[DEPRECATION WARNING]: ANSIBLE_COLLECTIONS_PATHS option, does not fit var naming standard, use the singular form ANSIBLE_COLLECTIONS_PATH instead. This feature will be removed from ansible-core in version 2.19. Deprecation warnings can be disabled by setting deprecation_warnings=False in ansible.cfg. ansible-playbook [core 2.17.2] config file = None configured module search path = ['/root/.ansible/plugins/modules', '/usr/share/ansible/plugins/modules'] ansible python module location = /usr/local/lib/python3.12/site-packages/ansible ansible collection location = /tmp/tmp.wf4b6DByTU executable location = /usr/local/bin/ansible-playbook python version = 3.12.4 (main, Jul 17 2024, 00:00:00) [GCC 11.4.1 20231218 (Red Hat 11.4.1-3)] (/usr/bin/python3.12) jinja version = 3.1.4 libyaml = True No config file found; using defaults running playbook inside collection fedora.linux_system_roles redirecting (type: callback) ansible.builtin.debug to ansible.posix.debug redirecting (type: callback) ansible.builtin.debug to ansible.posix.debug redirecting (type: callback) ansible.builtin.profile_tasks to ansible.posix.profile_tasks Skipping callback 'default', as we already have a stdout callback. Skipping callback 'minimal', as we already have a stdout callback. Skipping callback 'oneline', as we already have a stdout callback. PLAYBOOK: tests_role_applied.yml *********************************************** 1 plays in /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/tests/sudo/tests_role_applied.yml PLAY [Test rewrite default sudoers and remove unauthorized files] ************** TASK [Gathering Facts] ********************************************************* task path: /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/tests/sudo/tests_role_applied.yml:2 Tuesday 30 July 2024 15:08:14 -0400 (0:00:00.029) 0:00:00.029 ********** [WARNING]: Platform linux on host managed_node1 is using the discovered Python interpreter at /usr/bin/python3.9, but future installation of another Python interpreter could change the meaning of that path. See https://docs.ansible.com/ansible- core/2.17/reference_appendices/interpreter_discovery.html for more information. ok: [managed_node1] TASK [Test setup] ************************************************************** task path: /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/tests/sudo/tests_role_applied.yml:7 Tuesday 30 July 2024 15:08:15 -0400 (0:00:01.058) 0:00:01.087 ********** included: /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/setup.yml for managed_node1 TASK [Create temp test directory] ********************************************** task path: /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/setup.yml:3 Tuesday 30 July 2024 15:08:15 -0400 (0:00:00.020) 0:00:01.107 ********** changed: [managed_node1] => { "changed": true, "gid": 0, "group": "root", "mode": "0700", "owner": "root", "path": "/var/tmp/sudo_ecitjvq2", "secontext": "unconfined_u:object_r:user_tmp_t:s0", "size": 6, "state": "directory", "uid": 0 } TASK [Backup sudoers] ********************************************************** task path: /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/setup.yml:10 Tuesday 30 July 2024 15:08:15 -0400 (0:00:00.411) 0:00:01.519 ********** changed: [managed_node1] => { "changed": true, "checksum": "e683ad5e5d8d7112d14924c11c98be7bf2ef4918", "dest": "/var/tmp/sudo_ecitjvq2/sudoers", "gid": 0, "group": "root", "md5sum": "1b134d95a4618029ff962a63b021e1ca", "mode": "0644", "owner": "root", "secontext": "system_u:object_r:etc_t:s0", "size": 4328, "src": "/etc/sudoers", "state": "file", "uid": 0 } TASK [Backup sudoers.d] ******************************************************** task path: /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/setup.yml:19 Tuesday 30 July 2024 15:08:16 -0400 (0:00:00.432) 0:00:01.952 ********** changed: [managed_node1] => { "changed": true, "checksum": null, "dest": "/var/tmp/sudo_ecitjvq2/sudoers.d", "gid": 0, "group": "root", "md5sum": null, "mode": "0644", "owner": "root", "secontext": "unconfined_u:object_r:user_tmp_t:s0", "size": 23, "src": "/etc/sudoers.d", "state": "directory", "uid": 0 } TASK [Run the role] ************************************************************ task path: /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/tests/sudo/tests_role_applied.yml:10 Tuesday 30 July 2024 15:08:16 -0400 (0:00:00.334) 0:00:02.287 ********** included: fedora.linux_system_roles.sudo for managed_node1 TASK [fedora.linux_system_roles.sudo : Set version specific variables] ********* task path: /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:2 Tuesday 30 July 2024 15:08:16 -0400 (0:00:00.037) 0:00:02.324 ********** included: /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/set_vars.yml for managed_node1 TASK [fedora.linux_system_roles.sudo : Ensure ansible_facts used by role] ****** task path: /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/set_vars.yml:2 Tuesday 30 July 2024 15:08:16 -0400 (0:00:00.023) 0:00:02.347 ********** skipping: [managed_node1] => { "changed": false, "false_condition": "__sudo_required_facts | difference(ansible_facts.keys() | list) | length > 0", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.sudo : Check if system is ostree] ************** task path: /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/set_vars.yml:10 Tuesday 30 July 2024 15:08:16 -0400 (0:00:00.024) 0:00:02.372 ********** ok: [managed_node1] => { "changed": false, "stat": { "exists": false } } TASK [fedora.linux_system_roles.sudo : Set flag to indicate system is ostree] *** task path: /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/set_vars.yml:15 Tuesday 30 July 2024 15:08:17 -0400 (0:00:00.428) 0:00:02.801 ********** ok: [managed_node1] => { "ansible_facts": { "__sudo_is_ostree": false }, "changed": false } TASK [fedora.linux_system_roles.sudo : Check if transactional-update exists in /sbin] *** task path: /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/set_vars.yml:22 Tuesday 30 July 2024 15:08:17 -0400 (0:00:00.024) 0:00:02.826 ********** ok: [managed_node1] => { "changed": false, "stat": { "exists": false } } TASK [fedora.linux_system_roles.sudo : Set flag if transactional-update exists] *** task path: /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/set_vars.yml:27 Tuesday 30 July 2024 15:08:17 -0400 (0:00:00.326) 0:00:03.152 ********** ok: [managed_node1] => { "ansible_facts": { "__sudo_is_transactional": false }, "changed": false } TASK [fedora.linux_system_roles.sudo : Set platform/version specific variables] *** task path: /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/set_vars.yml:31 Tuesday 30 July 2024 15:08:17 -0400 (0:00:00.024) 0:00:03.177 ********** skipping: [managed_node1] => (item=RedHat.yml) => { "ansible_loop_var": "item", "changed": false, "false_condition": "__vars_file is file", "item": "RedHat.yml", "skip_reason": "Conditional result was False" } skipping: [managed_node1] => (item=CentOS.yml) => { "ansible_loop_var": "item", "changed": false, "false_condition": "__vars_file is file", "item": "CentOS.yml", "skip_reason": "Conditional result was False" } skipping: [managed_node1] => (item=CentOS_9.yml) => { "ansible_loop_var": "item", "changed": false, "false_condition": "__vars_file is file", "item": "CentOS_9.yml", "skip_reason": "Conditional result was False" } skipping: [managed_node1] => (item=CentOS_9.yml) => { "ansible_loop_var": "item", "changed": false, "false_condition": "__vars_file is file", "item": "CentOS_9.yml", "skip_reason": "Conditional result was False" } skipping: [managed_node1] => { "changed": false } MSG: All items skipped TASK [fedora.linux_system_roles.sudo : Ensure sudo is installed] *************** task path: /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:5 Tuesday 30 July 2024 15:08:17 -0400 (0:00:00.034) 0:00:03.211 ********** ok: [managed_node1] => { "changed": false, "rc": 0, "results": [] } MSG: Nothing to do TASK [fedora.linux_system_roles.sudo : Notify user that reboot is needed to apply changes] *** task path: /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:17 Tuesday 30 July 2024 15:08:18 -0400 (0:00:00.939) 0:00:04.151 ********** skipping: [managed_node1] => { "false_condition": "__sudo_is_transactional | d(false)" } TASK [fedora.linux_system_roles.sudo : Reboot transactional update systems] **** task path: /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:22 Tuesday 30 July 2024 15:08:18 -0400 (0:00:00.020) 0:00:04.171 ********** skipping: [managed_node1] => { "changed": false, "false_condition": "__sudo_is_transactional | d(false)", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.sudo : Fail if reboot is needed and not set] *** task path: /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:27 Tuesday 30 July 2024 15:08:18 -0400 (0:00:00.019) 0:00:04.191 ********** skipping: [managed_node1] => { "changed": false, "false_condition": "__sudo_is_transactional | d(false)", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.sudo : Set include directories variable] ******* task path: /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:35 Tuesday 30 July 2024 15:08:18 -0400 (0:00:00.019) 0:00:04.210 ********** ok: [managed_node1] => { "ansible_facts": { "sudo_include_dirs": [ "/etc/sudoers.d" ] }, "changed": false } TASK [fedora.linux_system_roles.sudo : Set sudoer file paths variable] ********* task path: /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:39 Tuesday 30 July 2024 15:08:18 -0400 (0:00:00.027) 0:00:04.238 ********** ok: [managed_node1] => { "ansible_facts": { "sudo_file_paths": [ "/etc/sudoers" ] }, "changed": false } TASK [fedora.linux_system_roles.sudo : Ensure include directories are created] *** task path: /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:43 Tuesday 30 July 2024 15:08:18 -0400 (0:00:00.028) 0:00:04.266 ********** ok: [managed_node1] => (item=/etc/sudoers.d) => { "ansible_loop_var": "item", "changed": false, "gid": 0, "group": "root", "item": "/etc/sudoers.d", "mode": "0750", "owner": "root", "path": "/etc/sudoers.d", "secontext": "system_u:object_r:etc_t:s0", "size": 50, "state": "directory", "uid": 0 } TASK [fedora.linux_system_roles.sudo : Ensure sudoers include files are configured] *** task path: /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:53 Tuesday 30 July 2024 15:08:19 -0400 (0:00:00.437) 0:00:04.703 ********** skipping: [managed_node1] => (item=/etc/sudoers) => { "ansible_loop_var": "item", "changed": false, "false_condition": "item.path != \"/etc/sudoers\"", "item": { "defaults": [ "!visiblepw", "always_set_home", "match_group_by_gid", "always_query_group_plugin", "env_reset", { "secure_path": [ "/sbin", "/bin", "/usr/sbin", "/usr/bin" ] }, { "env_keep": [ "COLORS", "DISPLAY", "HOSTNAME", "HISTSIZE", "KDEDIR", "LS_COLORS", "MAIL", "PS1", "PS2", "QTDIR", "USERNAME", "LANG", "LC_ADDRESS", "LC_CTYPE", "LC_COLLATE", "LC_IDENTIFICATION", "LC_MEASUREMENT", "LC_MESSAGES", "LC_MONETARY", "LC_NAME", "LC_NUMERIC", "LC_PAPER", "LC_TELEPHONE", "LC_TIME", "LC_ALL", "LANGUAGE", "LINGUAS", "_XKB_CHARSET", "XAUTHORITY" ] } ], "include_directories": [ "/etc/sudoers.d" ], "path": "/etc/sudoers", "user_specifications": [ { "commands": [ "ALL" ], "hosts": [ "ALL" ], "operators": [ "ALL" ], "users": [ "root" ] }, { "commands": [ "ALL" ], "hosts": [ "ALL" ], "operators": [ "ALL" ], "users": [ "%wheel" ] } ] }, "skip_reason": "Conditional result was False" } skipping: [managed_node1] => { "changed": false } MSG: All items skipped TASK [fedora.linux_system_roles.sudo : Ensure /etc/sudoers is configured] ****** task path: /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:66 Tuesday 30 July 2024 15:08:19 -0400 (0:00:00.019) 0:00:04.723 ********** changed: [managed_node1] => (item=/etc/sudoers) => { "ansible_loop_var": "item", "changed": true, "checksum": "fc5c161eed42bf4d12f49c476bfc46e8e56097d2", "dest": "/etc/sudoers", "gid": 0, "group": "root", "item": { "defaults": [ "!visiblepw", "always_set_home", "match_group_by_gid", "always_query_group_plugin", "env_reset", { "secure_path": [ "/sbin", "/bin", "/usr/sbin", "/usr/bin" ] }, { "env_keep": [ "COLORS", "DISPLAY", "HOSTNAME", "HISTSIZE", "KDEDIR", "LS_COLORS", "MAIL", "PS1", "PS2", "QTDIR", "USERNAME", "LANG", "LC_ADDRESS", "LC_CTYPE", "LC_COLLATE", "LC_IDENTIFICATION", "LC_MEASUREMENT", "LC_MESSAGES", "LC_MONETARY", "LC_NAME", "LC_NUMERIC", "LC_PAPER", "LC_TELEPHONE", "LC_TIME", "LC_ALL", "LANGUAGE", "LINGUAS", "_XKB_CHARSET", "XAUTHORITY" ] } ], "include_directories": [ "/etc/sudoers.d" ], "path": "/etc/sudoers", "user_specifications": [ { "commands": [ "ALL" ], "hosts": [ "ALL" ], "operators": [ "ALL" ], "users": [ "root" ] }, { "commands": [ "ALL" ], "hosts": [ "ALL" ], "operators": [ "ALL" ], "users": [ "%wheel" ] } ] }, "md5sum": "10930d4d72a2804fdbc804a21a30f856", "mode": "0440", "owner": "root", "secontext": "system_u:object_r:etc_t:s0", "size": 813, "src": "/root/.ansible/tmp/ansible-tmp-1722366499.1242497-7839-137773594341372/.source", "state": "file", "uid": 0 } TASK [fedora.linux_system_roles.sudo : Search for sudoers files in included directories] *** task path: /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:86 Tuesday 30 July 2024 15:08:19 -0400 (0:00:00.685) 0:00:05.408 ********** ok: [managed_node1] => { "changed": false, "examined": 12, "files": [ { "atime": 1722366486.9279292, "ctime": 1722366485.6189167, "dev": 51713, "gid": 0, "gr_name": "root", "inode": 400556226, "isblk": false, "ischr": false, "isdir": false, "isfifo": false, "isgid": false, "islnk": false, "isreg": true, "issock": false, "isuid": false, "mode": "0440", "mtime": 1722366470.963777, "nlink": 1, "path": "/etc/sudoers.d/pingers", "pw_name": "root", "rgrp": true, "roth": false, "rusr": true, "size": 106, "uid": 0, "wgrp": false, "woth": false, "wusr": false, "xgrp": false, "xoth": false, "xusr": false }, { "atime": 1722366472.5437922, "ctime": 1722366471.8507855, "dev": 51713, "gid": 0, "gr_name": "root", "inode": 276824258, "isblk": false, "ischr": false, "isdir": false, "isfifo": false, "isgid": false, "islnk": false, "isreg": true, "issock": false, "isuid": false, "mode": "0440", "mtime": 1722366471.6047833, "nlink": 1, "path": "/etc/sudoers.d/root", "pw_name": "root", "rgrp": true, "roth": false, "rusr": true, "size": 154, "uid": 0, "wgrp": false, "woth": false, "wusr": false, "xgrp": false, "xoth": false, "xusr": false }, { "atime": 1722366492.1319788, "ctime": 1722366492.1309788, "dev": 51713, "gid": 0, "gr_name": "root", "inode": 469762178, "isblk": false, "ischr": false, "isdir": true, "isfifo": false, "isgid": false, "islnk": false, "isreg": false, "issock": false, "isuid": false, "mode": "0644", "mtime": 1722366482.4578867, "nlink": 3, "path": "/etc/sudoers.d/sudoers.d", "pw_name": "root", "rgrp": true, "roth": true, "rusr": true, "size": 23, "uid": 0, "wgrp": false, "woth": false, "wusr": true, "xgrp": false, "xoth": false, "xusr": false }, { "atime": 1722366492.1319788, "ctime": 1722366492.1309788, "dev": 51713, "gid": 0, "gr_name": "root", "inode": 471859329, "isblk": false, "ischr": false, "isdir": true, "isfifo": false, "isgid": false, "islnk": false, "isreg": false, "issock": false, "isuid": false, "mode": "0755", "mtime": 1722366482.4588866, "nlink": 3, "path": "/etc/sudoers.d/sudoers.d/sudoers.d", "pw_name": "root", "rgrp": true, "roth": true, "rusr": true, "size": 50, "uid": 0, "wgrp": false, "woth": false, "wusr": true, "xgrp": true, "xoth": true, "xusr": true }, { "atime": 1722366496.5860212, "ctime": 1722366492.1309788, "dev": 51713, "gid": 0, "gr_name": "root", "inode": 471859330, "isblk": false, "ischr": false, "isdir": false, "isfifo": false, "isgid": false, "islnk": false, "isreg": true, "issock": false, "isuid": false, "mode": "0440", "mtime": 1722366482.4588866, "nlink": 1, "path": "/etc/sudoers.d/sudoers.d/sudoers.d/pingers", "pw_name": "root", "rgrp": true, "roth": false, "rusr": true, "size": 216, "uid": 0, "wgrp": false, "woth": false, "wusr": false, "xgrp": false, "xoth": false, "xusr": false }, { "atime": 1722366496.5860212, "ctime": 1722366492.1309788, "dev": 51713, "gid": 0, "gr_name": "root", "inode": 471859331, "isblk": false, "ischr": false, "isdir": false, "isfifo": false, "isgid": false, "islnk": false, "isreg": true, "issock": false, "isuid": false, "mode": "0440", "mtime": 1722366482.4588866, "nlink": 1, "path": "/etc/sudoers.d/sudoers.d/sudoers.d/root", "pw_name": "root", "rgrp": true, "roth": false, "rusr": true, "size": 154, "uid": 0, "wgrp": false, "woth": false, "wusr": false, "xgrp": false, "xoth": false, "xusr": false }, { "atime": 1722366492.1319788, "ctime": 1722366492.1309788, "dev": 51713, "gid": 0, "gr_name": "root", "inode": 473956481, "isblk": false, "ischr": false, "isdir": true, "isfifo": false, "isgid": false, "islnk": false, "isreg": false, "issock": false, "isuid": false, "mode": "0644", "mtime": 1722366468.11775, "nlink": 3, "path": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "pw_name": "root", "rgrp": true, "roth": true, "rusr": true, "size": 23, "uid": 0, "wgrp": false, "woth": false, "wusr": true, "xgrp": false, "xoth": false, "xusr": false }, { "atime": 1722366492.1319788, "ctime": 1722366492.1309788, "dev": 51713, "gid": 0, "gr_name": "root", "inode": 476053636, "isblk": false, "ischr": false, "isdir": true, "isfifo": false, "isgid": false, "islnk": false, "isreg": false, "issock": false, "isuid": false, "mode": "0755", "mtime": 1722366468.11775, "nlink": 3, "path": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "pw_name": "root", "rgrp": true, "roth": true, "rusr": true, "size": 23, "uid": 0, "wgrp": false, "woth": false, "wusr": true, "xgrp": true, "xoth": true, "xusr": true }, { "atime": 1722366492.1319788, "ctime": 1722366492.1309788, "dev": 51713, "gid": 0, "gr_name": "root", "inode": 478150785, "isblk": false, "ischr": false, "isdir": true, "isfifo": false, "isgid": false, "islnk": false, "isreg": false, "issock": false, "isuid": false, "mode": "0644", "mtime": 1722366436.5494852, "nlink": 3, "path": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "pw_name": "root", "rgrp": true, "roth": true, "rusr": true, "size": 23, "uid": 0, "wgrp": false, "woth": false, "wusr": true, "xgrp": false, "xoth": false, "xusr": false }, { "atime": 1722366492.1319788, "ctime": 1722366492.1309788, "dev": 51713, "gid": 0, "gr_name": "root", "inode": 480247938, "isblk": false, "ischr": false, "isdir": true, "isfifo": false, "isgid": false, "islnk": false, "isreg": false, "issock": false, "isuid": false, "mode": "0755", "mtime": 1722366462.6086974, "nlink": 3, "path": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "pw_name": "root", "rgrp": true, "roth": true, "rusr": true, "size": 23, "uid": 0, "wgrp": false, "woth": false, "wusr": true, "xgrp": true, "xoth": true, "xusr": true }, { "atime": 1722366492.1319788, "ctime": 1722366492.1309788, "dev": 51713, "gid": 0, "gr_name": "root", "inode": 482345089, "isblk": false, "ischr": false, "isdir": true, "isfifo": false, "isgid": false, "islnk": false, "isreg": false, "issock": false, "isuid": false, "mode": "0644", "mtime": 1722366436.5494852, "nlink": 3, "path": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "pw_name": "root", "rgrp": true, "roth": true, "rusr": true, "size": 23, "uid": 0, "wgrp": false, "woth": false, "wusr": true, "xgrp": false, "xoth": false, "xusr": false }, { "atime": 1722366492.1319788, "ctime": 1722366492.1309788, "dev": 51713, "gid": 0, "gr_name": "root", "inode": 484442242, "isblk": false, "ischr": false, "isdir": true, "isfifo": false, "isgid": false, "islnk": false, "isreg": false, "issock": false, "isuid": false, "mode": "0755", "mtime": 1722366436.5494852, "nlink": 2, "path": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "pw_name": "root", "rgrp": true, "roth": true, "rusr": true, "size": 6, "uid": 0, "wgrp": false, "woth": false, "wusr": true, "xgrp": true, "xoth": true, "xusr": true } ], "matched": 12, "skipped_paths": {} } MSG: All paths examined TASK [fedora.linux_system_roles.sudo : Set unauthorized included sudoers files variable] *** task path: /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:94 Tuesday 30 July 2024 15:08:20 -0400 (0:00:00.434) 0:00:05.843 ********** ok: [managed_node1] => { "ansible_facts": { "sudo_unauthorized_files": [ "/etc/sudoers.d/root", "/etc/sudoers.d/sudoers.d/sudoers.d", "/etc/sudoers.d/sudoers.d/sudoers.d/root", "/etc/sudoers.d/sudoers.d/sudoers.d/pingers", "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "/etc/sudoers.d/pingers", "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "/etc/sudoers.d/sudoers.d" ] }, "changed": false } TASK [fedora.linux_system_roles.sudo : Remove unauthorized included sudoers files] *** task path: /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:98 Tuesday 30 July 2024 15:08:20 -0400 (0:00:00.034) 0:00:05.878 ********** changed: [managed_node1] => (item=/etc/sudoers.d/root) => { "ansible_loop_var": "item", "changed": true, "item": "/etc/sudoers.d/root", "path": "/etc/sudoers.d/root", "state": "absent" } changed: [managed_node1] => (item=/etc/sudoers.d/sudoers.d/sudoers.d) => { "ansible_loop_var": "item", "changed": true, "item": "/etc/sudoers.d/sudoers.d/sudoers.d", "path": "/etc/sudoers.d/sudoers.d/sudoers.d", "state": "absent" } ok: [managed_node1] => (item=/etc/sudoers.d/sudoers.d/sudoers.d/root) => { "ansible_loop_var": "item", "changed": false, "item": "/etc/sudoers.d/sudoers.d/sudoers.d/root", "path": "/etc/sudoers.d/sudoers.d/sudoers.d/root", "state": "absent" } ok: [managed_node1] => (item=/etc/sudoers.d/sudoers.d/sudoers.d/pingers) => { "ansible_loop_var": "item", "changed": false, "item": "/etc/sudoers.d/sudoers.d/sudoers.d/pingers", "path": "/etc/sudoers.d/sudoers.d/sudoers.d/pingers", "state": "absent" } ok: [managed_node1] => (item=/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d) => { "ansible_loop_var": "item", "changed": false, "item": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "path": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "state": "absent" } changed: [managed_node1] => (item=/etc/sudoers.d/pingers) => { "ansible_loop_var": "item", "changed": true, "item": "/etc/sudoers.d/pingers", "path": "/etc/sudoers.d/pingers", "state": "absent" } ok: [managed_node1] => (item=/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d) => { "ansible_loop_var": "item", "changed": false, "item": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "path": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "state": "absent" } ok: [managed_node1] => (item=/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d) => { "ansible_loop_var": "item", "changed": false, "item": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "path": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "state": "absent" } ok: [managed_node1] => (item=/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d) => { "ansible_loop_var": "item", "changed": false, "item": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "path": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "state": "absent" } ok: [managed_node1] => (item=/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d) => { "ansible_loop_var": "item", "changed": false, "item": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "path": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "state": "absent" } ok: [managed_node1] => (item=/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d) => { "ansible_loop_var": "item", "changed": false, "item": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "path": "/etc/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d/sudoers.d", "state": "absent" } changed: [managed_node1] => (item=/etc/sudoers.d/sudoers.d) => { "ansible_loop_var": "item", "changed": true, "item": "/etc/sudoers.d/sudoers.d", "path": "/etc/sudoers.d/sudoers.d", "state": "absent" } TASK [Check sudoers] *********************************************************** task path: /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/tests/sudo/tests_role_applied.yml:17 Tuesday 30 July 2024 15:08:24 -0400 (0:00:03.824) 0:00:09.702 ********** included: /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/assert_files_identical.yml for managed_node1 TASK [Get stat of files/tests_role_applied.ok] ********************************* task path: /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/assert_files_identical.yml:3 Tuesday 30 July 2024 15:08:24 -0400 (0:00:00.025) 0:00:09.728 ********** ok: [managed_node1 -> localhost] => { "changed": false, "stat": { "atime": 1722366427.2353218, "attr_flags": "", "attributes": [], "block_size": 4096, "blocks": 8, "charset": "us-ascii", "checksum": "59865a2d50f870e99cabad1aa9832881ebe54d4e70f16b9688e677f647d680d8", "ctime": 1722366431.1322231, "dev": 51713, "device_type": 0, "executable": false, "exists": true, "gid": 0, "gr_name": "root", "inode": 517996696, "isblk": false, "ischr": false, "isdir": false, "isfifo": false, "isgid": false, "islnk": false, "isreg": true, "issock": false, "isuid": false, "mimetype": "text/x-c", "mode": "0644", "mtime": 1722366426.994328, "nlink": 1, "path": "files/tests_role_applied.ok", "pw_name": "root", "readable": true, "rgrp": true, "roth": true, "rusr": true, "size": 813, "uid": 0, "version": "506480987", "wgrp": false, "woth": false, "writeable": true, "wusr": true, "xgrp": false, "xoth": false, "xusr": false } } TASK [Get stat of /etc/sudoers] ************************************************ task path: /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/assert_files_identical.yml:10 Tuesday 30 July 2024 15:08:24 -0400 (0:00:00.237) 0:00:09.965 ********** ok: [managed_node1] => { "changed": false, "stat": { "atime": 1722366496.251018, "attr_flags": "", "attributes": [], "block_size": 4096, "blocks": 8, "charset": "us-ascii", "checksum": "59865a2d50f870e99cabad1aa9832881ebe54d4e70f16b9688e677f647d680d8", "ctime": 1722366499.709051, "dev": 51713, "device_type": 0, "executable": false, "exists": true, "gid": 0, "gr_name": "root", "inode": 20971657, "isblk": false, "ischr": false, "isdir": false, "isfifo": false, "isgid": false, "islnk": false, "isreg": true, "issock": false, "isuid": false, "mimetype": "text/x-c", "mode": "0440", "mtime": 1706091045.0, "nlink": 1, "path": "/etc/sudoers", "pw_name": "root", "readable": true, "rgrp": true, "roth": false, "rusr": true, "size": 813, "uid": 0, "version": "1115382017", "wgrp": false, "woth": false, "writeable": true, "wusr": false, "xgrp": false, "xoth": false, "xusr": false } } TASK [Assert that files are identical] ***************************************** task path: /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/assert_files_identical.yml:16 Tuesday 30 July 2024 15:08:24 -0400 (0:00:00.332) 0:00:10.298 ********** ok: [managed_node1] => { "changed": false } MSG: All assertions passed TASK [Test cleanup] ************************************************************ task path: /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/tests/sudo/tests_role_applied.yml:24 Tuesday 30 July 2024 15:08:24 -0400 (0:00:00.018) 0:00:10.316 ********** included: /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/cleanup.yml for managed_node1 TASK [Restore sudoers] ********************************************************* task path: /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/cleanup.yml:3 Tuesday 30 July 2024 15:08:24 -0400 (0:00:00.025) 0:00:10.341 ********** changed: [managed_node1] => { "changed": true, "checksum": "e683ad5e5d8d7112d14924c11c98be7bf2ef4918", "dest": "/etc/sudoers", "gid": 0, "group": "root", "md5sum": "1b134d95a4618029ff962a63b021e1ca", "mode": "0644", "owner": "root", "secontext": "system_u:object_r:etc_t:s0", "size": 4328, "src": "/var/tmp/sudo_ecitjvq2/sudoers", "state": "file", "uid": 0 } TASK [Restore sudoers.d] ******************************************************* task path: /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/cleanup.yml:12 Tuesday 30 July 2024 15:08:25 -0400 (0:00:00.328) 0:00:10.669 ********** changed: [managed_node1] => { "changed": true, "checksum": null, "dest": "/etc/sudoers.d/sudoers.d", "gid": 0, "group": "root", "md5sum": null, "mode": "0644", "owner": "root", "secontext": "unconfined_u:object_r:user_tmp_t:s0", "size": 23, "src": "/var/tmp/sudo_ecitjvq2/sudoers.d", "state": "directory", "uid": 0 } TASK [Clean up temp directory] ************************************************* task path: /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/cleanup.yml:21 Tuesday 30 July 2024 15:08:25 -0400 (0:00:00.324) 0:00:10.994 ********** changed: [managed_node1] => { "changed": true, "path": "/var/tmp/sudo_ecitjvq2", "state": "absent" } PLAY RECAP ********************************************************************* managed_node1 : ok=27 changed=8 unreachable=0 failed=0 skipped=6 rescued=0 ignored=0 Tuesday 30 July 2024 15:08:25 -0400 (0:00:00.329) 0:00:11.324 ********** =============================================================================== fedora.linux_system_roles.sudo : Remove unauthorized included sudoers files --- 3.82s /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:98 Gathering Facts --------------------------------------------------------- 1.06s /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/tests/sudo/tests_role_applied.yml:2 fedora.linux_system_roles.sudo : Ensure sudo is installed --------------- 0.94s /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:5 fedora.linux_system_roles.sudo : Ensure /etc/sudoers is configured ------ 0.69s /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:66 fedora.linux_system_roles.sudo : Ensure include directories are created --- 0.44s /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:43 fedora.linux_system_roles.sudo : Search for sudoers files in included directories --- 0.43s /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:86 Backup sudoers ---------------------------------------------------------- 0.43s /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/setup.yml:10 fedora.linux_system_roles.sudo : Check if system is ostree -------------- 0.43s /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/set_vars.yml:10 Create temp test directory ---------------------------------------------- 0.41s /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/setup.yml:3 Backup sudoers.d -------------------------------------------------------- 0.33s /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/setup.yml:19 Get stat of /etc/sudoers ------------------------------------------------ 0.33s /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/assert_files_identical.yml:10 Clean up temp directory ------------------------------------------------- 0.33s /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/cleanup.yml:21 Restore sudoers --------------------------------------------------------- 0.33s /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/cleanup.yml:3 fedora.linux_system_roles.sudo : Check if transactional-update exists in /sbin --- 0.33s /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/set_vars.yml:22 Restore sudoers.d ------------------------------------------------------- 0.32s /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/cleanup.yml:12 Get stat of files/tests_role_applied.ok --------------------------------- 0.24s /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/assert_files_identical.yml:3 Run the role ------------------------------------------------------------ 0.04s /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/tests/sudo/tests_role_applied.yml:10 fedora.linux_system_roles.sudo : Set unauthorized included sudoers files variable --- 0.04s /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:94 fedora.linux_system_roles.sudo : Set platform/version specific variables --- 0.03s /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/set_vars.yml:31 fedora.linux_system_roles.sudo : Set sudoer file paths variable --------- 0.03s /tmp/tmp.wf4b6DByTU/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:39