional result was False" } ok: [managed_node1] => (item=CentOS_10.yml) => { "ansible_facts": { "__ssh_defaults": { "Include": "/etc/ssh/ssh_config.d/*.conf" }, "__ssh_drop_in_name": "00-ansible", "__ssh_supports_drop_in": true }, "ansible_included_var_files": [ "/tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/roles/ssh/vars/CentOS_10.yml" ], "ansible_loop_var": "item", "changed": false, "item": "CentOS_10.yml" } ok: [managed_node1] => (item=CentOS_10.yml) => { "ansible_facts": { "__ssh_defaults": { "Include": "/etc/ssh/ssh_config.d/*.conf" }, "__ssh_drop_in_name": "00-ansible", "__ssh_supports_drop_in": true }, "ansible_included_var_files": [ "/tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/roles/ssh/vars/CentOS_10.yml" ], "ansible_loop_var": "item", "changed": false, "item": "CentOS_10.yml" } TASK [fedora.linux_system_roles.ssh : Ensure required packages are installed] *** task path: /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/main.yml:5 Saturday 21 September 2024 17:15:21 -0400 (0:00:00.038) 0:00:04.524 **** ok: [managed_node1] => { "changed": false, "rc": 0, "results": [] } MSG: Nothing to do lsrpackages: openssh openssh-clients TASK [fedora.linux_system_roles.ssh : Notify user that reboot is needed to apply changes] *** task path: /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/main.yml:17 Saturday 21 September 2024 17:15:22 -0400 (0:00:00.672) 0:00:05.196 **** skipping: [managed_node1] => { "false_condition": "__ssh_is_transactional | d(false)" } TASK [fedora.linux_system_roles.ssh : Reboot transactional update systems] ***** task path: /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/main.yml:22 Saturday 21 September 2024 17:15:22 -0400 (0:00:00.079) 0:00:05.276 **** skipping: [managed_node1] => { "changed": false, "false_condition": "__ssh_is_transactional | d(false)", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.ssh : Fail if reboot is needed and not set] **** task path: /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/main.yml:27 Saturday 21 September 2024 17:15:22 -0400 (0:00:00.042) 0:00:05.318 **** skipping: [managed_node1] => { "changed": false, "false_condition": "__ssh_is_transactional | d(false)", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.ssh : Gather information about the user for user configuration] *** task path: /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/main.yml:35 Saturday 21 September 2024 17:15:22 -0400 (0:00:00.058) 0:00:05.377 **** skipping: [managed_node1] => { "changed": false, "false_condition": "ssh_user is not none", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.ssh : Make sure the ~/.ssh/ directory exists and has expected permissions] *** task path: /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/main.yml:42 Saturday 21 September 2024 17:15:22 -0400 (0:00:00.039) 0:00:05.416 **** skipping: [managed_node1] => { "changed": false, "false_condition": "ssh_user is not none", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.ssh : Generate the configuration file] ********* task path: /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/main.yml:53 Saturday 21 September 2024 17:15:22 -0400 (0:00:00.053) 0:00:05.469 **** changed: [managed_node1] => { "backup_file": "/etc/ssh/ssh_config.d/00-ansible.conf.12352.2024-09-21@17:15:23~", "changed": true, "checksum": "ef2a28213aba2bd9717e70173d449a502457eaad", "dest": "/etc/ssh/ssh_config.d/00-ansible.conf", "gid": 0, "group": "root", "md5sum": "b3139d38b34b2e55be846c02e58c8181", "mode": "0644", "owner": "root", "secontext": "system_u:object_r:etc_t:s0", "size": 191, "src": "/root/.ansible/tmp/ansible-tmp-1726953322.5302556-9276-262061951428879/.source.conf", "state": "file", "uid": 0 } TASK [Download the configuration file] ***************************************** task path: /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/tests/ssh/tests_match.yml:33 Saturday 21 September 2024 17:15:23 -0400 (0:00:00.997) 0:00:06.466 **** ok: [managed_node1] => { "changed": false, "content": "IwojIEFuc2libGUgbWFuYWdlZAojCiMgc3lzdGVtX3JvbGU6c3NoCgpNYXRjaCB1c2VyIHRlc3R1c2VyCiAgQ29tcHJlc3Npb24geWVzCk1hdGNoIGhvc3QgZXhhbXBsZQogIEhvc3RuYW1lIGV4YW1wbGUuY29tCkhvc3QgbG9jYWwKICBVc2VyIGxvY2FsdXNlcgpIb3N0IHJlbW90ZQogIEhvc3RuYW1lIHJlbW90ZS5leGFtcGxlLmNvbQo=", "encoding": "base64", "source": "/etc/ssh/ssh_config.d/00-ansible.conf" } TASK [Verify the options are in the file] ************************************** task path: /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/tests/ssh/tests_match.yml:38 Saturday 21 September 2024 17:15:23 -0400 (0:00:00.509) 0:00:06.976 **** ok: [managed_node1] => { "changed": false } MSG: All assertions passed TASK [Run first ssh in test mode to evaluate the configuration] **************** task path: /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/tests/ssh/tests_match.yml:54 Saturday 21 September 2024 17:15:23 -0400 (0:00:00.039) 0:00:07.016 **** ok: [managed_node1] => { "changed": false, "cmd": [ "ssh", "-G", "testuser@example" ], "delta": "0:00:00.007511", "end": "2024-09-21 17:15:24.331437", "rc": 0, "start": "2024-09-21 17:15:24.323926" } STDOUT: host example user testuser hostname example.com port 22 addressfamily any batchmode no canonicalizefallbacklocal yes canonicalizehostname false checkhostip no compression yes controlmaster false enablesshkeysign no clearallforwardings no exitonforwardfailure no fingerprinthash SHA256 forwardx11 no forwardx11trusted yes gatewayports no gssapiauthentication yes gssapikeyexchange no gssapidelegatecredentials no gssapitrustdns no gssapirenewalforcesrekey no gssapikexalgorithms gss-curve25519-sha256-,gss-nistp256-sha256-,gss-group14-sha256-,gss-group16-sha512- hashknownhosts no hostbasedauthentication no identitiesonly no kbdinteractiveauthentication yes nohostauthenticationforlocalhost no passwordauthentication yes permitlocalcommand no proxyusefdpass no pubkeyauthentication true requesttty auto sessiontype default stdinnull no forkafterauthentication no streamlocalbindunlink no stricthostkeychecking ask tcpkeepalive yes tunnel false verifyhostkeydns false visualhostkey no updatehostkeys true enableescapecommandline no canonicalizemaxdots 1 connectionattempts 1 forwardx11timeout 1200 numberofpasswordprompts 3 serveralivecountmax 3 serveraliveinterval 0 requiredrsasize 2048 obscurekeystroketiming yes ciphers aes256-gcm@openssh.com,chacha20-poly1305@openssh.com,aes256-ctr,aes128-gcm@openssh.com,aes128-ctr hostkeyalgorithms ssh-ed25519-cert-v01@openssh.com,ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521-cert-v01@openssh.com,sk-ssh-ed25519-cert-v01@openssh.com,sk-ecdsa-sha2-nistp256-cert-v01@openssh.com,rsa-sha2-512-cert-v01@openssh.com,rsa-sha2-256-cert-v01@openssh.com,ssh-ed25519,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,sk-ssh-ed25519@openssh.com,sk-ecdsa-sha2-nistp256@openssh.com,rsa-sha2-512,rsa-sha2-256 hostbasedacceptedalgorithms ecdsa-sha2-nistp256,ecdsa-sha2-nistp256-cert-v01@openssh.com,sk-ecdsa-sha2-nistp256@openssh.com,sk-ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521,ecdsa-sha2-nistp521-cert-v01@openssh.com,ssh-ed25519,ssh-ed25519-cert-v01@openssh.com,sk-ssh-ed25519@openssh.com,sk-ssh-ed25519-cert-v01@openssh.com,rsa-sha2-256,rsa-sha2-256-cert-v01@openssh.com,rsa-sha2-512,rsa-sha2-512-cert-v01@openssh.com kexalgorithms curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group14-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512 casignaturealgorithms ecdsa-sha2-nistp256,sk-ecdsa-sha2-nistp256@openssh.com,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,ssh-ed25519,sk-ssh-ed25519@openssh.com,rsa-sha2-256,rsa-sha2-512 loglevel INFO macs hmac-sha2-256-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha2-256,hmac-sha1,umac-128@openssh.com,hmac-sha2-512 securitykeyprovider internal pubkeyacceptedalgorithms ecdsa-sha2-nistp256,ecdsa-sha2-nistp256-cert-v01@openssh.com,sk-ecdsa-sha2-nistp256@openssh.com,sk-ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521,ecdsa-sha2-nistp521-cert-v01@openssh.com,ssh-ed25519,ssh-ed25519-cert-v01@openssh.com,sk-ssh-ed25519@openssh.com,sk-ssh-ed25519-cert-v01@openssh.com,rsa-sha2-256,rsa-sha2-256-cert-v01@openssh.com,rsa-sha2-512,rsa-sha2-512-cert-v01@openssh.com xauthlocation /usr/bin/xauth identityfile ~/.ssh/id_rsa identityfile ~/.ssh/id_ecdsa identityfile ~/.ssh/id_ecdsa_sk identityfile ~/.ssh/id_ed25519 identityfile ~/.ssh/id_ed25519_sk identityfile ~/.ssh/id_xmss canonicaldomains none globalknownhostsfile /etc/ssh/ssh_known_hosts /etc/ssh/ssh_known_hosts2 userknownhostsfile /root/.ssh/known_hosts /root/.ssh/known_hosts2 logverbose none channeltimeout none permitremoteopen any addkeystoagent false forwardagent no connecttimeout none tunneldevice any:any canonicalizePermittedcnames none controlpersist no escapechar ~ ipqos af21 cs1 rekeylimit 0 0 streamlocalbindmask 0177 syslogfacility USER TASK [Run second ssh in test mode to evaluate the configuration] *************** task path: /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/tests/ssh/tests_match.yml:59 Saturday 21 September 2024 17:15:24 -0400 (0:00:00.391) 0:00:07.408 **** ok: [managed_node1] => { "changed": false, "cmd": [ "ssh", "-G", "local" ], "delta": "0:00:00.006319", "end": "2024-09-21 17:15:24.720373", "rc": 0, "start": "2024-09-21 17:15:24.714054" } STDOUT: host local user localuser hostname local port 22 addressfamily any batchmode no canonicalizefallbacklocal yes canonicalizehostname false checkhostip no compression no controlmaster false enablesshkeysign no clearallforwardings no exitonforwardfailure no fingerprinthash SHA256 forwardx11 no forwardx11trusted yes gatewayports no gssapiauthentication yes gssapikeyexchange no gssapidelegatecredentials no gssapitrustdns no gssapirenewalforcesrekey no gssapikexalgorithms gss-curve25519-sha256-,gss-nistp256-sha256-,gss-group14-sha256-,gss-group16-sha512- hashknownhosts no hostbasedauthentication no identitiesonly no kbdinteractiveauthentication yes nohostauthenticationforlocalhost no passwordauthentication yes permitlocalcommand no proxyusefdpass no pubkeyauthentication true requesttty auto sessiontype default stdinnull no forkafterauthentication no streamlocalbindunlink no stricthostkeychecking ask tcpkeepalive yes tunnel false verifyhostkeydns false visualhostkey no updatehostkeys true enableescapecommandline no canonicalizemaxdots 1 connectionattempts 1 forwardx11timeout 1200 numberofpasswordprompts 3 serveralivecountmax 3 serveraliveinterval 0 requiredrsasize 2048 obscurekeystroketiming yes ciphers aes256-gcm@openssh.com,chacha20-poly1305@openssh.com,aes256-ctr,aes128-gcm@openssh.com,aes128-ctr hostkeyalgorithms ssh-ed25519-cert-v01@openssh.com,ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521-cert-v01@openssh.com,sk-ssh-ed25519-cert-v01@openssh.com,sk-ecdsa-sha2-nistp256-cert-v01@openssh.com,rsa-sha2-512-cert-v01@openssh.com,rsa-sha2-256-cert-v01@openssh.com,ssh-ed25519,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,sk-ssh-ed25519@openssh.com,sk-ecdsa-sha2-nistp256@openssh.com,rsa-sha2-512,rsa-sha2-256 hostbasedacceptedalgorithms ecdsa-sha2-nistp256,ecdsa-sha2-nistp256-cert-v01@openssh.com,sk-ecdsa-sha2-nistp256@openssh.com,sk-ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521,ecdsa-sha2-nistp521-cert-v01@openssh.com,ssh-ed25519,ssh-ed25519-cert-v01@openssh.com,sk-ssh-ed25519@openssh.com,sk-ssh-ed25519-cert-v01@openssh.com,rsa-sha2-256,rsa-sha2-256-cert-v01@openssh.com,rsa-sha2-512,rsa-sha2-512-cert-v01@openssh.com kexalgorithms curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group14-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512 casignaturealgorithms ecdsa-sha2-nistp256,sk-ecdsa-sha2-nistp256@openssh.com,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,ssh-ed25519,sk-ssh-ed25519@openssh.com,rsa-sha2-256,rsa-sha2-512 loglevel INFO macs hmac-sha2-256-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha2-256,hmac-sha1,umac-128@openssh.com,hmac-sha2-512 securitykeyprovider internal pubkeyacceptedalgorithms ecdsa-sha2-nistp256,ecdsa-sha2-nistp256-cert-v01@openssh.com,sk-ecdsa-sha2-nistp256@openssh.com,sk-ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521,ecdsa-sha2-nistp521-cert-v01@openssh.com,ssh-ed25519,ssh-ed25519-cert-v01@openssh.com,sk-ssh-ed25519@openssh.com,sk-ssh-ed25519-cert-v01@openssh.com,rsa-sha2-256,rsa-sha2-256-cert-v01@openssh.com,rsa-sha2-512,rsa-sha2-512-cert-v01@openssh.com xauthlocation /usr/bin/xauth identityfile ~/.ssh/id_rsa identityfile ~/.ssh/id_ecdsa identityfile ~/.ssh/id_ecdsa_sk identityfile ~/.ssh/id_ed25519 identityfile ~/.ssh/id_ed25519_sk identityfile ~/.ssh/id_xmss canonicaldomains none globalknownhostsfile /etc/ssh/ssh_known_hosts /etc/ssh/ssh_known_hosts2 userknownhostsfile /root/.ssh/known_hosts /root/.ssh/known_hosts2 logverbose none channeltimeout none permitremoteopen any addkeystoagent false forwardagent no connecttimeout none tunneldevice any:any canonicalizePermittedcnames none controlpersist no escapechar ~ ipqos af21 cs1 rekeylimit 0 0 streamlocalbindmask 0177 syslogfacility USER TASK [Run third ssh in test mode to evaluate the configuration] **************** task path: /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/tests/ssh/tests_match.yml:64 Saturday 21 September 2024 17:15:24 -0400 (0:00:00.381) 0:00:07.789 **** ok: [managed_node1] => { "changed": false, "cmd": [ "ssh", "-G", "remote" ], "delta": "0:00:00.006237", "end": "2024-09-21 17:15:25.072630", "rc": 0, "start": "2024-09-21 17:15:25.066393" } STDOUT: host remote user root hostname remote.example.com port 22 addressfamily any batchmode no canonicalizefallbacklocal yes canonicalizehostname false checkhostip no compression no controlmaster false enablesshkeysign no clearallforwardings no exitonforwardfailure no fingerprinthash SHA256 forwardx11 no forwardx11trusted yes gatewayports no gssapiauthentication yes gssapikeyexchange no gssapidelegatecredentials no gssapitrustdns no gssapirenewalforcesrekey no gssapikexalgorithms gss-curve25519-sha256-,gss-nistp256-sha256-,gss-group14-sha256-,gss-group16-sha512- hashknownhosts no hostbasedauthentication no identitiesonly no kbdinteractiveauthentication yes nohostauthenticationforlocalhost no passwordauthentication yes permitlocalcommand no proxyusefdpass no pubkeyauthentication true requesttty auto sessiontype default stdinnull no forkafterauthentication no streamlocalbindunlink no stricthostkeychecking ask tcpkeepalive yes tunnel false verifyhostkeydns false visualhostkey no updatehostkeys true enableescapecommandline no canonicalizemaxdots 1 connectionattempts 1 forwardx11timeout 1200 numberofpasswordprompts 3 serveralivecountmax 3 serveraliveinterval 0 requiredrsasize 2048 obscurekeystroketiming yes ciphers aes256-gcm@openssh.com,chacha20-poly1305@openssh.com,aes256-ctr,aes128-gcm@openssh.com,aes128-ctr hostkeyalgorithms ssh-ed25519-cert-v01@openssh.com,ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521-cert-v01@openssh.com,sk-ssh-ed25519-cert-v01@openssh.com,sk-ecdsa-sha2-nistp256-cert-v01@openssh.com,rsa-sha2-512-cert-v01@openssh.com,rsa-sha2-256-cert-v01@openssh.com,ssh-ed25519,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,sk-ssh-ed25519@openssh.com,sk-ecdsa-sha2-nistp256@openssh.com,rsa-sha2-512,rsa-sha2-256 hostbasedacceptedalgorithms ecdsa-sha2-nistp256,ecdsa-sha2-nistp256-cert-v01@openssh.com,sk-ecdsa-sha2-nistp256@openssh.com,sk-ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521,ecdsa-sha2-nistp521-cert-v01@openssh.com,ssh-ed25519,ssh-ed25519-cert-v01@openssh.com,sk-ssh-ed25519@openssh.com,sk-ssh-ed25519-cert-v01@openssh.com,rsa-sha2-256,rsa-sha2-256-cert-v01@openssh.com,rsa-sha2-512,rsa-sha2-512-cert-v01@openssh.com kexalgorithms curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group14-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512 casignaturealgorithms ecdsa-sha2-nistp256,sk-ecdsa-sha2-nistp256@openssh.com,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,ssh-ed25519,sk-ssh-ed25519@openssh.com,rsa-sha2-256,rsa-sha2-512 loglevel INFO macs hmac-sha2-256-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha2-256,hmac-sha1,umac-128@openssh.com,hmac-sha2-512 securitykeyprovider internal pubkeyacceptedalgorithms ecdsa-sha2-nistp256,ecdsa-sha2-nistp256-cert-v01@openssh.com,sk-ecdsa-sha2-nistp256@openssh.com,sk-ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521,ecdsa-sha2-nistp521-cert-v01@openssh.com,ssh-ed25519,ssh-ed25519-cert-v01@openssh.com,sk-ssh-ed25519@openssh.com,sk-ssh-ed25519-cert-v01@openssh.com,rsa-sha2-256,rsa-sha2-256-cert-v01@openssh.com,rsa-sha2-512,rsa-sha2-512-cert-v01@openssh.com xauthlocation /usr/bin/xauth identityfile ~/.ssh/id_rsa identityfile ~/.ssh/id_ecdsa identityfile ~/.ssh/id_ecdsa_sk identityfile ~/.ssh/id_ed25519 identityfile ~/.ssh/id_ed25519_sk identityfile ~/.ssh/id_xmss canonicaldomains none globalknownhostsfile /etc/ssh/ssh_known_hosts /etc/ssh/ssh_known_hosts2 userknownhostsfile /root/.ssh/known_hosts /root/.ssh/known_hosts2 logverbose none channeltimeout none permitremoteopen any addkeystoagent false forwardagent no connecttimeout none tunneldevice any:any canonicalizePermittedcnames none controlpersist no escapechar ~ ipqos af21 cs1 rekeylimit 0 0 streamlocalbindmask 0177 syslogfacility USER TASK [Verify the options are correctly evaluated] ****************************** task path: /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/tests/ssh/tests_match.yml:69 Saturday 21 September 2024 17:15:25 -0400 (0:00:00.365) 0:00:08.155 **** ok: [managed_node1] => { "changed": false } MSG: All assertions passed TASK [Restore configuration files] ********************************************* task path: /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/tests/ssh/tests_match.yml:85 Saturday 21 September 2024 17:15:25 -0400 (0:00:00.054) 0:00:08.210 **** included: /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/tests/ssh/tasks/restore.yml for managed_node1 TASK [Restore backed up files and remove what was not present] ***************** task path: /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/tests/ssh/tasks/restore.yml:2 Saturday 21 September 2024 17:15:25 -0400 (0:00:00.018) 0:00:08.228 **** ok: [managed_node1] => (item=/etc/ssh/ssh_config.d/00-ansible.conf) => { "ansible_loop_var": "item", "changed": false, "cmd": "if test -f /tmp/ansible.mos7i4dz//etc/ssh/ssh_config.d/00-ansible.conf; then\n cp -a /tmp/ansible.mos7i4dz//etc/ssh/ssh_config.d/00-ansible.conf $(dirname /etc/ssh/ssh_config.d/00-ansible.conf)\nelif test -f /etc/ssh/ssh_config.d/00-ansible.conf; then\n rm /etc/ssh/ssh_config.d/00-ansible.conf\nfi\n", "delta": "0:00:00.006599", "end": "2024-09-21 17:15:25.520747", "item": "/etc/ssh/ssh_config.d/00-ansible.conf", "rc": 0, "start": "2024-09-21 17:15:25.514148" } ok: [managed_node1] => (item=/etc/ssh/ssh_config) => { "ansible_loop_var": "item", "changed": false, "cmd": "if test -f /tmp/ansible.mos7i4dz//etc/ssh/ssh_config; then\n cp -a /tmp/ansible.mos7i4dz//etc/ssh/ssh_config $(dirname /etc/ssh/ssh_config)\nelif test -f /etc/ssh/ssh_config; then\n rm /etc/ssh/ssh_config\nfi\n", "delta": "0:00:00.005572", "end": "2024-09-21 17:15:25.887067", "item": "/etc/ssh/ssh_config", "rc": 0, "start": "2024-09-21 17:15:25.881495" } TASK [Remove temporary directory for backup files] ***************************** task path: /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/tests/ssh/tasks/restore.yml:15 Saturday 21 September 2024 17:15:25 -0400 (0:00:00.735) 0:00:08.964 **** ok: [managed_node1] => { "changed": false, "path": "/tmp/ansible.mos7i4dz", "state": "absent" } PLAY RECAP ********************************************************************* managed_node1 : ok=26 changed=1 unreachable=0 failed=0 skipped=9 rescued=0 ignored=0 Saturday 21 September 2024 17:15:26 -0400 (0:00:00.456) 0:00:09.421 **** =============================================================================== Gathering Facts --------------------------------------------------------- 1.19s /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/tests/ssh/tests_match.yml:2 fedora.linux_system_roles.ssh : Generate the configuration file --------- 1.00s /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/main.yml:53 Backup files ------------------------------------------------------------ 0.86s /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/tests/ssh/tasks/backup.yml:13 Make sure openssh is installed before creating backup ------------------- 0.80s /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/tests/ssh/tasks/setup.yml:19 Restore backed up files and remove what was not present ----------------- 0.74s /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/tests/ssh/tasks/restore.yml:2 fedora.linux_system_roles.ssh : Ensure required packages are installed --- 0.67s /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/main.yml:5 Download the configuration file ----------------------------------------- 0.51s /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/tests/ssh/tests_match.yml:33 Check if system is ostree ----------------------------------------------- 0.49s /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/tests/ssh/tasks/setup.yml:10 Remove temporary directory for backup files ----------------------------- 0.46s /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/tests/ssh/tasks/restore.yml:15 Create a temporary directory for backup files --------------------------- 0.41s /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/tests/ssh/tasks/backup.yml:5 Run first ssh in test mode to evaluate the configuration ---------------- 0.39s /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/tests/ssh/tests_match.yml:54 Run second ssh in test mode to evaluate the configuration --------------- 0.38s /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/tests/ssh/tests_match.yml:59 Run third ssh in test mode to evaluate the configuration ---------------- 0.37s /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/tests/ssh/tests_match.yml:64 fedora.linux_system_roles.ssh : Check if transactional-update exists in /sbin --- 0.36s /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/set_vars.yml:22 fedora.linux_system_roles.ssh : Notify user that reboot is needed to apply changes --- 0.08s /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/main.yml:17 Run role ---------------------------------------------------------------- 0.07s /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/tests/ssh/tests_match.yml:14 fedora.linux_system_roles.ssh : Fail if reboot is needed and not set ---- 0.06s /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/main.yml:27 Verify the options are correctly evaluated ------------------------------ 0.05s /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/tests/ssh/tests_match.yml:69 fedora.linux_system_roles.ssh : Make sure the ~/.ssh/ directory exists and has expected permissions --- 0.05s /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/main.yml:42 fedora.linux_system_roles.ssh : Ensure ansible_facts used by role ------- 0.04s /tmp/collections-aYS/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/set_vars.yml:2