ansible-playbook 2.9.27 config file = None configured module search path = ['/root/.ansible/plugins/modules', '/usr/share/ansible/plugins/modules'] ansible python module location = /usr/local/lib/python3.9/site-packages/ansible executable location = /usr/local/bin/ansible-playbook python version = 3.9.19 (main, May 16 2024, 11:40:09) [GCC 8.5.0 20210514 (Red Hat 8.5.0-22)] No config file found; using defaults [WARNING]: running playbook inside collection fedora.linux_system_roles Skipping callback 'actionable', as we already have a stdout callback. Skipping callback 'counter_enabled', as we already have a stdout callback. Skipping callback 'debug', as we already have a stdout callback. Skipping callback 'dense', as we already have a stdout callback. Skipping callback 'dense', as we already have a stdout callback. Skipping callback 'full_skip', as we already have a stdout callback. Skipping callback 'json', as we already have a stdout callback. Skipping callback 'minimal', as we already have a stdout callback. Skipping callback 'null', as we already have a stdout callback. Skipping callback 'oneline', as we already have a stdout callback. Skipping callback 'selective', as we already have a stdout callback. Skipping callback 'skippy', as we already have a stdout callback. Skipping callback 'stderr', as we already have a stdout callback. Skipping callback 'unixy', as we already have a stdout callback. Skipping callback 'yaml', as we already have a stdout callback. PLAYBOOK: tests_mesh_cert.yml ************************************************** 1 plays in /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/tests/vpn/tests_mesh_cert.yml PLAY [Test mesh tunnels with certificates] ************************************* TASK [Gathering Facts] ********************************************************* task path: /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/tests/vpn/tests_mesh_cert.yml:3 Tuesday 17 June 2025 12:30:23 -0400 (0:00:00.022) 0:00:00.022 ********** ok: [managed-node2] META: ran handlers TASK [Set up test environment] ************************************************* task path: /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/tests/vpn/tests_mesh_cert.yml:16 Tuesday 17 June 2025 12:30:24 -0400 (0:00:00.858) 0:00:00.881 ********** included: /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/tests/vpn/tasks/setup_test.yml for managed-node2 TASK [Set platform/version specific variables] ********************************* task path: /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/tests/vpn/tasks/setup_test.yml:2 Tuesday 17 June 2025 12:30:24 -0400 (0:00:00.026) 0:00:00.907 ********** TASK [fedora.linux_system_roles.vpn : Ensure ansible_facts used by role] ******* task path: /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/roles/vpn/tasks/set_vars.yml:2 Tuesday 17 June 2025 12:30:24 -0400 (0:00:00.044) 0:00:00.952 ********** skipping: [managed-node2] => { "changed": false, "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.vpn : Check if system is ostree] *************** task path: /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/roles/vpn/tasks/set_vars.yml:10 Tuesday 17 June 2025 12:30:24 -0400 (0:00:00.037) 0:00:00.989 ********** ok: [managed-node2] => { "changed": false, "stat": { "exists": false } } TASK [fedora.linux_system_roles.vpn : Set flag to indicate system is ostree] *** task path: /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/roles/vpn/tasks/set_vars.yml:15 Tuesday 17 June 2025 12:30:24 -0400 (0:00:00.473) 0:00:01.463 ********** ok: [managed-node2] => { "ansible_facts": { "__vpn_is_ostree": false }, "changed": false } TASK [fedora.linux_system_roles.vpn : Set platform/version specific variables] *** task path: /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/roles/vpn/tasks/set_vars.yml:19 Tuesday 17 June 2025 12:30:24 -0400 (0:00:00.103) 0:00:01.566 ********** skipping: [managed-node2] => (item=RedHat.yml) => { "ansible_loop_var": "item", "changed": false, "item": "RedHat.yml", "skip_reason": "Conditional result was False" } skipping: [managed-node2] => (item=CentOS.yml) => { "ansible_loop_var": "item", "changed": false, "item": "CentOS.yml", "skip_reason": "Conditional result was False" } ok: [managed-node2] => (item=CentOS_8.yml) => { "ansible_facts": { "__vpn_nss_location": "/etc/ipsec.d" }, "ansible_included_var_files": [ "/tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/roles/vpn/vars/CentOS_8.yml" ], "ansible_loop_var": "item", "changed": false, "item": "CentOS_8.yml" } ok: [managed-node2] => (item=CentOS_8.yml) => { "ansible_facts": { "__vpn_nss_location": "/etc/ipsec.d" }, "ansible_included_var_files": [ "/tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/roles/vpn/vars/CentOS_8.yml" ], "ansible_loop_var": "item", "changed": false, "item": "CentOS_8.yml" } TASK [Change inventory_hostname] *********************************************** task path: /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/tests/vpn/tasks/setup_test.yml:11 Tuesday 17 June 2025 12:30:24 -0400 (0:00:00.088) 0:00:01.654 ********** skipping: [managed-node2] => { "changed": false, "skip_reason": "Conditional result was False" } TASK [Add sample main host] **************************************************** task path: /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/tests/vpn/tasks/setup_test.yml:18 Tuesday 17 June 2025 12:30:24 -0400 (0:00:00.050) 0:00:01.704 ********** skipping: [managed-node2] => { "changed": false, "skip_reason": "Conditional result was False" } TASK [Create nss directory for testing] **************************************** task path: /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/tests/vpn/tasks/setup_test.yml:22 Tuesday 17 June 2025 12:30:24 -0400 (0:00:00.049) 0:00:01.754 ********** ok: [managed-node2] => { "changed": false, "gid": 0, "group": "root", "mode": "0600", "owner": "root", "path": "/etc/ipsec.d", "secontext": "system_u:object_r:ipsec_key_file_t:s0", "size": 22, "state": "directory", "uid": 0 } TASK [Create /etc/ipsec.d directory for testing] ******************************* task path: /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/tests/vpn/tasks/setup_test.yml:28 Tuesday 17 June 2025 12:30:25 -0400 (0:00:00.531) 0:00:02.285 ********** ok: [managed-node2] => { "changed": false, "gid": 0, "group": "root", "mode": "0600", "owner": "root", "path": "/etc/ipsec.d", "secontext": "system_u:object_r:ipsec_key_file_t:s0", "size": 22, "state": "directory", "uid": 0 } TASK [Dynamically add more hosts] ********************************************** task path: /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/tests/vpn/tasks/setup_test.yml:34 Tuesday 17 June 2025 12:30:25 -0400 (0:00:00.386) 0:00:02.672 ********** included: /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/tests/vpn/tasks/add_hosts.yml for managed-node2 TASK [Dynamically add multiple hosts for testing] ****************************** task path: /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/tests/vpn/tasks/add_hosts.yml:2 Tuesday 17 June 2025 12:30:25 -0400 (0:00:00.029) 0:00:02.702 ********** creating host via 'add_host': hostname=host01.local creating host via 'add_host': hostname=host02.local changed: [managed-node2] => (item=1) => { "add_host": { "groups": [ "testing" ], "host_name": "host01.local", "host_vars": { "__vpn_current_ip": "169.254.1.1", "__vpn_current_subnet": "169.254.0.0/16", "cert_name": "dyn_cert" } }, "ansible_loop_var": "item", "changed": true, "item": 1 } changed: [managed-node2] => (item=2) => { "add_host": { "groups": [ "testing" ], "host_name": "host02.local", "host_vars": { "__vpn_current_ip": "169.254.1.1", "__vpn_current_subnet": "169.254.0.0/16", "cert_name": "dyn_cert" } }, "ansible_loop_var": "item", "changed": true, "item": 2 } TASK [Create mock vpn_connections] ********************************************* task path: /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/tests/vpn/tasks/add_hosts.yml:11 Tuesday 17 June 2025 12:30:25 -0400 (0:00:00.064) 0:00:02.766 ********** ok: [managed-node2] => { "ansible_facts": { "vpn_connections": [ { "hosts": { " ": "", "0": "", "3": "", "5": "", "6": "", "7": "", "8": "", "<": "", ">": "", "_": "", "a": "", "b": "", "c": "", "d": "", "e": "", "f": "", "g": "", "j": "", "m": "", "n": "", "o": "", "p": "", "r": "", "s": "", "t": "", "x": "", "y": "" } } ] }, "changed": false } TASK [Create sample policies directory for testing] **************************** task path: /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/tests/vpn/tasks/setup_test.yml:40 Tuesday 17 June 2025 12:30:26 -0400 (0:00:00.060) 0:00:02.826 ********** changed: [managed-node2] => { "changed": true, "gid": 0, "group": "root", "mode": "0600", "owner": "root", "path": "/etc/ipsec.d/policies", "secontext": "system_u:object_r:ipsec_key_file_t:s0", "size": 120, "state": "directory", "uid": 0 } TASK [Create sample policy files for testing] ********************************** task path: /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/tests/vpn/tasks/setup_test.yml:46 Tuesday 17 June 2025 12:30:26 -0400 (0:00:00.405) 0:00:03.232 ********** changed: [managed-node2] => { "changed": true, "dest": "/etc/ipsec.d/policies/private", "gid": 0, "group": "root", "mode": "0600", "owner": "root", "secontext": "system_u:object_r:ipsec_key_file_t:s0", "size": 614, "state": "file", "uid": 0 } TASK [Create sample policy files for testing] ********************************** task path: /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/tests/vpn/tasks/setup_test.yml:52 Tuesday 17 June 2025 12:30:26 -0400 (0:00:00.368) 0:00:03.601 ********** changed: [managed-node2] => { "changed": true, "dest": "/etc/ipsec.d/policies/private-or-clear", "gid": 0, "group": "root", "mode": "0600", "owner": "root", "secontext": "system_u:object_r:ipsec_key_file_t:s0", "size": 728, "state": "file", "uid": 0 } TASK [Create sample policy files for testing] ********************************** task path: /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/tests/vpn/tasks/setup_test.yml:58 Tuesday 17 June 2025 12:30:27 -0400 (0:00:00.430) 0:00:04.031 ********** changed: [managed-node2] => { "changed": true, "dest": "/etc/ipsec.d/policies/clear", "gid": 0, "group": "root", "mode": "0600", "owner": "root", "secontext": "system_u:object_r:ipsec_key_file_t:s0", "size": 417, "state": "file", "uid": 0 } TASK [Ensure firewalld not running if not testing firewall] ******************** task path: /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/tests/vpn/tasks/setup_test.yml:67 Tuesday 17 June 2025 12:30:27 -0400 (0:00:00.400) 0:00:04.432 ********** skipping: [managed-node2] => { "changed": false, "skip_reason": "Conditional result was False" } TASK [Add extra options to check] ********************************************** task path: /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/tests/vpn/tests_mesh_cert.yml:21 Tuesday 17 June 2025 12:30:27 -0400 (0:00:00.041) 0:00:04.474 ********** ok: [managed-node2] => (item={'hosts': {'<': '', 'g': '', 'e': '', 'n': '', 'r': '', 'a': '', 't': '', 'o': '', ' ': '', 'b': '', 'j': '', 'c': '', 's': '', 'y': '', '_': '', 'd': '', 'm': '', 'p': '', '0': '', 'x': '', '7': '', 'f': '', '6': '', '3': '', '5': '', '8': '', '>': ''}}) => { "ansible_facts": { "__new_vpn_connections": [ { "auth_method": "cert", "hosts": { " ": "", "0": "", "3": "", "5": "", "6": "", "7": "", "8": "", "<": "", ">": "", "_": "", "a": "", "b": "", "c": "", "d": "", "e": "", "f": "", "g": "", "j": "", "m": "", "n": "", "o": "", "p": "", "r": "", "s": "", "t": "", "x": "", "y": "" }, "opportunistic": true, "policies": [ { "cidr": "203.0.113.0/24", "policy": "private" }, { "cidr": "198.51.100.0/24", "policy": "clear" } ] } ] }, "ansible_loop_var": "item", "changed": false, "item": { "hosts": { " ": "", "0": "", "3": "", "5": "", "6": "", "7": "", "8": "", "<": "", ">": "", "_": "", "a": "", "b": "", "c": "", "d": "", "e": "", "f": "", "g": "", "j": "", "m": "", "n": "", "o": "", "p": "", "r": "", "s": "", "t": "", "x": "", "y": "" } } } TASK [Reset vpn_connections] *************************************************** task path: /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/tests/vpn/tests_mesh_cert.yml:35 Tuesday 17 June 2025 12:30:27 -0400 (0:00:00.050) 0:00:04.525 ********** ok: [managed-node2] => { "ansible_facts": { "vpn_connections": [ { "auth_method": "cert", "hosts": { " ": "", "0": "", "3": "", "5": "", "6": "", "7": "", "8": "", "<": "", ">": "", "_": "", "a": "", "b": "", "c": "", "d": "", "e": "", "f": "", "g": "", "j": "", "m": "", "n": "", "o": "", "p": "", "r": "", "s": "", "t": "", "x": "", "y": "" }, "opportunistic": true, "policies": [ { "cidr": "203.0.113.0/24", "policy": "private" }, { "cidr": "198.51.100.0/24", "policy": "clear" } ] } ] }, "changed": false } TASK [Add cert_name fact to controller] **************************************** task path: /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/tests/vpn/tests_mesh_cert.yml:39 Tuesday 17 June 2025 12:30:27 -0400 (0:00:00.036) 0:00:04.561 ********** ok: [managed-node2] => { "ansible_facts": { "cert_name": "main_cert" }, "changed": false } TASK [Use vpn role] ************************************************************ task path: /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/tests/vpn/tests_mesh_cert.yml:43 Tuesday 17 June 2025 12:30:27 -0400 (0:00:00.036) 0:00:04.598 ********** TASK [fedora.linux_system_roles.vpn : Set platform/version specific variables] *** task path: /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/roles/vpn/tasks/main.yml:3 Tuesday 17 June 2025 12:30:27 -0400 (0:00:00.044) 0:00:04.643 ********** included: /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/roles/vpn/tasks/set_vars.yml for managed-node2 TASK [fedora.linux_system_roles.vpn : Ensure ansible_facts used by role] ******* task path: /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/roles/vpn/tasks/set_vars.yml:2 Tuesday 17 June 2025 12:30:27 -0400 (0:00:00.021) 0:00:04.664 ********** skipping: [managed-node2] => { "changed": false, "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.vpn : Check if system is ostree] *************** task path: /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/roles/vpn/tasks/set_vars.yml:10 Tuesday 17 June 2025 12:30:27 -0400 (0:00:00.036) 0:00:04.701 ********** skipping: [managed-node2] => { "changed": false, "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.vpn : Set flag to indicate system is ostree] *** task path: /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/roles/vpn/tasks/set_vars.yml:15 Tuesday 17 June 2025 12:30:27 -0400 (0:00:00.035) 0:00:04.736 ********** skipping: [managed-node2] => { "changed": false, "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.vpn : Set platform/version specific variables] *** task path: /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/roles/vpn/tasks/set_vars.yml:19 Tuesday 17 June 2025 12:30:27 -0400 (0:00:00.035) 0:00:04.772 ********** skipping: [managed-node2] => (item=RedHat.yml) => { "ansible_loop_var": "item", "changed": false, "item": "RedHat.yml", "skip_reason": "Conditional result was False" } skipping: [managed-node2] => (item=CentOS.yml) => { "ansible_loop_var": "item", "changed": false, "item": "CentOS.yml", "skip_reason": "Conditional result was False" } ok: [managed-node2] => (item=CentOS_8.yml) => { "ansible_facts": { "__vpn_nss_location": "/etc/ipsec.d" }, "ansible_included_var_files": [ "/tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/roles/vpn/vars/CentOS_8.yml" ], "ansible_loop_var": "item", "changed": false, "item": "CentOS_8.yml" } ok: [managed-node2] => (item=CentOS_8.yml) => { "ansible_facts": { "__vpn_nss_location": "/etc/ipsec.d" }, "ansible_included_var_files": [ "/tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/roles/vpn/vars/CentOS_8.yml" ], "ansible_loop_var": "item", "changed": false, "item": "CentOS_8.yml" } TASK [fedora.linux_system_roles.vpn : Ensure required packages are installed] *** task path: /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/roles/vpn/tasks/main.yml:6 Tuesday 17 June 2025 12:30:28 -0400 (0:00:00.060) 0:00:04.832 ********** ok: [managed-node2] => { "changed": false, "rc": 0, "results": [] } MSG: Nothing to do TASK [fedora.linux_system_roles.vpn : Configure firewall] ********************** task path: /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/roles/vpn/tasks/main.yml:13 Tuesday 17 June 2025 12:30:31 -0400 (0:00:03.010) 0:00:07.842 ********** included: /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/roles/vpn/tasks/firewall.yml for managed-node2 TASK [Ensure the vpn ports status with the firewall role] ********************** task path: /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/roles/vpn/tasks/firewall.yml:3 Tuesday 17 June 2025 12:30:31 -0400 (0:00:00.019) 0:00:07.862 ********** ERROR! the role 'fedora.linux_system_roles.firewall' was not found in fedora.linux_system_roles:ansible.legacy:/tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/tests/vpn/roles:/root/.ansible/roles:/usr/share/ansible/roles:/etc/ansible/roles:/tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/tests/vpn The error appears to be in '/tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/roles/vpn/tasks/firewall.yml': line 5, column 11, but may be elsewhere in the file depending on the exact syntax problem. The offending line appears to be: include_role: name: fedora.linux_system_roles.firewall ^ here PLAY RECAP ********************************************************************* managed-node2 : ok=21 changed=5 unreachable=0 failed=0 skipped=7 rescued=0 ignored=0 SYSTEM ROLES ERRORS BEGIN v1 [] SYSTEM ROLES ERRORS END v1 TASKS RECAP ******************************************************************** Tuesday 17 June 2025 12:30:31 -0400 (0:00:00.039) 0:00:07.901 ********** =============================================================================== fedora.linux_system_roles.vpn : Ensure required packages are installed --- 3.01s /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/roles/vpn/tasks/main.yml:6 Gathering Facts --------------------------------------------------------- 0.86s /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/tests/vpn/tests_mesh_cert.yml:3 Create nss directory for testing ---------------------------------------- 0.53s /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/tests/vpn/tasks/setup_test.yml:22 fedora.linux_system_roles.vpn : Check if system is ostree --------------- 0.47s /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/roles/vpn/tasks/set_vars.yml:10 Create sample policy files for testing ---------------------------------- 0.43s /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/tests/vpn/tasks/setup_test.yml:52 Create sample policies directory for testing ---------------------------- 0.41s /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/tests/vpn/tasks/setup_test.yml:40 Create sample policy files for testing ---------------------------------- 0.40s /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/tests/vpn/tasks/setup_test.yml:58 Create /etc/ipsec.d directory for testing ------------------------------- 0.39s /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/tests/vpn/tasks/setup_test.yml:28 Create sample policy files for testing ---------------------------------- 0.37s /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/tests/vpn/tasks/setup_test.yml:46 fedora.linux_system_roles.vpn : Set flag to indicate system is ostree --- 0.10s /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/roles/vpn/tasks/set_vars.yml:15 fedora.linux_system_roles.vpn : Set platform/version specific variables --- 0.09s /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/roles/vpn/tasks/set_vars.yml:19 Dynamically add multiple hosts for testing ------------------------------ 0.06s /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/tests/vpn/tasks/add_hosts.yml:2 Create mock vpn_connections --------------------------------------------- 0.06s /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/tests/vpn/tasks/add_hosts.yml:11 fedora.linux_system_roles.vpn : Set platform/version specific variables --- 0.06s /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/roles/vpn/tasks/set_vars.yml:19 Add extra options to check ---------------------------------------------- 0.05s /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/tests/vpn/tests_mesh_cert.yml:21 Change inventory_hostname ----------------------------------------------- 0.05s /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/tests/vpn/tasks/setup_test.yml:11 Add sample main host ---------------------------------------------------- 0.05s /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/tests/vpn/tasks/setup_test.yml:18 Set platform/version specific variables --------------------------------- 0.04s /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/tests/vpn/tasks/setup_test.yml:2 Use vpn role ------------------------------------------------------------ 0.04s /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/tests/vpn/tests_mesh_cert.yml:43 Ensure firewalld not running if not testing firewall -------------------- 0.04s /tmp/collections-kzI/ansible_collections/fedora/linux_system_roles/tests/vpn/tasks/setup_test.yml:67