ansible-playbook [core 2.17.13] config file = None configured module search path = ['/root/.ansible/plugins/modules', '/usr/share/ansible/plugins/modules'] ansible python module location = /usr/local/lib/python3.12/site-packages/ansible ansible collection location = /tmp/collections-CdB executable location = /usr/local/bin/ansible-playbook python version = 3.12.11 (main, Jun 12 2025, 00:00:00) [GCC 14.2.1 20250110 (Red Hat 14.2.1-8)] (/usr/bin/python3.12) jinja version = 3.1.6 libyaml = True No config file found; using defaults running playbook inside collection fedora.linux_system_roles Skipping callback 'debug', as we already have a stdout callback. Skipping callback 'json', as we already have a stdout callback. Skipping callback 'jsonl', as we already have a stdout callback. Skipping callback 'default', as we already have a stdout callback. Skipping callback 'minimal', as we already have a stdout callback. Skipping callback 'oneline', as we already have a stdout callback. PLAYBOOK: tests_scan_sudoers.yml *********************************************** 1 plays in /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/tests/sudo/tests_scan_sudoers.yml PLAY [Ensure that the role can parse existing sudoers] ************************* TASK [Test setup] ************************************************************** task path: /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/tests/sudo/tests_scan_sudoers.yml:43 Wednesday 30 July 2025 20:08:11 -0400 (0:00:00.017) 0:00:00.017 ******** included: /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/setup.yml for managed-node1 TASK [Create temp test directory] ********************************************** task path: /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/setup.yml:3 Wednesday 30 July 2025 20:08:11 -0400 (0:00:00.014) 0:00:00.031 ******** [WARNING]: Platform linux on host managed-node1 is using the discovered Python interpreter at /usr/bin/python3.12, but future installation of another Python interpreter could change the meaning of that path. See https://docs.ansible.com/ansible- core/2.17/reference_appendices/interpreter_discovery.html for more information. changed: [managed-node1] => { "ansible_facts": { "discovered_interpreter_python": "/usr/bin/python3.12" }, "changed": true, "gid": 0, "group": "root", "mode": "0700", "owner": "root", "path": "/var/tmp/sudo_md7jxf4d", "secontext": "unconfined_u:object_r:user_tmp_t:s0", "size": 6, "state": "directory", "uid": 0 } TASK [Backup sudoers] ********************************************************** task path: /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/setup.yml:10 Wednesday 30 July 2025 20:08:11 -0400 (0:00:00.571) 0:00:00.603 ******** changed: [managed-node1] => { "changed": true, "checksum": "e7f68410087808d301bd81bc78423b1227123bf2", "dest": "/var/tmp/sudo_md7jxf4d/sudoers", "gid": 0, "group": "root", "md5sum": "e46a568fe9aa73104a1781f414ca6baf", "mode": "0644", "owner": "root", "secontext": "system_u:object_r:etc_t:s0", "size": 771, "src": "/etc/sudoers", "state": "file", "uid": 0 } TASK [Backup sudoers.d] ******************************************************** task path: /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/setup.yml:19 Wednesday 30 July 2025 20:08:12 -0400 (0:00:00.541) 0:00:01.144 ******** changed: [managed-node1] => { "changed": true, "checksum": null, "dest": "/var/tmp/sudo_md7jxf4d/sudoers.d", "gid": 0, "group": "root", "md5sum": null, "mode": "0644", "owner": "root", "secontext": "unconfined_u:object_r:user_tmp_t:s0", "size": 23, "src": "/etc/sudoers.d", "state": "directory", "uid": 0 } TASK [Try with no spaces in alias definitions] ********************************* task path: /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/tests/sudo/tests_scan_sudoers.yml:46 Wednesday 30 July 2025 20:08:12 -0400 (0:00:00.378) 0:00:01.523 ******** changed: [managed-node1] => { "changed": true, "checksum": "b5413040e51fbde51edc2beb05afff5069808c66", "dest": "/etc/sudoers", "gid": 0, "group": "root", "md5sum": "1166f0accd7cafa59991512ee217b4e8", "mode": "0600", "owner": "root", "secontext": "system_u:object_r:etc_t:s0", "size": 380, "src": "/root/.ansible/tmp/ansible-tmp-1753920492.7036562-10230-235479359575597/.source", "state": "file", "uid": 0 } TASK [Run the role] ************************************************************ task path: /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/tests/sudo/tests_scan_sudoers.yml:57 Wednesday 30 July 2025 20:08:13 -0400 (0:00:00.894) 0:00:02.417 ******** included: fedora.linux_system_roles.sudo for managed-node1 TASK [fedora.linux_system_roles.sudo : Set version specific variables] ********* task path: /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:2 Wednesday 30 July 2025 20:08:13 -0400 (0:00:00.046) 0:00:02.464 ******** included: /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/set_vars.yml for managed-node1 TASK [fedora.linux_system_roles.sudo : Ensure ansible_facts used by role] ****** task path: /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/set_vars.yml:2 Wednesday 30 July 2025 20:08:13 -0400 (0:00:00.016) 0:00:02.481 ******** ok: [managed-node1] TASK [fedora.linux_system_roles.sudo : Check if system is ostree] ************** task path: /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/set_vars.yml:10 Wednesday 30 July 2025 20:08:14 -0400 (0:00:00.700) 0:00:03.181 ******** ok: [managed-node1] => { "changed": false, "stat": { "exists": false } } TASK [fedora.linux_system_roles.sudo : Set flag to indicate system is ostree] *** task path: /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/set_vars.yml:15 Wednesday 30 July 2025 20:08:14 -0400 (0:00:00.385) 0:00:03.567 ******** ok: [managed-node1] => { "ansible_facts": { "__sudo_is_ostree": false }, "changed": false } TASK [fedora.linux_system_roles.sudo : Check if transactional-update exists in /sbin] *** task path: /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/set_vars.yml:22 Wednesday 30 July 2025 20:08:14 -0400 (0:00:00.032) 0:00:03.599 ******** ok: [managed-node1] => { "changed": false, "stat": { "exists": false } } TASK [fedora.linux_system_roles.sudo : Set flag if transactional-update exists] *** task path: /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/set_vars.yml:27 Wednesday 30 July 2025 20:08:15 -0400 (0:00:00.367) 0:00:03.967 ******** ok: [managed-node1] => { "ansible_facts": { "__sudo_is_transactional": false }, "changed": false } TASK [fedora.linux_system_roles.sudo : Set platform/version specific variables] *** task path: /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/set_vars.yml:31 Wednesday 30 July 2025 20:08:15 -0400 (0:00:00.024) 0:00:03.991 ******** skipping: [managed-node1] => (item=RedHat.yml) => { "ansible_loop_var": "item", "changed": false, "false_condition": "__vars_file is file", "item": "RedHat.yml", "skip_reason": "Conditional result was False" } skipping: [managed-node1] => (item=CentOS.yml) => { "ansible_loop_var": "item", "changed": false, "false_condition": "__vars_file is file", "item": "CentOS.yml", "skip_reason": "Conditional result was False" } skipping: [managed-node1] => (item=CentOS_10.yml) => { "ansible_loop_var": "item", "changed": false, "false_condition": "__vars_file is file", "item": "CentOS_10.yml", "skip_reason": "Conditional result was False" } skipping: [managed-node1] => (item=CentOS_10.yml) => { "ansible_loop_var": "item", "changed": false, "false_condition": "__vars_file is file", "item": "CentOS_10.yml", "skip_reason": "Conditional result was False" } skipping: [managed-node1] => { "changed": false } MSG: All items skipped TASK [fedora.linux_system_roles.sudo : Scan sudoers] *************************** task path: /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:5 Wednesday 30 July 2025 20:08:15 -0400 (0:00:00.036) 0:00:04.028 ******** ok: [managed-node1] => { "ansible_facts": { "sudoers": { "all_scanned_files": [ "/etc/sudoers" ], "sudoers_files": [ { "aliases": { "cmnd_alias": [ { "commands": [ "/usr/local/bin/my_cmd_alias.sh" ], "name": "MY_CMND_NO_SPACES" }, { "commands": [ "/usr/local/bin/my_cmd_alias.sh" ], "name": "MY_CMND_SPACES" } ], "host_alias": [ { "hosts": [ "myhostalias.example.com" ], "name": "MY_HOST_NO_SPACES" }, { "hosts": [ "myhostalias.example.com" ], "name": "MY_HOST_SPACES" } ], "runas_alias": [ { "name": "MY_RUNAS_NO_SPACES", "users": [ "myrunasuser" ] }, { "name": "MY_RUNAS_SPACES", "users": [ "myrunasuser" ] } ], "user_alias": [ { "name": "MY_USER_NO_SPACES", "users": [ "myuser" ] }, { "name": "MY_USER_SPACES", "users": [ "myuser" ] } ] }, "path": "/etc/sudoers", "user_specifications": [] } ] } }, "changed": false } TASK [fedora.linux_system_roles.sudo : Sudo is already configured - skip rest of role] *** task path: /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:12 Wednesday 30 July 2025 20:08:15 -0400 (0:00:00.452) 0:00:04.480 ******** META: end_host conditional evaluated to False, continuing execution for managed-node1 skipping: [managed-node1] => { "skip_reason": "end_host conditional evaluated to False, continuing execution for managed-node1" } MSG: end_host conditional evaluated to false, continuing execution for managed-node1 TASK [fedora.linux_system_roles.sudo : Ensure sudo is installed] *************** task path: /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:20 Wednesday 30 July 2025 20:08:15 -0400 (0:00:00.038) 0:00:04.519 ******** ok: [managed-node1] => { "changed": false, "rc": 0, "results": [] } MSG: Nothing to do TASK [fedora.linux_system_roles.sudo : Notify user that reboot is needed to apply changes] *** task path: /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:32 Wednesday 30 July 2025 20:08:16 -0400 (0:00:01.286) 0:00:05.805 ******** skipping: [managed-node1] => { "false_condition": "__sudo_is_transactional | d(false)" } TASK [fedora.linux_system_roles.sudo : Reboot transactional update systems] **** task path: /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:37 Wednesday 30 July 2025 20:08:16 -0400 (0:00:00.015) 0:00:05.820 ******** skipping: [managed-node1] => { "changed": false, "false_condition": "__sudo_is_transactional | d(false)", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.sudo : Fail if reboot is needed and not set] *** task path: /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:42 Wednesday 30 July 2025 20:08:16 -0400 (0:00:00.014) 0:00:05.834 ******** skipping: [managed-node1] => { "changed": false, "false_condition": "__sudo_is_transactional | d(false)", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.sudo : Set include directories variable] ******* task path: /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:50 Wednesday 30 July 2025 20:08:16 -0400 (0:00:00.021) 0:00:05.856 ******** ok: [managed-node1] => { "ansible_facts": { "sudo_include_dirs": [] }, "changed": false } TASK [fedora.linux_system_roles.sudo : Set sudoer file paths variable] ********* task path: /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:54 Wednesday 30 July 2025 20:08:16 -0400 (0:00:00.025) 0:00:05.881 ******** ok: [managed-node1] => { "ansible_facts": { "sudo_file_paths": [ "/etc/sudoers" ] }, "changed": false } TASK [fedora.linux_system_roles.sudo : Ensure include directories are created] *** task path: /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:58 Wednesday 30 July 2025 20:08:16 -0400 (0:00:00.026) 0:00:05.908 ******** skipping: [managed-node1] => { "changed": false, "skipped_reason": "No items in the list" } TASK [fedora.linux_system_roles.sudo : Ensure sudoers include files are configured] *** task path: /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:68 Wednesday 30 July 2025 20:08:16 -0400 (0:00:00.014) 0:00:05.922 ******** skipping: [managed-node1] => (item=/etc/sudoers) => { "ansible_loop_var": "item", "changed": false, "false_condition": "item.path != \"/etc/sudoers\"", "item": { "aliases": { "cmnd_alias": [ { "commands": [ "/usr/local/bin/my_cmd_alias.sh" ], "name": "MY_CMND_NO_SPACES" }, { "commands": [ "/usr/local/bin/my_cmd_alias.sh" ], "name": "MY_CMND_SPACES" } ], "host_alias": [ { "hosts": [ "myhostalias.example.com" ], "name": "MY_HOST_NO_SPACES" }, { "hosts": [ "myhostalias.example.com" ], "name": "MY_HOST_SPACES" } ], "runas_alias": [ { "name": "MY_RUNAS_NO_SPACES", "users": [ "myrunasuser" ] }, { "name": "MY_RUNAS_SPACES", "users": [ "myrunasuser" ] } ], "user_alias": [ { "name": "MY_USER_NO_SPACES", "users": [ "myuser" ] }, { "name": "MY_USER_SPACES", "users": [ "myuser" ] } ] }, "path": "/etc/sudoers" }, "skip_reason": "Conditional result was False" } skipping: [managed-node1] => { "changed": false } MSG: All items skipped TASK [fedora.linux_system_roles.sudo : Ensure /etc/sudoers is configured] ****** task path: /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:81 Wednesday 30 July 2025 20:08:17 -0400 (0:00:00.028) 0:00:05.950 ******** changed: [managed-node1] => (item=/etc/sudoers) => { "ansible_loop_var": "item", "changed": true, "checksum": "a623734d7c4e6d53397a22817db5f65eeb780571", "dest": "/etc/sudoers", "gid": 0, "group": "root", "item": { "aliases": { "cmnd_alias": [ { "commands": [ "/usr/local/bin/my_cmd_alias.sh" ], "name": "MY_CMND_NO_SPACES" }, { "commands": [ "/usr/local/bin/my_cmd_alias.sh" ], "name": "MY_CMND_SPACES" } ], "host_alias": [ { "hosts": [ "myhostalias.example.com" ], "name": "MY_HOST_NO_SPACES" }, { "hosts": [ "myhostalias.example.com" ], "name": "MY_HOST_SPACES" } ], "runas_alias": [ { "name": "MY_RUNAS_NO_SPACES", "users": [ "myrunasuser" ] }, { "name": "MY_RUNAS_SPACES", "users": [ "myrunasuser" ] } ], "user_alias": [ { "name": "MY_USER_NO_SPACES", "users": [ "myuser" ] }, { "name": "MY_USER_SPACES", "users": [ "myuser" ] } ] }, "path": "/etc/sudoers" }, "md5sum": "6041f5e9ea64897ae99aa556a02fd5b4", "mode": "0440", "owner": "root", "secontext": "system_u:object_r:etc_t:s0", "size": 549, "src": "/root/.ansible/tmp/ansible-tmp-1753920497.0721161-10394-136663924704335/.source", "state": "file", "uid": 0 } TASK [fedora.linux_system_roles.sudo : Search for sudoers files in included directories] *** task path: /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:101 Wednesday 30 July 2025 20:08:17 -0400 (0:00:00.744) 0:00:06.695 ******** skipping: [managed-node1] => { "changed": false, "false_condition": "sudo_include_dirs | length > 0", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.sudo : Set unauthorized included sudoers files variable] *** task path: /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:109 Wednesday 30 July 2025 20:08:17 -0400 (0:00:00.014) 0:00:06.709 ******** skipping: [managed-node1] => { "changed": false, "false_condition": "sudo_include_dirs | length > 0", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.sudo : Remove unauthorized included sudoers files] *** task path: /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:113 Wednesday 30 July 2025 20:08:17 -0400 (0:00:00.013) 0:00:06.723 ******** skipping: [managed-node1] => { "changed": false, "false_condition": "sudo_include_dirs | length > 0", "skip_reason": "Conditional result was False" } TASK [Get sudoers] ************************************************************* task path: /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/tests/sudo/tests_scan_sudoers.yml:70 Wednesday 30 July 2025 20:08:17 -0400 (0:00:00.014) 0:00:06.737 ******** ok: [managed-node1] => { "changed": false, "content": "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", "encoding": "base64", "source": "/etc/sudoers" } TASK [Check that lines are properly formatted] ********************************* task path: /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/tests/sudo/tests_scan_sudoers.yml:75 Wednesday 30 July 2025 20:08:18 -0400 (0:00:00.450) 0:00:07.187 ******** ok: [managed-node1] => (item=['Cmnd_Alias', {'name': 'MY_CMND_NO_SPACES', 'commands': ['/usr/local/bin/my_cmd_alias.sh']}]) => {} MSG: expected Cmnd_Alias MY_CMND_NO_SPACES = /usr/local/bin/my_cmd_alias.sh in actual # # Ansible managed # # system_role:sudo # Alias specifications ## Command Aliases Cmnd_Alias MY_CMND_NO_SPACES = /usr/local/bin/my_cmd_alias.sh Cmnd_Alias MY_CMND_SPACES = /usr/local/bin/my_cmd_alias.sh ## Host Aliases Host_Alias MY_HOST_NO_SPACES = myhostalias.example.com Host_Alias MY_HOST_SPACES = myhostalias.example.com ## Runas Aliases Runas_Alias MY_RUNAS_NO_SPACES = myrunasuser Runas_Alias MY_RUNAS_SPACES = myrunasuser ## User Aliases User_Alias MY_USER_NO_SPACES = myuser User_Alias MY_USER_SPACES = myuser ok: [managed-node1] => (item=['Cmnd_Alias', {'name': 'MY_CMND_SPACES', 'commands': ['/usr/local/bin/my_cmd_alias.sh']}]) => {} MSG: expected Cmnd_Alias MY_CMND_SPACES = /usr/local/bin/my_cmd_alias.sh in actual # # Ansible managed # # system_role:sudo # Alias specifications ## Command Aliases Cmnd_Alias MY_CMND_NO_SPACES = /usr/local/bin/my_cmd_alias.sh Cmnd_Alias MY_CMND_SPACES = /usr/local/bin/my_cmd_alias.sh ## Host Aliases Host_Alias MY_HOST_NO_SPACES = myhostalias.example.com Host_Alias MY_HOST_SPACES = myhostalias.example.com ## Runas Aliases Runas_Alias MY_RUNAS_NO_SPACES = myrunasuser Runas_Alias MY_RUNAS_SPACES = myrunasuser ## User Aliases User_Alias MY_USER_NO_SPACES = myuser User_Alias MY_USER_SPACES = myuser ok: [managed-node1] => (item=['Host_Alias', {'name': 'MY_HOST_NO_SPACES', 'hosts': ['myhostalias.example.com']}]) => {} MSG: expected Host_Alias MY_HOST_NO_SPACES = myhostalias.example.com in actual # # Ansible managed # # system_role:sudo # Alias specifications ## Command Aliases Cmnd_Alias MY_CMND_NO_SPACES = /usr/local/bin/my_cmd_alias.sh Cmnd_Alias MY_CMND_SPACES = /usr/local/bin/my_cmd_alias.sh ## Host Aliases Host_Alias MY_HOST_NO_SPACES = myhostalias.example.com Host_Alias MY_HOST_SPACES = myhostalias.example.com ## Runas Aliases Runas_Alias MY_RUNAS_NO_SPACES = myrunasuser Runas_Alias MY_RUNAS_SPACES = myrunasuser ## User Aliases User_Alias MY_USER_NO_SPACES = myuser User_Alias MY_USER_SPACES = myuser ok: [managed-node1] => (item=['Host_Alias', {'name': 'MY_HOST_SPACES', 'hosts': ['myhostalias.example.com']}]) => {} MSG: expected Host_Alias MY_HOST_SPACES = myhostalias.example.com in actual # # Ansible managed # # system_role:sudo # Alias specifications ## Command Aliases Cmnd_Alias MY_CMND_NO_SPACES = /usr/local/bin/my_cmd_alias.sh Cmnd_Alias MY_CMND_SPACES = /usr/local/bin/my_cmd_alias.sh ## Host Aliases Host_Alias MY_HOST_NO_SPACES = myhostalias.example.com Host_Alias MY_HOST_SPACES = myhostalias.example.com ## Runas Aliases Runas_Alias MY_RUNAS_NO_SPACES = myrunasuser Runas_Alias MY_RUNAS_SPACES = myrunasuser ## User Aliases User_Alias MY_USER_NO_SPACES = myuser User_Alias MY_USER_SPACES = myuser ok: [managed-node1] => (item=['User_Alias', {'name': 'MY_USER_NO_SPACES', 'users': ['myuser']}]) => {} MSG: expected User_Alias MY_USER_NO_SPACES = myuser in actual # # Ansible managed # # system_role:sudo # Alias specifications ## Command Aliases Cmnd_Alias MY_CMND_NO_SPACES = /usr/local/bin/my_cmd_alias.sh Cmnd_Alias MY_CMND_SPACES = /usr/local/bin/my_cmd_alias.sh ## Host Aliases Host_Alias MY_HOST_NO_SPACES = myhostalias.example.com Host_Alias MY_HOST_SPACES = myhostalias.example.com ## Runas Aliases Runas_Alias MY_RUNAS_NO_SPACES = myrunasuser Runas_Alias MY_RUNAS_SPACES = myrunasuser ## User Aliases User_Alias MY_USER_NO_SPACES = myuser User_Alias MY_USER_SPACES = myuser ok: [managed-node1] => (item=['User_Alias', {'name': 'MY_USER_SPACES', 'users': ['myuser']}]) => {} MSG: expected User_Alias MY_USER_SPACES = myuser in actual # # Ansible managed # # system_role:sudo # Alias specifications ## Command Aliases Cmnd_Alias MY_CMND_NO_SPACES = /usr/local/bin/my_cmd_alias.sh Cmnd_Alias MY_CMND_SPACES = /usr/local/bin/my_cmd_alias.sh ## Host Aliases Host_Alias MY_HOST_NO_SPACES = myhostalias.example.com Host_Alias MY_HOST_SPACES = myhostalias.example.com ## Runas Aliases Runas_Alias MY_RUNAS_NO_SPACES = myrunasuser Runas_Alias MY_RUNAS_SPACES = myrunasuser ## User Aliases User_Alias MY_USER_NO_SPACES = myuser User_Alias MY_USER_SPACES = myuser ok: [managed-node1] => (item=['Runas_Alias', {'name': 'MY_RUNAS_NO_SPACES', 'users': ['myrunasuser']}]) => {} MSG: expected Runas_Alias MY_RUNAS_NO_SPACES = myrunasuser in actual # # Ansible managed # # system_role:sudo # Alias specifications ## Command Aliases Cmnd_Alias MY_CMND_NO_SPACES = /usr/local/bin/my_cmd_alias.sh Cmnd_Alias MY_CMND_SPACES = /usr/local/bin/my_cmd_alias.sh ## Host Aliases Host_Alias MY_HOST_NO_SPACES = myhostalias.example.com Host_Alias MY_HOST_SPACES = myhostalias.example.com ## Runas Aliases Runas_Alias MY_RUNAS_NO_SPACES = myrunasuser Runas_Alias MY_RUNAS_SPACES = myrunasuser ## User Aliases User_Alias MY_USER_NO_SPACES = myuser User_Alias MY_USER_SPACES = myuser ok: [managed-node1] => (item=['Runas_Alias', {'name': 'MY_RUNAS_SPACES', 'users': ['myrunasuser']}]) => {} MSG: expected Runas_Alias MY_RUNAS_SPACES = myrunasuser in actual # # Ansible managed # # system_role:sudo # Alias specifications ## Command Aliases Cmnd_Alias MY_CMND_NO_SPACES = /usr/local/bin/my_cmd_alias.sh Cmnd_Alias MY_CMND_SPACES = /usr/local/bin/my_cmd_alias.sh ## Host Aliases Host_Alias MY_HOST_NO_SPACES = myhostalias.example.com Host_Alias MY_HOST_SPACES = myhostalias.example.com ## Runas Aliases Runas_Alias MY_RUNAS_NO_SPACES = myrunasuser Runas_Alias MY_RUNAS_SPACES = myrunasuser ## User Aliases User_Alias MY_USER_NO_SPACES = myuser User_Alias MY_USER_SPACES = myuser TASK [Check that lines are properly formatted] ********************************* task path: /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/tests/sudo/tests_scan_sudoers.yml:84 Wednesday 30 July 2025 20:08:18 -0400 (0:00:00.090) 0:00:07.278 ******** ok: [managed-node1] => (item=['Cmnd_Alias', {'name': 'MY_CMND_NO_SPACES', 'commands': ['/usr/local/bin/my_cmd_alias.sh']}]) => { "ansible_loop_var": "item", "changed": false, "item": [ "Cmnd_Alias", { "commands": [ "/usr/local/bin/my_cmd_alias.sh" ], "name": "MY_CMND_NO_SPACES" } ] } MSG: All assertions passed ok: [managed-node1] => (item=['Cmnd_Alias', {'name': 'MY_CMND_SPACES', 'commands': ['/usr/local/bin/my_cmd_alias.sh']}]) => { "ansible_loop_var": "item", "changed": false, "item": [ "Cmnd_Alias", { "commands": [ "/usr/local/bin/my_cmd_alias.sh" ], "name": "MY_CMND_SPACES" } ] } MSG: All assertions passed ok: [managed-node1] => (item=['Host_Alias', {'name': 'MY_HOST_NO_SPACES', 'hosts': ['myhostalias.example.com']}]) => { "ansible_loop_var": "item", "changed": false, "item": [ "Host_Alias", { "hosts": [ "myhostalias.example.com" ], "name": "MY_HOST_NO_SPACES" } ] } MSG: All assertions passed ok: [managed-node1] => (item=['Host_Alias', {'name': 'MY_HOST_SPACES', 'hosts': ['myhostalias.example.com']}]) => { "ansible_loop_var": "item", "changed": false, "item": [ "Host_Alias", { "hosts": [ "myhostalias.example.com" ], "name": "MY_HOST_SPACES" } ] } MSG: All assertions passed ok: [managed-node1] => (item=['User_Alias', {'name': 'MY_USER_NO_SPACES', 'users': ['myuser']}]) => { "ansible_loop_var": "item", "changed": false, "item": [ "User_Alias", { "name": "MY_USER_NO_SPACES", "users": [ "myuser" ] } ] } MSG: All assertions passed ok: [managed-node1] => (item=['User_Alias', {'name': 'MY_USER_SPACES', 'users': ['myuser']}]) => { "ansible_loop_var": "item", "changed": false, "item": [ "User_Alias", { "name": "MY_USER_SPACES", "users": [ "myuser" ] } ] } MSG: All assertions passed ok: [managed-node1] => (item=['Runas_Alias', {'name': 'MY_RUNAS_NO_SPACES', 'users': ['myrunasuser']}]) => { "ansible_loop_var": "item", "changed": false, "item": [ "Runas_Alias", { "name": "MY_RUNAS_NO_SPACES", "users": [ "myrunasuser" ] } ] } MSG: All assertions passed ok: [managed-node1] => (item=['Runas_Alias', {'name': 'MY_RUNAS_SPACES', 'users': ['myrunasuser']}]) => { "ansible_loop_var": "item", "changed": false, "item": [ "Runas_Alias", { "name": "MY_RUNAS_SPACES", "users": [ "myrunasuser" ] } ] } MSG: All assertions passed TASK [Check header for ansible_managed, fingerprint] *************************** task path: /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/tests/sudo/tests_scan_sudoers.yml:93 Wednesday 30 July 2025 20:08:18 -0400 (0:00:00.081) 0:00:07.359 ******** included: /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/check_present_header.yml for managed-node1 TASK [Get file] **************************************************************** task path: /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/check_present_header.yml:3 Wednesday 30 July 2025 20:08:18 -0400 (0:00:00.019) 0:00:07.379 ******** ok: [managed-node1] => { "changed": false, "content": "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", "encoding": "base64", "source": "/etc/sudoers" } TASK [Check for presence of ansible managed header, fingerprint] *************** task path: /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/check_present_header.yml:9 Wednesday 30 July 2025 20:08:18 -0400 (0:00:00.361) 0:00:07.740 ******** ok: [managed-node1] => { "changed": false } MSG: All assertions passed TASK [Test cleanup] ************************************************************ task path: /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/tests/sudo/tests_scan_sudoers.yml:100 Wednesday 30 July 2025 20:08:18 -0400 (0:00:00.024) 0:00:07.764 ******** included: /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/cleanup.yml for managed-node1 TASK [Restore sudoers] ********************************************************* task path: /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/cleanup.yml:3 Wednesday 30 July 2025 20:08:18 -0400 (0:00:00.019) 0:00:07.784 ******** changed: [managed-node1] => { "changed": true, "checksum": "e7f68410087808d301bd81bc78423b1227123bf2", "dest": "/etc/sudoers", "gid": 0, "group": "root", "md5sum": "e46a568fe9aa73104a1781f414ca6baf", "mode": "0644", "owner": "root", "secontext": "system_u:object_r:etc_t:s0", "size": 771, "src": "/var/tmp/sudo_md7jxf4d/sudoers", "state": "file", "uid": 0 } TASK [Restore sudoers.d] ******************************************************* task path: /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/cleanup.yml:12 Wednesday 30 July 2025 20:08:19 -0400 (0:00:00.367) 0:00:08.152 ******** changed: [managed-node1] => { "changed": true, "checksum": null, "dest": "/etc/sudoers.d/sudoers.d", "gid": 0, "group": "root", "md5sum": null, "mode": "0644", "owner": "root", "secontext": "unconfined_u:object_r:user_tmp_t:s0", "size": 23, "src": "/var/tmp/sudo_md7jxf4d/sudoers.d", "state": "directory", "uid": 0 } TASK [Clean up temp directory] ************************************************* task path: /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/cleanup.yml:21 Wednesday 30 July 2025 20:08:19 -0400 (0:00:00.367) 0:00:08.520 ******** changed: [managed-node1] => { "changed": true, "path": "/var/tmp/sudo_md7jxf4d", "state": "absent" } PLAY RECAP ********************************************************************* managed-node1 : ok=27 changed=8 unreachable=0 failed=0 skipped=9 rescued=0 ignored=0 SYSTEM ROLES ERRORS BEGIN v1 [] SYSTEM ROLES ERRORS END v1 TASKS RECAP ******************************************************************** Wednesday 30 July 2025 20:08:20 -0400 (0:00:00.497) 0:00:09.017 ******** =============================================================================== fedora.linux_system_roles.sudo : Ensure sudo is installed --------------- 1.29s /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:20 Try with no spaces in alias definitions --------------------------------- 0.89s /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/tests/sudo/tests_scan_sudoers.yml:46 fedora.linux_system_roles.sudo : Ensure /etc/sudoers is configured ------ 0.74s /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:81 fedora.linux_system_roles.sudo : Ensure ansible_facts used by role ------ 0.70s /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/set_vars.yml:2 Create temp test directory ---------------------------------------------- 0.57s /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/setup.yml:3 Backup sudoers ---------------------------------------------------------- 0.54s /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/setup.yml:10 Clean up temp directory ------------------------------------------------- 0.50s /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/cleanup.yml:21 fedora.linux_system_roles.sudo : Scan sudoers --------------------------- 0.45s /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:5 Get sudoers ------------------------------------------------------------- 0.45s /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/tests/sudo/tests_scan_sudoers.yml:70 fedora.linux_system_roles.sudo : Check if system is ostree -------------- 0.39s /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/set_vars.yml:10 Backup sudoers.d -------------------------------------------------------- 0.38s /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/setup.yml:19 fedora.linux_system_roles.sudo : Check if transactional-update exists in /sbin --- 0.37s /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/set_vars.yml:22 Restore sudoers --------------------------------------------------------- 0.37s /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/cleanup.yml:3 Restore sudoers.d ------------------------------------------------------- 0.37s /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/cleanup.yml:12 Get file ---------------------------------------------------------------- 0.36s /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/tests/sudo/tasks/check_present_header.yml:3 Check that lines are properly formatted --------------------------------- 0.09s /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/tests/sudo/tests_scan_sudoers.yml:75 Check that lines are properly formatted --------------------------------- 0.08s /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/tests/sudo/tests_scan_sudoers.yml:84 Run the role ------------------------------------------------------------ 0.05s /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/tests/sudo/tests_scan_sudoers.yml:57 fedora.linux_system_roles.sudo : Sudo is already configured - skip rest of role --- 0.04s /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/main.yml:12 fedora.linux_system_roles.sudo : Set platform/version specific variables --- 0.04s /tmp/collections-CdB/ansible_collections/fedora/linux_system_roles/roles/sudo/tasks/set_vars.yml:31