+ cd /tmp/tmp81skthlj/tests; TEST_SUBJECTS=/cache/centos-7.qcow2c TEST_ARTIFACTS=/tmp/linux-system-role-test-work-pull-linux-system-roles_firewall-33-6f091a8-centos-7-6c070dz2/artifacts ansible-playbook -vv --inventory=/usr/share/ansible/inventory/standard-inventory-qcow2 /tmp/tmp81skthlj/_setup.yml /tmp/tmp81skthlj/tests/tests_ansible.yml ansible-playbook 2.9.23 config file = /etc/ansible/ansible.cfg configured module search path = ['/home/tester/.ansible/plugins/modules', '/usr/share/ansible/plugins/modules'] ansible python module location = /usr/lib/python3.9/site-packages/ansible executable location = /usr/bin/ansible-playbook python version = 3.9.6 (default, Jun 29 2021, 00:00:00) [GCC 11.1.1 20210531 (Red Hat 11.1.1-3)] Using /etc/ansible/ansible.cfg as config file Skipping callback 'actionable', as we already have a stdout callback. Skipping callback 'counter_enabled', as we already have a stdout callback. Skipping callback 'debug', as we already have a stdout callback. Skipping callback 'dense', as we already have a stdout callback. Skipping callback 'dense', as we already have a stdout callback. Skipping callback 'full_skip', as we already have a stdout callback. Skipping callback 'json', as we already have a stdout callback. Skipping callback 'minimal', as we already have a stdout callback. Skipping callback 'null', as we already have a stdout callback. Skipping callback 'oneline', as we already have a stdout callback. Skipping callback 'selective', as we already have a stdout callback. Skipping callback 'skippy', as we already have a stdout callback. Skipping callback 'stderr', as we already have a stdout callback. Skipping callback 'unixy', as we already have a stdout callback. Skipping callback 'yaml', as we already have a stdout callback. PLAYBOOK: _setup.yml *********************************************************** 1 plays in /tmp/tmp81skthlj/_setup.yml PLAY [Fail when only localhost is available] *********************************** META: ran handlers TASK [debug] ******************************************************************* task path: /tmp/tmp81skthlj/_setup.yml:5 ok: [/cache/centos-7.qcow2c] => { "groups": { "all": [ "/cache/centos-7.qcow2c" ], "localhost": [ "/cache/centos-7.qcow2c" ], "subjects": [ "/cache/centos-7.qcow2c" ], "ungrouped": [] } } TASK [fail] ******************************************************************** task path: /tmp/tmp81skthlj/_setup.yml:7 skipping: [/cache/centos-7.qcow2c] => {"changed": false, "skip_reason": "Conditional result was False"} META: ran handlers META: ran handlers PLAY RECAP ********************************************************************* /cache/centos-7.qcow2c : ok=1 changed=0 unreachable=0 failed=0 skipped=1 rescued=0 ignored=0 statically imported: /tmp/tmp81skthlj/tasks/firewalld.yml PLAYBOOK: tests_ansible.yml **************************************************** 1 plays in /tmp/tmp81skthlj/tests/tests_ansible.yml PLAY [Ensure that the roles runs with default parameters] ********************** TASK [Gathering Facts] ********************************************************* task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:1 ok: [/cache/centos-7.qcow2c] META: ran handlers TASK [linux-system-roles.firewall : Install firewalld] ************************* task path: /tmp/tmp81skthlj/tasks/firewalld.yml:2 changed: [/cache/centos-7.qcow2c] => {"changed": true, "changes": {"installed": ["firewalld"]}, "msg": "warning: /var/cache/yum/x86_64/7/updates/packages/firewalld-filesystem-0.6.3-13.el7_9.noarch.rpm: Header V3 RSA/SHA256 Signature, key ID f4a80eb5: NOKEY\nImporting GPG key 0xF4A80EB5:\n Userid : \"CentOS-7 Key (CentOS 7 Official Signing Key) \"\n Fingerprint: 6341 ab27 53d7 8a78 a7c2 7bb1 24c6 a8a7 f4a8 0eb5\n Package : centos-release-7-8.2003.0.el7.centos.x86_64 (installed)\n From : /etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-7\n", "rc": 0, "results": ["Loaded plugins: fastestmirror\nLoading mirror speeds from cached hostfile\n * base: mirror.ette.biz\n * extras: mirror.jaleco.com\n * updates: mirror.es.its.nyu.edu\nResolving Dependencies\n--> Running transaction check\n---> Package firewalld.noarch 0:0.6.3-13.el7_9 will be installed\n--> Processing Dependency: python-firewall = 0.6.3-13.el7_9 for package: firewalld-0.6.3-13.el7_9.noarch\n--> Processing Dependency: firewalld-filesystem = 0.6.3-13.el7_9 for package: firewalld-0.6.3-13.el7_9.noarch\n--> Processing Dependency: ipset for package: firewalld-0.6.3-13.el7_9.noarch\n--> Processing Dependency: ebtables for package: firewalld-0.6.3-13.el7_9.noarch\n--> Running transaction check\n---> Package ebtables.x86_64 0:2.0.10-16.el7 will be installed\n---> Package firewalld-filesystem.noarch 0:0.6.3-13.el7_9 will be installed\n---> Package ipset.x86_64 0:7.1-1.el7 will be installed\n--> Processing Dependency: ipset-libs(x86-64) = 7.1-1.el7 for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13(LIBIPSET_4.8)(64bit) for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13(LIBIPSET_2.0)(64bit) for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13()(64bit) for package: ipset-7.1-1.el7.x86_64\n---> Package python-firewall.noarch 0:0.6.3-13.el7_9 will be installed\n--> Processing Dependency: python-slip-dbus for package: python-firewall-0.6.3-13.el7_9.noarch\n--> Running transaction check\n---> Package ipset-libs.x86_64 0:7.1-1.el7 will be installed\n---> Package python-slip-dbus.noarch 0:0.4.0-4.el7 will be installed\n--> Processing Dependency: python-slip = 0.4.0-4.el7 for package: python-slip-dbus-0.4.0-4.el7.noarch\n--> Running transaction check\n---> Package python-slip.noarch 0:0.4.0-4.el7 will be installed\n--> Finished Dependency Resolution\n\nDependencies Resolved\n\n================================================================================\n Package Arch Version Repository Size\n================================================================================\nInstalling:\n firewalld noarch 0.6.3-13.el7_9 updates 449 k\nInstalling for dependencies:\n ebtables x86_64 2.0.10-16.el7 base 123 k\n firewalld-filesystem noarch 0.6.3-13.el7_9 updates 51 k\n ipset x86_64 7.1-1.el7 base 39 k\n ipset-libs x86_64 7.1-1.el7 base 64 k\n python-firewall noarch 0.6.3-13.el7_9 updates 355 k\n python-slip noarch 0.4.0-4.el7 base 31 k\n python-slip-dbus noarch 0.4.0-4.el7 base 32 k\n\nTransaction Summary\n================================================================================\nInstall 1 Package (+7 Dependent packages)\n\nTotal download size: 1.1 M\nInstalled size: 4.5 M\nDownloading packages:\nPublic key for firewalld-filesystem-0.6.3-13.el7_9.noarch.rpm is not installed\nPublic key for ipset-7.1-1.el7.x86_64.rpm is not installed\n--------------------------------------------------------------------------------\nTotal 3.7 MB/s | 1.1 MB 00:00 \nRetrieving key from file:///etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-7\nRunning transaction check\nRunning transaction test\nTransaction test succeeded\nRunning transaction\n Installing : ebtables-2.0.10-16.el7.x86_64 1/8 \n Installing : ipset-libs-7.1-1.el7.x86_64 2/8 \n Installing : ipset-7.1-1.el7.x86_64 3/8 \n Installing : python-slip-0.4.0-4.el7.noarch 4/8 \n Installing : python-slip-dbus-0.4.0-4.el7.noarch 5/8 \n Installing : python-firewall-0.6.3-13.el7_9.noarch 6/8 \n Installing : firewalld-filesystem-0.6.3-13.el7_9.noarch 7/8 \n Installing : firewalld-0.6.3-13.el7_9.noarch 8/8 \n Verifying : ipset-7.1-1.el7.x86_64 1/8 \n Verifying : python-slip-dbus-0.4.0-4.el7.noarch 2/8 \n Verifying : firewalld-filesystem-0.6.3-13.el7_9.noarch 3/8 \n Verifying : firewalld-0.6.3-13.el7_9.noarch 4/8 \n Verifying : python-slip-0.4.0-4.el7.noarch 5/8 \n Verifying : python-firewall-0.6.3-13.el7_9.noarch 6/8 \n Verifying : ipset-libs-7.1-1.el7.x86_64 7/8 \n Verifying : ebtables-2.0.10-16.el7.x86_64 8/8 \n\nInstalled:\n firewalld.noarch 0:0.6.3-13.el7_9 \n\nDependency Installed:\n ebtables.x86_64 0:2.0.10-16.el7 \n firewalld-filesystem.noarch 0:0.6.3-13.el7_9 \n ipset.x86_64 0:7.1-1.el7 \n ipset-libs.x86_64 0:7.1-1.el7 \n python-firewall.noarch 0:0.6.3-13.el7_9 \n python-slip.noarch 0:0.4.0-4.el7 \n python-slip-dbus.noarch 0:0.4.0-4.el7 \n\nComplete!\n"]} TASK [linux-system-roles.firewall : Install python-firewall] ******************* task path: /tmp/tmp81skthlj/tasks/firewalld.yml:7 ok: [/cache/centos-7.qcow2c] => {"changed": false, "msg": "", "rc": 0, "results": ["python-firewall-0.6.3-13.el7_9.noarch providing python-firewall is already installed"]} TASK [linux-system-roles.firewall : Install python3-firewall] ****************** task path: /tmp/tmp81skthlj/tasks/firewalld.yml:13 skipping: [/cache/centos-7.qcow2c] => {"changed": false, "skip_reason": "Conditional result was False"} TASK [linux-system-roles.firewall : Enable and start firewalld service] ******** task path: /tmp/tmp81skthlj/tasks/firewalld.yml:19 changed: [/cache/centos-7.qcow2c] => {"changed": true, "enabled": true, "name": "firewalld", "state": "started", "status": {"ActiveEnterTimestampMonotonic": "0", "ActiveExitTimestampMonotonic": "0", "ActiveState": "inactive", "After": "polkit.service dbus.service basic.target system.slice", "AllowIsolate": "no", "AmbientCapabilities": "0", "AssertResult": "no", "AssertTimestampMonotonic": "0", "Before": "shutdown.target multi-user.target network-pre.target", "BlockIOAccounting": "no", "BlockIOWeight": "18446744073709551615", "BusName": "org.fedoraproject.FirewallD1", "CPUAccounting": "no", "CPUQuotaPerSecUSec": "infinity", "CPUSchedulingPolicy": "0", "CPUSchedulingPriority": "0", "CPUSchedulingResetOnFork": "no", "CPUShares": "18446744073709551615", "CanIsolate": "no", "CanReload": "yes", "CanStart": "yes", "CanStop": "yes", "CapabilityBoundingSet": "18446744073709551615", "ConditionResult": "no", "ConditionTimestampMonotonic": "0", "Conflicts": "ebtables.service iptables.service shutdown.target ipset.service ip6tables.service", "ControlPID": "0", "DefaultDependencies": "yes", "Delegate": "no", "Description": "firewalld - dynamic firewall daemon", "DevicePolicy": "auto", "Documentation": "man:firewalld(1)", "EnvironmentFile": "/etc/sysconfig/firewalld (ignore_errors=yes)", "ExecMainCode": "0", "ExecMainExitTimestampMonotonic": "0", "ExecMainPID": "0", "ExecMainStartTimestampMonotonic": "0", "ExecMainStatus": "0", "ExecReload": "{ path=/bin/kill ; argv[]=/bin/kill -HUP $MAINPID ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "ExecStart": "{ path=/usr/sbin/firewalld ; argv[]=/usr/sbin/firewalld --nofork --nopid $FIREWALLD_ARGS ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "FailureAction": "none", "FileDescriptorStoreMax": "0", "FragmentPath": "/usr/lib/systemd/system/firewalld.service", "GuessMainPID": "yes", "IOScheduling": "0", "Id": "firewalld.service", "IgnoreOnIsolate": "no", "IgnoreOnSnapshot": "no", "IgnoreSIGPIPE": "yes", "InactiveEnterTimestampMonotonic": "0", "InactiveExitTimestampMonotonic": "0", "JobTimeoutAction": "none", "JobTimeoutUSec": "0", "KillMode": "mixed", "KillSignal": "15", "LimitAS": "18446744073709551615", "LimitCORE": "18446744073709551615", "LimitCPU": "18446744073709551615", "LimitDATA": "18446744073709551615", "LimitFSIZE": "18446744073709551615", "LimitLOCKS": "18446744073709551615", "LimitMEMLOCK": "65536", "LimitMSGQUEUE": "819200", "LimitNICE": "0", "LimitNOFILE": "4096", "LimitNPROC": "7162", "LimitRSS": "18446744073709551615", "LimitRTPRIO": "0", "LimitRTTIME": "18446744073709551615", "LimitSIGPENDING": "7162", "LimitSTACK": "18446744073709551615", "LoadState": "loaded", "MainPID": "0", "MemoryAccounting": "no", "MemoryCurrent": "18446744073709551615", "MemoryLimit": "18446744073709551615", "MountFlags": "0", "Names": "firewalld.service", "NeedDaemonReload": "no", "Nice": "0", "NoNewPrivileges": "no", "NonBlocking": "no", "NotifyAccess": "none", "OOMScoreAdjust": "0", "OnFailureJobMode": "replace", "PermissionsStartOnly": "no", "PrivateDevices": "no", "PrivateNetwork": "no", "PrivateTmp": "no", "ProtectHome": "no", "ProtectSystem": "no", "RefuseManualStart": "no", "RefuseManualStop": "no", "RemainAfterExit": "no", "Requires": "basic.target system.slice", "Restart": "no", "RestartUSec": "100ms", "Result": "success", "RootDirectoryStartOnly": "no", "RuntimeDirectoryMode": "0755", "SameProcessGroup": "no", "SecureBits": "0", "SendSIGHUP": "no", "SendSIGKILL": "yes", "Slice": "system.slice", "StandardError": "null", "StandardInput": "null", "StandardOutput": "null", "StartLimitAction": "none", "StartLimitBurst": "5", "StartLimitInterval": "10000000", "StartupBlockIOWeight": "18446744073709551615", "StartupCPUShares": "18446744073709551615", "StatusErrno": "0", "StopWhenUnneeded": "no", "SubState": "dead", "SyslogLevelPrefix": "yes", "SyslogPriority": "30", "SystemCallErrorNumber": "0", "TTYReset": "no", "TTYVHangup": "no", "TTYVTDisallocate": "no", "TasksAccounting": "no", "TasksCurrent": "18446744073709551615", "TasksMax": "18446744073709551615", "TimeoutStartUSec": "1min 30s", "TimeoutStopUSec": "1min 30s", "TimerSlackNSec": "50000", "Transient": "no", "Type": "dbus", "UMask": "0022", "UnitFilePreset": "enabled", "UnitFileState": "enabled", "WantedBy": "multi-user.target", "Wants": "network-pre.target", "WatchdogTimestampMonotonic": "0", "WatchdogUSec": "0"}} TASK [linux-system-roles.firewall : Configure firewall] ************************ task path: /tmp/tmp81skthlj/tasks/main.yml:3 TASK [Remove custom zone] ****************************************************** task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:14 changed: [/cache/centos-7.qcow2c] => {"changed": true, "cmd": ["firewall-cmd", "--permanent", "--delete-zone=custom"], "delta": "0:00:00.285651", "end": "2021-08-04 11:40:49.703629", "failed_when_result": false, "msg": "non-zero return code", "rc": 112, "start": "2021-08-04 11:40:49.417978", "stderr": "Error: INVALID_ZONE: custom", "stderr_lines": ["Error: INVALID_ZONE: custom"], "stdout": "", "stdout_lines": []} TASK [Reset internal zone to defaults] ***************************************** task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:19 changed: [/cache/centos-7.qcow2c] => {"changed": true, "cmd": "firewall-cmd --permanent --load-zone-defaults=internal", "delta": "0:00:00.298408", "end": "2021-08-04 11:40:50.342070", "failed_when_result": false, "msg": "non-zero return code", "rc": 22, "start": "2021-08-04 11:40:50.043662", "stderr": "Error: NO_DEFAULTS: internal", "stderr_lines": ["Error: NO_DEFAULTS: internal"], "stdout": "", "stdout_lines": []} TASK [Reset trusted zone to defaults] ****************************************** task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:25 changed: [/cache/centos-7.qcow2c] => {"changed": true, "cmd": "firewall-cmd --permanent --load-zone-defaults=trusted", "delta": "0:00:00.264175", "end": "2021-08-04 11:40:50.958216", "failed_when_result": false, "msg": "non-zero return code", "rc": 22, "start": "2021-08-04 11:40:50.694041", "stderr": "Error: NO_DEFAULTS: trusted", "stderr_lines": ["Error: NO_DEFAULTS: trusted"], "stdout": "", "stdout_lines": []} TASK [Reset dmz zone to defaults] ********************************************** task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:31 changed: [/cache/centos-7.qcow2c] => {"changed": true, "cmd": "firewall-cmd --permanent --load-zone-defaults=dmz", "delta": "0:00:00.293572", "end": "2021-08-04 11:40:51.604605", "failed_when_result": false, "msg": "non-zero return code", "rc": 22, "start": "2021-08-04 11:40:51.311033", "stderr": "Error: NO_DEFAULTS: dmz", "stderr_lines": ["Error: NO_DEFAULTS: dmz"], "stdout": "", "stdout_lines": []} TASK [Reset drop zone to defaults] ********************************************* task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:37 changed: [/cache/centos-7.qcow2c] => {"changed": true, "cmd": "firewall-cmd --permanent --load-zone-defaults=drop", "delta": "0:00:00.262073", "end": "2021-08-04 11:40:52.217015", "failed_when_result": false, "msg": "non-zero return code", "rc": 22, "start": "2021-08-04 11:40:51.954942", "stderr": "Error: NO_DEFAULTS: drop", "stderr_lines": ["Error: NO_DEFAULTS: drop"], "stdout": "", "stdout_lines": []} TASK [Reset public zone to defaults] ******************************************* task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:43 changed: [/cache/centos-7.qcow2c] => {"changed": true, "cmd": "firewall-cmd --permanent --load-zone-defaults=public", "delta": "0:00:00.274059", "end": "2021-08-04 11:40:53.233166", "failed_when_result": false, "rc": 0, "start": "2021-08-04 11:40:52.959107", "stderr": "", "stderr_lines": [], "stdout": "success", "stdout_lines": ["success"]} TASK [Reset default zone to defaults] ****************************************** task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:49 changed: [/cache/centos-7.qcow2c] => {"changed": true, "cmd": "firewall-cmd --permanent --load-zone-defaults=$(firewall-cmd --get-default-zone)", "delta": "0:00:00.523037", "end": "2021-08-04 11:40:54.119507", "failed_when_result": false, "msg": "non-zero return code", "rc": 22, "start": "2021-08-04 11:40:53.596470", "stderr": "Error: NO_DEFAULTS: public", "stderr_lines": ["Error: NO_DEFAULTS: public"], "stdout": "", "stdout_lines": []} TASK [Create custom zone] ****************************************************** task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:55 changed: [/cache/centos-7.qcow2c] => {"changed": true, "cmd": ["firewall-cmd", "--permanent", "--new-zone=custom"], "delta": "0:00:00.241608", "end": "2021-08-04 11:40:54.713344", "failed_when_result": false, "rc": 0, "start": "2021-08-04 11:40:54.471736", "stderr": "", "stderr_lines": [], "stdout": "success", "stdout_lines": ["success"]} TASK [Reload firewalld] ******************************************************** task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:60 changed: [/cache/centos-7.qcow2c] => {"changed": true, "cmd": ["firewall-cmd", "--reload"], "delta": "0:00:00.441125", "end": "2021-08-04 11:40:55.497806", "failed_when_result": false, "rc": 0, "start": "2021-08-04 11:40:55.056681", "stderr": "", "stderr_lines": [], "stdout": "success", "stdout_lines": ["success"]} TASK [Permit traffic in default zone for https service] ************************ task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:67 changed: [/cache/centos-7.qcow2c] => {"changed": true, "failed_when_result": false} TASK [Permit traffic in default zone for https service, again] ***************** task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:75 ok: [/cache/centos-7.qcow2c] => {"changed": false, "failed_when_result": false} TASK [Permit traffic in default zone on port 8081/tcp] ************************* task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:83 changed: [/cache/centos-7.qcow2c] => {"changed": true, "failed_when_result": false} TASK [Permit traffic in default zone on port 8081/tcp, again] ****************** task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:91 ok: [/cache/centos-7.qcow2c] => {"changed": false, "failed_when_result": false} TASK [Allow port 161-162/udp in permanent default zone] ************************ task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:99 changed: [/cache/centos-7.qcow2c] => {"changed": true, "failed_when_result": false} TASK [Allow port 161-162/udp in permanent default zone, again] ***************** task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:107 ok: [/cache/centos-7.qcow2c] => {"changed": false, "failed_when_result": false} TASK [Do not permit traffic in default zone on port 8081/tcp] ****************** task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:115 changed: [/cache/centos-7.qcow2c] => {"changed": true, "failed_when_result": false} TASK [Do not permit traffic in default zone on port 8081/tcp, again] *********** task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:123 ok: [/cache/centos-7.qcow2c] => {"changed": false, "failed_when_result": false} TASK [Allow service http in permanent dmz zone] ******************************** task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:131 changed: [/cache/centos-7.qcow2c] => {"changed": true, "failed_when_result": false} TASK [Allow service http in permanent dmz zone, again] ************************* task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:140 ok: [/cache/centos-7.qcow2c] => {"changed": false, "failed_when_result": false} TASK [Allow service ftp with limitation using rich rule in permanent default zone] *** task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:149 changed: [/cache/centos-7.qcow2c] => {"changed": true, "failed_when_result": false} TASK [Allow service ftp with limitation using rich rule in permanent default zone, again] *** task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:157 ok: [/cache/centos-7.qcow2c] => {"changed": false, "failed_when_result": false} TASK [Allow source 192.0.2.0/24 in internal zone] ****************************** task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:165 changed: [/cache/centos-7.qcow2c] => {"changed": true, "failed_when_result": false} TASK [Allow source 192.0.2.0/24 in internal zone, again] *********************** task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:173 ok: [/cache/centos-7.qcow2c] => {"changed": false, "failed_when_result": false} TASK [Allow interface eth2 in permanent trusted zone] ************************** task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:181 changed: [/cache/centos-7.qcow2c] => {"changed": true, "failed_when_result": false} TASK [Allow interface eth2 in permanent trusted zone, again] ******************* task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:190 ok: [/cache/centos-7.qcow2c] => {"changed": false, "failed_when_result": false} TASK [Allow masquerading in permament dmz zone] ******************************** task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:199 changed: [/cache/centos-7.qcow2c] => {"changed": true, "failed_when_result": false} TASK [Allow masquerading in permament dmz zone, again] ************************* task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:208 ok: [/cache/centos-7.qcow2c] => {"changed": false, "failed_when_result": false} TASK [Ensure permanent custom zone exists (no change)] ************************* task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:217 ok: [/cache/centos-7.qcow2c] => {"changed": false, "failed_when_result": false} TASK [Ensure ICMP block inversion in permanent drop zone] ********************** task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:225 changed: [/cache/centos-7.qcow2c] => {"changed": true, "failed_when_result": false} TASK [Ensure ICMP block inversion in permanent drop zone, again] *************** task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:234 ok: [/cache/centos-7.qcow2c] => {"changed": false, "failed_when_result": false} TASK [Block ICMP echo-request in permanent drop zone] ************************** task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:243 changed: [/cache/centos-7.qcow2c] => {"changed": true, "failed_when_result": false} TASK [Block ICMP echo-request in permanent drop zone, again] ******************* task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:252 ok: [/cache/centos-7.qcow2c] => {"changed": false, "failed_when_result": false} TASK [Ensure default target in permanent internal zone (no change)] ************ task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:261 ok: [/cache/centos-7.qcow2c] => {"changed": false, "failed_when_result": false} TASK [Ensure target ACCEPT in permanent internal zone] ************************* task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:270 changed: [/cache/centos-7.qcow2c] => {"changed": true, "failed_when_result": false} TASK [Ensure target ACCEPT in permanent internal zone, again] ****************** task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:279 ok: [/cache/centos-7.qcow2c] => {"changed": false, "failed_when_result": false} TASK [Ensure default target in permanent internal zone] ************************ task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:288 changed: [/cache/centos-7.qcow2c] => {"changed": true, "failed_when_result": false} TASK [Ensure default target in permanent internal zone, again] ***************** task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:297 ok: [/cache/centos-7.qcow2c] => {"changed": false, "failed_when_result": false} TASK [Redirect port 443 to 8443 with Rich Rule in permanent and runtime public zone] *** task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:306 changed: [/cache/centos-7.qcow2c] => {"changed": true, "failed_when_result": false} TASK [Redirect port 443 to 8443 with Rich Rule in permanent and runtime public zone, again] *** task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:316 ok: [/cache/centos-7.qcow2c] => {"changed": false, "failed_when_result": false} TASK [Remove custom zone] ****************************************************** task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:330 changed: [/cache/centos-7.qcow2c] => {"changed": true, "cmd": ["firewall-cmd", "--permanent", "--delete-zone=custom"], "delta": "0:00:00.272502", "end": "2021-08-04 11:41:13.485637", "failed_when_result": false, "rc": 0, "start": "2021-08-04 11:41:13.213135", "stderr": "", "stderr_lines": [], "stdout": "success", "stdout_lines": ["success"]} TASK [Reset internal zone to defaults] ***************************************** task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:335 changed: [/cache/centos-7.qcow2c] => {"changed": true, "cmd": "firewall-cmd --permanent --load-zone-defaults=internal", "delta": "0:00:00.285047", "end": "2021-08-04 11:41:14.149953", "failed_when_result": false, "rc": 0, "start": "2021-08-04 11:41:13.864906", "stderr": "", "stderr_lines": [], "stdout": "success", "stdout_lines": ["success"]} TASK [Reset trusted zone to defaults] ****************************************** task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:341 changed: [/cache/centos-7.qcow2c] => {"changed": true, "cmd": "firewall-cmd --permanent --load-zone-defaults=trusted", "delta": "0:00:00.274167", "end": "2021-08-04 11:41:14.794948", "failed_when_result": false, "rc": 0, "start": "2021-08-04 11:41:14.520781", "stderr": "", "stderr_lines": [], "stdout": "success", "stdout_lines": ["success"]} TASK [Reset dmz zone to defaults] ********************************************** task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:347 changed: [/cache/centos-7.qcow2c] => {"changed": true, "cmd": "firewall-cmd --permanent --load-zone-defaults=dmz", "delta": "0:00:00.274351", "end": "2021-08-04 11:41:15.434479", "failed_when_result": false, "rc": 0, "start": "2021-08-04 11:41:15.160128", "stderr": "", "stderr_lines": [], "stdout": "success", "stdout_lines": ["success"]} TASK [Reset drop zone to defaults] ********************************************* task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:353 changed: [/cache/centos-7.qcow2c] => {"changed": true, "cmd": "firewall-cmd --permanent --load-zone-defaults=drop", "delta": "0:00:00.276272", "end": "2021-08-04 11:41:16.081102", "failed_when_result": false, "rc": 0, "start": "2021-08-04 11:41:15.804830", "stderr": "", "stderr_lines": [], "stdout": "success", "stdout_lines": ["success"]} TASK [Reset public zone to defaults] ******************************************* task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:359 changed: [/cache/centos-7.qcow2c] => {"changed": true, "cmd": "firewall-cmd --permanent --load-zone-defaults=public", "delta": "0:00:00.302734", "end": "2021-08-04 11:41:16.763142", "failed_when_result": false, "rc": 0, "start": "2021-08-04 11:41:16.460408", "stderr": "", "stderr_lines": [], "stdout": "success", "stdout_lines": ["success"]} TASK [Reset default zone to defaults] ****************************************** task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:365 changed: [/cache/centos-7.qcow2c] => {"changed": true, "cmd": "firewall-cmd --permanent --load-zone-defaults=$(firewall-cmd --get-default-zone)", "delta": "0:00:00.495877", "end": "2021-08-04 11:41:17.642639", "failed_when_result": false, "msg": "non-zero return code", "rc": 22, "start": "2021-08-04 11:41:17.146762", "stderr": "Error: NO_DEFAULTS: public", "stderr_lines": ["Error: NO_DEFAULTS: public"], "stdout": "", "stdout_lines": []} TASK [Reload firewalld] ******************************************************** task path: /tmp/tmp81skthlj/tests/tests_ansible.yml:371 changed: [/cache/centos-7.qcow2c] => {"changed": true, "cmd": ["firewall-cmd", "--reload"], "delta": "0:00:00.434359", "end": "2021-08-04 11:41:18.444611", "failed_when_result": false, "rc": 0, "start": "2021-08-04 11:41:18.010252", "stderr": "", "stderr_lines": [], "stdout": "success", "stdout_lines": ["success"]} META: ran handlers META: ran handlers PLAY RECAP ********************************************************************* /cache/centos-7.qcow2c : ok=52 changed=33 unreachable=0 failed=0 skipped=3 rescued=0 ignored=0 + cd /tmp/tmp81skthlj/tests; TEST_SUBJECTS=/cache/centos-7.qcow2c TEST_ARTIFACTS=/tmp/linux-system-role-test-work-pull-linux-system-roles_firewall-33-6f091a8-centos-7-6c070dz2/artifacts ansible-playbook -vv --inventory=/usr/share/ansible/inventory/standard-inventory-qcow2 /tmp/tmp81skthlj/_setup.yml /tmp/tmp81skthlj/tests/tests_default.yml ansible-playbook 2.9.23 config file = /etc/ansible/ansible.cfg configured module search path = ['/home/tester/.ansible/plugins/modules', '/usr/share/ansible/plugins/modules'] ansible python module location = /usr/lib/python3.9/site-packages/ansible executable location = /usr/bin/ansible-playbook python version = 3.9.6 (default, Jun 29 2021, 00:00:00) [GCC 11.1.1 20210531 (Red Hat 11.1.1-3)] Using /etc/ansible/ansible.cfg as config file Skipping callback 'actionable', as we already have a stdout callback. Skipping callback 'counter_enabled', as we already have a stdout callback. Skipping callback 'debug', as we already have a stdout callback. Skipping callback 'dense', as we already have a stdout callback. Skipping callback 'dense', as we already have a stdout callback. Skipping callback 'full_skip', as we already have a stdout callback. Skipping callback 'json', as we already have a stdout callback. Skipping callback 'minimal', as we already have a stdout callback. Skipping callback 'null', as we already have a stdout callback. Skipping callback 'oneline', as we already have a stdout callback. Skipping callback 'selective', as we already have a stdout callback. Skipping callback 'skippy', as we already have a stdout callback. Skipping callback 'stderr', as we already have a stdout callback. Skipping callback 'unixy', as we already have a stdout callback. Skipping callback 'yaml', as we already have a stdout callback. PLAYBOOK: _setup.yml *********************************************************** 1 plays in /tmp/tmp81skthlj/_setup.yml PLAY [Fail when only localhost is available] *********************************** META: ran handlers TASK [debug] ******************************************************************* task path: /tmp/tmp81skthlj/_setup.yml:5 ok: [/cache/centos-7.qcow2c] => { "groups": { "all": [ "/cache/centos-7.qcow2c" ], "localhost": [ "/cache/centos-7.qcow2c" ], "subjects": [ "/cache/centos-7.qcow2c" ], "ungrouped": [] } } TASK [fail] ******************************************************************** task path: /tmp/tmp81skthlj/_setup.yml:7 skipping: [/cache/centos-7.qcow2c] => {"changed": false, "skip_reason": "Conditional result was False"} META: ran handlers META: ran handlers PLAY RECAP ********************************************************************* /cache/centos-7.qcow2c : ok=1 changed=0 unreachable=0 failed=0 skipped=1 rescued=0 ignored=0 statically imported: /tmp/tmp81skthlj/tasks/firewalld.yml PLAYBOOK: tests_default.yml **************************************************** 1 plays in /tmp/tmp81skthlj/tests/tests_default.yml PLAY [Ensure that the roles runs with default parameters] ********************** TASK [Gathering Facts] ********************************************************* task path: /tmp/tmp81skthlj/tests/tests_default.yml:1 ok: [/cache/centos-7.qcow2c] META: ran handlers TASK [linux-system-roles.firewall : Install firewalld] ************************* task path: /tmp/tmp81skthlj/tasks/firewalld.yml:2 changed: [/cache/centos-7.qcow2c] => {"changed": true, "changes": {"installed": ["firewalld"]}, "msg": "warning: /var/cache/yum/x86_64/7/base/packages/ipset-7.1-1.el7.x86_64.rpm: Header V3 RSA/SHA256 Signature, key ID f4a80eb5: NOKEY\nImporting GPG key 0xF4A80EB5:\n Userid : \"CentOS-7 Key (CentOS 7 Official Signing Key) \"\n Fingerprint: 6341 ab27 53d7 8a78 a7c2 7bb1 24c6 a8a7 f4a8 0eb5\n Package : centos-release-7-8.2003.0.el7.centos.x86_64 (installed)\n From : /etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-7\n", "rc": 0, "results": ["Loaded plugins: fastestmirror\nLoading mirror speeds from cached hostfile\n * base: mirror.net.cen.ct.gov\n * extras: mirror.umd.edu\n * updates: mirror.es.its.nyu.edu\nResolving Dependencies\n--> Running transaction check\n---> Package firewalld.noarch 0:0.6.3-13.el7_9 will be installed\n--> Processing Dependency: python-firewall = 0.6.3-13.el7_9 for package: firewalld-0.6.3-13.el7_9.noarch\n--> Processing Dependency: firewalld-filesystem = 0.6.3-13.el7_9 for package: firewalld-0.6.3-13.el7_9.noarch\n--> Processing Dependency: ipset for package: firewalld-0.6.3-13.el7_9.noarch\n--> Processing Dependency: ebtables for package: firewalld-0.6.3-13.el7_9.noarch\n--> Running transaction check\n---> Package ebtables.x86_64 0:2.0.10-16.el7 will be installed\n---> Package firewalld-filesystem.noarch 0:0.6.3-13.el7_9 will be installed\n---> Package ipset.x86_64 0:7.1-1.el7 will be installed\n--> Processing Dependency: ipset-libs(x86-64) = 7.1-1.el7 for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13(LIBIPSET_4.8)(64bit) for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13(LIBIPSET_2.0)(64bit) for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13()(64bit) for package: ipset-7.1-1.el7.x86_64\n---> Package python-firewall.noarch 0:0.6.3-13.el7_9 will be installed\n--> Processing Dependency: python-slip-dbus for package: python-firewall-0.6.3-13.el7_9.noarch\n--> Running transaction check\n---> Package ipset-libs.x86_64 0:7.1-1.el7 will be installed\n---> Package python-slip-dbus.noarch 0:0.4.0-4.el7 will be installed\n--> Processing Dependency: python-slip = 0.4.0-4.el7 for package: python-slip-dbus-0.4.0-4.el7.noarch\n--> Running transaction check\n---> Package python-slip.noarch 0:0.4.0-4.el7 will be installed\n--> Finished Dependency Resolution\n\nDependencies Resolved\n\n================================================================================\n Package Arch Version Repository Size\n================================================================================\nInstalling:\n firewalld noarch 0.6.3-13.el7_9 updates 449 k\nInstalling for dependencies:\n ebtables x86_64 2.0.10-16.el7 base 123 k\n firewalld-filesystem noarch 0.6.3-13.el7_9 updates 51 k\n ipset x86_64 7.1-1.el7 base 39 k\n ipset-libs x86_64 7.1-1.el7 base 64 k\n python-firewall noarch 0.6.3-13.el7_9 updates 355 k\n python-slip noarch 0.4.0-4.el7 base 31 k\n python-slip-dbus noarch 0.4.0-4.el7 base 32 k\n\nTransaction Summary\n================================================================================\nInstall 1 Package (+7 Dependent packages)\n\nTotal download size: 1.1 M\nInstalled size: 4.5 M\nDownloading packages:\nPublic key for ipset-7.1-1.el7.x86_64.rpm is not installed\nPublic key for firewalld-filesystem-0.6.3-13.el7_9.noarch.rpm is not installed\n--------------------------------------------------------------------------------\nTotal 3.5 MB/s | 1.1 MB 00:00 \nRetrieving key from file:///etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-7\nRunning transaction check\nRunning transaction test\nTransaction test succeeded\nRunning transaction\n Installing : ebtables-2.0.10-16.el7.x86_64 1/8 \n Installing : ipset-libs-7.1-1.el7.x86_64 2/8 \n Installing : ipset-7.1-1.el7.x86_64 3/8 \n Installing : python-slip-0.4.0-4.el7.noarch 4/8 \n Installing : python-slip-dbus-0.4.0-4.el7.noarch 5/8 \n Installing : python-firewall-0.6.3-13.el7_9.noarch 6/8 \n Installing : firewalld-filesystem-0.6.3-13.el7_9.noarch 7/8 \n Installing : firewalld-0.6.3-13.el7_9.noarch 8/8 \n Verifying : ipset-7.1-1.el7.x86_64 1/8 \n Verifying : python-slip-dbus-0.4.0-4.el7.noarch 2/8 \n Verifying : firewalld-filesystem-0.6.3-13.el7_9.noarch 3/8 \n Verifying : firewalld-0.6.3-13.el7_9.noarch 4/8 \n Verifying : python-slip-0.4.0-4.el7.noarch 5/8 \n Verifying : python-firewall-0.6.3-13.el7_9.noarch 6/8 \n Verifying : ipset-libs-7.1-1.el7.x86_64 7/8 \n Verifying : ebtables-2.0.10-16.el7.x86_64 8/8 \n\nInstalled:\n firewalld.noarch 0:0.6.3-13.el7_9 \n\nDependency Installed:\n ebtables.x86_64 0:2.0.10-16.el7 \n firewalld-filesystem.noarch 0:0.6.3-13.el7_9 \n ipset.x86_64 0:7.1-1.el7 \n ipset-libs.x86_64 0:7.1-1.el7 \n python-firewall.noarch 0:0.6.3-13.el7_9 \n python-slip.noarch 0:0.4.0-4.el7 \n python-slip-dbus.noarch 0:0.4.0-4.el7 \n\nComplete!\n"]} TASK [linux-system-roles.firewall : Install python-firewall] ******************* task path: /tmp/tmp81skthlj/tasks/firewalld.yml:7 ok: [/cache/centos-7.qcow2c] => {"changed": false, "msg": "", "rc": 0, "results": ["python-firewall-0.6.3-13.el7_9.noarch providing python-firewall is already installed"]} TASK [linux-system-roles.firewall : Install python3-firewall] ****************** task path: /tmp/tmp81skthlj/tasks/firewalld.yml:13 skipping: [/cache/centos-7.qcow2c] => {"changed": false, "skip_reason": "Conditional result was False"} TASK [linux-system-roles.firewall : Enable and start firewalld service] ******** task path: /tmp/tmp81skthlj/tasks/firewalld.yml:19 changed: [/cache/centos-7.qcow2c] => {"changed": true, "enabled": true, "name": "firewalld", "state": "started", "status": {"ActiveEnterTimestampMonotonic": "0", "ActiveExitTimestampMonotonic": "0", "ActiveState": "inactive", "After": "system.slice polkit.service dbus.service basic.target", "AllowIsolate": "no", "AmbientCapabilities": "0", "AssertResult": "no", "AssertTimestampMonotonic": "0", "Before": "multi-user.target shutdown.target network-pre.target", "BlockIOAccounting": "no", "BlockIOWeight": "18446744073709551615", "BusName": "org.fedoraproject.FirewallD1", "CPUAccounting": "no", "CPUQuotaPerSecUSec": "infinity", "CPUSchedulingPolicy": "0", "CPUSchedulingPriority": "0", "CPUSchedulingResetOnFork": "no", "CPUShares": "18446744073709551615", "CanIsolate": "no", "CanReload": "yes", "CanStart": "yes", "CanStop": "yes", "CapabilityBoundingSet": "18446744073709551615", "ConditionResult": "no", "ConditionTimestampMonotonic": "0", "Conflicts": "ebtables.service ipset.service iptables.service shutdown.target ip6tables.service", "ControlPID": "0", "DefaultDependencies": "yes", "Delegate": "no", "Description": "firewalld - dynamic firewall daemon", "DevicePolicy": "auto", "Documentation": "man:firewalld(1)", "EnvironmentFile": "/etc/sysconfig/firewalld (ignore_errors=yes)", "ExecMainCode": "0", "ExecMainExitTimestampMonotonic": "0", "ExecMainPID": "0", "ExecMainStartTimestampMonotonic": "0", "ExecMainStatus": "0", "ExecReload": "{ path=/bin/kill ; argv[]=/bin/kill -HUP $MAINPID ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "ExecStart": "{ path=/usr/sbin/firewalld ; argv[]=/usr/sbin/firewalld --nofork --nopid $FIREWALLD_ARGS ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "FailureAction": "none", "FileDescriptorStoreMax": "0", "FragmentPath": "/usr/lib/systemd/system/firewalld.service", "GuessMainPID": "yes", "IOScheduling": "0", "Id": "firewalld.service", "IgnoreOnIsolate": "no", "IgnoreOnSnapshot": "no", "IgnoreSIGPIPE": "yes", "InactiveEnterTimestampMonotonic": "0", "InactiveExitTimestampMonotonic": "0", "JobTimeoutAction": "none", "JobTimeoutUSec": "0", "KillMode": "mixed", "KillSignal": "15", "LimitAS": "18446744073709551615", "LimitCORE": "18446744073709551615", "LimitCPU": "18446744073709551615", "LimitDATA": "18446744073709551615", "LimitFSIZE": "18446744073709551615", "LimitLOCKS": "18446744073709551615", "LimitMEMLOCK": "65536", "LimitMSGQUEUE": "819200", "LimitNICE": "0", "LimitNOFILE": "4096", "LimitNPROC": "7162", "LimitRSS": "18446744073709551615", "LimitRTPRIO": "0", "LimitRTTIME": "18446744073709551615", "LimitSIGPENDING": "7162", "LimitSTACK": "18446744073709551615", "LoadState": "loaded", "MainPID": "0", "MemoryAccounting": "no", "MemoryCurrent": "18446744073709551615", "MemoryLimit": "18446744073709551615", "MountFlags": "0", "Names": "firewalld.service", "NeedDaemonReload": "no", "Nice": "0", "NoNewPrivileges": "no", "NonBlocking": "no", "NotifyAccess": "none", "OOMScoreAdjust": "0", "OnFailureJobMode": "replace", "PermissionsStartOnly": "no", "PrivateDevices": "no", "PrivateNetwork": "no", "PrivateTmp": "no", "ProtectHome": "no", "ProtectSystem": "no", "RefuseManualStart": "no", "RefuseManualStop": "no", "RemainAfterExit": "no", "Requires": "basic.target system.slice", "Restart": "no", "RestartUSec": "100ms", "Result": "success", "RootDirectoryStartOnly": "no", "RuntimeDirectoryMode": "0755", "SameProcessGroup": "no", "SecureBits": "0", "SendSIGHUP": "no", "SendSIGKILL": "yes", "Slice": "system.slice", "StandardError": "null", "StandardInput": "null", "StandardOutput": "null", "StartLimitAction": "none", "StartLimitBurst": "5", "StartLimitInterval": "10000000", "StartupBlockIOWeight": "18446744073709551615", "StartupCPUShares": "18446744073709551615", "StatusErrno": "0", "StopWhenUnneeded": "no", "SubState": "dead", "SyslogLevelPrefix": "yes", "SyslogPriority": "30", "SystemCallErrorNumber": "0", "TTYReset": "no", "TTYVHangup": "no", "TTYVTDisallocate": "no", "TasksAccounting": "no", "TasksCurrent": "18446744073709551615", "TasksMax": "18446744073709551615", "TimeoutStartUSec": "1min 30s", "TimeoutStopUSec": "1min 30s", "TimerSlackNSec": "50000", "Transient": "no", "Type": "dbus", "UMask": "0022", "UnitFilePreset": "enabled", "UnitFileState": "enabled", "WantedBy": "multi-user.target", "Wants": "network-pre.target", "WatchdogTimestampMonotonic": "0", "WatchdogUSec": "0"}} TASK [linux-system-roles.firewall : Configure firewall] ************************ task path: /tmp/tmp81skthlj/tasks/main.yml:3 META: ran handlers META: ran handlers PLAY RECAP ********************************************************************* /cache/centos-7.qcow2c : ok=5 changed=2 unreachable=0 failed=0 skipped=3 rescued=0 ignored=0 + cd /tmp/tmp81skthlj/tests; TEST_SUBJECTS=/cache/centos-7.qcow2c TEST_ARTIFACTS=/tmp/linux-system-role-test-work-pull-linux-system-roles_firewall-33-6f091a8-centos-7-6c070dz2/artifacts ansible-playbook -vv --inventory=/usr/share/ansible/inventory/standard-inventory-qcow2 /tmp/tmp81skthlj/_setup.yml /tmp/tmp81skthlj/tests/tests_zone.yml ansible-playbook 2.9.23 config file = /etc/ansible/ansible.cfg configured module search path = ['/home/tester/.ansible/plugins/modules', '/usr/share/ansible/plugins/modules'] ansible python module location = /usr/lib/python3.9/site-packages/ansible executable location = /usr/bin/ansible-playbook python version = 3.9.6 (default, Jun 29 2021, 00:00:00) [GCC 11.1.1 20210531 (Red Hat 11.1.1-3)] Using /etc/ansible/ansible.cfg as config file Skipping callback 'actionable', as we already have a stdout callback. Skipping callback 'counter_enabled', as we already have a stdout callback. Skipping callback 'debug', as we already have a stdout callback. Skipping callback 'dense', as we already have a stdout callback. Skipping callback 'dense', as we already have a stdout callback. Skipping callback 'full_skip', as we already have a stdout callback. Skipping callback 'json', as we already have a stdout callback. Skipping callback 'minimal', as we already have a stdout callback. Skipping callback 'null', as we already have a stdout callback. Skipping callback 'oneline', as we already have a stdout callback. Skipping callback 'selective', as we already have a stdout callback. Skipping callback 'skippy', as we already have a stdout callback. Skipping callback 'stderr', as we already have a stdout callback. Skipping callback 'unixy', as we already have a stdout callback. Skipping callback 'yaml', as we already have a stdout callback. PLAYBOOK: _setup.yml *********************************************************** 1 plays in /tmp/tmp81skthlj/_setup.yml PLAY [Fail when only localhost is available] *********************************** META: ran handlers TASK [debug] ******************************************************************* task path: /tmp/tmp81skthlj/_setup.yml:5 ok: [/cache/centos-7.qcow2c] => { "groups": { "all": [ "/cache/centos-7.qcow2c" ], "localhost": [ "/cache/centos-7.qcow2c" ], "subjects": [ "/cache/centos-7.qcow2c" ], "ungrouped": [] } } TASK [fail] ******************************************************************** task path: /tmp/tmp81skthlj/_setup.yml:7 skipping: [/cache/centos-7.qcow2c] => {"changed": false, "skip_reason": "Conditional result was False"} META: ran handlers META: ran handlers PLAY RECAP ********************************************************************* /cache/centos-7.qcow2c : ok=1 changed=0 unreachable=0 failed=0 skipped=1 rescued=0 ignored=0 PLAYBOOK: tests_zone.yml ******************************************************* 1 plays in /tmp/tmp81skthlj/tests/tests_zone.yml PLAY [Ensure that the roles runs with default parameters] ********************** TASK [Gathering Facts] ********************************************************* task path: /tmp/tmp81skthlj/tests/tests_zone.yml:1 ok: [/cache/centos-7.qcow2c] META: ran handlers TASK [include_role : linux-system-roles.firewall] ****************************** task path: /tmp/tmp81skthlj/tests/tests_zone.yml:6 statically imported: /tmp/tmp81skthlj/tasks/firewalld.yml TASK [linux-system-roles.firewall : Install firewalld] ************************* task path: /tmp/tmp81skthlj/tasks/firewalld.yml:2 changed: [/cache/centos-7.qcow2c] => {"changed": true, "changes": {"installed": ["firewalld"]}, "msg": "warning: /var/cache/yum/x86_64/7/updates/packages/firewalld-filesystem-0.6.3-13.el7_9.noarch.rpm: Header V3 RSA/SHA256 Signature, key ID f4a80eb5: NOKEY\nImporting GPG key 0xF4A80EB5:\n Userid : \"CentOS-7 Key (CentOS 7 Official Signing Key) \"\n Fingerprint: 6341 ab27 53d7 8a78 a7c2 7bb1 24c6 a8a7 f4a8 0eb5\n Package : centos-release-7-8.2003.0.el7.centos.x86_64 (installed)\n From : /etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-7\n", "rc": 0, "results": ["Loaded plugins: fastestmirror\nLoading mirror speeds from cached hostfile\n * base: mirror.ette.biz\n * extras: mirror.jaleco.com\n * updates: mirror.es.its.nyu.edu\nResolving Dependencies\n--> Running transaction check\n---> Package firewalld.noarch 0:0.6.3-13.el7_9 will be installed\n--> Processing Dependency: python-firewall = 0.6.3-13.el7_9 for package: firewalld-0.6.3-13.el7_9.noarch\n--> Processing Dependency: firewalld-filesystem = 0.6.3-13.el7_9 for package: firewalld-0.6.3-13.el7_9.noarch\n--> Processing Dependency: ipset for package: firewalld-0.6.3-13.el7_9.noarch\n--> Processing Dependency: ebtables for package: firewalld-0.6.3-13.el7_9.noarch\n--> Running transaction check\n---> Package ebtables.x86_64 0:2.0.10-16.el7 will be installed\n---> Package firewalld-filesystem.noarch 0:0.6.3-13.el7_9 will be installed\n---> Package ipset.x86_64 0:7.1-1.el7 will be installed\n--> Processing Dependency: ipset-libs(x86-64) = 7.1-1.el7 for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13(LIBIPSET_4.8)(64bit) for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13(LIBIPSET_2.0)(64bit) for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13()(64bit) for package: ipset-7.1-1.el7.x86_64\n---> Package python-firewall.noarch 0:0.6.3-13.el7_9 will be installed\n--> Processing Dependency: python-slip-dbus for package: python-firewall-0.6.3-13.el7_9.noarch\n--> Running transaction check\n---> Package ipset-libs.x86_64 0:7.1-1.el7 will be installed\n---> Package python-slip-dbus.noarch 0:0.4.0-4.el7 will be installed\n--> Processing Dependency: python-slip = 0.4.0-4.el7 for package: python-slip-dbus-0.4.0-4.el7.noarch\n--> Running transaction check\n---> Package python-slip.noarch 0:0.4.0-4.el7 will be installed\n--> Finished Dependency Resolution\n\nDependencies Resolved\n\n================================================================================\n Package Arch Version Repository Size\n================================================================================\nInstalling:\n firewalld noarch 0.6.3-13.el7_9 updates 449 k\nInstalling for dependencies:\n ebtables x86_64 2.0.10-16.el7 base 123 k\n firewalld-filesystem noarch 0.6.3-13.el7_9 updates 51 k\n ipset x86_64 7.1-1.el7 base 39 k\n ipset-libs x86_64 7.1-1.el7 base 64 k\n python-firewall noarch 0.6.3-13.el7_9 updates 355 k\n python-slip noarch 0.4.0-4.el7 base 31 k\n python-slip-dbus noarch 0.4.0-4.el7 base 32 k\n\nTransaction Summary\n================================================================================\nInstall 1 Package (+7 Dependent packages)\n\nTotal download size: 1.1 M\nInstalled size: 4.5 M\nDownloading packages:\nPublic key for firewalld-filesystem-0.6.3-13.el7_9.noarch.rpm is not installed\nPublic key for ipset-7.1-1.el7.x86_64.rpm is not installed\n--------------------------------------------------------------------------------\nTotal 3.0 MB/s | 1.1 MB 00:00 \nRetrieving key from file:///etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-7\nRunning transaction check\nRunning transaction test\nTransaction test succeeded\nRunning transaction\n Installing : ebtables-2.0.10-16.el7.x86_64 1/8 \n Installing : ipset-libs-7.1-1.el7.x86_64 2/8 \n Installing : ipset-7.1-1.el7.x86_64 3/8 \n Installing : python-slip-0.4.0-4.el7.noarch 4/8 \n Installing : python-slip-dbus-0.4.0-4.el7.noarch 5/8 \n Installing : python-firewall-0.6.3-13.el7_9.noarch 6/8 \n Installing : firewalld-filesystem-0.6.3-13.el7_9.noarch 7/8 \n Installing : firewalld-0.6.3-13.el7_9.noarch 8/8 \n Verifying : ipset-7.1-1.el7.x86_64 1/8 \n Verifying : python-slip-dbus-0.4.0-4.el7.noarch 2/8 \n Verifying : firewalld-filesystem-0.6.3-13.el7_9.noarch 3/8 \n Verifying : firewalld-0.6.3-13.el7_9.noarch 4/8 \n Verifying : python-slip-0.4.0-4.el7.noarch 5/8 \n Verifying : python-firewall-0.6.3-13.el7_9.noarch 6/8 \n Verifying : ipset-libs-7.1-1.el7.x86_64 7/8 \n Verifying : ebtables-2.0.10-16.el7.x86_64 8/8 \n\nInstalled:\n firewalld.noarch 0:0.6.3-13.el7_9 \n\nDependency Installed:\n ebtables.x86_64 0:2.0.10-16.el7 \n firewalld-filesystem.noarch 0:0.6.3-13.el7_9 \n ipset.x86_64 0:7.1-1.el7 \n ipset-libs.x86_64 0:7.1-1.el7 \n python-firewall.noarch 0:0.6.3-13.el7_9 \n python-slip.noarch 0:0.4.0-4.el7 \n python-slip-dbus.noarch 0:0.4.0-4.el7 \n\nComplete!\n"]} TASK [linux-system-roles.firewall : Install python-firewall] ******************* task path: /tmp/tmp81skthlj/tasks/firewalld.yml:7 ok: [/cache/centos-7.qcow2c] => {"changed": false, "msg": "", "rc": 0, "results": ["python-firewall-0.6.3-13.el7_9.noarch providing python-firewall is already installed"]} TASK [linux-system-roles.firewall : Install python3-firewall] ****************** task path: /tmp/tmp81skthlj/tasks/firewalld.yml:13 skipping: [/cache/centos-7.qcow2c] => {"changed": false, "skip_reason": "Conditional result was False"} TASK [linux-system-roles.firewall : Enable and start firewalld service] ******** task path: /tmp/tmp81skthlj/tasks/firewalld.yml:19 changed: [/cache/centos-7.qcow2c] => {"changed": true, "enabled": true, "name": "firewalld", "state": "started", "status": {"ActiveEnterTimestampMonotonic": "0", "ActiveExitTimestampMonotonic": "0", "ActiveState": "inactive", "After": "dbus.service basic.target system.slice polkit.service", "AllowIsolate": "no", "AmbientCapabilities": "0", "AssertResult": "no", "AssertTimestampMonotonic": "0", "Before": "shutdown.target multi-user.target network-pre.target", "BlockIOAccounting": "no", "BlockIOWeight": "18446744073709551615", "BusName": "org.fedoraproject.FirewallD1", "CPUAccounting": "no", "CPUQuotaPerSecUSec": "infinity", "CPUSchedulingPolicy": "0", "CPUSchedulingPriority": "0", "CPUSchedulingResetOnFork": "no", "CPUShares": "18446744073709551615", "CanIsolate": "no", "CanReload": "yes", "CanStart": "yes", "CanStop": "yes", "CapabilityBoundingSet": "18446744073709551615", "ConditionResult": "no", "ConditionTimestampMonotonic": "0", "Conflicts": "ip6tables.service ebtables.service ipset.service iptables.service shutdown.target", "ControlPID": "0", "DefaultDependencies": "yes", "Delegate": "no", "Description": "firewalld - dynamic firewall daemon", "DevicePolicy": "auto", "Documentation": "man:firewalld(1)", "EnvironmentFile": "/etc/sysconfig/firewalld (ignore_errors=yes)", "ExecMainCode": "0", "ExecMainExitTimestampMonotonic": "0", "ExecMainPID": "0", "ExecMainStartTimestampMonotonic": "0", "ExecMainStatus": "0", "ExecReload": "{ path=/bin/kill ; argv[]=/bin/kill -HUP $MAINPID ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "ExecStart": "{ path=/usr/sbin/firewalld ; argv[]=/usr/sbin/firewalld --nofork --nopid $FIREWALLD_ARGS ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "FailureAction": "none", "FileDescriptorStoreMax": "0", "FragmentPath": "/usr/lib/systemd/system/firewalld.service", "GuessMainPID": "yes", "IOScheduling": "0", "Id": "firewalld.service", "IgnoreOnIsolate": "no", "IgnoreOnSnapshot": "no", "IgnoreSIGPIPE": "yes", "InactiveEnterTimestampMonotonic": "0", "InactiveExitTimestampMonotonic": "0", "JobTimeoutAction": "none", "JobTimeoutUSec": "0", "KillMode": "mixed", "KillSignal": "15", "LimitAS": "18446744073709551615", "LimitCORE": "18446744073709551615", "LimitCPU": "18446744073709551615", "LimitDATA": "18446744073709551615", "LimitFSIZE": "18446744073709551615", "LimitLOCKS": "18446744073709551615", "LimitMEMLOCK": "65536", "LimitMSGQUEUE": "819200", "LimitNICE": "0", "LimitNOFILE": "4096", "LimitNPROC": "7162", "LimitRSS": "18446744073709551615", "LimitRTPRIO": "0", "LimitRTTIME": "18446744073709551615", "LimitSIGPENDING": "7162", "LimitSTACK": "18446744073709551615", "LoadState": "loaded", "MainPID": "0", "MemoryAccounting": "no", "MemoryCurrent": "18446744073709551615", "MemoryLimit": "18446744073709551615", "MountFlags": "0", "Names": "firewalld.service", "NeedDaemonReload": "no", "Nice": "0", "NoNewPrivileges": "no", "NonBlocking": "no", "NotifyAccess": "none", "OOMScoreAdjust": "0", "OnFailureJobMode": "replace", "PermissionsStartOnly": "no", "PrivateDevices": "no", "PrivateNetwork": "no", "PrivateTmp": "no", "ProtectHome": "no", "ProtectSystem": "no", "RefuseManualStart": "no", "RefuseManualStop": "no", "RemainAfterExit": "no", "Requires": "basic.target system.slice", "Restart": "no", "RestartUSec": "100ms", "Result": "success", "RootDirectoryStartOnly": "no", "RuntimeDirectoryMode": "0755", "SameProcessGroup": "no", "SecureBits": "0", "SendSIGHUP": "no", "SendSIGKILL": "yes", "Slice": "system.slice", "StandardError": "null", "StandardInput": "null", "StandardOutput": "null", "StartLimitAction": "none", "StartLimitBurst": "5", "StartLimitInterval": "10000000", "StartupBlockIOWeight": "18446744073709551615", "StartupCPUShares": "18446744073709551615", "StatusErrno": "0", "StopWhenUnneeded": "no", "SubState": "dead", "SyslogLevelPrefix": "yes", "SyslogPriority": "30", "SystemCallErrorNumber": "0", "TTYReset": "no", "TTYVHangup": "no", "TTYVTDisallocate": "no", "TasksAccounting": "no", "TasksCurrent": "18446744073709551615", "TasksMax": "18446744073709551615", "TimeoutStartUSec": "1min 30s", "TimeoutStopUSec": "1min 30s", "TimerSlackNSec": "50000", "Transient": "no", "Type": "dbus", "UMask": "0022", "UnitFilePreset": "enabled", "UnitFileState": "enabled", "WantedBy": "multi-user.target", "Wants": "network-pre.target", "WatchdogTimestampMonotonic": "0", "WatchdogUSec": "0"}} TASK [linux-system-roles.firewall : Configure firewall] ************************ task path: /tmp/tmp81skthlj/tasks/main.yml:3 TASK [Verify used firewalld zones] ********************************************* task path: /tmp/tmp81skthlj/tests/tests_zone.yml:14 statically imported: /tmp/tmp81skthlj/tasks/firewalld.yml TASK [linux-system-roles.firewall : Install firewalld] ************************* task path: /tmp/tmp81skthlj/tasks/firewalld.yml:2 ok: [/cache/centos-7.qcow2c] => {"changed": false, "msg": "", "rc": 0, "results": ["firewalld-0.6.3-13.el7_9.noarch providing firewalld is already installed"]} TASK [linux-system-roles.firewall : Install python-firewall] ******************* task path: /tmp/tmp81skthlj/tasks/firewalld.yml:7 ok: [/cache/centos-7.qcow2c] => {"changed": false, "msg": "", "rc": 0, "results": ["python-firewall-0.6.3-13.el7_9.noarch providing python-firewall is already installed"]} TASK [linux-system-roles.firewall : Install python3-firewall] ****************** task path: /tmp/tmp81skthlj/tasks/firewalld.yml:13 skipping: [/cache/centos-7.qcow2c] => {"changed": false, "skip_reason": "Conditional result was False"} TASK [linux-system-roles.firewall : Enable and start firewalld service] ******** task path: /tmp/tmp81skthlj/tasks/firewalld.yml:19 ok: [/cache/centos-7.qcow2c] => {"changed": false, "enabled": true, "name": "firewalld", "state": "started", "status": {"ActiveEnterTimestamp": "Wed 2021-08-04 11:42:07 UTC", "ActiveEnterTimestampMonotonic": "21258185", "ActiveExitTimestampMonotonic": "0", "ActiveState": "active", "After": "dbus.service basic.target system.slice polkit.service", "AllowIsolate": "no", "AmbientCapabilities": "0", "AssertResult": "yes", "AssertTimestamp": "Wed 2021-08-04 11:42:07 UTC", "AssertTimestampMonotonic": "21048913", "Before": "shutdown.target multi-user.target network-pre.target", "BlockIOAccounting": "no", "BlockIOWeight": "18446744073709551615", "BusName": "org.fedoraproject.FirewallD1", "CPUAccounting": "no", "CPUQuotaPerSecUSec": "infinity", "CPUSchedulingPolicy": "0", "CPUSchedulingPriority": "0", "CPUSchedulingResetOnFork": "no", "CPUShares": "18446744073709551615", "CanIsolate": "no", "CanReload": "yes", "CanStart": "yes", "CanStop": "yes", "CapabilityBoundingSet": "18446744073709551615", "ConditionResult": "yes", "ConditionTimestamp": "Wed 2021-08-04 11:42:07 UTC", "ConditionTimestampMonotonic": "21048912", "Conflicts": "ip6tables.service ebtables.service ipset.service iptables.service shutdown.target", "ControlGroup": "/system.slice/firewalld.service", "ControlPID": "0", "DefaultDependencies": "yes", "Delegate": "no", "Description": "firewalld - dynamic firewall daemon", "DevicePolicy": "auto", "Documentation": "man:firewalld(1)", "EnvironmentFile": "/etc/sysconfig/firewalld (ignore_errors=yes)", "ExecMainCode": "0", "ExecMainExitTimestampMonotonic": "0", "ExecMainPID": "7909", "ExecMainStartTimestamp": "Wed 2021-08-04 11:42:07 UTC", "ExecMainStartTimestampMonotonic": "21050192", "ExecMainStatus": "0", "ExecReload": "{ path=/bin/kill ; argv[]=/bin/kill -HUP $MAINPID ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "ExecStart": "{ path=/usr/sbin/firewalld ; argv[]=/usr/sbin/firewalld --nofork --nopid $FIREWALLD_ARGS ; ignore_errors=no ; start_time=[Wed 2021-08-04 11:42:07 UTC] ; stop_time=[n/a] ; pid=7909 ; code=(null) ; status=0/0 }", "FailureAction": "none", "FileDescriptorStoreMax": "0", "FragmentPath": "/usr/lib/systemd/system/firewalld.service", "GuessMainPID": "yes", "IOScheduling": "0", "Id": "firewalld.service", "IgnoreOnIsolate": "no", "IgnoreOnSnapshot": "no", "IgnoreSIGPIPE": "yes", "InactiveEnterTimestampMonotonic": "0", "InactiveExitTimestamp": "Wed 2021-08-04 11:42:07 UTC", "InactiveExitTimestampMonotonic": "21050227", "JobTimeoutAction": "none", "JobTimeoutUSec": "0", "KillMode": "mixed", "KillSignal": "15", "LimitAS": "18446744073709551615", "LimitCORE": "18446744073709551615", "LimitCPU": "18446744073709551615", "LimitDATA": "18446744073709551615", "LimitFSIZE": "18446744073709551615", "LimitLOCKS": "18446744073709551615", "LimitMEMLOCK": "65536", "LimitMSGQUEUE": "819200", "LimitNICE": "0", "LimitNOFILE": "4096", "LimitNPROC": "7162", "LimitRSS": "18446744073709551615", "LimitRTPRIO": "0", "LimitRTTIME": "18446744073709551615", "LimitSIGPENDING": "7162", "LimitSTACK": "18446744073709551615", "LoadState": "loaded", "MainPID": "7909", "MemoryAccounting": "no", "MemoryCurrent": "18446744073709551615", "MemoryLimit": "18446744073709551615", "MountFlags": "0", "Names": "firewalld.service", "NeedDaemonReload": "no", "Nice": "0", "NoNewPrivileges": "no", "NonBlocking": "no", "NotifyAccess": "none", "OOMScoreAdjust": "0", "OnFailureJobMode": "replace", "PermissionsStartOnly": "no", "PrivateDevices": "no", "PrivateNetwork": "no", "PrivateTmp": "no", "ProtectHome": "no", "ProtectSystem": "no", "RefuseManualStart": "no", "RefuseManualStop": "no", "RemainAfterExit": "no", "Requires": "basic.target system.slice", "Restart": "no", "RestartUSec": "100ms", "Result": "success", "RootDirectoryStartOnly": "no", "RuntimeDirectoryMode": "0755", "SameProcessGroup": "no", "SecureBits": "0", "SendSIGHUP": "no", "SendSIGKILL": "yes", "Slice": "system.slice", "StandardError": "null", "StandardInput": "null", "StandardOutput": "null", "StartLimitAction": "none", "StartLimitBurst": "5", "StartLimitInterval": "10000000", "StartupBlockIOWeight": "18446744073709551615", "StartupCPUShares": "18446744073709551615", "StatusErrno": "0", "StopWhenUnneeded": "no", "SubState": "running", "SyslogLevelPrefix": "yes", "SyslogPriority": "30", "SystemCallErrorNumber": "0", "TTYReset": "no", "TTYVHangup": "no", "TTYVTDisallocate": "no", "TasksAccounting": "no", "TasksCurrent": "18446744073709551615", "TasksMax": "18446744073709551615", "TimeoutStartUSec": "1min 30s", "TimeoutStopUSec": "1min 30s", "TimerSlackNSec": "50000", "Transient": "no", "Type": "dbus", "UMask": "0022", "UnitFilePreset": "enabled", "UnitFileState": "enabled", "WantedBy": "multi-user.target", "Wants": "network-pre.target", "WatchdogTimestamp": "Wed 2021-08-04 11:42:07 UTC", "WatchdogTimestampMonotonic": "21258130", "WatchdogUSec": "0"}} TASK [linux-system-roles.firewall : Configure firewall] ************************ task path: /tmp/tmp81skthlj/tasks/main.yml:3 ok: [/cache/centos-7.qcow2c] => (item={'zone': 'internal', 'state': 'enabled'}) => {"ansible_loop_var": "item", "changed": false, "item": {"state": "enabled", "zone": "internal"}} ok: [/cache/centos-7.qcow2c] => (item={'zone': 'external', 'state': 'enabled'}) => {"ansible_loop_var": "item", "changed": false, "item": {"state": "enabled", "zone": "external"}} ok: [/cache/centos-7.qcow2c] => (item={'zone': 'trusted', 'state': 'enabled'}) => {"ansible_loop_var": "item", "changed": false, "item": {"state": "enabled", "zone": "trusted"}} TASK [Fail on missing zones] *************************************************** task path: /tmp/tmp81skthlj/tests/tests_zone.yml:26 skipping: [/cache/centos-7.qcow2c] => {"changed": false, "skip_reason": "Conditional result was False"} TASK [Setup firewalld] ********************************************************* task path: /tmp/tmp81skthlj/tests/tests_zone.yml:32 statically imported: /tmp/tmp81skthlj/tasks/firewalld.yml TASK [linux-system-roles.firewall : Install firewalld] ************************* task path: /tmp/tmp81skthlj/tasks/firewalld.yml:2 ok: [/cache/centos-7.qcow2c] => {"changed": false, "msg": "", "rc": 0, "results": ["firewalld-0.6.3-13.el7_9.noarch providing firewalld is already installed"]} TASK [linux-system-roles.firewall : Install python-firewall] ******************* task path: /tmp/tmp81skthlj/tasks/firewalld.yml:7 ok: [/cache/centos-7.qcow2c] => {"changed": false, "msg": "", "rc": 0, "results": ["python-firewall-0.6.3-13.el7_9.noarch providing python-firewall is already installed"]} TASK [linux-system-roles.firewall : Install python3-firewall] ****************** task path: /tmp/tmp81skthlj/tasks/firewalld.yml:13 skipping: [/cache/centos-7.qcow2c] => {"changed": false, "skip_reason": "Conditional result was False"} TASK [linux-system-roles.firewall : Enable and start firewalld service] ******** task path: /tmp/tmp81skthlj/tasks/firewalld.yml:19 ok: [/cache/centos-7.qcow2c] => {"changed": false, "enabled": true, "name": "firewalld", "state": "started", "status": {"ActiveEnterTimestamp": "Wed 2021-08-04 11:42:07 UTC", "ActiveEnterTimestampMonotonic": "21258185", "ActiveExitTimestampMonotonic": "0", "ActiveState": "active", "After": "dbus.service basic.target system.slice polkit.service", "AllowIsolate": "no", "AmbientCapabilities": "0", "AssertResult": "yes", "AssertTimestamp": "Wed 2021-08-04 11:42:07 UTC", "AssertTimestampMonotonic": "21048913", "Before": "shutdown.target multi-user.target network-pre.target", "BlockIOAccounting": "no", "BlockIOWeight": "18446744073709551615", "BusName": "org.fedoraproject.FirewallD1", "CPUAccounting": "no", "CPUQuotaPerSecUSec": "infinity", "CPUSchedulingPolicy": "0", "CPUSchedulingPriority": "0", "CPUSchedulingResetOnFork": "no", "CPUShares": "18446744073709551615", "CanIsolate": "no", "CanReload": "yes", "CanStart": "yes", "CanStop": "yes", "CapabilityBoundingSet": "18446744073709551615", "ConditionResult": "yes", "ConditionTimestamp": "Wed 2021-08-04 11:42:07 UTC", "ConditionTimestampMonotonic": "21048912", "Conflicts": "ip6tables.service ebtables.service ipset.service iptables.service shutdown.target", "ControlGroup": "/system.slice/firewalld.service", "ControlPID": "0", "DefaultDependencies": "yes", "Delegate": "no", "Description": "firewalld - dynamic firewall daemon", "DevicePolicy": "auto", "Documentation": "man:firewalld(1)", "EnvironmentFile": "/etc/sysconfig/firewalld (ignore_errors=yes)", "ExecMainCode": "0", "ExecMainExitTimestampMonotonic": "0", "ExecMainPID": "7909", "ExecMainStartTimestamp": "Wed 2021-08-04 11:42:07 UTC", "ExecMainStartTimestampMonotonic": "21050192", "ExecMainStatus": "0", "ExecReload": "{ path=/bin/kill ; argv[]=/bin/kill -HUP $MAINPID ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "ExecStart": "{ path=/usr/sbin/firewalld ; argv[]=/usr/sbin/firewalld --nofork --nopid $FIREWALLD_ARGS ; ignore_errors=no ; start_time=[Wed 2021-08-04 11:42:07 UTC] ; stop_time=[n/a] ; pid=7909 ; code=(null) ; status=0/0 }", "FailureAction": "none", "FileDescriptorStoreMax": "0", "FragmentPath": "/usr/lib/systemd/system/firewalld.service", "GuessMainPID": "yes", "IOScheduling": "0", "Id": "firewalld.service", "IgnoreOnIsolate": "no", "IgnoreOnSnapshot": "no", "IgnoreSIGPIPE": "yes", "InactiveEnterTimestampMonotonic": "0", "InactiveExitTimestamp": "Wed 2021-08-04 11:42:07 UTC", "InactiveExitTimestampMonotonic": "21050227", "JobTimeoutAction": "none", "JobTimeoutUSec": "0", "KillMode": "mixed", "KillSignal": "15", "LimitAS": "18446744073709551615", "LimitCORE": "18446744073709551615", "LimitCPU": "18446744073709551615", "LimitDATA": "18446744073709551615", "LimitFSIZE": "18446744073709551615", "LimitLOCKS": "18446744073709551615", "LimitMEMLOCK": "65536", "LimitMSGQUEUE": "819200", "LimitNICE": "0", "LimitNOFILE": "4096", "LimitNPROC": "7162", "LimitRSS": "18446744073709551615", "LimitRTPRIO": "0", "LimitRTTIME": "18446744073709551615", "LimitSIGPENDING": "7162", "LimitSTACK": "18446744073709551615", "LoadState": "loaded", "MainPID": "7909", "MemoryAccounting": "no", "MemoryCurrent": "18446744073709551615", "MemoryLimit": "18446744073709551615", "MountFlags": "0", "Names": "firewalld.service", "NeedDaemonReload": "no", "Nice": "0", "NoNewPrivileges": "no", "NonBlocking": "no", "NotifyAccess": "none", "OOMScoreAdjust": "0", "OnFailureJobMode": "replace", "PermissionsStartOnly": "no", "PrivateDevices": "no", "PrivateNetwork": "no", "PrivateTmp": "no", "ProtectHome": "no", "ProtectSystem": "no", "RefuseManualStart": "no", "RefuseManualStop": "no", "RemainAfterExit": "no", "Requires": "basic.target system.slice", "Restart": "no", "RestartUSec": "100ms", "Result": "success", "RootDirectoryStartOnly": "no", "RuntimeDirectoryMode": "0755", "SameProcessGroup": "no", "SecureBits": "0", "SendSIGHUP": "no", "SendSIGKILL": "yes", "Slice": "system.slice", "StandardError": "null", "StandardInput": "null", "StandardOutput": "null", "StartLimitAction": "none", "StartLimitBurst": "5", "StartLimitInterval": "10000000", "StartupBlockIOWeight": "18446744073709551615", "StartupCPUShares": "18446744073709551615", "StatusErrno": "0", "StopWhenUnneeded": "no", "SubState": "running", "SyslogLevelPrefix": "yes", "SyslogPriority": "30", "SystemCallErrorNumber": "0", "TTYReset": "no", "TTYVHangup": "no", "TTYVTDisallocate": "no", "TasksAccounting": "no", "TasksCurrent": "18446744073709551615", "TasksMax": "18446744073709551615", "TimeoutStartUSec": "1min 30s", "TimeoutStopUSec": "1min 30s", "TimerSlackNSec": "50000", "Transient": "no", "Type": "dbus", "UMask": "0022", "UnitFilePreset": "enabled", "UnitFileState": "enabled", "WantedBy": "multi-user.target", "Wants": "network-pre.target", "WatchdogTimestamp": "Wed 2021-08-04 11:42:07 UTC", "WatchdogTimestampMonotonic": "21258130", "WatchdogUSec": "0"}} TASK [linux-system-roles.firewall : Configure firewall] ************************ task path: /tmp/tmp81skthlj/tasks/main.yml:3 changed: [/cache/centos-7.qcow2c] => (item={'zone': 'internal', 'service': ['tftp', 'ftp'], 'port': ['443/tcp', '443/udp'], 'forward_port': ['447/tcp;;1.2.3.4', '448/tcp;;1.2.3.5'], 'state': 'enabled'}) => {"ansible_loop_var": "item", "changed": true, "item": {"forward_port": ["447/tcp;;1.2.3.4", "448/tcp;;1.2.3.5"], "port": ["443/tcp", "443/udp"], "service": ["tftp", "ftp"], "state": "enabled", "zone": "internal"}} TASK [Fail if no changes are done] ********************************************* task path: /tmp/tmp81skthlj/tests/tests_zone.yml:45 skipping: [/cache/centos-7.qcow2c] => {"changed": false, "skip_reason": "Conditional result was False"} TASK [Setup firewalld again] *************************************************** task path: /tmp/tmp81skthlj/tests/tests_zone.yml:51 TASK [linux-system-roles.firewall : Install firewalld] ************************* task path: /tmp/tmp81skthlj/tasks/firewalld.yml:2 ok: [/cache/centos-7.qcow2c] => {"changed": false, "msg": "", "rc": 0, "results": ["firewalld-0.6.3-13.el7_9.noarch providing firewalld is already installed"]} TASK [linux-system-roles.firewall : Install python-firewall] ******************* task path: /tmp/tmp81skthlj/tasks/firewalld.yml:7 ok: [/cache/centos-7.qcow2c] => {"changed": false, "msg": "", "rc": 0, "results": ["python-firewall-0.6.3-13.el7_9.noarch providing python-firewall is already installed"]} TASK [linux-system-roles.firewall : Install python3-firewall] ****************** task path: /tmp/tmp81skthlj/tasks/firewalld.yml:13 skipping: [/cache/centos-7.qcow2c] => {"changed": false, "skip_reason": "Conditional result was False"} TASK [linux-system-roles.firewall : Enable and start firewalld service] ******** task path: /tmp/tmp81skthlj/tasks/firewalld.yml:19 ok: [/cache/centos-7.qcow2c] => {"changed": false, "enabled": true, "name": "firewalld", "state": "started", "status": {"ActiveEnterTimestamp": "Wed 2021-08-04 11:42:07 UTC", "ActiveEnterTimestampMonotonic": "21258185", "ActiveExitTimestampMonotonic": "0", "ActiveState": "active", "After": "dbus.service basic.target system.slice polkit.service", "AllowIsolate": "no", "AmbientCapabilities": "0", "AssertResult": "yes", "AssertTimestamp": "Wed 2021-08-04 11:42:07 UTC", "AssertTimestampMonotonic": "21048913", "Before": "shutdown.target multi-user.target network-pre.target", "BlockIOAccounting": "no", "BlockIOWeight": "18446744073709551615", "BusName": "org.fedoraproject.FirewallD1", "CPUAccounting": "no", "CPUQuotaPerSecUSec": "infinity", "CPUSchedulingPolicy": "0", "CPUSchedulingPriority": "0", "CPUSchedulingResetOnFork": "no", "CPUShares": "18446744073709551615", "CanIsolate": "no", "CanReload": "yes", "CanStart": "yes", "CanStop": "yes", "CapabilityBoundingSet": "18446744073709551615", "ConditionResult": "yes", "ConditionTimestamp": "Wed 2021-08-04 11:42:07 UTC", "ConditionTimestampMonotonic": "21048912", "Conflicts": "ip6tables.service ebtables.service ipset.service iptables.service shutdown.target", "ControlGroup": "/system.slice/firewalld.service", "ControlPID": "0", "DefaultDependencies": "yes", "Delegate": "no", "Description": "firewalld - dynamic firewall daemon", "DevicePolicy": "auto", "Documentation": "man:firewalld(1)", "EnvironmentFile": "/etc/sysconfig/firewalld (ignore_errors=yes)", "ExecMainCode": "0", "ExecMainExitTimestampMonotonic": "0", "ExecMainPID": "7909", "ExecMainStartTimestamp": "Wed 2021-08-04 11:42:07 UTC", "ExecMainStartTimestampMonotonic": "21050192", "ExecMainStatus": "0", "ExecReload": "{ path=/bin/kill ; argv[]=/bin/kill -HUP $MAINPID ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "ExecStart": "{ path=/usr/sbin/firewalld ; argv[]=/usr/sbin/firewalld --nofork --nopid $FIREWALLD_ARGS ; ignore_errors=no ; start_time=[Wed 2021-08-04 11:42:07 UTC] ; stop_time=[n/a] ; pid=7909 ; code=(null) ; status=0/0 }", "FailureAction": "none", "FileDescriptorStoreMax": "0", "FragmentPath": "/usr/lib/systemd/system/firewalld.service", "GuessMainPID": "yes", "IOScheduling": "0", "Id": "firewalld.service", "IgnoreOnIsolate": "no", "IgnoreOnSnapshot": "no", "IgnoreSIGPIPE": "yes", "InactiveEnterTimestampMonotonic": "0", "InactiveExitTimestamp": "Wed 2021-08-04 11:42:07 UTC", "InactiveExitTimestampMonotonic": "21050227", "JobTimeoutAction": "none", "JobTimeoutUSec": "0", "KillMode": "mixed", "KillSignal": "15", "LimitAS": "18446744073709551615", "LimitCORE": "18446744073709551615", "LimitCPU": "18446744073709551615", "LimitDATA": "18446744073709551615", "LimitFSIZE": "18446744073709551615", "LimitLOCKS": "18446744073709551615", "LimitMEMLOCK": "65536", "LimitMSGQUEUE": "819200", "LimitNICE": "0", "LimitNOFILE": "4096", "LimitNPROC": "7162", "LimitRSS": "18446744073709551615", "LimitRTPRIO": "0", "LimitRTTIME": "18446744073709551615", "LimitSIGPENDING": "7162", "LimitSTACK": "18446744073709551615", "LoadState": "loaded", "MainPID": "7909", "MemoryAccounting": "no", "MemoryCurrent": "18446744073709551615", "MemoryLimit": "18446744073709551615", "MountFlags": "0", "Names": "firewalld.service", "NeedDaemonReload": "no", "Nice": "0", "NoNewPrivileges": "no", "NonBlocking": "no", "NotifyAccess": "none", "OOMScoreAdjust": "0", "OnFailureJobMode": "replace", "PermissionsStartOnly": "no", "PrivateDevices": "no", "PrivateNetwork": "no", "PrivateTmp": "no", "ProtectHome": "no", "ProtectSystem": "no", "RefuseManualStart": "no", "RefuseManualStop": "no", "RemainAfterExit": "no", "Requires": "basic.target system.slice", "Restart": "no", "RestartUSec": "100ms", "Result": "success", "RootDirectoryStartOnly": "no", "RuntimeDirectoryMode": "0755", "SameProcessGroup": "no", "SecureBits": "0", "SendSIGHUP": "no", "SendSIGKILL": "yes", "Slice": "system.slice", "StandardError": "null", "StandardInput": "null", "StandardOutput": "null", "StartLimitAction": "none", "StartLimitBurst": "5", "StartLimitInterval": "10000000", "StartupBlockIOWeight": "18446744073709551615", "StartupCPUShares": "18446744073709551615", "StatusErrno": "0", "StopWhenUnneeded": "no", "SubState": "running", "SyslogLevelPrefix": "yes", "SyslogPriority": "30", "SystemCallErrorNumber": "0", "TTYReset": "no", "TTYVHangup": "no", "TTYVTDisallocate": "no", "TasksAccounting": "no", "TasksCurrent": "18446744073709551615", "TasksMax": "18446744073709551615", "TimeoutStartUSec": "1min 30s", "TimeoutStopUSec": "1min 30s", "TimerSlackNSec": "50000", "Transient": "no", "Type": "dbus", "UMask": "0022", "UnitFilePreset": "enabled", "UnitFileState": "enabled", "WantedBy": "multi-user.target", "Wants": "network-pre.target", "WatchdogTimestamp": "Wed 2021-08-04 11:42:07 UTC", "WatchdogTimestampMonotonic": "21258130", "WatchdogUSec": "0"}} TASK [linux-system-roles.firewall : Configure firewall] ************************ task path: /tmp/tmp81skthlj/tasks/main.yml:3 ok: [/cache/centos-7.qcow2c] => (item={'zone': 'internal', 'service': ['tftp', 'ftp'], 'port': ['443/tcp', '443/udp'], 'forward_port': ['447/tcp;;1.2.3.4', '448/tcp;;1.2.3.5'], 'state': 'enabled'}) => {"ansible_loop_var": "item", "changed": false, "item": {"forward_port": ["447/tcp;;1.2.3.4", "448/tcp;;1.2.3.5"], "port": ["443/tcp", "443/udp"], "service": ["tftp", "ftp"], "state": "enabled", "zone": "internal"}} TASK [Fail on newly changes] *************************************************** task path: /tmp/tmp81skthlj/tests/tests_zone.yml:64 skipping: [/cache/centos-7.qcow2c] => {"changed": false, "skip_reason": "Conditional result was False"} TASK [Verify firewalld zone internal services] ********************************* task path: /tmp/tmp81skthlj/tests/tests_zone.yml:70 changed: [/cache/centos-7.qcow2c] => {"changed": true, "cmd": ["firewall-cmd", "--permanent", "--zone=internal", "--list-services"], "delta": "0:00:00.274952", "end": "2021-08-04 11:42:18.955096", "failed_when_result": false, "rc": 0, "start": "2021-08-04 11:42:18.680144", "stderr": "", "stderr_lines": [], "stdout": "dhcpv6-client ftp mdns samba-client ssh tftp", "stdout_lines": ["dhcpv6-client ftp mdns samba-client ssh tftp"]} TASK [Verify firewalld zone internal ports] ************************************ task path: /tmp/tmp81skthlj/tests/tests_zone.yml:77 changed: [/cache/centos-7.qcow2c] => {"changed": true, "cmd": ["firewall-cmd", "--permanent", "--zone=internal", "--list-ports"], "delta": "0:00:00.256791", "end": "2021-08-04 11:42:19.619461", "failed_when_result": false, "rc": 0, "start": "2021-08-04 11:42:19.362670", "stderr": "", "stderr_lines": [], "stdout": "443/tcp 443/udp", "stdout_lines": ["443/tcp 443/udp"]} TASK [Verify firewalld zone internal forward ports] **************************** task path: /tmp/tmp81skthlj/tests/tests_zone.yml:84 changed: [/cache/centos-7.qcow2c] => {"changed": true, "cmd": ["firewall-cmd", "--permanent", "--zone=internal", "--list-forward-ports"], "delta": "0:00:00.265829", "end": "2021-08-04 11:42:20.277165", "failed_when_result": false, "rc": 0, "start": "2021-08-04 11:42:20.011336", "stderr": "", "stderr_lines": [], "stdout": "port=447:proto=tcp:toport=:toaddr=1.2.3.4\nport=448:proto=tcp:toport=:toaddr=1.2.3.5", "stdout_lines": ["port=447:proto=tcp:toport=:toaddr=1.2.3.4", "port=448:proto=tcp:toport=:toaddr=1.2.3.5"]} TASK [Reset to zone defaults] ************************************************** task path: /tmp/tmp81skthlj/tests/tests_zone.yml:97 changed: [/cache/centos-7.qcow2c] => {"changed": true, "cmd": "firewall-cmd --permanent --load-zone-defaults=internal\nfirewall-cmd --permanent --load-zone-defaults=external\nfirewall-cmd --permanent --load-zone-defaults=trusted\nfirewall-cmd --reload\n", "delta": "0:00:01.205020", "end": "2021-08-04 11:42:21.888063", "rc": 0, "start": "2021-08-04 11:42:20.683043", "stderr": "", "stderr_lines": [], "stdout": "success\nsuccess\nsuccess\nsuccess", "stdout_lines": ["success", "success", "success", "success"]} META: ran handlers META: ran handlers PLAY RECAP ********************************************************************* /cache/centos-7.qcow2c : ok=21 changed=7 unreachable=0 failed=0 skipped=9 rescued=0 ignored=0