+ cd /tmp/tmpdw7g3_3_/tests; TEST_SUBJECTS=/cache/rhel-7.qcow2 TEST_ARTIFACTS=/tmp/linux-system-role-test-work-pull-linux-system-roles_firewall-33-3110ee6-rhel-7-jck_9qpy/artifacts ansible-playbook -vv --inventory=/usr/share/ansible/inventory/standard-inventory-qcow2 /tmp/tmpdw7g3_3_/_setup.yml /tmp/tmpdw7g3_3_/tests/tests_ansible.yml ansible-playbook 2.8.19 config file = /etc/ansible/ansible.cfg configured module search path = [u'/root/.ansible/plugins/modules', u'/usr/share/ansible/plugins/modules'] ansible python module location = /usr/lib/python2.7/site-packages/ansible executable location = /usr/bin/ansible-playbook python version = 2.7.5 (default, Nov 16 2020, 22:23:17) [GCC 4.8.5 20150623 (Red Hat 4.8.5-44)] Using /etc/ansible/ansible.cfg as config file PLAYBOOK: _setup.yml *********************************************************** 2 plays in /tmp/tmpdw7g3_3_/_setup.yml PLAY [Fail when only localhost is available] *********************************** META: ran handlers TASK [debug] ******************************************************************* task path: /tmp/tmpdw7g3_3_/_setup.yml:5 ok: [/cache/rhel-7.qcow2] => { "groups": { "all": [ "/cache/rhel-7.qcow2" ], "localhost": [ "/cache/rhel-7.qcow2" ], "subjects": [ "/cache/rhel-7.qcow2" ], "ungrouped": [] } } TASK [fail] ******************************************************************** task path: /tmp/tmpdw7g3_3_/_setup.yml:7 skipping: [/cache/rhel-7.qcow2] => {"changed": false, "skip_reason": "Conditional result was False"} META: ran handlers META: ran handlers PLAY [Setup repos] ************************************************************* META: ran handlers TASK [set up internal repositories] ******************************************** task path: /tmp/tmpdw7g3_3_/_setup.yml:16 changed: [/cache/rhel-7.qcow2] => (item=None) => {"censored": "the output has been hidden due to the fact that 'no_log: true' was specified for this result", "changed": true} changed: [/cache/rhel-7.qcow2] => (item=None) => {"censored": "the output has been hidden due to the fact that 'no_log: true' was specified for this result", "changed": true} changed: [/cache/rhel-7.qcow2] => (item=None) => {"censored": "the output has been hidden due to the fact that 'no_log: true' was specified for this result", "changed": true} changed: [/cache/rhel-7.qcow2] => {"censored": "the output has been hidden due to the fact that 'no_log: true' was specified for this result", "changed": true} META: ran handlers META: ran handlers PLAY RECAP ********************************************************************* /cache/rhel-7.qcow2 : ok=2 changed=1 unreachable=0 failed=0 skipped=1 rescued=0 ignored=0 statically imported: /tmp/tmpdw7g3_3_/tasks/firewalld.yml PLAYBOOK: tests_ansible.yml **************************************************** 1 plays in /tmp/tmpdw7g3_3_/tests/tests_ansible.yml PLAY [Ensure that the roles runs with default parameters] ********************** TASK [Gathering Facts] ********************************************************* task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:1 ok: [/cache/rhel-7.qcow2] META: ran handlers TASK [linux-system-roles.firewall : Install firewalld] ************************* task path: /tmp/tmpdw7g3_3_/tasks/firewalld.yml:2 changed: [/cache/rhel-7.qcow2] => {"changed": true, "changes": {"installed": ["firewalld"]}, "msg": "", "rc": 0, "results": ["Loaded plugins: search-disabled-repos\nResolving Dependencies\n--> Running transaction check\n---> Package firewalld.noarch 0:0.6.3-8.el7 will be installed\n--> Processing Dependency: python-firewall = 0.6.3-8.el7 for package: firewalld-0.6.3-8.el7.noarch\n--> Processing Dependency: firewalld-filesystem = 0.6.3-8.el7 for package: firewalld-0.6.3-8.el7.noarch\n--> Processing Dependency: ipset for package: firewalld-0.6.3-8.el7.noarch\n--> Processing Dependency: ebtables for package: firewalld-0.6.3-8.el7.noarch\n--> Running transaction check\n---> Package ebtables.x86_64 0:2.0.10-16.el7 will be installed\n---> Package firewalld-filesystem.noarch 0:0.6.3-8.el7 will be installed\n---> Package ipset.x86_64 0:7.1-1.el7 will be installed\n--> Processing Dependency: ipset-libs(x86-64) = 7.1-1.el7 for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13(LIBIPSET_4.8)(64bit) for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13(LIBIPSET_2.0)(64bit) for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13()(64bit) for package: ipset-7.1-1.el7.x86_64\n---> Package python-firewall.noarch 0:0.6.3-8.el7 will be installed\n--> Processing Dependency: python-slip-dbus for package: python-firewall-0.6.3-8.el7.noarch\n--> Running transaction check\n---> Package ipset-libs.x86_64 0:7.1-1.el7 will be installed\n---> Package python-slip-dbus.noarch 0:0.4.0-4.el7 will be installed\n--> Processing Dependency: python-slip = 0.4.0-4.el7 for package: python-slip-dbus-0.4.0-4.el7.noarch\n--> Running transaction check\n---> Package python-slip.noarch 0:0.4.0-4.el7 will be installed\n--> Finished Dependency Resolution\n\nDependencies Resolved\n\n================================================================================\n Package Arch Version Repository Size\n================================================================================\nInstalling:\n firewalld noarch 0.6.3-8.el7 rhel 442 k\nInstalling for dependencies:\n ebtables x86_64 2.0.10-16.el7 rhel 123 k\n firewalld-filesystem noarch 0.6.3-8.el7 rhel 50 k\n ipset x86_64 7.1-1.el7 rhel 39 k\n ipset-libs x86_64 7.1-1.el7 rhel 64 k\n python-firewall noarch 0.6.3-8.el7 rhel 353 k\n python-slip noarch 0.4.0-4.el7 rhel 31 k\n python-slip-dbus noarch 0.4.0-4.el7 rhel 32 k\n\nTransaction Summary\n================================================================================\nInstall 1 Package (+7 Dependent packages)\n\nTotal download size: 1.1 M\nInstalled size: 4.5 M\nDownloading packages:\n--------------------------------------------------------------------------------\nTotal 9.0 MB/s | 1.1 MB 00:00 \nRunning transaction check\nRunning transaction test\nTransaction test succeeded\nRunning transaction\n Installing : ebtables-2.0.10-16.el7.x86_64 1/8 \n Installing : ipset-libs-7.1-1.el7.x86_64 2/8 \n Installing : ipset-7.1-1.el7.x86_64 3/8 \n Installing : python-slip-0.4.0-4.el7.noarch 4/8 \n Installing : python-slip-dbus-0.4.0-4.el7.noarch 5/8 \n Installing : python-firewall-0.6.3-8.el7.noarch 6/8 \n Installing : firewalld-filesystem-0.6.3-8.el7.noarch 7/8 \n Installing : firewalld-0.6.3-8.el7.noarch 8/8 \n Verifying : python-firewall-0.6.3-8.el7.noarch 1/8 \n Verifying : ipset-7.1-1.el7.x86_64 2/8 \n Verifying : firewalld-0.6.3-8.el7.noarch 3/8 \n Verifying : firewalld-filesystem-0.6.3-8.el7.noarch 4/8 \n Verifying : python-slip-0.4.0-4.el7.noarch 5/8 \n Verifying : python-slip-dbus-0.4.0-4.el7.noarch 6/8 \n Verifying : ipset-libs-7.1-1.el7.x86_64 7/8 \n Verifying : ebtables-2.0.10-16.el7.x86_64 8/8 \n\nInstalled:\n firewalld.noarch 0:0.6.3-8.el7 \n\nDependency Installed:\n ebtables.x86_64 0:2.0.10-16.el7 \n firewalld-filesystem.noarch 0:0.6.3-8.el7 \n ipset.x86_64 0:7.1-1.el7 \n ipset-libs.x86_64 0:7.1-1.el7 \n python-firewall.noarch 0:0.6.3-8.el7 \n python-slip.noarch 0:0.4.0-4.el7 \n python-slip-dbus.noarch 0:0.4.0-4.el7 \n\nComplete!\n"]} TASK [linux-system-roles.firewall : Install python-firewall] ******************* task path: /tmp/tmpdw7g3_3_/tasks/firewalld.yml:7 ok: [/cache/rhel-7.qcow2] => {"changed": false, "msg": "", "rc": 0, "results": ["python-firewall-0.6.3-8.el7.noarch providing python-firewall is already installed"]} TASK [linux-system-roles.firewall : Install python3-firewall] ****************** task path: /tmp/tmpdw7g3_3_/tasks/firewalld.yml:13 skipping: [/cache/rhel-7.qcow2] => {"changed": false, "skip_reason": "Conditional result was False"} TASK [linux-system-roles.firewall : Enable and start firewalld service] ******** task path: /tmp/tmpdw7g3_3_/tasks/firewalld.yml:19 changed: [/cache/rhel-7.qcow2] => {"changed": true, "enabled": true, "name": "firewalld", "state": "started", "status": {"ActiveEnterTimestampMonotonic": "0", "ActiveExitTimestampMonotonic": "0", "ActiveState": "inactive", "After": "basic.target polkit.service system.slice dbus.service", "AllowIsolate": "no", "AmbientCapabilities": "0", "AssertResult": "no", "AssertTimestampMonotonic": "0", "Before": "shutdown.target multi-user.target network-pre.target", "BlockIOAccounting": "no", "BlockIOWeight": "18446744073709551615", "BusName": "org.fedoraproject.FirewallD1", "CPUAccounting": "no", "CPUQuotaPerSecUSec": "infinity", "CPUSchedulingPolicy": "0", "CPUSchedulingPriority": "0", "CPUSchedulingResetOnFork": "no", "CPUShares": "18446744073709551615", "CanIsolate": "no", "CanReload": "yes", "CanStart": "yes", "CanStop": "yes", "CapabilityBoundingSet": "18446744073709551615", "ConditionResult": "no", "ConditionTimestampMonotonic": "0", "Conflicts": "ipset.service iptables.service ip6tables.service shutdown.target ebtables.service", "ControlPID": "0", "DefaultDependencies": "yes", "Delegate": "no", "Description": "firewalld - dynamic firewall daemon", "DevicePolicy": "auto", "Documentation": "man:firewalld(1)", "EnvironmentFile": "/etc/sysconfig/firewalld (ignore_errors=yes)", "ExecMainCode": "0", "ExecMainExitTimestampMonotonic": "0", "ExecMainPID": "0", "ExecMainStartTimestampMonotonic": "0", "ExecMainStatus": "0", "ExecReload": "{ path=/bin/kill ; argv[]=/bin/kill -HUP $MAINPID ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "ExecStart": "{ path=/usr/sbin/firewalld ; argv[]=/usr/sbin/firewalld --nofork --nopid $FIREWALLD_ARGS ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "FailureAction": "none", "FileDescriptorStoreMax": "0", "FragmentPath": "/usr/lib/systemd/system/firewalld.service", "GuessMainPID": "yes", "IOScheduling": "0", "Id": "firewalld.service", "IgnoreOnIsolate": "no", "IgnoreOnSnapshot": "no", "IgnoreSIGPIPE": "yes", "InactiveEnterTimestampMonotonic": "0", "InactiveExitTimestampMonotonic": "0", "JobTimeoutAction": "none", "JobTimeoutUSec": "0", "KillMode": "mixed", "KillSignal": "15", "LimitAS": "18446744073709551615", "LimitCORE": "18446744073709551615", "LimitCPU": "18446744073709551615", "LimitDATA": "18446744073709551615", "LimitFSIZE": "18446744073709551615", "LimitLOCKS": "18446744073709551615", "LimitMEMLOCK": "65536", "LimitMSGQUEUE": "819200", "LimitNICE": "0", "LimitNOFILE": "4096", "LimitNPROC": "7163", "LimitRSS": "18446744073709551615", "LimitRTPRIO": "0", "LimitRTTIME": "18446744073709551615", "LimitSIGPENDING": "7163", "LimitSTACK": "18446744073709551615", "LoadState": "loaded", "MainPID": "0", "MemoryAccounting": "no", "MemoryCurrent": "18446744073709551615", "MemoryLimit": "18446744073709551615", "MountFlags": "0", "Names": "firewalld.service", "NeedDaemonReload": "no", "Nice": "0", "NoNewPrivileges": "no", "NonBlocking": "no", "NotifyAccess": "none", "OOMScoreAdjust": "0", "OnFailureJobMode": "replace", "PermissionsStartOnly": "no", "PrivateDevices": "no", "PrivateNetwork": "no", "PrivateTmp": "no", "ProtectHome": "no", "ProtectSystem": "no", "RefuseManualStart": "no", "RefuseManualStop": "no", "RemainAfterExit": "no", "Requires": "system.slice basic.target", "Restart": "no", "RestartUSec": "100ms", "Result": "success", "RootDirectoryStartOnly": "no", "RuntimeDirectoryMode": "0755", "SameProcessGroup": "no", "SecureBits": "0", "SendSIGHUP": "no", "SendSIGKILL": "yes", "Slice": "system.slice", "StandardError": "null", "StandardInput": "null", "StandardOutput": "null", "StartLimitAction": "none", "StartLimitBurst": "5", "StartLimitInterval": "10000000", "StartupBlockIOWeight": "18446744073709551615", "StartupCPUShares": "18446744073709551615", "StatusErrno": "0", "StopWhenUnneeded": "no", "SubState": "dead", "SyslogLevelPrefix": "yes", "SyslogPriority": "30", "SystemCallErrorNumber": "0", "TTYReset": "no", "TTYVHangup": "no", "TTYVTDisallocate": "no", "TasksAccounting": "no", "TasksCurrent": "18446744073709551615", "TasksMax": "18446744073709551615", "TimeoutStartUSec": "1min 30s", "TimeoutStopUSec": "1min 30s", "TimerSlackNSec": "50000", "Transient": "no", "Type": "dbus", "UMask": "0022", "UnitFilePreset": "enabled", "UnitFileState": "enabled", "WantedBy": "multi-user.target", "Wants": "network-pre.target", "WatchdogTimestampMonotonic": "0", "WatchdogUSec": "0"}} TASK [linux-system-roles.firewall : Configure firewall] ************************ task path: /tmp/tmpdw7g3_3_/tasks/main.yml:3 TASK [Remove custom zone] ****************************************************** task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:14 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": ["firewall-cmd", "--permanent", "--delete-zone=custom"], "delta": "0:00:00.270378", "end": "2021-08-04 10:08:30.736574", "failed_when_result": false, "msg": "non-zero return code", "rc": 112, "start": "2021-08-04 10:08:30.466196", "stderr": "Error: INVALID_ZONE: custom", "stderr_lines": ["Error: INVALID_ZONE: custom"], "stdout": "", "stdout_lines": []} TASK [Reset internal zone to defaults] ***************************************** task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:19 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": "firewall-cmd --permanent --load-zone-defaults=internal", "delta": "0:00:00.307869", "end": "2021-08-04 10:08:31.339646", "failed_when_result": false, "msg": "non-zero return code", "rc": 22, "start": "2021-08-04 10:08:31.031777", "stderr": "Error: NO_DEFAULTS: internal", "stderr_lines": ["Error: NO_DEFAULTS: internal"], "stdout": "", "stdout_lines": []} TASK [Reset trusted zone to defaults] ****************************************** task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:25 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": "firewall-cmd --permanent --load-zone-defaults=trusted", "delta": "0:00:00.260193", "end": "2021-08-04 10:08:31.914059", "failed_when_result": false, "msg": "non-zero return code", "rc": 22, "start": "2021-08-04 10:08:31.653866", "stderr": "Error: NO_DEFAULTS: trusted", "stderr_lines": ["Error: NO_DEFAULTS: trusted"], "stdout": "", "stdout_lines": []} TASK [Reset dmz zone to defaults] ********************************************** task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:31 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": "firewall-cmd --permanent --load-zone-defaults=dmz", "delta": "0:00:00.262114", "end": "2021-08-04 10:08:32.765199", "failed_when_result": false, "msg": "non-zero return code", "rc": 22, "start": "2021-08-04 10:08:32.503085", "stderr": "Error: NO_DEFAULTS: dmz", "stderr_lines": ["Error: NO_DEFAULTS: dmz"], "stdout": "", "stdout_lines": []} TASK [Reset drop zone to defaults] ********************************************* task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:37 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": "firewall-cmd --permanent --load-zone-defaults=drop", "delta": "0:00:00.261567", "end": "2021-08-04 10:08:33.324250", "failed_when_result": false, "msg": "non-zero return code", "rc": 22, "start": "2021-08-04 10:08:33.062683", "stderr": "Error: NO_DEFAULTS: drop", "stderr_lines": ["Error: NO_DEFAULTS: drop"], "stdout": "", "stdout_lines": []} TASK [Reset public zone to defaults] ******************************************* task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:43 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": "firewall-cmd --permanent --load-zone-defaults=public", "delta": "0:00:00.269589", "end": "2021-08-04 10:08:33.893635", "failed_when_result": false, "rc": 0, "start": "2021-08-04 10:08:33.624046", "stderr": "", "stderr_lines": [], "stdout": "success", "stdout_lines": ["success"]} TASK [Reset default zone to defaults] ****************************************** task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:49 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": "firewall-cmd --permanent --load-zone-defaults=$(firewall-cmd --get-default-zone)", "delta": "0:00:00.508981", "end": "2021-08-04 10:08:34.719322", "failed_when_result": false, "msg": "non-zero return code", "rc": 22, "start": "2021-08-04 10:08:34.210341", "stderr": "Error: NO_DEFAULTS: public", "stderr_lines": ["Error: NO_DEFAULTS: public"], "stdout": "", "stdout_lines": []} TASK [Create custom zone] ****************************************************** task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:55 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": ["firewall-cmd", "--permanent", "--new-zone=custom"], "delta": "0:00:00.247478", "end": "2021-08-04 10:08:35.577641", "failed_when_result": false, "rc": 0, "start": "2021-08-04 10:08:35.330163", "stderr": "", "stderr_lines": [], "stdout": "success", "stdout_lines": ["success"]} TASK [Reload firewalld] ******************************************************** task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:60 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": ["firewall-cmd", "--reload"], "delta": "0:00:00.439891", "end": "2021-08-04 10:08:36.315683", "failed_when_result": false, "rc": 0, "start": "2021-08-04 10:08:35.875792", "stderr": "", "stderr_lines": [], "stdout": "success", "stdout_lines": ["success"]} TASK [Permit traffic in default zone for https service] ************************ task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:67 changed: [/cache/rhel-7.qcow2] => {"changed": true, "failed_when_result": false} TASK [Permit traffic in default zone for https service, again] ***************** task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:75 ok: [/cache/rhel-7.qcow2] => {"changed": false, "failed_when_result": false} TASK [Permit traffic in default zone on port 8081/tcp] ************************* task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:83 changed: [/cache/rhel-7.qcow2] => {"changed": true, "failed_when_result": false} TASK [Permit traffic in default zone on port 8081/tcp, again] ****************** task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:91 ok: [/cache/rhel-7.qcow2] => {"changed": false, "failed_when_result": false} TASK [Allow port 161-162/udp in permanent default zone] ************************ task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:99 changed: [/cache/rhel-7.qcow2] => {"changed": true, "failed_when_result": false} TASK [Allow port 161-162/udp in permanent default zone, again] ***************** task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:107 ok: [/cache/rhel-7.qcow2] => {"changed": false, "failed_when_result": false} TASK [Do not permit traffic in default zone on port 8081/tcp] ****************** task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:115 changed: [/cache/rhel-7.qcow2] => {"changed": true, "failed_when_result": false} TASK [Do not permit traffic in default zone on port 8081/tcp, again] *********** task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:123 ok: [/cache/rhel-7.qcow2] => {"changed": false, "failed_when_result": false} TASK [Allow service http in permanent dmz zone] ******************************** task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:131 changed: [/cache/rhel-7.qcow2] => {"changed": true, "failed_when_result": false} TASK [Allow service http in permanent dmz zone, again] ************************* task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:140 ok: [/cache/rhel-7.qcow2] => {"changed": false, "failed_when_result": false} TASK [Allow service ftp with limitation using rich rule in permanent default zone] *** task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:149 changed: [/cache/rhel-7.qcow2] => {"changed": true, "failed_when_result": false} TASK [Allow service ftp with limitation using rich rule in permanent default zone, again] *** task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:157 ok: [/cache/rhel-7.qcow2] => {"changed": false, "failed_when_result": false} TASK [Allow source 192.0.2.0/24 in internal zone] ****************************** task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:165 changed: [/cache/rhel-7.qcow2] => {"changed": true, "failed_when_result": false} TASK [Allow source 192.0.2.0/24 in internal zone, again] *********************** task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:173 ok: [/cache/rhel-7.qcow2] => {"changed": false, "failed_when_result": false} TASK [Allow interface eth2 in permanent trusted zone] ************************** task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:181 changed: [/cache/rhel-7.qcow2] => {"changed": true, "failed_when_result": false} TASK [Allow interface eth2 in permanent trusted zone, again] ******************* task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:190 ok: [/cache/rhel-7.qcow2] => {"changed": false, "failed_when_result": false} TASK [Allow masquerading in permament dmz zone] ******************************** task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:199 changed: [/cache/rhel-7.qcow2] => {"changed": true, "failed_when_result": false} TASK [Allow masquerading in permament dmz zone, again] ************************* task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:208 ok: [/cache/rhel-7.qcow2] => {"changed": false, "failed_when_result": false} TASK [Ensure permanent custom zone exists (no change)] ************************* task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:217 ok: [/cache/rhel-7.qcow2] => {"changed": false, "failed_when_result": false} TASK [Ensure ICMP block inversion in permanent drop zone] ********************** task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:225 changed: [/cache/rhel-7.qcow2] => {"changed": true, "failed_when_result": false} TASK [Ensure ICMP block inversion in permanent drop zone, again] *************** task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:234 ok: [/cache/rhel-7.qcow2] => {"changed": false, "failed_when_result": false} TASK [Block ICMP echo-request in permanent drop zone] ************************** task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:243 changed: [/cache/rhel-7.qcow2] => {"changed": true, "failed_when_result": false} TASK [Block ICMP echo-request in permanent drop zone, again] ******************* task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:252 ok: [/cache/rhel-7.qcow2] => {"changed": false, "failed_when_result": false} TASK [Ensure default target in permanent internal zone (no change)] ************ task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:261 ok: [/cache/rhel-7.qcow2] => {"changed": false, "failed_when_result": false} TASK [Ensure target ACCEPT in permanent internal zone] ************************* task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:270 changed: [/cache/rhel-7.qcow2] => {"changed": true, "failed_when_result": false} TASK [Ensure target ACCEPT in permanent internal zone, again] ****************** task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:279 ok: [/cache/rhel-7.qcow2] => {"changed": false, "failed_when_result": false} TASK [Ensure default target in permanent internal zone] ************************ task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:288 changed: [/cache/rhel-7.qcow2] => {"changed": true, "failed_when_result": false} TASK [Ensure default target in permanent internal zone, again] ***************** task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:297 ok: [/cache/rhel-7.qcow2] => {"changed": false, "failed_when_result": false} TASK [Redirect port 443 to 8443 with Rich Rule in permanent and runtime public zone] *** task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:306 changed: [/cache/rhel-7.qcow2] => {"changed": true, "failed_when_result": false} TASK [Redirect port 443 to 8443 with Rich Rule in permanent and runtime public zone, again] *** task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:316 ok: [/cache/rhel-7.qcow2] => {"changed": false, "failed_when_result": false} TASK [Remove custom zone] ****************************************************** task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:330 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": ["firewall-cmd", "--permanent", "--delete-zone=custom"], "delta": "0:00:00.264881", "end": "2021-08-04 10:08:53.734142", "failed_when_result": false, "rc": 0, "start": "2021-08-04 10:08:53.469261", "stderr": "", "stderr_lines": [], "stdout": "success", "stdout_lines": ["success"]} TASK [Reset internal zone to defaults] ***************************************** task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:335 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": "firewall-cmd --permanent --load-zone-defaults=internal", "delta": "0:00:00.290070", "end": "2021-08-04 10:08:54.365841", "failed_when_result": false, "rc": 0, "start": "2021-08-04 10:08:54.075771", "stderr": "", "stderr_lines": [], "stdout": "success", "stdout_lines": ["success"]} TASK [Reset trusted zone to defaults] ****************************************** task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:341 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": "firewall-cmd --permanent --load-zone-defaults=trusted", "delta": "0:00:00.282708", "end": "2021-08-04 10:08:55.000214", "failed_when_result": false, "rc": 0, "start": "2021-08-04 10:08:54.717506", "stderr": "", "stderr_lines": [], "stdout": "success", "stdout_lines": ["success"]} TASK [Reset dmz zone to defaults] ********************************************** task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:347 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": "firewall-cmd --permanent --load-zone-defaults=dmz", "delta": "0:00:00.267484", "end": "2021-08-04 10:08:55.640543", "failed_when_result": false, "rc": 0, "start": "2021-08-04 10:08:55.373059", "stderr": "", "stderr_lines": [], "stdout": "success", "stdout_lines": ["success"]} TASK [Reset drop zone to defaults] ********************************************* task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:353 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": "firewall-cmd --permanent --load-zone-defaults=drop", "delta": "0:00:00.263877", "end": "2021-08-04 10:08:56.243872", "failed_when_result": false, "rc": 0, "start": "2021-08-04 10:08:55.979995", "stderr": "", "stderr_lines": [], "stdout": "success", "stdout_lines": ["success"]} TASK [Reset public zone to defaults] ******************************************* task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:359 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": "firewall-cmd --permanent --load-zone-defaults=public", "delta": "0:00:00.280041", "end": "2021-08-04 10:08:56.851507", "failed_when_result": false, "rc": 0, "start": "2021-08-04 10:08:56.571466", "stderr": "", "stderr_lines": [], "stdout": "success", "stdout_lines": ["success"]} TASK [Reset default zone to defaults] ****************************************** task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:365 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": "firewall-cmd --permanent --load-zone-defaults=$(firewall-cmd --get-default-zone)", "delta": "0:00:00.509387", "end": "2021-08-04 10:08:57.721324", "failed_when_result": false, "msg": "non-zero return code", "rc": 22, "start": "2021-08-04 10:08:57.211937", "stderr": "Error: NO_DEFAULTS: public", "stderr_lines": ["Error: NO_DEFAULTS: public"], "stdout": "", "stdout_lines": []} TASK [Reload firewalld] ******************************************************** task path: /tmp/tmpdw7g3_3_/tests/tests_ansible.yml:371 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": ["firewall-cmd", "--reload"], "delta": "0:00:00.421623", "end": "2021-08-04 10:08:58.480158", "failed_when_result": false, "rc": 0, "start": "2021-08-04 10:08:58.058535", "stderr": "", "stderr_lines": [], "stdout": "success", "stdout_lines": ["success"]} META: ran handlers META: ran handlers PLAY RECAP ********************************************************************* /cache/rhel-7.qcow2 : ok=53 changed=34 unreachable=0 failed=0 skipped=3 rescued=0 ignored=0 + cd /tmp/tmpdw7g3_3_/tests; TEST_SUBJECTS=/cache/rhel-7.qcow2 TEST_ARTIFACTS=/tmp/linux-system-role-test-work-pull-linux-system-roles_firewall-33-3110ee6-rhel-7-jck_9qpy/artifacts ansible-playbook -vv --inventory=/usr/share/ansible/inventory/standard-inventory-qcow2 /tmp/tmpdw7g3_3_/_setup.yml /tmp/tmpdw7g3_3_/tests/tests_default.yml ansible-playbook 2.8.19 config file = /etc/ansible/ansible.cfg configured module search path = [u'/root/.ansible/plugins/modules', u'/usr/share/ansible/plugins/modules'] ansible python module location = /usr/lib/python2.7/site-packages/ansible executable location = /usr/bin/ansible-playbook python version = 2.7.5 (default, Nov 16 2020, 22:23:17) [GCC 4.8.5 20150623 (Red Hat 4.8.5-44)] Using /etc/ansible/ansible.cfg as config file PLAYBOOK: _setup.yml *********************************************************** 2 plays in /tmp/tmpdw7g3_3_/_setup.yml PLAY [Fail when only localhost is available] *********************************** META: ran handlers TASK [debug] ******************************************************************* task path: /tmp/tmpdw7g3_3_/_setup.yml:5 ok: [/cache/rhel-7.qcow2] => { "groups": { "all": [ "/cache/rhel-7.qcow2" ], "localhost": [ "/cache/rhel-7.qcow2" ], "subjects": [ "/cache/rhel-7.qcow2" ], "ungrouped": [] } } TASK [fail] ******************************************************************** task path: /tmp/tmpdw7g3_3_/_setup.yml:7 skipping: [/cache/rhel-7.qcow2] => {"changed": false, "skip_reason": "Conditional result was False"} META: ran handlers META: ran handlers PLAY [Setup repos] ************************************************************* META: ran handlers TASK [set up internal repositories] ******************************************** task path: /tmp/tmpdw7g3_3_/_setup.yml:16 changed: [/cache/rhel-7.qcow2] => (item=None) => {"censored": "the output has been hidden due to the fact that 'no_log: true' was specified for this result", "changed": true} changed: [/cache/rhel-7.qcow2] => (item=None) => {"censored": "the output has been hidden due to the fact that 'no_log: true' was specified for this result", "changed": true} changed: [/cache/rhel-7.qcow2] => (item=None) => {"censored": "the output has been hidden due to the fact that 'no_log: true' was specified for this result", "changed": true} changed: [/cache/rhel-7.qcow2] => {"censored": "the output has been hidden due to the fact that 'no_log: true' was specified for this result", "changed": true} META: ran handlers META: ran handlers PLAY RECAP ********************************************************************* /cache/rhel-7.qcow2 : ok=2 changed=1 unreachable=0 failed=0 skipped=1 rescued=0 ignored=0 statically imported: /tmp/tmpdw7g3_3_/tasks/firewalld.yml PLAYBOOK: tests_default.yml **************************************************** 1 plays in /tmp/tmpdw7g3_3_/tests/tests_default.yml PLAY [Ensure that the roles runs with default parameters] ********************** TASK [Gathering Facts] ********************************************************* task path: /tmp/tmpdw7g3_3_/tests/tests_default.yml:1 ok: [/cache/rhel-7.qcow2] META: ran handlers TASK [linux-system-roles.firewall : Install firewalld] ************************* task path: /tmp/tmpdw7g3_3_/tasks/firewalld.yml:2 changed: [/cache/rhel-7.qcow2] => {"changed": true, "changes": {"installed": ["firewalld"]}, "msg": "", "rc": 0, "results": ["Loaded plugins: search-disabled-repos\nResolving Dependencies\n--> Running transaction check\n---> Package firewalld.noarch 0:0.6.3-8.el7 will be installed\n--> Processing Dependency: python-firewall = 0.6.3-8.el7 for package: firewalld-0.6.3-8.el7.noarch\n--> Processing Dependency: firewalld-filesystem = 0.6.3-8.el7 for package: firewalld-0.6.3-8.el7.noarch\n--> Processing Dependency: ipset for package: firewalld-0.6.3-8.el7.noarch\n--> Processing Dependency: ebtables for package: firewalld-0.6.3-8.el7.noarch\n--> Running transaction check\n---> Package ebtables.x86_64 0:2.0.10-16.el7 will be installed\n---> Package firewalld-filesystem.noarch 0:0.6.3-8.el7 will be installed\n---> Package ipset.x86_64 0:7.1-1.el7 will be installed\n--> Processing Dependency: ipset-libs(x86-64) = 7.1-1.el7 for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13(LIBIPSET_4.8)(64bit) for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13(LIBIPSET_2.0)(64bit) for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13()(64bit) for package: ipset-7.1-1.el7.x86_64\n---> Package python-firewall.noarch 0:0.6.3-8.el7 will be installed\n--> Processing Dependency: python-slip-dbus for package: python-firewall-0.6.3-8.el7.noarch\n--> Running transaction check\n---> Package ipset-libs.x86_64 0:7.1-1.el7 will be installed\n---> Package python-slip-dbus.noarch 0:0.4.0-4.el7 will be installed\n--> Processing Dependency: python-slip = 0.4.0-4.el7 for package: python-slip-dbus-0.4.0-4.el7.noarch\n--> Running transaction check\n---> Package python-slip.noarch 0:0.4.0-4.el7 will be installed\n--> Finished Dependency Resolution\n\nDependencies Resolved\n\n================================================================================\n Package Arch Version Repository Size\n================================================================================\nInstalling:\n firewalld noarch 0.6.3-8.el7 rhel 442 k\nInstalling for dependencies:\n ebtables x86_64 2.0.10-16.el7 rhel 123 k\n firewalld-filesystem noarch 0.6.3-8.el7 rhel 50 k\n ipset x86_64 7.1-1.el7 rhel 39 k\n ipset-libs x86_64 7.1-1.el7 rhel 64 k\n python-firewall noarch 0.6.3-8.el7 rhel 353 k\n python-slip noarch 0.4.0-4.el7 rhel 31 k\n python-slip-dbus noarch 0.4.0-4.el7 rhel 32 k\n\nTransaction Summary\n================================================================================\nInstall 1 Package (+7 Dependent packages)\n\nTotal download size: 1.1 M\nInstalled size: 4.5 M\nDownloading packages:\n--------------------------------------------------------------------------------\nTotal 14 MB/s | 1.1 MB 00:00 \nRunning transaction check\nRunning transaction test\nTransaction test succeeded\nRunning transaction\n Installing : ebtables-2.0.10-16.el7.x86_64 1/8 \n Installing : ipset-libs-7.1-1.el7.x86_64 2/8 \n Installing : ipset-7.1-1.el7.x86_64 3/8 \n Installing : python-slip-0.4.0-4.el7.noarch 4/8 \n Installing : python-slip-dbus-0.4.0-4.el7.noarch 5/8 \n Installing : python-firewall-0.6.3-8.el7.noarch 6/8 \n Installing : firewalld-filesystem-0.6.3-8.el7.noarch 7/8 \n Installing : firewalld-0.6.3-8.el7.noarch 8/8 \n Verifying : python-firewall-0.6.3-8.el7.noarch 1/8 \n Verifying : ipset-7.1-1.el7.x86_64 2/8 \n Verifying : firewalld-0.6.3-8.el7.noarch 3/8 \n Verifying : firewalld-filesystem-0.6.3-8.el7.noarch 4/8 \n Verifying : python-slip-0.4.0-4.el7.noarch 5/8 \n Verifying : python-slip-dbus-0.4.0-4.el7.noarch 6/8 \n Verifying : ipset-libs-7.1-1.el7.x86_64 7/8 \n Verifying : ebtables-2.0.10-16.el7.x86_64 8/8 \n\nInstalled:\n firewalld.noarch 0:0.6.3-8.el7 \n\nDependency Installed:\n ebtables.x86_64 0:2.0.10-16.el7 \n firewalld-filesystem.noarch 0:0.6.3-8.el7 \n ipset.x86_64 0:7.1-1.el7 \n ipset-libs.x86_64 0:7.1-1.el7 \n python-firewall.noarch 0:0.6.3-8.el7 \n python-slip.noarch 0:0.4.0-4.el7 \n python-slip-dbus.noarch 0:0.4.0-4.el7 \n\nComplete!\n"]} TASK [linux-system-roles.firewall : Install python-firewall] ******************* task path: /tmp/tmpdw7g3_3_/tasks/firewalld.yml:7 ok: [/cache/rhel-7.qcow2] => {"changed": false, "msg": "", "rc": 0, "results": ["python-firewall-0.6.3-8.el7.noarch providing python-firewall is already installed"]} TASK [linux-system-roles.firewall : Install python3-firewall] ****************** task path: /tmp/tmpdw7g3_3_/tasks/firewalld.yml:13 skipping: [/cache/rhel-7.qcow2] => {"changed": false, "skip_reason": "Conditional result was False"} TASK [linux-system-roles.firewall : Enable and start firewalld service] ******** task path: /tmp/tmpdw7g3_3_/tasks/firewalld.yml:19 changed: [/cache/rhel-7.qcow2] => {"changed": true, "enabled": true, "name": "firewalld", "state": "started", "status": {"ActiveEnterTimestampMonotonic": "0", "ActiveExitTimestampMonotonic": "0", "ActiveState": "inactive", "After": "basic.target system.slice dbus.service polkit.service", "AllowIsolate": "no", "AmbientCapabilities": "0", "AssertResult": "no", "AssertTimestampMonotonic": "0", "Before": "shutdown.target network-pre.target multi-user.target", "BlockIOAccounting": "no", "BlockIOWeight": "18446744073709551615", "BusName": "org.fedoraproject.FirewallD1", "CPUAccounting": "no", "CPUQuotaPerSecUSec": "infinity", "CPUSchedulingPolicy": "0", "CPUSchedulingPriority": "0", "CPUSchedulingResetOnFork": "no", "CPUShares": "18446744073709551615", "CanIsolate": "no", "CanReload": "yes", "CanStart": "yes", "CanStop": "yes", "CapabilityBoundingSet": "18446744073709551615", "ConditionResult": "no", "ConditionTimestampMonotonic": "0", "Conflicts": "ipset.service ip6tables.service shutdown.target iptables.service ebtables.service", "ControlPID": "0", "DefaultDependencies": "yes", "Delegate": "no", "Description": "firewalld - dynamic firewall daemon", "DevicePolicy": "auto", "Documentation": "man:firewalld(1)", "EnvironmentFile": "/etc/sysconfig/firewalld (ignore_errors=yes)", "ExecMainCode": "0", "ExecMainExitTimestampMonotonic": "0", "ExecMainPID": "0", "ExecMainStartTimestampMonotonic": "0", "ExecMainStatus": "0", "ExecReload": "{ path=/bin/kill ; argv[]=/bin/kill -HUP $MAINPID ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "ExecStart": "{ path=/usr/sbin/firewalld ; argv[]=/usr/sbin/firewalld --nofork --nopid $FIREWALLD_ARGS ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "FailureAction": "none", "FileDescriptorStoreMax": "0", "FragmentPath": "/usr/lib/systemd/system/firewalld.service", "GuessMainPID": "yes", "IOScheduling": "0", "Id": "firewalld.service", "IgnoreOnIsolate": "no", "IgnoreOnSnapshot": "no", "IgnoreSIGPIPE": "yes", "InactiveEnterTimestampMonotonic": "0", "InactiveExitTimestampMonotonic": "0", "JobTimeoutAction": "none", "JobTimeoutUSec": "0", "KillMode": "mixed", "KillSignal": "15", "LimitAS": "18446744073709551615", "LimitCORE": "18446744073709551615", "LimitCPU": "18446744073709551615", "LimitDATA": "18446744073709551615", "LimitFSIZE": "18446744073709551615", "LimitLOCKS": "18446744073709551615", "LimitMEMLOCK": "65536", "LimitMSGQUEUE": "819200", "LimitNICE": "0", "LimitNOFILE": "4096", "LimitNPROC": "7163", "LimitRSS": "18446744073709551615", "LimitRTPRIO": "0", "LimitRTTIME": "18446744073709551615", "LimitSIGPENDING": "7163", "LimitSTACK": "18446744073709551615", "LoadState": "loaded", "MainPID": "0", "MemoryAccounting": "no", "MemoryCurrent": "18446744073709551615", "MemoryLimit": "18446744073709551615", "MountFlags": "0", "Names": "firewalld.service", "NeedDaemonReload": "no", "Nice": "0", "NoNewPrivileges": "no", "NonBlocking": "no", "NotifyAccess": "none", "OOMScoreAdjust": "0", "OnFailureJobMode": "replace", "PermissionsStartOnly": "no", "PrivateDevices": "no", "PrivateNetwork": "no", "PrivateTmp": "no", "ProtectHome": "no", "ProtectSystem": "no", "RefuseManualStart": "no", "RefuseManualStop": "no", "RemainAfterExit": "no", "Requires": "basic.target system.slice", "Restart": "no", "RestartUSec": "100ms", "Result": "success", "RootDirectoryStartOnly": "no", "RuntimeDirectoryMode": "0755", "SameProcessGroup": "no", "SecureBits": "0", "SendSIGHUP": "no", "SendSIGKILL": "yes", "Slice": "system.slice", "StandardError": "null", "StandardInput": "null", "StandardOutput": "null", "StartLimitAction": "none", "StartLimitBurst": "5", "StartLimitInterval": "10000000", "StartupBlockIOWeight": "18446744073709551615", "StartupCPUShares": "18446744073709551615", "StatusErrno": "0", "StopWhenUnneeded": "no", "SubState": "dead", "SyslogLevelPrefix": "yes", "SyslogPriority": "30", "SystemCallErrorNumber": "0", "TTYReset": "no", "TTYVHangup": "no", "TTYVTDisallocate": "no", "TasksAccounting": "no", "TasksCurrent": "18446744073709551615", "TasksMax": "18446744073709551615", "TimeoutStartUSec": "1min 30s", "TimeoutStopUSec": "1min 30s", "TimerSlackNSec": "50000", "Transient": "no", "Type": "dbus", "UMask": "0022", "UnitFilePreset": "enabled", "UnitFileState": "enabled", "WantedBy": "multi-user.target", "Wants": "network-pre.target", "WatchdogTimestampMonotonic": "0", "WatchdogUSec": "0"}} TASK [linux-system-roles.firewall : Configure firewall] ************************ task path: /tmp/tmpdw7g3_3_/tasks/main.yml:3 META: ran handlers META: ran handlers PLAY RECAP ********************************************************************* /cache/rhel-7.qcow2 : ok=6 changed=3 unreachable=0 failed=0 skipped=3 rescued=0 ignored=0 + cd /tmp/tmpdw7g3_3_/tests; TEST_SUBJECTS=/cache/rhel-7.qcow2 TEST_ARTIFACTS=/tmp/linux-system-role-test-work-pull-linux-system-roles_firewall-33-3110ee6-rhel-7-jck_9qpy/artifacts ansible-playbook -vv --inventory=/usr/share/ansible/inventory/standard-inventory-qcow2 /tmp/tmpdw7g3_3_/_setup.yml /tmp/tmpdw7g3_3_/tests/tests_zone.yml ansible-playbook 2.8.19 config file = /etc/ansible/ansible.cfg configured module search path = [u'/root/.ansible/plugins/modules', u'/usr/share/ansible/plugins/modules'] ansible python module location = /usr/lib/python2.7/site-packages/ansible executable location = /usr/bin/ansible-playbook python version = 2.7.5 (default, Nov 16 2020, 22:23:17) [GCC 4.8.5 20150623 (Red Hat 4.8.5-44)] Using /etc/ansible/ansible.cfg as config file PLAYBOOK: _setup.yml *********************************************************** 2 plays in /tmp/tmpdw7g3_3_/_setup.yml PLAY [Fail when only localhost is available] *********************************** META: ran handlers TASK [debug] ******************************************************************* task path: /tmp/tmpdw7g3_3_/_setup.yml:5 ok: [/cache/rhel-7.qcow2] => { "groups": { "all": [ "/cache/rhel-7.qcow2" ], "localhost": [ "/cache/rhel-7.qcow2" ], "subjects": [ "/cache/rhel-7.qcow2" ], "ungrouped": [] } } TASK [fail] ******************************************************************** task path: /tmp/tmpdw7g3_3_/_setup.yml:7 skipping: [/cache/rhel-7.qcow2] => {"changed": false, "skip_reason": "Conditional result was False"} META: ran handlers META: ran handlers PLAY [Setup repos] ************************************************************* META: ran handlers TASK [set up internal repositories] ******************************************** task path: /tmp/tmpdw7g3_3_/_setup.yml:16 changed: [/cache/rhel-7.qcow2] => (item=None) => {"censored": "the output has been hidden due to the fact that 'no_log: true' was specified for this result", "changed": true} changed: [/cache/rhel-7.qcow2] => (item=None) => {"censored": "the output has been hidden due to the fact that 'no_log: true' was specified for this result", "changed": true} changed: [/cache/rhel-7.qcow2] => (item=None) => {"censored": "the output has been hidden due to the fact that 'no_log: true' was specified for this result", "changed": true} changed: [/cache/rhel-7.qcow2] => {"censored": "the output has been hidden due to the fact that 'no_log: true' was specified for this result", "changed": true} META: ran handlers META: ran handlers PLAY RECAP ********************************************************************* /cache/rhel-7.qcow2 : ok=2 changed=1 unreachable=0 failed=0 skipped=1 rescued=0 ignored=0 PLAYBOOK: tests_zone.yml ******************************************************* 1 plays in /tmp/tmpdw7g3_3_/tests/tests_zone.yml PLAY [Ensure that the roles runs with default parameters] ********************** TASK [Gathering Facts] ********************************************************* task path: /tmp/tmpdw7g3_3_/tests/tests_zone.yml:1 ok: [/cache/rhel-7.qcow2] META: ran handlers TASK [include_role : linux-system-roles.firewall] ****************************** task path: /tmp/tmpdw7g3_3_/tests/tests_zone.yml:6 statically imported: /tmp/tmpdw7g3_3_/tasks/firewalld.yml TASK [linux-system-roles.firewall : Install firewalld] ************************* task path: /tmp/tmpdw7g3_3_/tasks/firewalld.yml:2 changed: [/cache/rhel-7.qcow2] => {"changed": true, "changes": {"installed": ["firewalld"]}, "msg": "", "rc": 0, "results": ["Loaded plugins: search-disabled-repos\nResolving Dependencies\n--> Running transaction check\n---> Package firewalld.noarch 0:0.6.3-8.el7 will be installed\n--> Processing Dependency: python-firewall = 0.6.3-8.el7 for package: firewalld-0.6.3-8.el7.noarch\n--> Processing Dependency: firewalld-filesystem = 0.6.3-8.el7 for package: firewalld-0.6.3-8.el7.noarch\n--> Processing Dependency: ipset for package: firewalld-0.6.3-8.el7.noarch\n--> Processing Dependency: ebtables for package: firewalld-0.6.3-8.el7.noarch\n--> Running transaction check\n---> Package ebtables.x86_64 0:2.0.10-16.el7 will be installed\n---> Package firewalld-filesystem.noarch 0:0.6.3-8.el7 will be installed\n---> Package ipset.x86_64 0:7.1-1.el7 will be installed\n--> Processing Dependency: ipset-libs(x86-64) = 7.1-1.el7 for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13(LIBIPSET_4.8)(64bit) for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13(LIBIPSET_2.0)(64bit) for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13()(64bit) for package: ipset-7.1-1.el7.x86_64\n---> Package python-firewall.noarch 0:0.6.3-8.el7 will be installed\n--> Processing Dependency: python-slip-dbus for package: python-firewall-0.6.3-8.el7.noarch\n--> Running transaction check\n---> Package ipset-libs.x86_64 0:7.1-1.el7 will be installed\n---> Package python-slip-dbus.noarch 0:0.4.0-4.el7 will be installed\n--> Processing Dependency: python-slip = 0.4.0-4.el7 for package: python-slip-dbus-0.4.0-4.el7.noarch\n--> Running transaction check\n---> Package python-slip.noarch 0:0.4.0-4.el7 will be installed\n--> Finished Dependency Resolution\n\nDependencies Resolved\n\n================================================================================\n Package Arch Version Repository Size\n================================================================================\nInstalling:\n firewalld noarch 0.6.3-8.el7 rhel 442 k\nInstalling for dependencies:\n ebtables x86_64 2.0.10-16.el7 rhel 123 k\n firewalld-filesystem noarch 0.6.3-8.el7 rhel 50 k\n ipset x86_64 7.1-1.el7 rhel 39 k\n ipset-libs x86_64 7.1-1.el7 rhel 64 k\n python-firewall noarch 0.6.3-8.el7 rhel 353 k\n python-slip noarch 0.4.0-4.el7 rhel 31 k\n python-slip-dbus noarch 0.4.0-4.el7 rhel 32 k\n\nTransaction Summary\n================================================================================\nInstall 1 Package (+7 Dependent packages)\n\nTotal download size: 1.1 M\nInstalled size: 4.5 M\nDownloading packages:\n--------------------------------------------------------------------------------\nTotal 13 MB/s | 1.1 MB 00:00 \nRunning transaction check\nRunning transaction test\nTransaction test succeeded\nRunning transaction\n Installing : ebtables-2.0.10-16.el7.x86_64 1/8 \n Installing : ipset-libs-7.1-1.el7.x86_64 2/8 \n Installing : ipset-7.1-1.el7.x86_64 3/8 \n Installing : python-slip-0.4.0-4.el7.noarch 4/8 \n Installing : python-slip-dbus-0.4.0-4.el7.noarch 5/8 \n Installing : python-firewall-0.6.3-8.el7.noarch 6/8 \n Installing : firewalld-filesystem-0.6.3-8.el7.noarch 7/8 \n Installing : firewalld-0.6.3-8.el7.noarch 8/8 \n Verifying : python-firewall-0.6.3-8.el7.noarch 1/8 \n Verifying : ipset-7.1-1.el7.x86_64 2/8 \n Verifying : firewalld-0.6.3-8.el7.noarch 3/8 \n Verifying : firewalld-filesystem-0.6.3-8.el7.noarch 4/8 \n Verifying : python-slip-0.4.0-4.el7.noarch 5/8 \n Verifying : python-slip-dbus-0.4.0-4.el7.noarch 6/8 \n Verifying : ipset-libs-7.1-1.el7.x86_64 7/8 \n Verifying : ebtables-2.0.10-16.el7.x86_64 8/8 \n\nInstalled:\n firewalld.noarch 0:0.6.3-8.el7 \n\nDependency Installed:\n ebtables.x86_64 0:2.0.10-16.el7 \n firewalld-filesystem.noarch 0:0.6.3-8.el7 \n ipset.x86_64 0:7.1-1.el7 \n ipset-libs.x86_64 0:7.1-1.el7 \n python-firewall.noarch 0:0.6.3-8.el7 \n python-slip.noarch 0:0.4.0-4.el7 \n python-slip-dbus.noarch 0:0.4.0-4.el7 \n\nComplete!\n"]} TASK [linux-system-roles.firewall : Install python-firewall] ******************* task path: /tmp/tmpdw7g3_3_/tasks/firewalld.yml:7 ok: [/cache/rhel-7.qcow2] => {"changed": false, "msg": "", "rc": 0, "results": ["python-firewall-0.6.3-8.el7.noarch providing python-firewall is already installed"]} TASK [linux-system-roles.firewall : Install python3-firewall] ****************** task path: /tmp/tmpdw7g3_3_/tasks/firewalld.yml:13 skipping: [/cache/rhel-7.qcow2] => {"changed": false, "skip_reason": "Conditional result was False"} TASK [linux-system-roles.firewall : Enable and start firewalld service] ******** task path: /tmp/tmpdw7g3_3_/tasks/firewalld.yml:19 changed: [/cache/rhel-7.qcow2] => {"changed": true, "enabled": true, "name": "firewalld", "state": "started", "status": {"ActiveEnterTimestampMonotonic": "0", "ActiveExitTimestampMonotonic": "0", "ActiveState": "inactive", "After": "basic.target system.slice dbus.service polkit.service", "AllowIsolate": "no", "AmbientCapabilities": "0", "AssertResult": "no", "AssertTimestampMonotonic": "0", "Before": "multi-user.target shutdown.target network-pre.target", "BlockIOAccounting": "no", "BlockIOWeight": "18446744073709551615", "BusName": "org.fedoraproject.FirewallD1", "CPUAccounting": "no", "CPUQuotaPerSecUSec": "infinity", "CPUSchedulingPolicy": "0", "CPUSchedulingPriority": "0", "CPUSchedulingResetOnFork": "no", "CPUShares": "18446744073709551615", "CanIsolate": "no", "CanReload": "yes", "CanStart": "yes", "CanStop": "yes", "CapabilityBoundingSet": "18446744073709551615", "ConditionResult": "no", "ConditionTimestampMonotonic": "0", "Conflicts": "shutdown.target ebtables.service ip6tables.service iptables.service ipset.service", "ControlPID": "0", "DefaultDependencies": "yes", "Delegate": "no", "Description": "firewalld - dynamic firewall daemon", "DevicePolicy": "auto", "Documentation": "man:firewalld(1)", "EnvironmentFile": "/etc/sysconfig/firewalld (ignore_errors=yes)", "ExecMainCode": "0", "ExecMainExitTimestampMonotonic": "0", "ExecMainPID": "0", "ExecMainStartTimestampMonotonic": "0", "ExecMainStatus": "0", "ExecReload": "{ path=/bin/kill ; argv[]=/bin/kill -HUP $MAINPID ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "ExecStart": "{ path=/usr/sbin/firewalld ; argv[]=/usr/sbin/firewalld --nofork --nopid $FIREWALLD_ARGS ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "FailureAction": "none", "FileDescriptorStoreMax": "0", "FragmentPath": "/usr/lib/systemd/system/firewalld.service", "GuessMainPID": "yes", "IOScheduling": "0", "Id": "firewalld.service", "IgnoreOnIsolate": "no", "IgnoreOnSnapshot": "no", "IgnoreSIGPIPE": "yes", "InactiveEnterTimestampMonotonic": "0", "InactiveExitTimestampMonotonic": "0", "JobTimeoutAction": "none", "JobTimeoutUSec": "0", "KillMode": "mixed", "KillSignal": "15", "LimitAS": "18446744073709551615", "LimitCORE": "18446744073709551615", "LimitCPU": "18446744073709551615", "LimitDATA": "18446744073709551615", "LimitFSIZE": "18446744073709551615", "LimitLOCKS": "18446744073709551615", "LimitMEMLOCK": "65536", "LimitMSGQUEUE": "819200", "LimitNICE": "0", "LimitNOFILE": "4096", "LimitNPROC": "7163", "LimitRSS": "18446744073709551615", "LimitRTPRIO": "0", "LimitRTTIME": "18446744073709551615", "LimitSIGPENDING": "7163", "LimitSTACK": "18446744073709551615", "LoadState": "loaded", "MainPID": "0", "MemoryAccounting": "no", "MemoryCurrent": "18446744073709551615", "MemoryLimit": "18446744073709551615", "MountFlags": "0", "Names": "firewalld.service", "NeedDaemonReload": "no", "Nice": "0", "NoNewPrivileges": "no", "NonBlocking": "no", "NotifyAccess": "none", "OOMScoreAdjust": "0", "OnFailureJobMode": "replace", "PermissionsStartOnly": "no", "PrivateDevices": "no", "PrivateNetwork": "no", "PrivateTmp": "no", "ProtectHome": "no", "ProtectSystem": "no", "RefuseManualStart": "no", "RefuseManualStop": "no", "RemainAfterExit": "no", "Requires": "system.slice basic.target", "Restart": "no", "RestartUSec": "100ms", "Result": "success", "RootDirectoryStartOnly": "no", "RuntimeDirectoryMode": "0755", "SameProcessGroup": "no", "SecureBits": "0", "SendSIGHUP": "no", "SendSIGKILL": "yes", "Slice": "system.slice", "StandardError": "null", "StandardInput": "null", "StandardOutput": "null", "StartLimitAction": "none", "StartLimitBurst": "5", "StartLimitInterval": "10000000", "StartupBlockIOWeight": "18446744073709551615", "StartupCPUShares": "18446744073709551615", "StatusErrno": "0", "StopWhenUnneeded": "no", "SubState": "dead", "SyslogLevelPrefix": "yes", "SyslogPriority": "30", "SystemCallErrorNumber": "0", "TTYReset": "no", "TTYVHangup": "no", "TTYVTDisallocate": "no", "TasksAccounting": "no", "TasksCurrent": "18446744073709551615", "TasksMax": "18446744073709551615", "TimeoutStartUSec": "1min 30s", "TimeoutStopUSec": "1min 30s", "TimerSlackNSec": "50000", "Transient": "no", "Type": "dbus", "UMask": "0022", "UnitFilePreset": "enabled", "UnitFileState": "enabled", "WantedBy": "multi-user.target", "Wants": "network-pre.target", "WatchdogTimestampMonotonic": "0", "WatchdogUSec": "0"}} TASK [linux-system-roles.firewall : Configure firewall] ************************ task path: /tmp/tmpdw7g3_3_/tasks/main.yml:3 TASK [Verify used firewalld zones] ********************************************* task path: /tmp/tmpdw7g3_3_/tests/tests_zone.yml:14 statically imported: /tmp/tmpdw7g3_3_/tasks/firewalld.yml TASK [linux-system-roles.firewall : Install firewalld] ************************* task path: /tmp/tmpdw7g3_3_/tasks/firewalld.yml:2 ok: [/cache/rhel-7.qcow2] => {"changed": false, "msg": "", "rc": 0, "results": ["firewalld-0.6.3-8.el7.noarch providing firewalld is already installed"]} TASK [linux-system-roles.firewall : Install python-firewall] ******************* task path: /tmp/tmpdw7g3_3_/tasks/firewalld.yml:7 ok: [/cache/rhel-7.qcow2] => {"changed": false, "msg": "", "rc": 0, "results": ["python-firewall-0.6.3-8.el7.noarch providing python-firewall is already installed"]} TASK [linux-system-roles.firewall : Install python3-firewall] ****************** task path: /tmp/tmpdw7g3_3_/tasks/firewalld.yml:13 skipping: [/cache/rhel-7.qcow2] => {"changed": false, "skip_reason": "Conditional result was False"} TASK [linux-system-roles.firewall : Enable and start firewalld service] ******** task path: /tmp/tmpdw7g3_3_/tasks/firewalld.yml:19 ok: [/cache/rhel-7.qcow2] => {"changed": false, "enabled": true, "name": "firewalld", "state": "started", "status": {"ActiveEnterTimestamp": "Wed 2021-08-04 10:09:53 EDT", "ActiveEnterTimestampMonotonic": "22741108", "ActiveExitTimestampMonotonic": "0", "ActiveState": "active", "After": "basic.target system.slice dbus.service polkit.service", "AllowIsolate": "no", "AmbientCapabilities": "0", "AssertResult": "yes", "AssertTimestamp": "Wed 2021-08-04 10:09:53 EDT", "AssertTimestampMonotonic": "22532618", "Before": "multi-user.target shutdown.target network-pre.target", "BlockIOAccounting": "no", "BlockIOWeight": "18446744073709551615", "BusName": "org.fedoraproject.FirewallD1", "CPUAccounting": "no", "CPUQuotaPerSecUSec": "infinity", "CPUSchedulingPolicy": "0", "CPUSchedulingPriority": "0", "CPUSchedulingResetOnFork": "no", "CPUShares": "18446744073709551615", "CanIsolate": "no", "CanReload": "yes", "CanStart": "yes", "CanStop": "yes", "CapabilityBoundingSet": "18446744073709551615", "ConditionResult": "yes", "ConditionTimestamp": "Wed 2021-08-04 10:09:53 EDT", "ConditionTimestampMonotonic": "22532618", "Conflicts": "shutdown.target ebtables.service ip6tables.service iptables.service ipset.service", "ControlGroup": "/system.slice/firewalld.service", "ControlPID": "0", "DefaultDependencies": "yes", "Delegate": "no", "Description": "firewalld - dynamic firewall daemon", "DevicePolicy": "auto", "Documentation": "man:firewalld(1)", "EnvironmentFile": "/etc/sysconfig/firewalld (ignore_errors=yes)", "ExecMainCode": "0", "ExecMainExitTimestampMonotonic": "0", "ExecMainPID": "9099", "ExecMainStartTimestamp": "Wed 2021-08-04 10:09:53 EDT", "ExecMainStartTimestampMonotonic": "22533565", "ExecMainStatus": "0", "ExecReload": "{ path=/bin/kill ; argv[]=/bin/kill -HUP $MAINPID ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "ExecStart": "{ path=/usr/sbin/firewalld ; argv[]=/usr/sbin/firewalld --nofork --nopid $FIREWALLD_ARGS ; ignore_errors=no ; start_time=[Wed 2021-08-04 10:09:53 EDT] ; stop_time=[n/a] ; pid=9099 ; code=(null) ; status=0/0 }", "FailureAction": "none", "FileDescriptorStoreMax": "0", "FragmentPath": "/usr/lib/systemd/system/firewalld.service", "GuessMainPID": "yes", "IOScheduling": "0", "Id": "firewalld.service", "IgnoreOnIsolate": "no", "IgnoreOnSnapshot": "no", "IgnoreSIGPIPE": "yes", "InactiveEnterTimestampMonotonic": "0", "InactiveExitTimestamp": "Wed 2021-08-04 10:09:53 EDT", "InactiveExitTimestampMonotonic": "22533611", "JobTimeoutAction": "none", "JobTimeoutUSec": "0", "KillMode": "mixed", "KillSignal": "15", "LimitAS": "18446744073709551615", "LimitCORE": "18446744073709551615", "LimitCPU": "18446744073709551615", "LimitDATA": "18446744073709551615", "LimitFSIZE": "18446744073709551615", "LimitLOCKS": "18446744073709551615", "LimitMEMLOCK": "65536", "LimitMSGQUEUE": "819200", "LimitNICE": "0", "LimitNOFILE": "4096", "LimitNPROC": "7163", "LimitRSS": "18446744073709551615", "LimitRTPRIO": "0", "LimitRTTIME": "18446744073709551615", "LimitSIGPENDING": "7163", "LimitSTACK": "18446744073709551615", "LoadState": "loaded", "MainPID": "9099", "MemoryAccounting": "no", "MemoryCurrent": "18446744073709551615", "MemoryLimit": "18446744073709551615", "MountFlags": "0", "Names": "firewalld.service", "NeedDaemonReload": "no", "Nice": "0", "NoNewPrivileges": "no", "NonBlocking": "no", "NotifyAccess": "none", "OOMScoreAdjust": "0", "OnFailureJobMode": "replace", "PermissionsStartOnly": "no", "PrivateDevices": "no", "PrivateNetwork": "no", "PrivateTmp": "no", "ProtectHome": "no", "ProtectSystem": "no", "RefuseManualStart": "no", "RefuseManualStop": "no", "RemainAfterExit": "no", "Requires": "system.slice basic.target", "Restart": "no", "RestartUSec": "100ms", "Result": "success", "RootDirectoryStartOnly": "no", "RuntimeDirectoryMode": "0755", "SameProcessGroup": "no", "SecureBits": "0", "SendSIGHUP": "no", "SendSIGKILL": "yes", "Slice": "system.slice", "StandardError": "null", "StandardInput": "null", "StandardOutput": "null", "StartLimitAction": "none", "StartLimitBurst": "5", "StartLimitInterval": "10000000", "StartupBlockIOWeight": "18446744073709551615", "StartupCPUShares": "18446744073709551615", "StatusErrno": "0", "StopWhenUnneeded": "no", "SubState": "running", "SyslogLevelPrefix": "yes", "SyslogPriority": "30", "SystemCallErrorNumber": "0", "TTYReset": "no", "TTYVHangup": "no", "TTYVTDisallocate": "no", "TasksAccounting": "no", "TasksCurrent": "18446744073709551615", "TasksMax": "18446744073709551615", "TimeoutStartUSec": "1min 30s", "TimeoutStopUSec": "1min 30s", "TimerSlackNSec": "50000", "Transient": "no", "Type": "dbus", "UMask": "0022", "UnitFilePreset": "enabled", "UnitFileState": "enabled", "WantedBy": "multi-user.target", "Wants": "network-pre.target", "WatchdogTimestamp": "Wed 2021-08-04 10:09:53 EDT", "WatchdogTimestampMonotonic": "22740946", "WatchdogUSec": "0"}} TASK [linux-system-roles.firewall : Configure firewall] ************************ task path: /tmp/tmpdw7g3_3_/tasks/main.yml:3 ok: [/cache/rhel-7.qcow2] => (item={u'state': u'enabled', u'zone': u'internal'}) => {"ansible_loop_var": "item", "changed": false, "item": {"state": "enabled", "zone": "internal"}} ok: [/cache/rhel-7.qcow2] => (item={u'state': u'enabled', u'zone': u'external'}) => {"ansible_loop_var": "item", "changed": false, "item": {"state": "enabled", "zone": "external"}} ok: [/cache/rhel-7.qcow2] => (item={u'state': u'enabled', u'zone': u'trusted'}) => {"ansible_loop_var": "item", "changed": false, "item": {"state": "enabled", "zone": "trusted"}} TASK [Fail on missing zones] *************************************************** task path: /tmp/tmpdw7g3_3_/tests/tests_zone.yml:26 skipping: [/cache/rhel-7.qcow2] => {"changed": false, "skip_reason": "Conditional result was False"} TASK [Setup firewalld] ********************************************************* task path: /tmp/tmpdw7g3_3_/tests/tests_zone.yml:32 statically imported: /tmp/tmpdw7g3_3_/tasks/firewalld.yml TASK [linux-system-roles.firewall : Install firewalld] ************************* task path: /tmp/tmpdw7g3_3_/tasks/firewalld.yml:2 ok: [/cache/rhel-7.qcow2] => {"changed": false, "msg": "", "rc": 0, "results": ["firewalld-0.6.3-8.el7.noarch providing firewalld is already installed"]} TASK [linux-system-roles.firewall : Install python-firewall] ******************* task path: /tmp/tmpdw7g3_3_/tasks/firewalld.yml:7 ok: [/cache/rhel-7.qcow2] => {"changed": false, "msg": "", "rc": 0, "results": ["python-firewall-0.6.3-8.el7.noarch providing python-firewall is already installed"]} TASK [linux-system-roles.firewall : Install python3-firewall] ****************** task path: /tmp/tmpdw7g3_3_/tasks/firewalld.yml:13 skipping: [/cache/rhel-7.qcow2] => {"changed": false, "skip_reason": "Conditional result was False"} TASK [linux-system-roles.firewall : Enable and start firewalld service] ******** task path: /tmp/tmpdw7g3_3_/tasks/firewalld.yml:19 ok: [/cache/rhel-7.qcow2] => {"changed": false, "enabled": true, "name": "firewalld", "state": "started", "status": {"ActiveEnterTimestamp": "Wed 2021-08-04 10:09:53 EDT", "ActiveEnterTimestampMonotonic": "22741108", "ActiveExitTimestampMonotonic": "0", "ActiveState": "active", "After": "basic.target system.slice dbus.service polkit.service", "AllowIsolate": "no", "AmbientCapabilities": "0", "AssertResult": "yes", "AssertTimestamp": "Wed 2021-08-04 10:09:53 EDT", "AssertTimestampMonotonic": "22532618", "Before": "multi-user.target shutdown.target network-pre.target", "BlockIOAccounting": "no", "BlockIOWeight": "18446744073709551615", "BusName": "org.fedoraproject.FirewallD1", "CPUAccounting": "no", "CPUQuotaPerSecUSec": "infinity", "CPUSchedulingPolicy": "0", "CPUSchedulingPriority": "0", "CPUSchedulingResetOnFork": "no", "CPUShares": "18446744073709551615", "CanIsolate": "no", "CanReload": "yes", "CanStart": "yes", "CanStop": "yes", "CapabilityBoundingSet": "18446744073709551615", "ConditionResult": "yes", "ConditionTimestamp": "Wed 2021-08-04 10:09:53 EDT", "ConditionTimestampMonotonic": "22532618", "Conflicts": "shutdown.target ebtables.service ip6tables.service iptables.service ipset.service", "ControlGroup": "/system.slice/firewalld.service", "ControlPID": "0", "DefaultDependencies": "yes", "Delegate": "no", "Description": "firewalld - dynamic firewall daemon", "DevicePolicy": "auto", "Documentation": "man:firewalld(1)", "EnvironmentFile": "/etc/sysconfig/firewalld (ignore_errors=yes)", "ExecMainCode": "0", "ExecMainExitTimestampMonotonic": "0", "ExecMainPID": "9099", "ExecMainStartTimestamp": "Wed 2021-08-04 10:09:53 EDT", "ExecMainStartTimestampMonotonic": "22533565", "ExecMainStatus": "0", "ExecReload": "{ path=/bin/kill ; argv[]=/bin/kill -HUP $MAINPID ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "ExecStart": "{ path=/usr/sbin/firewalld ; argv[]=/usr/sbin/firewalld --nofork --nopid $FIREWALLD_ARGS ; ignore_errors=no ; start_time=[Wed 2021-08-04 10:09:53 EDT] ; stop_time=[n/a] ; pid=9099 ; code=(null) ; status=0/0 }", "FailureAction": "none", "FileDescriptorStoreMax": "0", "FragmentPath": "/usr/lib/systemd/system/firewalld.service", "GuessMainPID": "yes", "IOScheduling": "0", "Id": "firewalld.service", "IgnoreOnIsolate": "no", "IgnoreOnSnapshot": "no", "IgnoreSIGPIPE": "yes", "InactiveEnterTimestampMonotonic": "0", "InactiveExitTimestamp": "Wed 2021-08-04 10:09:53 EDT", "InactiveExitTimestampMonotonic": "22533611", "JobTimeoutAction": "none", "JobTimeoutUSec": "0", "KillMode": "mixed", "KillSignal": "15", "LimitAS": "18446744073709551615", "LimitCORE": "18446744073709551615", "LimitCPU": "18446744073709551615", "LimitDATA": "18446744073709551615", "LimitFSIZE": "18446744073709551615", "LimitLOCKS": "18446744073709551615", "LimitMEMLOCK": "65536", "LimitMSGQUEUE": "819200", "LimitNICE": "0", "LimitNOFILE": "4096", "LimitNPROC": "7163", "LimitRSS": "18446744073709551615", "LimitRTPRIO": "0", "LimitRTTIME": "18446744073709551615", "LimitSIGPENDING": "7163", "LimitSTACK": "18446744073709551615", "LoadState": "loaded", "MainPID": "9099", "MemoryAccounting": "no", "MemoryCurrent": "18446744073709551615", "MemoryLimit": "18446744073709551615", "MountFlags": "0", "Names": "firewalld.service", "NeedDaemonReload": "no", "Nice": "0", "NoNewPrivileges": "no", "NonBlocking": "no", "NotifyAccess": "none", "OOMScoreAdjust": "0", "OnFailureJobMode": "replace", "PermissionsStartOnly": "no", "PrivateDevices": "no", "PrivateNetwork": "no", "PrivateTmp": "no", "ProtectHome": "no", "ProtectSystem": "no", "RefuseManualStart": "no", "RefuseManualStop": "no", "RemainAfterExit": "no", "Requires": "system.slice basic.target", "Restart": "no", "RestartUSec": "100ms", "Result": "success", "RootDirectoryStartOnly": "no", "RuntimeDirectoryMode": "0755", "SameProcessGroup": "no", "SecureBits": "0", "SendSIGHUP": "no", "SendSIGKILL": "yes", "Slice": "system.slice", "StandardError": "null", "StandardInput": "null", "StandardOutput": "null", "StartLimitAction": "none", "StartLimitBurst": "5", "StartLimitInterval": "10000000", "StartupBlockIOWeight": "18446744073709551615", "StartupCPUShares": "18446744073709551615", "StatusErrno": "0", "StopWhenUnneeded": "no", "SubState": "running", "SyslogLevelPrefix": "yes", "SyslogPriority": "30", "SystemCallErrorNumber": "0", "TTYReset": "no", "TTYVHangup": "no", "TTYVTDisallocate": "no", "TasksAccounting": "no", "TasksCurrent": "18446744073709551615", "TasksMax": "18446744073709551615", "TimeoutStartUSec": "1min 30s", "TimeoutStopUSec": "1min 30s", "TimerSlackNSec": "50000", "Transient": "no", "Type": "dbus", "UMask": "0022", "UnitFilePreset": "enabled", "UnitFileState": "enabled", "WantedBy": "multi-user.target", "Wants": "network-pre.target", "WatchdogTimestamp": "Wed 2021-08-04 10:09:53 EDT", "WatchdogTimestampMonotonic": "22740946", "WatchdogUSec": "0"}} TASK [linux-system-roles.firewall : Configure firewall] ************************ task path: /tmp/tmpdw7g3_3_/tasks/main.yml:3 changed: [/cache/rhel-7.qcow2] => (item={u'state': u'enabled', u'zone': u'internal', u'port': [u'443/tcp', u'443/udp'], u'service': [u'tftp', u'ftp'], u'forward_port': [u'447/tcp;;1.2.3.4', u'448/tcp;;1.2.3.5']}) => {"ansible_loop_var": "item", "changed": true, "item": {"forward_port": ["447/tcp;;1.2.3.4", "448/tcp;;1.2.3.5"], "port": ["443/tcp", "443/udp"], "service": ["tftp", "ftp"], "state": "enabled", "zone": "internal"}} TASK [Fail if no changes are done] ********************************************* task path: /tmp/tmpdw7g3_3_/tests/tests_zone.yml:45 skipping: [/cache/rhel-7.qcow2] => {"changed": false, "skip_reason": "Conditional result was False"} TASK [Setup firewalld again] *************************************************** task path: /tmp/tmpdw7g3_3_/tests/tests_zone.yml:51 TASK [linux-system-roles.firewall : Install firewalld] ************************* task path: /tmp/tmpdw7g3_3_/tasks/firewalld.yml:2 ok: [/cache/rhel-7.qcow2] => {"changed": false, "msg": "", "rc": 0, "results": ["firewalld-0.6.3-8.el7.noarch providing firewalld is already installed"]} TASK [linux-system-roles.firewall : Install python-firewall] ******************* task path: /tmp/tmpdw7g3_3_/tasks/firewalld.yml:7 ok: [/cache/rhel-7.qcow2] => {"changed": false, "msg": "", "rc": 0, "results": ["python-firewall-0.6.3-8.el7.noarch providing python-firewall is already installed"]} TASK [linux-system-roles.firewall : Install python3-firewall] ****************** task path: /tmp/tmpdw7g3_3_/tasks/firewalld.yml:13 skipping: [/cache/rhel-7.qcow2] => {"changed": false, "skip_reason": "Conditional result was False"} TASK [linux-system-roles.firewall : Enable and start firewalld service] ******** task path: /tmp/tmpdw7g3_3_/tasks/firewalld.yml:19 ok: [/cache/rhel-7.qcow2] => {"changed": false, "enabled": true, "name": "firewalld", "state": "started", "status": {"ActiveEnterTimestamp": "Wed 2021-08-04 10:09:53 EDT", "ActiveEnterTimestampMonotonic": "22741108", "ActiveExitTimestampMonotonic": "0", "ActiveState": "active", "After": "basic.target system.slice dbus.service polkit.service", "AllowIsolate": "no", "AmbientCapabilities": "0", "AssertResult": "yes", "AssertTimestamp": "Wed 2021-08-04 10:09:53 EDT", "AssertTimestampMonotonic": "22532618", "Before": "multi-user.target shutdown.target network-pre.target", "BlockIOAccounting": "no", "BlockIOWeight": "18446744073709551615", "BusName": "org.fedoraproject.FirewallD1", "CPUAccounting": "no", "CPUQuotaPerSecUSec": "infinity", "CPUSchedulingPolicy": "0", "CPUSchedulingPriority": "0", "CPUSchedulingResetOnFork": "no", "CPUShares": "18446744073709551615", "CanIsolate": "no", "CanReload": "yes", "CanStart": "yes", "CanStop": "yes", "CapabilityBoundingSet": "18446744073709551615", "ConditionResult": "yes", "ConditionTimestamp": "Wed 2021-08-04 10:09:53 EDT", "ConditionTimestampMonotonic": "22532618", "Conflicts": "shutdown.target ebtables.service ip6tables.service iptables.service ipset.service", "ControlGroup": "/system.slice/firewalld.service", "ControlPID": "0", "DefaultDependencies": "yes", "Delegate": "no", "Description": "firewalld - dynamic firewall daemon", "DevicePolicy": "auto", "Documentation": "man:firewalld(1)", "EnvironmentFile": "/etc/sysconfig/firewalld (ignore_errors=yes)", "ExecMainCode": "0", "ExecMainExitTimestampMonotonic": "0", "ExecMainPID": "9099", "ExecMainStartTimestamp": "Wed 2021-08-04 10:09:53 EDT", "ExecMainStartTimestampMonotonic": "22533565", "ExecMainStatus": "0", "ExecReload": "{ path=/bin/kill ; argv[]=/bin/kill -HUP $MAINPID ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "ExecStart": "{ path=/usr/sbin/firewalld ; argv[]=/usr/sbin/firewalld --nofork --nopid $FIREWALLD_ARGS ; ignore_errors=no ; start_time=[Wed 2021-08-04 10:09:53 EDT] ; stop_time=[n/a] ; pid=9099 ; code=(null) ; status=0/0 }", "FailureAction": "none", "FileDescriptorStoreMax": "0", "FragmentPath": "/usr/lib/systemd/system/firewalld.service", "GuessMainPID": "yes", "IOScheduling": "0", "Id": "firewalld.service", "IgnoreOnIsolate": "no", "IgnoreOnSnapshot": "no", "IgnoreSIGPIPE": "yes", "InactiveEnterTimestampMonotonic": "0", "InactiveExitTimestamp": "Wed 2021-08-04 10:09:53 EDT", "InactiveExitTimestampMonotonic": "22533611", "JobTimeoutAction": "none", "JobTimeoutUSec": "0", "KillMode": "mixed", "KillSignal": "15", "LimitAS": "18446744073709551615", "LimitCORE": "18446744073709551615", "LimitCPU": "18446744073709551615", "LimitDATA": "18446744073709551615", "LimitFSIZE": "18446744073709551615", "LimitLOCKS": "18446744073709551615", "LimitMEMLOCK": "65536", "LimitMSGQUEUE": "819200", "LimitNICE": "0", "LimitNOFILE": "4096", "LimitNPROC": "7163", "LimitRSS": "18446744073709551615", "LimitRTPRIO": "0", "LimitRTTIME": "18446744073709551615", "LimitSIGPENDING": "7163", "LimitSTACK": "18446744073709551615", "LoadState": "loaded", "MainPID": "9099", "MemoryAccounting": "no", "MemoryCurrent": "18446744073709551615", "MemoryLimit": "18446744073709551615", "MountFlags": "0", "Names": "firewalld.service", "NeedDaemonReload": "no", "Nice": "0", "NoNewPrivileges": "no", "NonBlocking": "no", "NotifyAccess": "none", "OOMScoreAdjust": "0", "OnFailureJobMode": "replace", "PermissionsStartOnly": "no", "PrivateDevices": "no", "PrivateNetwork": "no", "PrivateTmp": "no", "ProtectHome": "no", "ProtectSystem": "no", "RefuseManualStart": "no", "RefuseManualStop": "no", "RemainAfterExit": "no", "Requires": "system.slice basic.target", "Restart": "no", "RestartUSec": "100ms", "Result": "success", "RootDirectoryStartOnly": "no", "RuntimeDirectoryMode": "0755", "SameProcessGroup": "no", "SecureBits": "0", "SendSIGHUP": "no", "SendSIGKILL": "yes", "Slice": "system.slice", "StandardError": "null", "StandardInput": "null", "StandardOutput": "null", "StartLimitAction": "none", "StartLimitBurst": "5", "StartLimitInterval": "10000000", "StartupBlockIOWeight": "18446744073709551615", "StartupCPUShares": "18446744073709551615", "StatusErrno": "0", "StopWhenUnneeded": "no", "SubState": "running", "SyslogLevelPrefix": "yes", "SyslogPriority": "30", "SystemCallErrorNumber": "0", "TTYReset": "no", "TTYVHangup": "no", "TTYVTDisallocate": "no", "TasksAccounting": "no", "TasksCurrent": "18446744073709551615", "TasksMax": "18446744073709551615", "TimeoutStartUSec": "1min 30s", "TimeoutStopUSec": "1min 30s", "TimerSlackNSec": "50000", "Transient": "no", "Type": "dbus", "UMask": "0022", "UnitFilePreset": "enabled", "UnitFileState": "enabled", "WantedBy": "multi-user.target", "Wants": "network-pre.target", "WatchdogTimestamp": "Wed 2021-08-04 10:09:53 EDT", "WatchdogTimestampMonotonic": "22740946", "WatchdogUSec": "0"}} TASK [linux-system-roles.firewall : Configure firewall] ************************ task path: /tmp/tmpdw7g3_3_/tasks/main.yml:3 ok: [/cache/rhel-7.qcow2] => (item={u'state': u'enabled', u'zone': u'internal', u'port': [u'443/tcp', u'443/udp'], u'service': [u'tftp', u'ftp'], u'forward_port': [u'447/tcp;;1.2.3.4', u'448/tcp;;1.2.3.5']}) => {"ansible_loop_var": "item", "changed": false, "item": {"forward_port": ["447/tcp;;1.2.3.4", "448/tcp;;1.2.3.5"], "port": ["443/tcp", "443/udp"], "service": ["tftp", "ftp"], "state": "enabled", "zone": "internal"}} TASK [Fail on newly changes] *************************************************** task path: /tmp/tmpdw7g3_3_/tests/tests_zone.yml:64 skipping: [/cache/rhel-7.qcow2] => {"changed": false, "skip_reason": "Conditional result was False"} TASK [Verify firewalld zone internal services] ********************************* task path: /tmp/tmpdw7g3_3_/tests/tests_zone.yml:70 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": ["firewall-cmd", "--permanent", "--zone=internal", "--list-services"], "delta": "0:00:00.285804", "end": "2021-08-04 10:10:01.672479", "failed_when_result": false, "rc": 0, "start": "2021-08-04 10:10:01.386675", "stderr": "", "stderr_lines": [], "stdout": "dhcpv6-client ftp mdns samba-client ssh tftp", "stdout_lines": ["dhcpv6-client ftp mdns samba-client ssh tftp"]} TASK [Verify firewalld zone internal ports] ************************************ task path: /tmp/tmpdw7g3_3_/tests/tests_zone.yml:77 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": ["firewall-cmd", "--permanent", "--zone=internal", "--list-ports"], "delta": "0:00:00.258081", "end": "2021-08-04 10:10:02.262777", "failed_when_result": false, "rc": 0, "start": "2021-08-04 10:10:02.004696", "stderr": "", "stderr_lines": [], "stdout": "443/tcp 443/udp", "stdout_lines": ["443/tcp 443/udp"]} TASK [Verify firewalld zone internal forward ports] **************************** task path: /tmp/tmpdw7g3_3_/tests/tests_zone.yml:84 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": ["firewall-cmd", "--permanent", "--zone=internal", "--list-forward-ports"], "delta": "0:00:00.260142", "end": "2021-08-04 10:10:03.283059", "failed_when_result": false, "rc": 0, "start": "2021-08-04 10:10:03.022917", "stderr": "", "stderr_lines": [], "stdout": "port=447:proto=tcp:toport=:toaddr=1.2.3.4\nport=448:proto=tcp:toport=:toaddr=1.2.3.5", "stdout_lines": ["port=447:proto=tcp:toport=:toaddr=1.2.3.4", "port=448:proto=tcp:toport=:toaddr=1.2.3.5"]} TASK [Reset to zone defaults] ************************************************** task path: /tmp/tmpdw7g3_3_/tests/tests_zone.yml:97 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": "firewall-cmd --permanent --load-zone-defaults=internal\nfirewall-cmd --permanent --load-zone-defaults=external\nfirewall-cmd --permanent --load-zone-defaults=trusted\nfirewall-cmd --reload\n", "delta": "0:00:01.189049", "end": "2021-08-04 10:10:04.819860", "rc": 0, "start": "2021-08-04 10:10:03.630811", "stderr": "", "stderr_lines": [], "stdout": "success\nsuccess\nsuccess\nsuccess", "stdout_lines": ["success", "success", "success", "success"]} META: ran handlers META: ran handlers PLAY RECAP ********************************************************************* /cache/rhel-7.qcow2 : ok=22 changed=8 unreachable=0 failed=0 skipped=9 rescued=0 ignored=0