+ cd /tmp/tmpsm2p1xmh/tests; TEST_SSHD_USEDNS_NO=True TEST_SUBJECTS=/cache/rhel-7.qcow2 TEST_ARTIFACTS=/tmp/linux-system-role-test-work-pull-linux-system-roles_firewall-53-55d0a2d-rhel-7-9xidqq7p/artifacts ansible-playbook -vv --inventory=/usr/share/ansible/inventory/standard-inventory-qcow2 --skip-tags=tests::cleanup /tmp/tmpsm2p1xmh/_setup.yml /tmp/tmpsm2p1xmh/tests/tests_ansible.yml ansible-playbook 2.9.27 config file = /etc/ansible/ansible.cfg configured module search path = ['/home/tester/.ansible/plugins/modules', '/usr/share/ansible/plugins/modules'] ansible python module location = /usr/lib/python3.9/site-packages/ansible executable location = /usr/bin/ansible-playbook python version = 3.9.7 (default, Aug 30 2021, 00:00:00) [GCC 11.2.1 20210728 (Red Hat 11.2.1-1)] Using /etc/ansible/ansible.cfg as config file Skipping callback 'actionable', as we already have a stdout callback. Skipping callback 'counter_enabled', as we already have a stdout callback. Skipping callback 'debug', as we already have a stdout callback. Skipping callback 'dense', as we already have a stdout callback. Skipping callback 'dense', as we already have a stdout callback. Skipping callback 'full_skip', as we already have a stdout callback. Skipping callback 'json', as we already have a stdout callback. Skipping callback 'minimal', as we already have a stdout callback. Skipping callback 'null', as we already have a stdout callback. Skipping callback 'oneline', as we already have a stdout callback. Skipping callback 'selective', as we already have a stdout callback. Skipping callback 'skippy', as we already have a stdout callback. Skipping callback 'stderr', as we already have a stdout callback. Skipping callback 'unixy', as we already have a stdout callback. Skipping callback 'yaml', as we already have a stdout callback. PLAYBOOK: _setup.yml *********************************************************** 2 plays in /tmp/tmpsm2p1xmh/_setup.yml PLAY [Fail when only localhost is available] *********************************** META: ran handlers TASK [debug] ******************************************************************* task path: /tmp/tmpsm2p1xmh/_setup.yml:5 ok: [/cache/rhel-7.qcow2] => { "groups": { "all": [ "/cache/rhel-7.qcow2" ], "localhost": [ "/cache/rhel-7.qcow2" ], "subjects": [ "/cache/rhel-7.qcow2" ], "ungrouped": [] } } TASK [fail] ******************************************************************** task path: /tmp/tmpsm2p1xmh/_setup.yml:7 skipping: [/cache/rhel-7.qcow2] => {"changed": false, "skip_reason": "Conditional result was False"} META: ran handlers META: ran handlers PLAY [Setup repos] ************************************************************* META: ran handlers TASK [set up internal repositories] ******************************************** task path: /tmp/tmpsm2p1xmh/_setup.yml:16 changed: [/cache/rhel-7.qcow2] => (item=None) => {"censored": "the output has been hidden due to the fact that 'no_log: true' was specified for this result", "changed": true} changed: [/cache/rhel-7.qcow2] => (item=None) => {"censored": "the output has been hidden due to the fact that 'no_log: true' was specified for this result", "changed": true} changed: [/cache/rhel-7.qcow2] => (item=None) => {"censored": "the output has been hidden due to the fact that 'no_log: true' was specified for this result", "changed": true} changed: [/cache/rhel-7.qcow2] => (item=None) => {"censored": "the output has been hidden due to the fact that 'no_log: true' was specified for this result", "changed": true} changed: [/cache/rhel-7.qcow2] => {"censored": "the output has been hidden due to the fact that 'no_log: true' was specified for this result", "changed": true} META: ran handlers META: ran handlers PLAY RECAP ********************************************************************* /cache/rhel-7.qcow2 : ok=2 changed=1 unreachable=0 failed=0 skipped=1 rescued=0 ignored=0 statically imported: /tmp/tmpsm2p1xmh/tasks/firewalld.yml PLAYBOOK: tests_ansible.yml **************************************************** 1 plays in /tmp/tmpsm2p1xmh/tests/tests_ansible.yml PLAY [Ensure that the roles runs with default parameters] ********************** TASK [Gathering Facts] ********************************************************* task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:1 ok: [/cache/rhel-7.qcow2] META: ran handlers TASK [linux-system-roles.firewall : Install firewalld] ************************* task path: /tmp/tmpsm2p1xmh/tasks/firewalld.yml:2 changed: [/cache/rhel-7.qcow2] => {"changed": true, "changes": {"installed": ["firewalld"]}, "msg": "", "rc": 0, "results": ["Loaded plugins: search-disabled-repos\nResolving Dependencies\n--> Running transaction check\n---> Package firewalld.noarch 0:0.6.3-11.el7 will be installed\n--> Processing Dependency: python-firewall = 0.6.3-11.el7 for package: firewalld-0.6.3-11.el7.noarch\n--> Processing Dependency: firewalld-filesystem = 0.6.3-11.el7 for package: firewalld-0.6.3-11.el7.noarch\n--> Processing Dependency: ipset for package: firewalld-0.6.3-11.el7.noarch\n--> Processing Dependency: ebtables for package: firewalld-0.6.3-11.el7.noarch\n--> Running transaction check\n---> Package ebtables.x86_64 0:2.0.10-16.el7 will be installed\n---> Package firewalld-filesystem.noarch 0:0.6.3-11.el7 will be installed\n---> Package ipset.x86_64 0:7.1-1.el7 will be installed\n--> Processing Dependency: ipset-libs(x86-64) = 7.1-1.el7 for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13(LIBIPSET_4.8)(64bit) for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13(LIBIPSET_2.0)(64bit) for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13()(64bit) for package: ipset-7.1-1.el7.x86_64\n---> Package python-firewall.noarch 0:0.6.3-11.el7 will be installed\n--> Processing Dependency: python-slip-dbus for package: python-firewall-0.6.3-11.el7.noarch\n--> Running transaction check\n---> Package ipset-libs.x86_64 0:7.1-1.el7 will be installed\n---> Package python-slip-dbus.noarch 0:0.4.0-4.el7 will be installed\n--> Processing Dependency: python-slip = 0.4.0-4.el7 for package: python-slip-dbus-0.4.0-4.el7.noarch\n--> Running transaction check\n---> Package python-slip.noarch 0:0.4.0-4.el7 will be installed\n--> Finished Dependency Resolution\n\nDependencies Resolved\n\n================================================================================\n Package Arch Version Repository Size\n================================================================================\nInstalling:\n firewalld noarch 0.6.3-11.el7 rhel 448 k\nInstalling for dependencies:\n ebtables x86_64 2.0.10-16.el7 rhel 123 k\n firewalld-filesystem noarch 0.6.3-11.el7 rhel 51 k\n ipset x86_64 7.1-1.el7 rhel 39 k\n ipset-libs x86_64 7.1-1.el7 rhel 64 k\n python-firewall noarch 0.6.3-11.el7 rhel 355 k\n python-slip noarch 0.4.0-4.el7 rhel 31 k\n python-slip-dbus noarch 0.4.0-4.el7 rhel 32 k\n\nTransaction Summary\n================================================================================\nInstall 1 Package (+7 Dependent packages)\n\nTotal download size: 1.1 M\nInstalled size: 4.5 M\nDownloading packages:\n--------------------------------------------------------------------------------\nTotal 9.7 MB/s | 1.1 MB 00:00 \nRunning transaction check\nRunning transaction test\nTransaction test succeeded\nRunning transaction\n Installing : ebtables-2.0.10-16.el7.x86_64 1/8 \n Installing : ipset-libs-7.1-1.el7.x86_64 2/8 \n Installing : ipset-7.1-1.el7.x86_64 3/8 \n Installing : python-slip-0.4.0-4.el7.noarch 4/8 \n Installing : python-slip-dbus-0.4.0-4.el7.noarch 5/8 \n Installing : python-firewall-0.6.3-11.el7.noarch 6/8 \n Installing : firewalld-filesystem-0.6.3-11.el7.noarch 7/8 \n Installing : firewalld-0.6.3-11.el7.noarch 8/8 \n Verifying : ipset-7.1-1.el7.x86_64 1/8 \n Verifying : python-firewall-0.6.3-11.el7.noarch 2/8 \n Verifying : firewalld-filesystem-0.6.3-11.el7.noarch 3/8 \n Verifying : firewalld-0.6.3-11.el7.noarch 4/8 \n Verifying : python-slip-0.4.0-4.el7.noarch 5/8 \n Verifying : python-slip-dbus-0.4.0-4.el7.noarch 6/8 \n Verifying : ipset-libs-7.1-1.el7.x86_64 7/8 \n Verifying : ebtables-2.0.10-16.el7.x86_64 8/8 \n\nInstalled:\n firewalld.noarch 0:0.6.3-11.el7 \n\nDependency Installed:\n ebtables.x86_64 0:2.0.10-16.el7 \n firewalld-filesystem.noarch 0:0.6.3-11.el7 \n ipset.x86_64 0:7.1-1.el7 \n ipset-libs.x86_64 0:7.1-1.el7 \n python-firewall.noarch 0:0.6.3-11.el7 \n python-slip.noarch 0:0.4.0-4.el7 \n python-slip-dbus.noarch 0:0.4.0-4.el7 \n\nComplete!\n"]} TASK [linux-system-roles.firewall : Install python-firewall] ******************* task path: /tmp/tmpsm2p1xmh/tasks/firewalld.yml:7 ok: [/cache/rhel-7.qcow2] => {"changed": false, "msg": "", "rc": 0, "results": ["python-firewall-0.6.3-11.el7.noarch providing python-firewall is already installed"]} TASK [linux-system-roles.firewall : Install python3-firewall] ****************** task path: /tmp/tmpsm2p1xmh/tasks/firewalld.yml:13 skipping: [/cache/rhel-7.qcow2] => {"changed": false, "skip_reason": "Conditional result was False"} TASK [linux-system-roles.firewall : Enable and start firewalld service] ******** task path: /tmp/tmpsm2p1xmh/tasks/firewalld.yml:19 changed: [/cache/rhel-7.qcow2] => {"changed": true, "enabled": true, "name": "firewalld", "state": "started", "status": {"ActiveEnterTimestampMonotonic": "0", "ActiveExitTimestampMonotonic": "0", "ActiveState": "inactive", "After": "polkit.service basic.target dbus.service system.slice", "AllowIsolate": "no", "AmbientCapabilities": "0", "AssertResult": "no", "AssertTimestampMonotonic": "0", "Before": "multi-user.target network-pre.target shutdown.target", "BlockIOAccounting": "no", "BlockIOWeight": "18446744073709551615", "BusName": "org.fedoraproject.FirewallD1", "CPUAccounting": "no", "CPUQuotaPerSecUSec": "infinity", "CPUSchedulingPolicy": "0", "CPUSchedulingPriority": "0", "CPUSchedulingResetOnFork": "no", "CPUShares": "18446744073709551615", "CanIsolate": "no", "CanReload": "yes", "CanStart": "yes", "CanStop": "yes", "CapabilityBoundingSet": "18446744073709551615", "CollectMode": "inactive", "ConditionResult": "no", "ConditionTimestampMonotonic": "0", "Conflicts": "shutdown.target iptables.service ebtables.service ip6tables.service ipset.service", "ControlPID": "0", "DefaultDependencies": "yes", "Delegate": "no", "Description": "firewalld - dynamic firewall daemon", "DevicePolicy": "auto", "Documentation": "man:firewalld(1)", "EnvironmentFile": "/etc/sysconfig/firewalld (ignore_errors=yes)", "ExecMainCode": "0", "ExecMainExitTimestampMonotonic": "0", "ExecMainPID": "0", "ExecMainStartTimestampMonotonic": "0", "ExecMainStatus": "0", "ExecReload": "{ path=/bin/kill ; argv[]=/bin/kill -HUP $MAINPID ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "ExecStart": "{ path=/usr/sbin/firewalld ; argv[]=/usr/sbin/firewalld --nofork --nopid $FIREWALLD_ARGS ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "FailureAction": "none", "FileDescriptorStoreMax": "0", "FragmentPath": "/usr/lib/systemd/system/firewalld.service", "GuessMainPID": "yes", "IOScheduling": "0", "Id": "firewalld.service", "IgnoreOnIsolate": "no", "IgnoreOnSnapshot": "no", "IgnoreSIGPIPE": "yes", "InactiveEnterTimestampMonotonic": "0", "InactiveExitTimestampMonotonic": "0", "JobTimeoutAction": "none", "JobTimeoutUSec": "0", "KillMode": "mixed", "KillSignal": "15", "LimitAS": "18446744073709551615", "LimitCORE": "18446744073709551615", "LimitCPU": "18446744073709551615", "LimitDATA": "18446744073709551615", "LimitFSIZE": "18446744073709551615", "LimitLOCKS": "18446744073709551615", "LimitMEMLOCK": "65536", "LimitMSGQUEUE": "819200", "LimitNICE": "0", "LimitNOFILE": "4096", "LimitNPROC": "7162", "LimitRSS": "18446744073709551615", "LimitRTPRIO": "0", "LimitRTTIME": "18446744073709551615", "LimitSIGPENDING": "7162", "LimitSTACK": "18446744073709551615", "LoadState": "loaded", "MainPID": "0", "MemoryAccounting": "no", "MemoryCurrent": "18446744073709551615", "MemoryLimit": "18446744073709551615", "MountFlags": "0", "Names": "firewalld.service", "NeedDaemonReload": "no", "Nice": "0", "NoNewPrivileges": "no", "NonBlocking": "no", "NotifyAccess": "none", "OOMScoreAdjust": "0", "OnFailureJobMode": "replace", "PermissionsStartOnly": "no", "PrivateDevices": "no", "PrivateNetwork": "no", "PrivateTmp": "no", "ProtectHome": "no", "ProtectSystem": "no", "RefuseManualStart": "no", "RefuseManualStop": "no", "RemainAfterExit": "no", "Requires": "basic.target system.slice", "Restart": "no", "RestartUSec": "100ms", "Result": "success", "RootDirectoryStartOnly": "no", "RuntimeDirectoryMode": "0755", "SameProcessGroup": "no", "SecureBits": "0", "SendSIGHUP": "no", "SendSIGKILL": "yes", "Slice": "system.slice", "StandardError": "null", "StandardInput": "null", "StandardOutput": "null", "StartLimitAction": "none", "StartLimitBurst": "5", "StartLimitInterval": "10000000", "StartupBlockIOWeight": "18446744073709551615", "StartupCPUShares": "18446744073709551615", "StatusErrno": "0", "StopWhenUnneeded": "no", "SubState": "dead", "SyslogLevelPrefix": "yes", "SyslogPriority": "30", "SystemCallErrorNumber": "0", "TTYReset": "no", "TTYVHangup": "no", "TTYVTDisallocate": "no", "TasksAccounting": "no", "TasksCurrent": "18446744073709551615", "TasksMax": "18446744073709551615", "TimeoutStartUSec": "1min 30s", "TimeoutStopUSec": "1min 30s", "TimerSlackNSec": "50000", "Transient": "no", "Type": "dbus", "UMask": "0022", "UnitFilePreset": "enabled", "UnitFileState": "enabled", "WantedBy": "multi-user.target", "Wants": "network-pre.target", "WatchdogTimestampMonotonic": "0", "WatchdogUSec": "0"}} TASK [linux-system-roles.firewall : Configure firewall] ************************ task path: /tmp/tmpsm2p1xmh/tasks/main.yml:3 TASK [Remove custom zone] ****************************************************** task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:14 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": ["firewall-cmd", "--permanent", "--delete-zone=custom"], "delta": "0:00:00.260996", "end": "2021-11-11 17:16:14.443289", "failed_when_result": false, "msg": "non-zero return code", "rc": 112, "start": "2021-11-11 17:16:14.182293", "stderr": "Error: INVALID_ZONE: custom", "stderr_lines": ["Error: INVALID_ZONE: custom"], "stdout": "", "stdout_lines": []} TASK [Reset internal zone to defaults] ***************************************** task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:19 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": ["firewall-cmd", "--permanent", "--load-zone-defaults=internal"], "delta": "0:00:00.282695", "end": "2021-11-11 17:16:15.063107", "failed_when_result": false, "msg": "non-zero return code", "rc": 22, "start": "2021-11-11 17:16:14.780412", "stderr": "Error: NO_DEFAULTS: internal", "stderr_lines": ["Error: NO_DEFAULTS: internal"], "stdout": "", "stdout_lines": []} TASK [Reset trusted zone to defaults] ****************************************** task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:24 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": ["firewall-cmd", "--permanent", "--load-zone-defaults=trusted"], "delta": "0:00:00.249940", "end": "2021-11-11 17:16:15.651001", "failed_when_result": false, "msg": "non-zero return code", "rc": 22, "start": "2021-11-11 17:16:15.401061", "stderr": "Error: NO_DEFAULTS: trusted", "stderr_lines": ["Error: NO_DEFAULTS: trusted"], "stdout": "", "stdout_lines": []} TASK [Reset dmz zone to defaults] ********************************************** task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:29 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": ["firewall-cmd", "--permanent", "--load-zone-defaults=dmz"], "delta": "0:00:00.278763", "end": "2021-11-11 17:16:16.297363", "failed_when_result": false, "msg": "non-zero return code", "rc": 22, "start": "2021-11-11 17:16:16.018600", "stderr": "Error: NO_DEFAULTS: dmz", "stderr_lines": ["Error: NO_DEFAULTS: dmz"], "stdout": "", "stdout_lines": []} TASK [Reset drop zone to defaults] ********************************************* task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:34 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": ["firewall-cmd", "--permanent", "--load-zone-defaults=drop"], "delta": "0:00:00.279049", "end": "2021-11-11 17:16:16.931070", "failed_when_result": false, "msg": "non-zero return code", "rc": 22, "start": "2021-11-11 17:16:16.652021", "stderr": "Error: NO_DEFAULTS: drop", "stderr_lines": ["Error: NO_DEFAULTS: drop"], "stdout": "", "stdout_lines": []} TASK [Reset public zone to defaults] ******************************************* task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:39 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": ["firewall-cmd", "--permanent", "--load-zone-defaults=public"], "delta": "0:00:00.282318", "end": "2021-11-11 17:16:17.606134", "failed_when_result": false, "rc": 0, "start": "2021-11-11 17:16:17.323816", "stderr": "", "stderr_lines": [], "stdout": "success", "stdout_lines": ["success"]} TASK [Reset default zone to defaults] ****************************************** task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:44 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": "zone=$(firewall-cmd --get-default-zone)\nfirewall-cmd --permanent --load-zone-defaults=$zone\n", "delta": "0:00:00.510600", "end": "2021-11-11 17:16:18.479689", "failed_when_result": false, "msg": "non-zero return code", "rc": 22, "start": "2021-11-11 17:16:17.969089", "stderr": "Error: NO_DEFAULTS: public", "stderr_lines": ["Error: NO_DEFAULTS: public"], "stdout": "", "stdout_lines": []} TASK [Create custom zone] ****************************************************** task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:52 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": ["firewall-cmd", "--permanent", "--new-zone=custom"], "delta": "0:00:00.250139", "end": "2021-11-11 17:16:19.078434", "failed_when_result": false, "rc": 0, "start": "2021-11-11 17:16:18.828295", "stderr": "", "stderr_lines": [], "stdout": "success", "stdout_lines": ["success"]} TASK [Reload firewalld] ******************************************************** task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:57 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": ["firewall-cmd", "--reload"], "delta": "0:00:00.457911", "end": "2021-11-11 17:16:19.897242", "failed_when_result": false, "rc": 0, "start": "2021-11-11 17:16:19.439331", "stderr": "", "stderr_lines": [], "stdout": "success", "stdout_lines": ["success"]} TASK [Permit traffic in default zone for https service] ************************ task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:64 changed: [/cache/rhel-7.qcow2] => {"changed": true, "failed_when_result": false} TASK [Permit traffic in default zone for https service, again] ***************** task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:72 ok: [/cache/rhel-7.qcow2] => {"changed": false, "failed_when_result": false} TASK [Permit traffic in default zone on port 8081/tcp] ************************* task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:80 changed: [/cache/rhel-7.qcow2] => {"changed": true, "failed_when_result": false} TASK [Permit traffic in default zone on port 8081/tcp, again] ****************** task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:88 ok: [/cache/rhel-7.qcow2] => {"changed": false, "failed_when_result": false} TASK [Allow port 161-162/udp in permanent default zone] ************************ task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:96 changed: [/cache/rhel-7.qcow2] => {"changed": true, "failed_when_result": false} TASK [Allow port 161-162/udp in permanent default zone, again] ***************** task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:104 ok: [/cache/rhel-7.qcow2] => {"changed": false, "failed_when_result": false} TASK [Do not permit traffic in default zone on port 8081/tcp] ****************** task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:112 changed: [/cache/rhel-7.qcow2] => {"changed": true, "failed_when_result": false} TASK [Do not permit traffic in default zone on port 8081/tcp, again] *********** task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:120 ok: [/cache/rhel-7.qcow2] => {"changed": false, "failed_when_result": false} TASK [Allow service http in permanent dmz zone] ******************************** task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:128 changed: [/cache/rhel-7.qcow2] => {"changed": true, "failed_when_result": false} TASK [Allow service http in permanent dmz zone, again] ************************* task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:137 ok: [/cache/rhel-7.qcow2] => {"changed": false, "failed_when_result": false} TASK [Allow service ftp with limitation using rich rule in permanent default zone] *** task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:146 changed: [/cache/rhel-7.qcow2] => {"changed": true, "failed_when_result": false} TASK [Allow service ftp with limitation using rich rule in permanent default zone, again] *** task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:155 ok: [/cache/rhel-7.qcow2] => {"changed": false, "failed_when_result": false} TASK [Allow source 192.0.2.0/24 in internal zone] ****************************** task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:164 changed: [/cache/rhel-7.qcow2] => {"changed": true, "failed_when_result": false} TASK [Allow source 192.0.2.0/24 in internal zone, again] *********************** task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:173 ok: [/cache/rhel-7.qcow2] => {"changed": false, "failed_when_result": false} TASK [Allow interface eth2 in permanent trusted zone] ************************** task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:182 changed: [/cache/rhel-7.qcow2] => {"changed": true, "failed_when_result": false} TASK [Allow interface eth2 in permanent trusted zone, again] ******************* task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:191 ok: [/cache/rhel-7.qcow2] => {"changed": false, "failed_when_result": false} TASK [Allow masquerading in permament dmz zone] ******************************** task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:200 changed: [/cache/rhel-7.qcow2] => {"changed": true, "failed_when_result": false} TASK [Allow masquerading in permament dmz zone, again] ************************* task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:209 ok: [/cache/rhel-7.qcow2] => {"changed": false, "failed_when_result": false} TASK [Ensure permanent custom zone exists (no change)] ************************* task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:218 ok: [/cache/rhel-7.qcow2] => {"changed": false, "failed_when_result": false} TASK [Ensure ICMP block inversion in permanent drop zone] ********************** task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:226 changed: [/cache/rhel-7.qcow2] => {"changed": true, "failed_when_result": false} TASK [Ensure ICMP block inversion in permanent drop zone, again] *************** task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:235 ok: [/cache/rhel-7.qcow2] => {"changed": false, "failed_when_result": false} TASK [Block ICMP echo-request in permanent drop zone] ************************** task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:244 changed: [/cache/rhel-7.qcow2] => {"changed": true, "failed_when_result": false} TASK [Block ICMP echo-request in permanent drop zone, again] ******************* task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:253 ok: [/cache/rhel-7.qcow2] => {"changed": false, "failed_when_result": false} TASK [Ensure default target in permanent internal zone (no change)] ************ task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:262 ok: [/cache/rhel-7.qcow2] => {"changed": false, "failed_when_result": false} TASK [Ensure target ACCEPT in permanent internal zone] ************************* task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:271 changed: [/cache/rhel-7.qcow2] => {"changed": true, "failed_when_result": false} TASK [Ensure target ACCEPT in permanent internal zone, again] ****************** task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:280 ok: [/cache/rhel-7.qcow2] => {"changed": false, "failed_when_result": false} TASK [Ensure default target in permanent internal zone] ************************ task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:289 changed: [/cache/rhel-7.qcow2] => {"changed": true, "failed_when_result": false} TASK [Ensure default target in permanent internal zone, again] ***************** task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:298 ok: [/cache/rhel-7.qcow2] => {"changed": false, "failed_when_result": false} TASK [Redirect port 443 to 8443 with Rich Rule in permanent and runtime public zone] *** task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:307 [DEPRECATION WARNING]: Alias 'immediate' is deprecated. See the module docs for more information. This feature will be removed in a future release. Deprecation warnings can be disabled by setting deprecation_warnings=False in ansible.cfg. changed: [/cache/rhel-7.qcow2] => {"changed": true, "failed_when_result": false} TASK [Redirect port 443 to 8443 with Rich Rule in permanent and runtime public zone, again] *** task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:319 ok: [/cache/rhel-7.qcow2] => {"changed": false, "failed_when_result": false} TASK [Firewalld custom zone] *************************************************** task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:331 changed: [/cache/rhel-7.qcow2] => {"changed": true} TASK [assert firewalld custom zone] ******************************************** task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:338 ok: [/cache/rhel-7.qcow2] => { "changed": false, "msg": "All assertions passed" } TASK [Remove custom zone] ****************************************************** task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:347 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": ["firewall-cmd", "--permanent", "--delete-zone=custom"], "delta": "0:00:00.290500", "end": "2021-11-11 17:16:44.337402", "failed_when_result": false, "rc": 0, "start": "2021-11-11 17:16:44.046902", "stderr": "", "stderr_lines": [], "stdout": "success", "stdout_lines": ["success"]} TASK [Reset internal zone to defaults] ***************************************** task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:352 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": ["firewall-cmd", "--permanent", "--load-zone-defaults=internal"], "delta": "0:00:00.268142", "end": "2021-11-11 17:16:44.959507", "failed_when_result": false, "rc": 0, "start": "2021-11-11 17:16:44.691365", "stderr": "", "stderr_lines": [], "stdout": "success", "stdout_lines": ["success"]} TASK [Reset trusted zone to defaults] ****************************************** task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:357 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": ["firewall-cmd", "--permanent", "--load-zone-defaults=trusted"], "delta": "0:00:00.254344", "end": "2021-11-11 17:16:45.567773", "failed_when_result": false, "rc": 0, "start": "2021-11-11 17:16:45.313429", "stderr": "", "stderr_lines": [], "stdout": "success", "stdout_lines": ["success"]} TASK [Reset dmz zone to defaults] ********************************************** task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:362 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": ["firewall-cmd", "--permanent", "--load-zone-defaults=dmz"], "delta": "0:00:00.277623", "end": "2021-11-11 17:16:46.193466", "failed_when_result": false, "rc": 0, "start": "2021-11-11 17:16:45.915843", "stderr": "", "stderr_lines": [], "stdout": "success", "stdout_lines": ["success"]} TASK [Reset drop zone to defaults] ********************************************* task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:367 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": ["firewall-cmd", "--permanent", "--load-zone-defaults=drop"], "delta": "0:00:00.279947", "end": "2021-11-11 17:16:46.832244", "failed_when_result": false, "rc": 0, "start": "2021-11-11 17:16:46.552297", "stderr": "", "stderr_lines": [], "stdout": "success", "stdout_lines": ["success"]} TASK [Reset public zone to defaults] ******************************************* task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:372 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": ["firewall-cmd", "--permanent", "--load-zone-defaults=public"], "delta": "0:00:00.254418", "end": "2021-11-11 17:16:47.462795", "failed_when_result": false, "rc": 0, "start": "2021-11-11 17:16:47.208377", "stderr": "", "stderr_lines": [], "stdout": "success", "stdout_lines": ["success"]} TASK [Reset default zone to defaults] ****************************************** task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:377 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": "zone=$(firewall-cmd --get-default-zone)\nfirewall-cmd --permanent --load-zone-defaults=$zone\n", "delta": "0:00:00.525858", "end": "2021-11-11 17:16:48.346655", "failed_when_result": false, "msg": "non-zero return code", "rc": 22, "start": "2021-11-11 17:16:47.820797", "stderr": "Error: NO_DEFAULTS: public", "stderr_lines": ["Error: NO_DEFAULTS: public"], "stdout": "", "stdout_lines": []} TASK [Reload firewalld] ******************************************************** task path: /tmp/tmpsm2p1xmh/tests/tests_ansible.yml:385 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": ["firewall-cmd", "--reload"], "delta": "0:00:00.464118", "end": "2021-11-11 17:16:49.180477", "failed_when_result": false, "rc": 0, "start": "2021-11-11 17:16:48.716359", "stderr": "", "stderr_lines": [], "stdout": "success", "stdout_lines": ["success"]} META: ran handlers META: ran handlers PLAY RECAP ********************************************************************* /cache/rhel-7.qcow2 : ok=55 changed=35 unreachable=0 failed=0 skipped=3 rescued=0 ignored=0 + cd /tmp/tmpsm2p1xmh/tests; TEST_SSHD_USEDNS_NO=True TEST_SUBJECTS=/cache/rhel-7.qcow2 TEST_ARTIFACTS=/tmp/linux-system-role-test-work-pull-linux-system-roles_firewall-53-55d0a2d-rhel-7-9xidqq7p/artifacts ansible-playbook -vv --inventory=/usr/share/ansible/inventory/standard-inventory-qcow2 --skip-tags=tests::cleanup /tmp/tmpsm2p1xmh/_setup.yml /tmp/tmpsm2p1xmh/tests/tests_default.yml ansible-playbook 2.9.27 config file = /etc/ansible/ansible.cfg configured module search path = ['/home/tester/.ansible/plugins/modules', '/usr/share/ansible/plugins/modules'] ansible python module location = /usr/lib/python3.9/site-packages/ansible executable location = /usr/bin/ansible-playbook python version = 3.9.7 (default, Aug 30 2021, 00:00:00) [GCC 11.2.1 20210728 (Red Hat 11.2.1-1)] Using /etc/ansible/ansible.cfg as config file Skipping callback 'actionable', as we already have a stdout callback. Skipping callback 'counter_enabled', as we already have a stdout callback. Skipping callback 'debug', as we already have a stdout callback. Skipping callback 'dense', as we already have a stdout callback. Skipping callback 'dense', as we already have a stdout callback. Skipping callback 'full_skip', as we already have a stdout callback. Skipping callback 'json', as we already have a stdout callback. Skipping callback 'minimal', as we already have a stdout callback. Skipping callback 'null', as we already have a stdout callback. Skipping callback 'oneline', as we already have a stdout callback. Skipping callback 'selective', as we already have a stdout callback. Skipping callback 'skippy', as we already have a stdout callback. Skipping callback 'stderr', as we already have a stdout callback. Skipping callback 'unixy', as we already have a stdout callback. Skipping callback 'yaml', as we already have a stdout callback. PLAYBOOK: _setup.yml *********************************************************** 2 plays in /tmp/tmpsm2p1xmh/_setup.yml PLAY [Fail when only localhost is available] *********************************** META: ran handlers TASK [debug] ******************************************************************* task path: /tmp/tmpsm2p1xmh/_setup.yml:5 ok: [/cache/rhel-7.qcow2] => { "groups": { "all": [ "/cache/rhel-7.qcow2" ], "localhost": [ "/cache/rhel-7.qcow2" ], "subjects": [ "/cache/rhel-7.qcow2" ], "ungrouped": [] } } TASK [fail] ******************************************************************** task path: /tmp/tmpsm2p1xmh/_setup.yml:7 skipping: [/cache/rhel-7.qcow2] => {"changed": false, "skip_reason": "Conditional result was False"} META: ran handlers META: ran handlers PLAY [Setup repos] ************************************************************* META: ran handlers TASK [set up internal repositories] ******************************************** task path: /tmp/tmpsm2p1xmh/_setup.yml:16 changed: [/cache/rhel-7.qcow2] => (item=None) => {"censored": "the output has been hidden due to the fact that 'no_log: true' was specified for this result", "changed": true} changed: [/cache/rhel-7.qcow2] => (item=None) => {"censored": "the output has been hidden due to the fact that 'no_log: true' was specified for this result", "changed": true} changed: [/cache/rhel-7.qcow2] => (item=None) => {"censored": "the output has been hidden due to the fact that 'no_log: true' was specified for this result", "changed": true} changed: [/cache/rhel-7.qcow2] => (item=None) => {"censored": "the output has been hidden due to the fact that 'no_log: true' was specified for this result", "changed": true} changed: [/cache/rhel-7.qcow2] => {"censored": "the output has been hidden due to the fact that 'no_log: true' was specified for this result", "changed": true} META: ran handlers META: ran handlers PLAY RECAP ********************************************************************* /cache/rhel-7.qcow2 : ok=2 changed=1 unreachable=0 failed=0 skipped=1 rescued=0 ignored=0 statically imported: /tmp/tmpsm2p1xmh/tasks/firewalld.yml PLAYBOOK: tests_default.yml **************************************************** 1 plays in /tmp/tmpsm2p1xmh/tests/tests_default.yml PLAY [Ensure that the roles runs with default parameters] ********************** TASK [Gathering Facts] ********************************************************* task path: /tmp/tmpsm2p1xmh/tests/tests_default.yml:1 ok: [/cache/rhel-7.qcow2] META: ran handlers TASK [linux-system-roles.firewall : Install firewalld] ************************* task path: /tmp/tmpsm2p1xmh/tasks/firewalld.yml:2 changed: [/cache/rhel-7.qcow2] => {"changed": true, "changes": {"installed": ["firewalld"]}, "msg": "", "rc": 0, "results": ["Loaded plugins: search-disabled-repos\nResolving Dependencies\n--> Running transaction check\n---> Package firewalld.noarch 0:0.6.3-11.el7 will be installed\n--> Processing Dependency: python-firewall = 0.6.3-11.el7 for package: firewalld-0.6.3-11.el7.noarch\n--> Processing Dependency: firewalld-filesystem = 0.6.3-11.el7 for package: firewalld-0.6.3-11.el7.noarch\n--> Processing Dependency: ipset for package: firewalld-0.6.3-11.el7.noarch\n--> Processing Dependency: ebtables for package: firewalld-0.6.3-11.el7.noarch\n--> Running transaction check\n---> Package ebtables.x86_64 0:2.0.10-16.el7 will be installed\n---> Package firewalld-filesystem.noarch 0:0.6.3-11.el7 will be installed\n---> Package ipset.x86_64 0:7.1-1.el7 will be installed\n--> Processing Dependency: ipset-libs(x86-64) = 7.1-1.el7 for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13(LIBIPSET_4.8)(64bit) for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13(LIBIPSET_2.0)(64bit) for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13()(64bit) for package: ipset-7.1-1.el7.x86_64\n---> Package python-firewall.noarch 0:0.6.3-11.el7 will be installed\n--> Processing Dependency: python-slip-dbus for package: python-firewall-0.6.3-11.el7.noarch\n--> Running transaction check\n---> Package ipset-libs.x86_64 0:7.1-1.el7 will be installed\n---> Package python-slip-dbus.noarch 0:0.4.0-4.el7 will be installed\n--> Processing Dependency: python-slip = 0.4.0-4.el7 for package: python-slip-dbus-0.4.0-4.el7.noarch\n--> Running transaction check\n---> Package python-slip.noarch 0:0.4.0-4.el7 will be installed\n--> Finished Dependency Resolution\n\nDependencies Resolved\n\n================================================================================\n Package Arch Version Repository Size\n================================================================================\nInstalling:\n firewalld noarch 0.6.3-11.el7 rhel 448 k\nInstalling for dependencies:\n ebtables x86_64 2.0.10-16.el7 rhel 123 k\n firewalld-filesystem noarch 0.6.3-11.el7 rhel 51 k\n ipset x86_64 7.1-1.el7 rhel 39 k\n ipset-libs x86_64 7.1-1.el7 rhel 64 k\n python-firewall noarch 0.6.3-11.el7 rhel 355 k\n python-slip noarch 0.4.0-4.el7 rhel 31 k\n python-slip-dbus noarch 0.4.0-4.el7 rhel 32 k\n\nTransaction Summary\n================================================================================\nInstall 1 Package (+7 Dependent packages)\n\nTotal download size: 1.1 M\nInstalled size: 4.5 M\nDownloading packages:\n--------------------------------------------------------------------------------\nTotal 15 MB/s | 1.1 MB 00:00 \nRunning transaction check\nRunning transaction test\nTransaction test succeeded\nRunning transaction\n Installing : ebtables-2.0.10-16.el7.x86_64 1/8 \n Installing : ipset-libs-7.1-1.el7.x86_64 2/8 \n Installing : ipset-7.1-1.el7.x86_64 3/8 \n Installing : python-slip-0.4.0-4.el7.noarch 4/8 \n Installing : python-slip-dbus-0.4.0-4.el7.noarch 5/8 \n Installing : python-firewall-0.6.3-11.el7.noarch 6/8 \n Installing : firewalld-filesystem-0.6.3-11.el7.noarch 7/8 \n Installing : firewalld-0.6.3-11.el7.noarch 8/8 \n Verifying : ipset-7.1-1.el7.x86_64 1/8 \n Verifying : python-firewall-0.6.3-11.el7.noarch 2/8 \n Verifying : firewalld-filesystem-0.6.3-11.el7.noarch 3/8 \n Verifying : firewalld-0.6.3-11.el7.noarch 4/8 \n Verifying : python-slip-0.4.0-4.el7.noarch 5/8 \n Verifying : python-slip-dbus-0.4.0-4.el7.noarch 6/8 \n Verifying : ipset-libs-7.1-1.el7.x86_64 7/8 \n Verifying : ebtables-2.0.10-16.el7.x86_64 8/8 \n\nInstalled:\n firewalld.noarch 0:0.6.3-11.el7 \n\nDependency Installed:\n ebtables.x86_64 0:2.0.10-16.el7 \n firewalld-filesystem.noarch 0:0.6.3-11.el7 \n ipset.x86_64 0:7.1-1.el7 \n ipset-libs.x86_64 0:7.1-1.el7 \n python-firewall.noarch 0:0.6.3-11.el7 \n python-slip.noarch 0:0.4.0-4.el7 \n python-slip-dbus.noarch 0:0.4.0-4.el7 \n\nComplete!\n"]} TASK [linux-system-roles.firewall : Install python-firewall] ******************* task path: /tmp/tmpsm2p1xmh/tasks/firewalld.yml:7 ok: [/cache/rhel-7.qcow2] => {"changed": false, "msg": "", "rc": 0, "results": ["python-firewall-0.6.3-11.el7.noarch providing python-firewall is already installed"]} TASK [linux-system-roles.firewall : Install python3-firewall] ****************** task path: /tmp/tmpsm2p1xmh/tasks/firewalld.yml:13 skipping: [/cache/rhel-7.qcow2] => {"changed": false, "skip_reason": "Conditional result was False"} TASK [linux-system-roles.firewall : Enable and start firewalld service] ******** task path: /tmp/tmpsm2p1xmh/tasks/firewalld.yml:19 changed: [/cache/rhel-7.qcow2] => {"changed": true, "enabled": true, "name": "firewalld", "state": "started", "status": {"ActiveEnterTimestampMonotonic": "0", "ActiveExitTimestampMonotonic": "0", "ActiveState": "inactive", "After": "system.slice basic.target polkit.service dbus.service", "AllowIsolate": "no", "AmbientCapabilities": "0", "AssertResult": "no", "AssertTimestampMonotonic": "0", "Before": "multi-user.target network-pre.target shutdown.target", "BlockIOAccounting": "no", "BlockIOWeight": "18446744073709551615", "BusName": "org.fedoraproject.FirewallD1", "CPUAccounting": "no", "CPUQuotaPerSecUSec": "infinity", "CPUSchedulingPolicy": "0", "CPUSchedulingPriority": "0", "CPUSchedulingResetOnFork": "no", "CPUShares": "18446744073709551615", "CanIsolate": "no", "CanReload": "yes", "CanStart": "yes", "CanStop": "yes", "CapabilityBoundingSet": "18446744073709551615", "CollectMode": "inactive", "ConditionResult": "no", "ConditionTimestampMonotonic": "0", "Conflicts": "iptables.service ebtables.service ip6tables.service ipset.service shutdown.target", "ControlPID": "0", "DefaultDependencies": "yes", "Delegate": "no", "Description": "firewalld - dynamic firewall daemon", "DevicePolicy": "auto", "Documentation": "man:firewalld(1)", "EnvironmentFile": "/etc/sysconfig/firewalld (ignore_errors=yes)", "ExecMainCode": "0", "ExecMainExitTimestampMonotonic": "0", "ExecMainPID": "0", "ExecMainStartTimestampMonotonic": "0", "ExecMainStatus": "0", "ExecReload": "{ path=/bin/kill ; argv[]=/bin/kill -HUP $MAINPID ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "ExecStart": "{ path=/usr/sbin/firewalld ; argv[]=/usr/sbin/firewalld --nofork --nopid $FIREWALLD_ARGS ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "FailureAction": "none", "FileDescriptorStoreMax": "0", "FragmentPath": "/usr/lib/systemd/system/firewalld.service", "GuessMainPID": "yes", "IOScheduling": "0", "Id": "firewalld.service", "IgnoreOnIsolate": "no", "IgnoreOnSnapshot": "no", "IgnoreSIGPIPE": "yes", "InactiveEnterTimestampMonotonic": "0", "InactiveExitTimestampMonotonic": "0", "JobTimeoutAction": "none", "JobTimeoutUSec": "0", "KillMode": "mixed", "KillSignal": "15", "LimitAS": "18446744073709551615", "LimitCORE": "18446744073709551615", "LimitCPU": "18446744073709551615", "LimitDATA": "18446744073709551615", "LimitFSIZE": "18446744073709551615", "LimitLOCKS": "18446744073709551615", "LimitMEMLOCK": "65536", "LimitMSGQUEUE": "819200", "LimitNICE": "0", "LimitNOFILE": "4096", "LimitNPROC": "7162", "LimitRSS": "18446744073709551615", "LimitRTPRIO": "0", "LimitRTTIME": "18446744073709551615", "LimitSIGPENDING": "7162", "LimitSTACK": "18446744073709551615", "LoadState": "loaded", "MainPID": "0", "MemoryAccounting": "no", "MemoryCurrent": "18446744073709551615", "MemoryLimit": "18446744073709551615", "MountFlags": "0", "Names": "firewalld.service", "NeedDaemonReload": "no", "Nice": "0", "NoNewPrivileges": "no", "NonBlocking": "no", "NotifyAccess": "none", "OOMScoreAdjust": "0", "OnFailureJobMode": "replace", "PermissionsStartOnly": "no", "PrivateDevices": "no", "PrivateNetwork": "no", "PrivateTmp": "no", "ProtectHome": "no", "ProtectSystem": "no", "RefuseManualStart": "no", "RefuseManualStop": "no", "RemainAfterExit": "no", "Requires": "basic.target system.slice", "Restart": "no", "RestartUSec": "100ms", "Result": "success", "RootDirectoryStartOnly": "no", "RuntimeDirectoryMode": "0755", "SameProcessGroup": "no", "SecureBits": "0", "SendSIGHUP": "no", "SendSIGKILL": "yes", "Slice": "system.slice", "StandardError": "null", "StandardInput": "null", "StandardOutput": "null", "StartLimitAction": "none", "StartLimitBurst": "5", "StartLimitInterval": "10000000", "StartupBlockIOWeight": "18446744073709551615", "StartupCPUShares": "18446744073709551615", "StatusErrno": "0", "StopWhenUnneeded": "no", "SubState": "dead", "SyslogLevelPrefix": "yes", "SyslogPriority": "30", "SystemCallErrorNumber": "0", "TTYReset": "no", "TTYVHangup": "no", "TTYVTDisallocate": "no", "TasksAccounting": "no", "TasksCurrent": "18446744073709551615", "TasksMax": "18446744073709551615", "TimeoutStartUSec": "1min 30s", "TimeoutStopUSec": "1min 30s", "TimerSlackNSec": "50000", "Transient": "no", "Type": "dbus", "UMask": "0022", "UnitFilePreset": "enabled", "UnitFileState": "enabled", "WantedBy": "multi-user.target", "Wants": "network-pre.target", "WatchdogTimestampMonotonic": "0", "WatchdogUSec": "0"}} TASK [linux-system-roles.firewall : Configure firewall] ************************ task path: /tmp/tmpsm2p1xmh/tasks/main.yml:3 META: ran handlers META: ran handlers PLAY RECAP ********************************************************************* /cache/rhel-7.qcow2 : ok=6 changed=3 unreachable=0 failed=0 skipped=3 rescued=0 ignored=0 + cd /tmp/tmpsm2p1xmh/tests; TEST_SSHD_USEDNS_NO=True TEST_SUBJECTS=/cache/rhel-7.qcow2 TEST_ARTIFACTS=/tmp/linux-system-role-test-work-pull-linux-system-roles_firewall-53-55d0a2d-rhel-7-9xidqq7p/artifacts ansible-playbook -vv --inventory=/usr/share/ansible/inventory/standard-inventory-qcow2 --skip-tags=tests::cleanup /tmp/tmpsm2p1xmh/_setup.yml /tmp/tmpsm2p1xmh/tests/tests_zone.yml ansible-playbook 2.9.27 config file = /etc/ansible/ansible.cfg configured module search path = ['/home/tester/.ansible/plugins/modules', '/usr/share/ansible/plugins/modules'] ansible python module location = /usr/lib/python3.9/site-packages/ansible executable location = /usr/bin/ansible-playbook python version = 3.9.7 (default, Aug 30 2021, 00:00:00) [GCC 11.2.1 20210728 (Red Hat 11.2.1-1)] Using /etc/ansible/ansible.cfg as config file Skipping callback 'actionable', as we already have a stdout callback. Skipping callback 'counter_enabled', as we already have a stdout callback. Skipping callback 'debug', as we already have a stdout callback. Skipping callback 'dense', as we already have a stdout callback. Skipping callback 'dense', as we already have a stdout callback. Skipping callback 'full_skip', as we already have a stdout callback. Skipping callback 'json', as we already have a stdout callback. Skipping callback 'minimal', as we already have a stdout callback. Skipping callback 'null', as we already have a stdout callback. Skipping callback 'oneline', as we already have a stdout callback. Skipping callback 'selective', as we already have a stdout callback. Skipping callback 'skippy', as we already have a stdout callback. Skipping callback 'stderr', as we already have a stdout callback. Skipping callback 'unixy', as we already have a stdout callback. Skipping callback 'yaml', as we already have a stdout callback. PLAYBOOK: _setup.yml *********************************************************** 2 plays in /tmp/tmpsm2p1xmh/_setup.yml PLAY [Fail when only localhost is available] *********************************** META: ran handlers TASK [debug] ******************************************************************* task path: /tmp/tmpsm2p1xmh/_setup.yml:5 ok: [/cache/rhel-7.qcow2] => { "groups": { "all": [ "/cache/rhel-7.qcow2" ], "localhost": [ "/cache/rhel-7.qcow2" ], "subjects": [ "/cache/rhel-7.qcow2" ], "ungrouped": [] } } TASK [fail] ******************************************************************** task path: /tmp/tmpsm2p1xmh/_setup.yml:7 skipping: [/cache/rhel-7.qcow2] => {"changed": false, "skip_reason": "Conditional result was False"} META: ran handlers META: ran handlers PLAY [Setup repos] ************************************************************* META: ran handlers TASK [set up internal repositories] ******************************************** task path: /tmp/tmpsm2p1xmh/_setup.yml:16 changed: [/cache/rhel-7.qcow2] => (item=None) => {"censored": "the output has been hidden due to the fact that 'no_log: true' was specified for this result", "changed": true} changed: [/cache/rhel-7.qcow2] => (item=None) => {"censored": "the output has been hidden due to the fact that 'no_log: true' was specified for this result", "changed": true} changed: [/cache/rhel-7.qcow2] => (item=None) => {"censored": "the output has been hidden due to the fact that 'no_log: true' was specified for this result", "changed": true} changed: [/cache/rhel-7.qcow2] => (item=None) => {"censored": "the output has been hidden due to the fact that 'no_log: true' was specified for this result", "changed": true} changed: [/cache/rhel-7.qcow2] => {"censored": "the output has been hidden due to the fact that 'no_log: true' was specified for this result", "changed": true} META: ran handlers META: ran handlers PLAY RECAP ********************************************************************* /cache/rhel-7.qcow2 : ok=2 changed=1 unreachable=0 failed=0 skipped=1 rescued=0 ignored=0 PLAYBOOK: tests_zone.yml ******************************************************* 1 plays in /tmp/tmpsm2p1xmh/tests/tests_zone.yml PLAY [Ensure that the roles runs with default parameters] ********************** TASK [Gathering Facts] ********************************************************* task path: /tmp/tmpsm2p1xmh/tests/tests_zone.yml:1 ok: [/cache/rhel-7.qcow2] META: ran handlers TASK [include_role : linux-system-roles.firewall] ****************************** task path: /tmp/tmpsm2p1xmh/tests/tests_zone.yml:6 statically imported: /tmp/tmpsm2p1xmh/tasks/firewalld.yml TASK [linux-system-roles.firewall : Install firewalld] ************************* task path: /tmp/tmpsm2p1xmh/tasks/firewalld.yml:2 changed: [/cache/rhel-7.qcow2] => {"changed": true, "changes": {"installed": ["firewalld"]}, "msg": "", "rc": 0, "results": ["Loaded plugins: search-disabled-repos\nResolving Dependencies\n--> Running transaction check\n---> Package firewalld.noarch 0:0.6.3-11.el7 will be installed\n--> Processing Dependency: python-firewall = 0.6.3-11.el7 for package: firewalld-0.6.3-11.el7.noarch\n--> Processing Dependency: firewalld-filesystem = 0.6.3-11.el7 for package: firewalld-0.6.3-11.el7.noarch\n--> Processing Dependency: ipset for package: firewalld-0.6.3-11.el7.noarch\n--> Processing Dependency: ebtables for package: firewalld-0.6.3-11.el7.noarch\n--> Running transaction check\n---> Package ebtables.x86_64 0:2.0.10-16.el7 will be installed\n---> Package firewalld-filesystem.noarch 0:0.6.3-11.el7 will be installed\n---> Package ipset.x86_64 0:7.1-1.el7 will be installed\n--> Processing Dependency: ipset-libs(x86-64) = 7.1-1.el7 for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13(LIBIPSET_4.8)(64bit) for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13(LIBIPSET_2.0)(64bit) for package: ipset-7.1-1.el7.x86_64\n--> Processing Dependency: libipset.so.13()(64bit) for package: ipset-7.1-1.el7.x86_64\n---> Package python-firewall.noarch 0:0.6.3-11.el7 will be installed\n--> Processing Dependency: python-slip-dbus for package: python-firewall-0.6.3-11.el7.noarch\n--> Running transaction check\n---> Package ipset-libs.x86_64 0:7.1-1.el7 will be installed\n---> Package python-slip-dbus.noarch 0:0.4.0-4.el7 will be installed\n--> Processing Dependency: python-slip = 0.4.0-4.el7 for package: python-slip-dbus-0.4.0-4.el7.noarch\n--> Running transaction check\n---> Package python-slip.noarch 0:0.4.0-4.el7 will be installed\n--> Finished Dependency Resolution\n\nDependencies Resolved\n\n================================================================================\n Package Arch Version Repository Size\n================================================================================\nInstalling:\n firewalld noarch 0.6.3-11.el7 rhel 448 k\nInstalling for dependencies:\n ebtables x86_64 2.0.10-16.el7 rhel 123 k\n firewalld-filesystem noarch 0.6.3-11.el7 rhel 51 k\n ipset x86_64 7.1-1.el7 rhel 39 k\n ipset-libs x86_64 7.1-1.el7 rhel 64 k\n python-firewall noarch 0.6.3-11.el7 rhel 355 k\n python-slip noarch 0.4.0-4.el7 rhel 31 k\n python-slip-dbus noarch 0.4.0-4.el7 rhel 32 k\n\nTransaction Summary\n================================================================================\nInstall 1 Package (+7 Dependent packages)\n\nTotal download size: 1.1 M\nInstalled size: 4.5 M\nDownloading packages:\n--------------------------------------------------------------------------------\nTotal 15 MB/s | 1.1 MB 00:00 \nRunning transaction check\nRunning transaction test\nTransaction test succeeded\nRunning transaction\n Installing : ebtables-2.0.10-16.el7.x86_64 1/8 \n Installing : ipset-libs-7.1-1.el7.x86_64 2/8 \n Installing : ipset-7.1-1.el7.x86_64 3/8 \n Installing : python-slip-0.4.0-4.el7.noarch 4/8 \n Installing : python-slip-dbus-0.4.0-4.el7.noarch 5/8 \n Installing : python-firewall-0.6.3-11.el7.noarch 6/8 \n Installing : firewalld-filesystem-0.6.3-11.el7.noarch 7/8 \n Installing : firewalld-0.6.3-11.el7.noarch 8/8 \n Verifying : ipset-7.1-1.el7.x86_64 1/8 \n Verifying : python-firewall-0.6.3-11.el7.noarch 2/8 \n Verifying : firewalld-filesystem-0.6.3-11.el7.noarch 3/8 \n Verifying : firewalld-0.6.3-11.el7.noarch 4/8 \n Verifying : python-slip-0.4.0-4.el7.noarch 5/8 \n Verifying : python-slip-dbus-0.4.0-4.el7.noarch 6/8 \n Verifying : ipset-libs-7.1-1.el7.x86_64 7/8 \n Verifying : ebtables-2.0.10-16.el7.x86_64 8/8 \n\nInstalled:\n firewalld.noarch 0:0.6.3-11.el7 \n\nDependency Installed:\n ebtables.x86_64 0:2.0.10-16.el7 \n firewalld-filesystem.noarch 0:0.6.3-11.el7 \n ipset.x86_64 0:7.1-1.el7 \n ipset-libs.x86_64 0:7.1-1.el7 \n python-firewall.noarch 0:0.6.3-11.el7 \n python-slip.noarch 0:0.4.0-4.el7 \n python-slip-dbus.noarch 0:0.4.0-4.el7 \n\nComplete!\n"]} TASK [linux-system-roles.firewall : Install python-firewall] ******************* task path: /tmp/tmpsm2p1xmh/tasks/firewalld.yml:7 ok: [/cache/rhel-7.qcow2] => {"changed": false, "msg": "", "rc": 0, "results": ["python-firewall-0.6.3-11.el7.noarch providing python-firewall is already installed"]} TASK [linux-system-roles.firewall : Install python3-firewall] ****************** task path: /tmp/tmpsm2p1xmh/tasks/firewalld.yml:13 skipping: [/cache/rhel-7.qcow2] => {"changed": false, "skip_reason": "Conditional result was False"} TASK [linux-system-roles.firewall : Enable and start firewalld service] ******** task path: /tmp/tmpsm2p1xmh/tasks/firewalld.yml:19 changed: [/cache/rhel-7.qcow2] => {"changed": true, "enabled": true, "name": "firewalld", "state": "started", "status": {"ActiveEnterTimestampMonotonic": "0", "ActiveExitTimestampMonotonic": "0", "ActiveState": "inactive", "After": "system.slice basic.target polkit.service dbus.service", "AllowIsolate": "no", "AmbientCapabilities": "0", "AssertResult": "no", "AssertTimestampMonotonic": "0", "Before": "network-pre.target multi-user.target shutdown.target", "BlockIOAccounting": "no", "BlockIOWeight": "18446744073709551615", "BusName": "org.fedoraproject.FirewallD1", "CPUAccounting": "no", "CPUQuotaPerSecUSec": "infinity", "CPUSchedulingPolicy": "0", "CPUSchedulingPriority": "0", "CPUSchedulingResetOnFork": "no", "CPUShares": "18446744073709551615", "CanIsolate": "no", "CanReload": "yes", "CanStart": "yes", "CanStop": "yes", "CapabilityBoundingSet": "18446744073709551615", "CollectMode": "inactive", "ConditionResult": "no", "ConditionTimestampMonotonic": "0", "Conflicts": "iptables.service shutdown.target ebtables.service ip6tables.service ipset.service", "ControlPID": "0", "DefaultDependencies": "yes", "Delegate": "no", "Description": "firewalld - dynamic firewall daemon", "DevicePolicy": "auto", "Documentation": "man:firewalld(1)", "EnvironmentFile": "/etc/sysconfig/firewalld (ignore_errors=yes)", "ExecMainCode": "0", "ExecMainExitTimestampMonotonic": "0", "ExecMainPID": "0", "ExecMainStartTimestampMonotonic": "0", "ExecMainStatus": "0", "ExecReload": "{ path=/bin/kill ; argv[]=/bin/kill -HUP $MAINPID ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "ExecStart": "{ path=/usr/sbin/firewalld ; argv[]=/usr/sbin/firewalld --nofork --nopid $FIREWALLD_ARGS ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "FailureAction": "none", "FileDescriptorStoreMax": "0", "FragmentPath": "/usr/lib/systemd/system/firewalld.service", "GuessMainPID": "yes", "IOScheduling": "0", "Id": "firewalld.service", "IgnoreOnIsolate": "no", "IgnoreOnSnapshot": "no", "IgnoreSIGPIPE": "yes", "InactiveEnterTimestampMonotonic": "0", "InactiveExitTimestampMonotonic": "0", "JobTimeoutAction": "none", "JobTimeoutUSec": "0", "KillMode": "mixed", "KillSignal": "15", "LimitAS": "18446744073709551615", "LimitCORE": "18446744073709551615", "LimitCPU": "18446744073709551615", "LimitDATA": "18446744073709551615", "LimitFSIZE": "18446744073709551615", "LimitLOCKS": "18446744073709551615", "LimitMEMLOCK": "65536", "LimitMSGQUEUE": "819200", "LimitNICE": "0", "LimitNOFILE": "4096", "LimitNPROC": "7162", "LimitRSS": "18446744073709551615", "LimitRTPRIO": "0", "LimitRTTIME": "18446744073709551615", "LimitSIGPENDING": "7162", "LimitSTACK": "18446744073709551615", "LoadState": "loaded", "MainPID": "0", "MemoryAccounting": "no", "MemoryCurrent": "18446744073709551615", "MemoryLimit": "18446744073709551615", "MountFlags": "0", "Names": "firewalld.service", "NeedDaemonReload": "no", "Nice": "0", "NoNewPrivileges": "no", "NonBlocking": "no", "NotifyAccess": "none", "OOMScoreAdjust": "0", "OnFailureJobMode": "replace", "PermissionsStartOnly": "no", "PrivateDevices": "no", "PrivateNetwork": "no", "PrivateTmp": "no", "ProtectHome": "no", "ProtectSystem": "no", "RefuseManualStart": "no", "RefuseManualStop": "no", "RemainAfterExit": "no", "Requires": "basic.target system.slice", "Restart": "no", "RestartUSec": "100ms", "Result": "success", "RootDirectoryStartOnly": "no", "RuntimeDirectoryMode": "0755", "SameProcessGroup": "no", "SecureBits": "0", "SendSIGHUP": "no", "SendSIGKILL": "yes", "Slice": "system.slice", "StandardError": "null", "StandardInput": "null", "StandardOutput": "null", "StartLimitAction": "none", "StartLimitBurst": "5", "StartLimitInterval": "10000000", "StartupBlockIOWeight": "18446744073709551615", "StartupCPUShares": "18446744073709551615", "StatusErrno": "0", "StopWhenUnneeded": "no", "SubState": "dead", "SyslogLevelPrefix": "yes", "SyslogPriority": "30", "SystemCallErrorNumber": "0", "TTYReset": "no", "TTYVHangup": "no", "TTYVTDisallocate": "no", "TasksAccounting": "no", "TasksCurrent": "18446744073709551615", "TasksMax": "18446744073709551615", "TimeoutStartUSec": "1min 30s", "TimeoutStopUSec": "1min 30s", "TimerSlackNSec": "50000", "Transient": "no", "Type": "dbus", "UMask": "0022", "UnitFilePreset": "enabled", "UnitFileState": "enabled", "WantedBy": "multi-user.target", "Wants": "network-pre.target", "WatchdogTimestampMonotonic": "0", "WatchdogUSec": "0"}} TASK [linux-system-roles.firewall : Configure firewall] ************************ task path: /tmp/tmpsm2p1xmh/tasks/main.yml:3 TASK [Verify used firewalld zones] ********************************************* task path: /tmp/tmpsm2p1xmh/tests/tests_zone.yml:14 statically imported: /tmp/tmpsm2p1xmh/tasks/firewalld.yml TASK [linux-system-roles.firewall : Install firewalld] ************************* task path: /tmp/tmpsm2p1xmh/tasks/firewalld.yml:2 ok: [/cache/rhel-7.qcow2] => {"changed": false, "msg": "", "rc": 0, "results": ["firewalld-0.6.3-11.el7.noarch providing firewalld is already installed"]} TASK [linux-system-roles.firewall : Install python-firewall] ******************* task path: /tmp/tmpsm2p1xmh/tasks/firewalld.yml:7 ok: [/cache/rhel-7.qcow2] => {"changed": false, "msg": "", "rc": 0, "results": ["python-firewall-0.6.3-11.el7.noarch providing python-firewall is already installed"]} TASK [linux-system-roles.firewall : Install python3-firewall] ****************** task path: /tmp/tmpsm2p1xmh/tasks/firewalld.yml:13 skipping: [/cache/rhel-7.qcow2] => {"changed": false, "skip_reason": "Conditional result was False"} TASK [linux-system-roles.firewall : Enable and start firewalld service] ******** task path: /tmp/tmpsm2p1xmh/tasks/firewalld.yml:19 ok: [/cache/rhel-7.qcow2] => {"changed": false, "enabled": true, "name": "firewalld", "state": "started", "status": {"ActiveEnterTimestamp": "Thu 2021-11-11 17:17:39 EST", "ActiveEnterTimestampMonotonic": "19401020", "ActiveExitTimestampMonotonic": "0", "ActiveState": "active", "After": "system.slice basic.target polkit.service dbus.service", "AllowIsolate": "no", "AmbientCapabilities": "0", "AssertResult": "yes", "AssertTimestamp": "Thu 2021-11-11 17:17:38 EST", "AssertTimestampMonotonic": "19196214", "Before": "network-pre.target multi-user.target shutdown.target", "BlockIOAccounting": "no", "BlockIOWeight": "18446744073709551615", "BusName": "org.fedoraproject.FirewallD1", "CPUAccounting": "no", "CPUQuotaPerSecUSec": "infinity", "CPUSchedulingPolicy": "0", "CPUSchedulingPriority": "0", "CPUSchedulingResetOnFork": "no", "CPUShares": "18446744073709551615", "CanIsolate": "no", "CanReload": "yes", "CanStart": "yes", "CanStop": "yes", "CapabilityBoundingSet": "18446744073709551615", "CollectMode": "inactive", "ConditionResult": "yes", "ConditionTimestamp": "Thu 2021-11-11 17:17:38 EST", "ConditionTimestampMonotonic": "19196214", "Conflicts": "iptables.service shutdown.target ebtables.service ip6tables.service ipset.service", "ControlGroup": "/system.slice/firewalld.service", "ControlPID": "0", "DefaultDependencies": "yes", "Delegate": "no", "Description": "firewalld - dynamic firewall daemon", "DevicePolicy": "auto", "Documentation": "man:firewalld(1)", "EnvironmentFile": "/etc/sysconfig/firewalld (ignore_errors=yes)", "ExecMainCode": "0", "ExecMainExitTimestampMonotonic": "0", "ExecMainPID": "8171", "ExecMainStartTimestamp": "Thu 2021-11-11 17:17:38 EST", "ExecMainStartTimestampMonotonic": "19197323", "ExecMainStatus": "0", "ExecReload": "{ path=/bin/kill ; argv[]=/bin/kill -HUP $MAINPID ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "ExecStart": "{ path=/usr/sbin/firewalld ; argv[]=/usr/sbin/firewalld --nofork --nopid $FIREWALLD_ARGS ; ignore_errors=no ; start_time=[Thu 2021-11-11 17:17:38 EST] ; stop_time=[n/a] ; pid=8171 ; code=(null) ; status=0/0 }", "FailureAction": "none", "FileDescriptorStoreMax": "0", "FragmentPath": "/usr/lib/systemd/system/firewalld.service", "GuessMainPID": "yes", "IOScheduling": "0", "Id": "firewalld.service", "IgnoreOnIsolate": "no", "IgnoreOnSnapshot": "no", "IgnoreSIGPIPE": "yes", "InactiveEnterTimestampMonotonic": "0", "InactiveExitTimestamp": "Thu 2021-11-11 17:17:38 EST", "InactiveExitTimestampMonotonic": "19197357", "JobTimeoutAction": "none", "JobTimeoutUSec": "0", "KillMode": "mixed", "KillSignal": "15", "LimitAS": "18446744073709551615", "LimitCORE": "18446744073709551615", "LimitCPU": "18446744073709551615", "LimitDATA": "18446744073709551615", "LimitFSIZE": "18446744073709551615", "LimitLOCKS": "18446744073709551615", "LimitMEMLOCK": "65536", "LimitMSGQUEUE": "819200", "LimitNICE": "0", "LimitNOFILE": "4096", "LimitNPROC": "7162", "LimitRSS": "18446744073709551615", "LimitRTPRIO": "0", "LimitRTTIME": "18446744073709551615", "LimitSIGPENDING": "7162", "LimitSTACK": "18446744073709551615", "LoadState": "loaded", "MainPID": "8171", "MemoryAccounting": "no", "MemoryCurrent": "18446744073709551615", "MemoryLimit": "18446744073709551615", "MountFlags": "0", "Names": "firewalld.service", "NeedDaemonReload": "no", "Nice": "0", "NoNewPrivileges": "no", "NonBlocking": "no", "NotifyAccess": "none", "OOMScoreAdjust": "0", "OnFailureJobMode": "replace", "PermissionsStartOnly": "no", "PrivateDevices": "no", "PrivateNetwork": "no", "PrivateTmp": "no", "ProtectHome": "no", "ProtectSystem": "no", "RefuseManualStart": "no", "RefuseManualStop": "no", "RemainAfterExit": "no", "Requires": "basic.target system.slice", "Restart": "no", "RestartUSec": "100ms", "Result": "success", "RootDirectoryStartOnly": "no", "RuntimeDirectoryMode": "0755", "SameProcessGroup": "no", "SecureBits": "0", "SendSIGHUP": "no", "SendSIGKILL": "yes", "Slice": "system.slice", "StandardError": "null", "StandardInput": "null", "StandardOutput": "null", "StartLimitAction": "none", "StartLimitBurst": "5", "StartLimitInterval": "10000000", "StartupBlockIOWeight": "18446744073709551615", "StartupCPUShares": "18446744073709551615", "StatusErrno": "0", "StopWhenUnneeded": "no", "SubState": "running", "SyslogLevelPrefix": "yes", "SyslogPriority": "30", "SystemCallErrorNumber": "0", "TTYReset": "no", "TTYVHangup": "no", "TTYVTDisallocate": "no", "TasksAccounting": "no", "TasksCurrent": "18446744073709551615", "TasksMax": "18446744073709551615", "TimeoutStartUSec": "1min 30s", "TimeoutStopUSec": "1min 30s", "TimerSlackNSec": "50000", "Transient": "no", "Type": "dbus", "UMask": "0022", "UnitFilePreset": "enabled", "UnitFileState": "enabled", "WantedBy": "multi-user.target", "Wants": "network-pre.target", "WatchdogTimestamp": "Thu 2021-11-11 17:17:39 EST", "WatchdogTimestampMonotonic": "19400633", "WatchdogUSec": "0"}} TASK [linux-system-roles.firewall : Configure firewall] ************************ task path: /tmp/tmpsm2p1xmh/tasks/main.yml:3 ok: [/cache/rhel-7.qcow2] => (item={'zone': 'internal', 'state': 'enabled'}) => {"ansible_loop_var": "item", "changed": false, "item": {"state": "enabled", "zone": "internal"}} ok: [/cache/rhel-7.qcow2] => (item={'zone': 'external', 'state': 'enabled'}) => {"ansible_loop_var": "item", "changed": false, "item": {"state": "enabled", "zone": "external"}} ok: [/cache/rhel-7.qcow2] => (item={'zone': 'trusted', 'state': 'enabled'}) => {"ansible_loop_var": "item", "changed": false, "item": {"state": "enabled", "zone": "trusted"}} TASK [Fail on missing zones] *************************************************** task path: /tmp/tmpsm2p1xmh/tests/tests_zone.yml:26 skipping: [/cache/rhel-7.qcow2] => {"changed": false, "skip_reason": "Conditional result was False"} TASK [Setup firewalld] ********************************************************* task path: /tmp/tmpsm2p1xmh/tests/tests_zone.yml:32 statically imported: /tmp/tmpsm2p1xmh/tasks/firewalld.yml TASK [linux-system-roles.firewall : Install firewalld] ************************* task path: /tmp/tmpsm2p1xmh/tasks/firewalld.yml:2 ok: [/cache/rhel-7.qcow2] => {"changed": false, "msg": "", "rc": 0, "results": ["firewalld-0.6.3-11.el7.noarch providing firewalld is already installed"]} TASK [linux-system-roles.firewall : Install python-firewall] ******************* task path: /tmp/tmpsm2p1xmh/tasks/firewalld.yml:7 ok: [/cache/rhel-7.qcow2] => {"changed": false, "msg": "", "rc": 0, "results": ["python-firewall-0.6.3-11.el7.noarch providing python-firewall is already installed"]} TASK [linux-system-roles.firewall : Install python3-firewall] ****************** task path: /tmp/tmpsm2p1xmh/tasks/firewalld.yml:13 skipping: [/cache/rhel-7.qcow2] => {"changed": false, "skip_reason": "Conditional result was False"} TASK [linux-system-roles.firewall : Enable and start firewalld service] ******** task path: /tmp/tmpsm2p1xmh/tasks/firewalld.yml:19 ok: [/cache/rhel-7.qcow2] => {"changed": false, "enabled": true, "name": "firewalld", "state": "started", "status": {"ActiveEnterTimestamp": "Thu 2021-11-11 17:17:39 EST", "ActiveEnterTimestampMonotonic": "19401020", "ActiveExitTimestampMonotonic": "0", "ActiveState": "active", "After": "system.slice basic.target polkit.service dbus.service", "AllowIsolate": "no", "AmbientCapabilities": "0", "AssertResult": "yes", "AssertTimestamp": "Thu 2021-11-11 17:17:38 EST", "AssertTimestampMonotonic": "19196214", "Before": "network-pre.target multi-user.target shutdown.target", "BlockIOAccounting": "no", "BlockIOWeight": "18446744073709551615", "BusName": "org.fedoraproject.FirewallD1", "CPUAccounting": "no", "CPUQuotaPerSecUSec": "infinity", "CPUSchedulingPolicy": "0", "CPUSchedulingPriority": "0", "CPUSchedulingResetOnFork": "no", "CPUShares": "18446744073709551615", "CanIsolate": "no", "CanReload": "yes", "CanStart": "yes", "CanStop": "yes", "CapabilityBoundingSet": "18446744073709551615", "CollectMode": "inactive", "ConditionResult": "yes", "ConditionTimestamp": "Thu 2021-11-11 17:17:38 EST", "ConditionTimestampMonotonic": "19196214", "Conflicts": "iptables.service shutdown.target ebtables.service ip6tables.service ipset.service", "ControlGroup": "/system.slice/firewalld.service", "ControlPID": "0", "DefaultDependencies": "yes", "Delegate": "no", "Description": "firewalld - dynamic firewall daemon", "DevicePolicy": "auto", "Documentation": "man:firewalld(1)", "EnvironmentFile": "/etc/sysconfig/firewalld (ignore_errors=yes)", "ExecMainCode": "0", "ExecMainExitTimestampMonotonic": "0", "ExecMainPID": "8171", "ExecMainStartTimestamp": "Thu 2021-11-11 17:17:38 EST", "ExecMainStartTimestampMonotonic": "19197323", "ExecMainStatus": "0", "ExecReload": "{ path=/bin/kill ; argv[]=/bin/kill -HUP $MAINPID ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "ExecStart": "{ path=/usr/sbin/firewalld ; argv[]=/usr/sbin/firewalld --nofork --nopid $FIREWALLD_ARGS ; ignore_errors=no ; start_time=[Thu 2021-11-11 17:17:38 EST] ; stop_time=[n/a] ; pid=8171 ; code=(null) ; status=0/0 }", "FailureAction": "none", "FileDescriptorStoreMax": "0", "FragmentPath": "/usr/lib/systemd/system/firewalld.service", "GuessMainPID": "yes", "IOScheduling": "0", "Id": "firewalld.service", "IgnoreOnIsolate": "no", "IgnoreOnSnapshot": "no", "IgnoreSIGPIPE": "yes", "InactiveEnterTimestampMonotonic": "0", "InactiveExitTimestamp": "Thu 2021-11-11 17:17:38 EST", "InactiveExitTimestampMonotonic": "19197357", "JobTimeoutAction": "none", "JobTimeoutUSec": "0", "KillMode": "mixed", "KillSignal": "15", "LimitAS": "18446744073709551615", "LimitCORE": "18446744073709551615", "LimitCPU": "18446744073709551615", "LimitDATA": "18446744073709551615", "LimitFSIZE": "18446744073709551615", "LimitLOCKS": "18446744073709551615", "LimitMEMLOCK": "65536", "LimitMSGQUEUE": "819200", "LimitNICE": "0", "LimitNOFILE": "4096", "LimitNPROC": "7162", "LimitRSS": "18446744073709551615", "LimitRTPRIO": "0", "LimitRTTIME": "18446744073709551615", "LimitSIGPENDING": "7162", "LimitSTACK": "18446744073709551615", "LoadState": "loaded", "MainPID": "8171", "MemoryAccounting": "no", "MemoryCurrent": "18446744073709551615", "MemoryLimit": "18446744073709551615", "MountFlags": "0", "Names": "firewalld.service", "NeedDaemonReload": "no", "Nice": "0", "NoNewPrivileges": "no", "NonBlocking": "no", "NotifyAccess": "none", "OOMScoreAdjust": "0", "OnFailureJobMode": "replace", "PermissionsStartOnly": "no", "PrivateDevices": "no", "PrivateNetwork": "no", "PrivateTmp": "no", "ProtectHome": "no", "ProtectSystem": "no", "RefuseManualStart": "no", "RefuseManualStop": "no", "RemainAfterExit": "no", "Requires": "basic.target system.slice", "Restart": "no", "RestartUSec": "100ms", "Result": "success", "RootDirectoryStartOnly": "no", "RuntimeDirectoryMode": "0755", "SameProcessGroup": "no", "SecureBits": "0", "SendSIGHUP": "no", "SendSIGKILL": "yes", "Slice": "system.slice", "StandardError": "null", "StandardInput": "null", "StandardOutput": "null", "StartLimitAction": "none", "StartLimitBurst": "5", "StartLimitInterval": "10000000", "StartupBlockIOWeight": "18446744073709551615", "StartupCPUShares": "18446744073709551615", "StatusErrno": "0", "StopWhenUnneeded": "no", "SubState": "running", "SyslogLevelPrefix": "yes", "SyslogPriority": "30", "SystemCallErrorNumber": "0", "TTYReset": "no", "TTYVHangup": "no", "TTYVTDisallocate": "no", "TasksAccounting": "no", "TasksCurrent": "18446744073709551615", "TasksMax": "18446744073709551615", "TimeoutStartUSec": "1min 30s", "TimeoutStopUSec": "1min 30s", "TimerSlackNSec": "50000", "Transient": "no", "Type": "dbus", "UMask": "0022", "UnitFilePreset": "enabled", "UnitFileState": "enabled", "WantedBy": "multi-user.target", "Wants": "network-pre.target", "WatchdogTimestamp": "Thu 2021-11-11 17:17:39 EST", "WatchdogTimestampMonotonic": "19400633", "WatchdogUSec": "0"}} TASK [linux-system-roles.firewall : Configure firewall] ************************ task path: /tmp/tmpsm2p1xmh/tasks/main.yml:3 changed: [/cache/rhel-7.qcow2] => (item={'zone': 'internal', 'service': ['tftp', 'ftp'], 'port': ['443/tcp', '443/udp'], 'forward_port': ['447/tcp;;1.2.3.4', '448/tcp;;1.2.3.5'], 'state': 'enabled'}) => {"ansible_loop_var": "item", "changed": true, "item": {"forward_port": ["447/tcp;;1.2.3.4", "448/tcp;;1.2.3.5"], "port": ["443/tcp", "443/udp"], "service": ["tftp", "ftp"], "state": "enabled", "zone": "internal"}} TASK [Fail if no changes are done] ********************************************* task path: /tmp/tmpsm2p1xmh/tests/tests_zone.yml:45 skipping: [/cache/rhel-7.qcow2] => {"changed": false, "skip_reason": "Conditional result was False"} TASK [Setup firewalld again] *************************************************** task path: /tmp/tmpsm2p1xmh/tests/tests_zone.yml:51 TASK [linux-system-roles.firewall : Install firewalld] ************************* task path: /tmp/tmpsm2p1xmh/tasks/firewalld.yml:2 ok: [/cache/rhel-7.qcow2] => {"changed": false, "msg": "", "rc": 0, "results": ["firewalld-0.6.3-11.el7.noarch providing firewalld is already installed"]} TASK [linux-system-roles.firewall : Install python-firewall] ******************* task path: /tmp/tmpsm2p1xmh/tasks/firewalld.yml:7 ok: [/cache/rhel-7.qcow2] => {"changed": false, "msg": "", "rc": 0, "results": ["python-firewall-0.6.3-11.el7.noarch providing python-firewall is already installed"]} TASK [linux-system-roles.firewall : Install python3-firewall] ****************** task path: /tmp/tmpsm2p1xmh/tasks/firewalld.yml:13 skipping: [/cache/rhel-7.qcow2] => {"changed": false, "skip_reason": "Conditional result was False"} TASK [linux-system-roles.firewall : Enable and start firewalld service] ******** task path: /tmp/tmpsm2p1xmh/tasks/firewalld.yml:19 ok: [/cache/rhel-7.qcow2] => {"changed": false, "enabled": true, "name": "firewalld", "state": "started", "status": {"ActiveEnterTimestamp": "Thu 2021-11-11 17:17:39 EST", "ActiveEnterTimestampMonotonic": "19401020", "ActiveExitTimestampMonotonic": "0", "ActiveState": "active", "After": "system.slice basic.target polkit.service dbus.service", "AllowIsolate": "no", "AmbientCapabilities": "0", "AssertResult": "yes", "AssertTimestamp": "Thu 2021-11-11 17:17:38 EST", "AssertTimestampMonotonic": "19196214", "Before": "network-pre.target multi-user.target shutdown.target", "BlockIOAccounting": "no", "BlockIOWeight": "18446744073709551615", "BusName": "org.fedoraproject.FirewallD1", "CPUAccounting": "no", "CPUQuotaPerSecUSec": "infinity", "CPUSchedulingPolicy": "0", "CPUSchedulingPriority": "0", "CPUSchedulingResetOnFork": "no", "CPUShares": "18446744073709551615", "CanIsolate": "no", "CanReload": "yes", "CanStart": "yes", "CanStop": "yes", "CapabilityBoundingSet": "18446744073709551615", "CollectMode": "inactive", "ConditionResult": "yes", "ConditionTimestamp": "Thu 2021-11-11 17:17:38 EST", "ConditionTimestampMonotonic": "19196214", "Conflicts": "iptables.service shutdown.target ebtables.service ip6tables.service ipset.service", "ControlGroup": "/system.slice/firewalld.service", "ControlPID": "0", "DefaultDependencies": "yes", "Delegate": "no", "Description": "firewalld - dynamic firewall daemon", "DevicePolicy": "auto", "Documentation": "man:firewalld(1)", "EnvironmentFile": "/etc/sysconfig/firewalld (ignore_errors=yes)", "ExecMainCode": "0", "ExecMainExitTimestampMonotonic": "0", "ExecMainPID": "8171", "ExecMainStartTimestamp": "Thu 2021-11-11 17:17:38 EST", "ExecMainStartTimestampMonotonic": "19197323", "ExecMainStatus": "0", "ExecReload": "{ path=/bin/kill ; argv[]=/bin/kill -HUP $MAINPID ; ignore_errors=no ; start_time=[n/a] ; stop_time=[n/a] ; pid=0 ; code=(null) ; status=0/0 }", "ExecStart": "{ path=/usr/sbin/firewalld ; argv[]=/usr/sbin/firewalld --nofork --nopid $FIREWALLD_ARGS ; ignore_errors=no ; start_time=[Thu 2021-11-11 17:17:38 EST] ; stop_time=[n/a] ; pid=8171 ; code=(null) ; status=0/0 }", "FailureAction": "none", "FileDescriptorStoreMax": "0", "FragmentPath": "/usr/lib/systemd/system/firewalld.service", "GuessMainPID": "yes", "IOScheduling": "0", "Id": "firewalld.service", "IgnoreOnIsolate": "no", "IgnoreOnSnapshot": "no", "IgnoreSIGPIPE": "yes", "InactiveEnterTimestampMonotonic": "0", "InactiveExitTimestamp": "Thu 2021-11-11 17:17:38 EST", "InactiveExitTimestampMonotonic": "19197357", "JobTimeoutAction": "none", "JobTimeoutUSec": "0", "KillMode": "mixed", "KillSignal": "15", "LimitAS": "18446744073709551615", "LimitCORE": "18446744073709551615", "LimitCPU": "18446744073709551615", "LimitDATA": "18446744073709551615", "LimitFSIZE": "18446744073709551615", "LimitLOCKS": "18446744073709551615", "LimitMEMLOCK": "65536", "LimitMSGQUEUE": "819200", "LimitNICE": "0", "LimitNOFILE": "4096", "LimitNPROC": "7162", "LimitRSS": "18446744073709551615", "LimitRTPRIO": "0", "LimitRTTIME": "18446744073709551615", "LimitSIGPENDING": "7162", "LimitSTACK": "18446744073709551615", "LoadState": "loaded", "MainPID": "8171", "MemoryAccounting": "no", "MemoryCurrent": "18446744073709551615", "MemoryLimit": "18446744073709551615", "MountFlags": "0", "Names": "firewalld.service", "NeedDaemonReload": "no", "Nice": "0", "NoNewPrivileges": "no", "NonBlocking": "no", "NotifyAccess": "none", "OOMScoreAdjust": "0", "OnFailureJobMode": "replace", "PermissionsStartOnly": "no", "PrivateDevices": "no", "PrivateNetwork": "no", "PrivateTmp": "no", "ProtectHome": "no", "ProtectSystem": "no", "RefuseManualStart": "no", "RefuseManualStop": "no", "RemainAfterExit": "no", "Requires": "basic.target system.slice", "Restart": "no", "RestartUSec": "100ms", "Result": "success", "RootDirectoryStartOnly": "no", "RuntimeDirectoryMode": "0755", "SameProcessGroup": "no", "SecureBits": "0", "SendSIGHUP": "no", "SendSIGKILL": "yes", "Slice": "system.slice", "StandardError": "null", "StandardInput": "null", "StandardOutput": "null", "StartLimitAction": "none", "StartLimitBurst": "5", "StartLimitInterval": "10000000", "StartupBlockIOWeight": "18446744073709551615", "StartupCPUShares": "18446744073709551615", "StatusErrno": "0", "StopWhenUnneeded": "no", "SubState": "running", "SyslogLevelPrefix": "yes", "SyslogPriority": "30", "SystemCallErrorNumber": "0", "TTYReset": "no", "TTYVHangup": "no", "TTYVTDisallocate": "no", "TasksAccounting": "no", "TasksCurrent": "18446744073709551615", "TasksMax": "18446744073709551615", "TimeoutStartUSec": "1min 30s", "TimeoutStopUSec": "1min 30s", "TimerSlackNSec": "50000", "Transient": "no", "Type": "dbus", "UMask": "0022", "UnitFilePreset": "enabled", "UnitFileState": "enabled", "WantedBy": "multi-user.target", "Wants": "network-pre.target", "WatchdogTimestamp": "Thu 2021-11-11 17:17:39 EST", "WatchdogTimestampMonotonic": "19400633", "WatchdogUSec": "0"}} TASK [linux-system-roles.firewall : Configure firewall] ************************ task path: /tmp/tmpsm2p1xmh/tasks/main.yml:3 ok: [/cache/rhel-7.qcow2] => (item={'zone': 'internal', 'service': ['tftp', 'ftp'], 'port': ['443/tcp', '443/udp'], 'forward_port': ['447/tcp;;1.2.3.4', '448/tcp;;1.2.3.5'], 'state': 'enabled'}) => {"ansible_loop_var": "item", "changed": false, "item": {"forward_port": ["447/tcp;;1.2.3.4", "448/tcp;;1.2.3.5"], "port": ["443/tcp", "443/udp"], "service": ["tftp", "ftp"], "state": "enabled", "zone": "internal"}} TASK [Fail on newly changes] *************************************************** task path: /tmp/tmpsm2p1xmh/tests/tests_zone.yml:64 skipping: [/cache/rhel-7.qcow2] => {"changed": false, "skip_reason": "Conditional result was False"} TASK [Verify firewalld zone internal services] ********************************* task path: /tmp/tmpsm2p1xmh/tests/tests_zone.yml:70 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": ["firewall-cmd", "--permanent", "--zone=internal", "--list-services"], "delta": "0:00:00.280037", "end": "2021-11-11 17:17:47.884662", "failed_when_result": false, "rc": 0, "start": "2021-11-11 17:17:47.604625", "stderr": "", "stderr_lines": [], "stdout": "dhcpv6-client ftp mdns samba-client ssh tftp", "stdout_lines": ["dhcpv6-client ftp mdns samba-client ssh tftp"]} TASK [Verify firewalld zone internal ports] ************************************ task path: /tmp/tmpsm2p1xmh/tests/tests_zone.yml:77 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": ["firewall-cmd", "--permanent", "--zone=internal", "--list-ports"], "delta": "0:00:00.265818", "end": "2021-11-11 17:17:48.518992", "failed_when_result": false, "rc": 0, "start": "2021-11-11 17:17:48.253174", "stderr": "", "stderr_lines": [], "stdout": "443/tcp 443/udp", "stdout_lines": ["443/tcp 443/udp"]} TASK [Verify firewalld zone internal forward ports] **************************** task path: /tmp/tmpsm2p1xmh/tests/tests_zone.yml:84 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": ["firewall-cmd", "--permanent", "--zone=internal", "--list-forward-ports"], "delta": "0:00:00.279092", "end": "2021-11-11 17:17:49.164434", "failed_when_result": false, "rc": 0, "start": "2021-11-11 17:17:48.885342", "stderr": "", "stderr_lines": [], "stdout": "port=447:proto=tcp:toport=:toaddr=1.2.3.4\nport=448:proto=tcp:toport=:toaddr=1.2.3.5", "stdout_lines": ["port=447:proto=tcp:toport=:toaddr=1.2.3.4", "port=448:proto=tcp:toport=:toaddr=1.2.3.5"]} TASK [Reset to zone defaults] ************************************************** task path: /tmp/tmpsm2p1xmh/tests/tests_zone.yml:97 changed: [/cache/rhel-7.qcow2] => {"changed": true, "cmd": "firewall-cmd --permanent --load-zone-defaults=internal\nfirewall-cmd --permanent --load-zone-defaults=external\nfirewall-cmd --permanent --load-zone-defaults=trusted\nfirewall-cmd --reload\n", "delta": "0:00:01.267607", "end": "2021-11-11 17:17:50.806116", "rc": 0, "start": "2021-11-11 17:17:49.538509", "stderr": "", "stderr_lines": [], "stdout": "success\nsuccess\nsuccess\nsuccess", "stdout_lines": ["success", "success", "success", "success"]} META: ran handlers META: ran handlers PLAY RECAP ********************************************************************* /cache/rhel-7.qcow2 : ok=22 changed=8 unreachable=0 failed=0 skipped=9 rescued=0 ignored=0