ansible-playbook [core 2.17.12] config file = None configured module search path = ['/root/.ansible/plugins/modules', '/usr/share/ansible/plugins/modules'] ansible python module location = /usr/local/lib/python3.12/site-packages/ansible ansible collection location = /tmp/collections-pXN executable location = /usr/local/bin/ansible-playbook python version = 3.12.10 (main, May 9 2025, 00:00:00) [GCC 14.2.1 20250110 (Red Hat 14.2.1-7)] (/usr/bin/python3.12) jinja version = 3.1.6 libyaml = True No config file found; using defaults running playbook inside collection fedora.linux_system_roles Skipping callback 'debug', as we already have a stdout callback. Skipping callback 'json', as we already have a stdout callback. Skipping callback 'jsonl', as we already have a stdout callback. Skipping callback 'default', as we already have a stdout callback. Skipping callback 'minimal', as we already have a stdout callback. Skipping callback 'oneline', as we already have a stdout callback. PLAYBOOK: tests_match.yml ****************************************************** 1 plays in /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/tests/ssh/tests_match.yml PLAY [Verify Match and Host keywords are rendered as expected] ***************** TASK [Gathering Facts] ********************************************************* task path: /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/tests/ssh/tests_match.yml:2 Tuesday 17 June 2025 20:56:41 -0400 (0:00:00.026) 0:00:00.026 ********** [WARNING]: Platform linux on host managed-node1 is using the discovered Python interpreter at /usr/bin/python3.12, but future installation of another Python interpreter could change the meaning of that path. See https://docs.ansible.com/ansible- core/2.17/reference_appendices/interpreter_discovery.html for more information. ok: [managed-node1] TASK [Backup configuration files] ********************************************** task path: /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/tests/ssh/tests_match.yml:11 Tuesday 17 June 2025 20:56:42 -0400 (0:00:01.145) 0:00:01.172 ********** included: /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/tests/ssh/tasks/backup.yml for managed-node1 TASK [Setup] ******************************************************************* task path: /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/tests/ssh/tasks/backup.yml:2 Tuesday 17 June 2025 20:56:42 -0400 (0:00:00.016) 0:00:01.189 ********** included: /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/tests/ssh/tasks/setup.yml for managed-node1 TASK [Ensure facts used by test] *********************************************** task path: /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/tests/ssh/tasks/setup.yml:2 Tuesday 17 June 2025 20:56:42 -0400 (0:00:00.027) 0:00:01.216 ********** skipping: [managed-node1] => { "changed": false, "false_condition": "'os_family' not in ansible_facts", "skip_reason": "Conditional result was False" } TASK [Check if system is ostree] *********************************************** task path: /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/tests/ssh/tasks/setup.yml:10 Tuesday 17 June 2025 20:56:42 -0400 (0:00:00.019) 0:00:01.236 ********** ok: [managed-node1] => { "changed": false, "stat": { "exists": false } } TASK [Set flag to indicate system is ostree] *********************************** task path: /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/tests/ssh/tasks/setup.yml:15 Tuesday 17 June 2025 20:56:42 -0400 (0:00:00.496) 0:00:01.732 ********** ok: [managed-node1] => { "ansible_facts": { "__ssh_is_ostree": false }, "changed": false } TASK [Make sure openssh is installed before creating backup] ******************* task path: /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/tests/ssh/tasks/setup.yml:19 Tuesday 17 June 2025 20:56:42 -0400 (0:00:00.044) 0:00:01.777 ********** ok: [managed-node1] => { "changed": false, "rc": 0, "results": [] } MSG: Nothing to do TASK [Define common variables] ************************************************* task path: /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/tests/ssh/tasks/setup.yml:31 Tuesday 17 June 2025 20:56:43 -0400 (0:00:01.089) 0:00:02.866 ********** ok: [managed-node1] => { "ansible_facts": { "main_ssh_config": "/etc/ssh/ssh_config", "main_ssh_config_name": "ssh_config", "main_ssh_config_path": "/etc/ssh/" }, "changed": false } TASK [Define specific variables] *********************************************** task path: /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/tests/ssh/tasks/setup.yml:37 Tuesday 17 June 2025 20:56:43 -0400 (0:00:00.022) 0:00:02.889 ********** ok: [managed-node1] => { "ansible_facts": { "main_ssh_config": "/etc/ssh/ssh_config.d/00-ansible.conf", "main_ssh_config_name": "00-ansible.conf", "main_ssh_config_path": "/etc/ssh/ssh_config.d/" }, "changed": false } TASK [Create a temporary directory for backup files] *************************** task path: /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/tests/ssh/tasks/backup.yml:5 Tuesday 17 June 2025 20:56:43 -0400 (0:00:00.068) 0:00:02.957 ********** ok: [managed-node1] => { "changed": false, "gid": 0, "group": "root", "mode": "0700", "owner": "root", "path": "/tmp/ansible.a6491d5k", "secontext": "unconfined_u:object_r:user_tmp_t:s0", "size": 6, "state": "directory", "uid": 0 } TASK [Backup files] ************************************************************ task path: /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/tests/ssh/tasks/backup.yml:13 Tuesday 17 June 2025 20:56:44 -0400 (0:00:00.487) 0:00:03.444 ********** ok: [managed-node1] => (item=/etc/ssh/ssh_config.d/00-ansible.conf) => { "ansible_loop_var": "item", "changed": false, "cmd": "if test -f /etc/ssh/ssh_config.d/00-ansible.conf; then\n mkdir -p /tmp/ansible.a6491d5k/$(dirname /etc/ssh/ssh_config.d/00-ansible.conf);\n cp -a /etc/ssh/ssh_config.d/00-ansible.conf /tmp/ansible.a6491d5k/$(dirname /etc/ssh/ssh_config.d/00-ansible.conf)\nfi\n", "delta": "0:00:00.008281", "end": "2025-06-17 20:56:45.004896", "item": "/etc/ssh/ssh_config.d/00-ansible.conf", "rc": 0, "start": "2025-06-17 20:56:44.996615" } ok: [managed-node1] => (item=/etc/ssh/ssh_config) => { "ansible_loop_var": "item", "changed": false, "cmd": "if test -f /etc/ssh/ssh_config; then\n mkdir -p /tmp/ansible.a6491d5k/$(dirname /etc/ssh/ssh_config);\n cp -a /etc/ssh/ssh_config /tmp/ansible.a6491d5k/$(dirname /etc/ssh/ssh_config)\nfi\n", "delta": "0:00:00.007494", "end": "2025-06-17 20:56:45.418485", "item": "/etc/ssh/ssh_config", "rc": 0, "start": "2025-06-17 20:56:45.410991" } TASK [Run role] **************************************************************** task path: /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/tests/ssh/tests_match.yml:14 Tuesday 17 June 2025 20:56:45 -0400 (0:00:01.033) 0:00:04.477 ********** included: fedora.linux_system_roles.ssh for managed-node1 TASK [fedora.linux_system_roles.ssh : Set platform/version specific variables] *** task path: /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/main.yml:2 Tuesday 17 June 2025 20:56:45 -0400 (0:00:00.028) 0:00:04.505 ********** included: /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/set_vars.yml for managed-node1 TASK [fedora.linux_system_roles.ssh : Ensure ansible_facts used by role] ******* task path: /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/set_vars.yml:2 Tuesday 17 June 2025 20:56:45 -0400 (0:00:00.023) 0:00:04.528 ********** skipping: [managed-node1] => { "changed": false, "false_condition": "__ssh_required_facts | difference(ansible_facts.keys() | list) | length > 0", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.ssh : Check if system is ostree] *************** task path: /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/set_vars.yml:10 Tuesday 17 June 2025 20:56:45 -0400 (0:00:00.037) 0:00:04.566 ********** skipping: [managed-node1] => { "changed": false, "false_condition": "not __ssh_is_ostree is defined", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.ssh : Set flag to indicate system is ostree] *** task path: /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/set_vars.yml:15 Tuesday 17 June 2025 20:56:45 -0400 (0:00:00.026) 0:00:04.592 ********** skipping: [managed-node1] => { "changed": false, "false_condition": "not __ssh_is_ostree is defined", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.ssh : Check if transactional-update exists in /sbin] *** task path: /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/set_vars.yml:22 Tuesday 17 June 2025 20:56:45 -0400 (0:00:00.026) 0:00:04.618 ********** ok: [managed-node1] => { "changed": false, "stat": { "exists": false } } TASK [fedora.linux_system_roles.ssh : Set flag if transactional-update exists] *** task path: /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/set_vars.yml:27 Tuesday 17 June 2025 20:56:46 -0400 (0:00:00.398) 0:00:05.017 ********** ok: [managed-node1] => { "ansible_facts": { "__ssh_is_transactional": false }, "changed": false } TASK [fedora.linux_system_roles.ssh : Set platform/version specific variables] *** task path: /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/set_vars.yml:31 Tuesday 17 June 2025 20:56:46 -0400 (0:00:00.024) 0:00:05.042 ********** skipping: [managed-node1] => (item=RedHat.yml) => { "ansible_loop_var": "item", "changed": false, "false_condition": "__vars_file is file", "item": "RedHat.yml", "skip_reason": "Conditional result was False" } skipping: [managed-node1] => (item=CentOS.yml) => { "ansible_loop_var": "item", "changed": false, "false_condition": "__vars_file is file", "item": "CentOS.yml", "skip_reason": "Conditional result was False" } ok: [managed-node1] => (item=CentOS_10.yml) => { "ansible_facts": { "__ssh_defaults": { "Include": "/etc/ssh/ssh_config.d/*.conf" }, "__ssh_drop_in_name": "00-ansible", "__ssh_supports_drop_in": true }, "ansible_included_var_files": [ "/tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/roles/ssh/vars/CentOS_10.yml" ], "ansible_loop_var": "item", "changed": false, "item": "CentOS_10.yml" } ok: [managed-node1] => (item=CentOS_10.yml) => { "ansible_facts": { "__ssh_defaults": { "Include": "/etc/ssh/ssh_config.d/*.conf" }, "__ssh_drop_in_name": "00-ansible", "__ssh_supports_drop_in": true }, "ansible_included_var_files": [ "/tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/roles/ssh/vars/CentOS_10.yml" ], "ansible_loop_var": "item", "changed": false, "item": "CentOS_10.yml" } TASK [fedora.linux_system_roles.ssh : Ensure required packages are installed] *** task path: /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/main.yml:5 Tuesday 17 June 2025 20:56:46 -0400 (0:00:00.049) 0:00:05.092 ********** ok: [managed-node1] => { "changed": false, "rc": 0, "results": [] } MSG: Nothing to do TASK [fedora.linux_system_roles.ssh : Notify user that reboot is needed to apply changes] *** task path: /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/main.yml:17 Tuesday 17 June 2025 20:56:46 -0400 (0:00:00.857) 0:00:05.949 ********** skipping: [managed-node1] => { "false_condition": "__ssh_is_transactional | d(false)" } TASK [fedora.linux_system_roles.ssh : Reboot transactional update systems] ***** task path: /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/main.yml:22 Tuesday 17 June 2025 20:56:47 -0400 (0:00:00.072) 0:00:06.022 ********** skipping: [managed-node1] => { "changed": false, "false_condition": "__ssh_is_transactional | d(false)", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.ssh : Fail if reboot is needed and not set] **** task path: /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/main.yml:27 Tuesday 17 June 2025 20:56:47 -0400 (0:00:00.058) 0:00:06.080 ********** skipping: [managed-node1] => { "changed": false, "false_condition": "__ssh_is_transactional | d(false)", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.ssh : Gather information about the user for user configuration] *** task path: /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/main.yml:35 Tuesday 17 June 2025 20:56:47 -0400 (0:00:00.054) 0:00:06.135 ********** skipping: [managed-node1] => { "changed": false, "false_condition": "ssh_user is not none", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.ssh : Make sure the ~/.ssh/ directory exists and has expected permissions] *** task path: /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/main.yml:42 Tuesday 17 June 2025 20:56:47 -0400 (0:00:00.026) 0:00:06.161 ********** skipping: [managed-node1] => { "changed": false, "false_condition": "ssh_user is not none", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.ssh : Generate the configuration file] ********* task path: /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/main.yml:53 Tuesday 17 June 2025 20:56:47 -0400 (0:00:00.035) 0:00:06.196 ********** changed: [managed-node1] => { "backup_file": "/etc/ssh/ssh_config.d/00-ansible.conf.15723.2025-06-17@20:56:48~", "changed": true, "checksum": "6ae8488fc210ede71e5a06d5f6363d369149d110", "dest": "/etc/ssh/ssh_config.d/00-ansible.conf", "gid": 0, "group": "root", "md5sum": "932ce191cd92cf669dcdd883be130fe8", "mode": "0644", "owner": "root", "secontext": "system_u:object_r:etc_t:s0", "size": 191, "src": "/root/.ansible/tmp/ansible-tmp-1750208207.2891552-11296-181565643798763/.source.conf", "state": "file", "uid": 0 } TASK [Download the configuration file] ***************************************** task path: /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/tests/ssh/tests_match.yml:33 Tuesday 17 June 2025 20:56:48 -0400 (0:00:01.253) 0:00:07.450 ********** ok: [managed-node1] => { "changed": false, "content": "IwojIEFuc2libGUgbWFuYWdlZAojCiMgc3lzdGVtX3JvbGU6c3NoCgpNYXRjaCB1c2VyIHRlc3R1c2VyCiAgTG9nTGV2ZWwgREVCVUcyCk1hdGNoIGhvc3QgZXhhbXBsZQogIEhvc3RuYW1lIGV4YW1wbGUuY29tCkhvc3QgbG9jYWwKICBVc2VyIGxvY2FsdXNlcgpIb3N0IHJlbW90ZQogIEhvc3RuYW1lIHJlbW90ZS5leGFtcGxlLmNvbQo=", "encoding": "base64", "source": "/etc/ssh/ssh_config.d/00-ansible.conf" } TASK [Verify the options are in the file] ************************************** task path: /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/tests/ssh/tests_match.yml:38 Tuesday 17 June 2025 20:56:48 -0400 (0:00:00.438) 0:00:07.888 ********** ok: [managed-node1] => { "changed": false } MSG: All assertions passed TASK [Run first ssh in test mode to evaluate the configuration] **************** task path: /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/tests/ssh/tests_match.yml:54 Tuesday 17 June 2025 20:56:48 -0400 (0:00:00.084) 0:00:07.973 ********** ok: [managed-node1] => { "changed": false, "cmd": [ "ssh", "-G", "testuser@example" ], "delta": "0:00:00.008707", "end": "2025-06-17 20:56:49.351612", "rc": 0, "start": "2025-06-17 20:56:49.342905" } STDOUT: host example user testuser hostname example.com port 22 addressfamily any batchmode no canonicalizefallbacklocal yes canonicalizehostname false checkhostip no compression no controlmaster false enablesshkeysign no clearallforwardings no exitonforwardfailure no fingerprinthash SHA256 forwardx11 no forwardx11trusted yes gatewayports no gssapiauthentication yes gssapikeyexchange no gssapidelegatecredentials no gssapitrustdns no gssapirenewalforcesrekey no gssapikexalgorithms gss-curve25519-sha256-,gss-nistp256-sha256-,gss-group14-sha256-,gss-group16-sha512- hashknownhosts no hostbasedauthentication no identitiesonly no kbdinteractiveauthentication yes nohostauthenticationforlocalhost no passwordauthentication yes permitlocalcommand no proxyusefdpass no pubkeyauthentication true requesttty auto sessiontype default stdinnull no forkafterauthentication no streamlocalbindunlink no stricthostkeychecking ask tcpkeepalive yes tunnel false verifyhostkeydns false visualhostkey no updatehostkeys true enableescapecommandline no canonicalizemaxdots 1 connectionattempts 1 forwardx11timeout 1200 numberofpasswordprompts 3 serveralivecountmax 3 serveraliveinterval 0 requiredrsasize 2048 obscurekeystroketiming yes ciphers aes256-gcm@openssh.com,chacha20-poly1305@openssh.com,aes256-ctr,aes128-gcm@openssh.com,aes128-ctr hostkeyalgorithms ssh-ed25519-cert-v01@openssh.com,ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521-cert-v01@openssh.com,sk-ssh-ed25519-cert-v01@openssh.com,sk-ecdsa-sha2-nistp256-cert-v01@openssh.com,rsa-sha2-512-cert-v01@openssh.com,rsa-sha2-256-cert-v01@openssh.com,ssh-ed25519,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,sk-ssh-ed25519@openssh.com,sk-ecdsa-sha2-nistp256@openssh.com,rsa-sha2-512,rsa-sha2-256 hostbasedacceptedalgorithms ecdsa-sha2-nistp256,ecdsa-sha2-nistp256-cert-v01@openssh.com,sk-ecdsa-sha2-nistp256@openssh.com,sk-ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521,ecdsa-sha2-nistp521-cert-v01@openssh.com,ssh-ed25519,ssh-ed25519-cert-v01@openssh.com,sk-ssh-ed25519@openssh.com,sk-ssh-ed25519-cert-v01@openssh.com,rsa-sha2-256,rsa-sha2-256-cert-v01@openssh.com,rsa-sha2-512,rsa-sha2-512-cert-v01@openssh.com kexalgorithms mlkem768x25519-sha256,curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group14-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512 casignaturealgorithms ecdsa-sha2-nistp256,sk-ecdsa-sha2-nistp256@openssh.com,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,ssh-ed25519,sk-ssh-ed25519@openssh.com,rsa-sha2-256,rsa-sha2-512 loglevel DEBUG2 macs hmac-sha2-256-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha2-256,hmac-sha1,umac-128@openssh.com,hmac-sha2-512 securitykeyprovider internal pubkeyacceptedalgorithms ecdsa-sha2-nistp256,ecdsa-sha2-nistp256-cert-v01@openssh.com,sk-ecdsa-sha2-nistp256@openssh.com,sk-ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521,ecdsa-sha2-nistp521-cert-v01@openssh.com,ssh-ed25519,ssh-ed25519-cert-v01@openssh.com,sk-ssh-ed25519@openssh.com,sk-ssh-ed25519-cert-v01@openssh.com,rsa-sha2-256,rsa-sha2-256-cert-v01@openssh.com,rsa-sha2-512,rsa-sha2-512-cert-v01@openssh.com xauthlocation /usr/bin/xauth identityfile ~/.ssh/id_rsa identityfile ~/.ssh/id_ecdsa identityfile ~/.ssh/id_ecdsa_sk identityfile ~/.ssh/id_ed25519 identityfile ~/.ssh/id_ed25519_sk identityfile ~/.ssh/id_xmss canonicaldomains none globalknownhostsfile /etc/ssh/ssh_known_hosts /etc/ssh/ssh_known_hosts2 userknownhostsfile /root/.ssh/known_hosts /root/.ssh/known_hosts2 logverbose none channeltimeout none permitremoteopen any addkeystoagent false forwardagent no connecttimeout none tunneldevice any:any canonicalizePermittedcnames none controlpersist no escapechar ~ ipqos af21 cs1 rekeylimit 0 0 streamlocalbindmask 0177 syslogfacility USER TASK [Run second ssh in test mode to evaluate the configuration] *************** task path: /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/tests/ssh/tests_match.yml:59 Tuesday 17 June 2025 20:56:49 -0400 (0:00:00.455) 0:00:08.429 ********** ok: [managed-node1] => { "changed": false, "cmd": [ "ssh", "-G", "local" ], "delta": "0:00:00.007189", "end": "2025-06-17 20:56:49.774947", "rc": 0, "start": "2025-06-17 20:56:49.767758" } STDOUT: host local user localuser hostname local port 22 addressfamily any batchmode no canonicalizefallbacklocal yes canonicalizehostname false checkhostip no compression no controlmaster false enablesshkeysign no clearallforwardings no exitonforwardfailure no fingerprinthash SHA256 forwardx11 no forwardx11trusted yes gatewayports no gssapiauthentication yes gssapikeyexchange no gssapidelegatecredentials no gssapitrustdns no gssapirenewalforcesrekey no gssapikexalgorithms gss-curve25519-sha256-,gss-nistp256-sha256-,gss-group14-sha256-,gss-group16-sha512- hashknownhosts no hostbasedauthentication no identitiesonly no kbdinteractiveauthentication yes nohostauthenticationforlocalhost no passwordauthentication yes permitlocalcommand no proxyusefdpass no pubkeyauthentication true requesttty auto sessiontype default stdinnull no forkafterauthentication no streamlocalbindunlink no stricthostkeychecking ask tcpkeepalive yes tunnel false verifyhostkeydns false visualhostkey no updatehostkeys true enableescapecommandline no canonicalizemaxdots 1 connectionattempts 1 forwardx11timeout 1200 numberofpasswordprompts 3 serveralivecountmax 3 serveraliveinterval 0 requiredrsasize 2048 obscurekeystroketiming yes ciphers aes256-gcm@openssh.com,chacha20-poly1305@openssh.com,aes256-ctr,aes128-gcm@openssh.com,aes128-ctr hostkeyalgorithms ssh-ed25519-cert-v01@openssh.com,ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521-cert-v01@openssh.com,sk-ssh-ed25519-cert-v01@openssh.com,sk-ecdsa-sha2-nistp256-cert-v01@openssh.com,rsa-sha2-512-cert-v01@openssh.com,rsa-sha2-256-cert-v01@openssh.com,ssh-ed25519,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,sk-ssh-ed25519@openssh.com,sk-ecdsa-sha2-nistp256@openssh.com,rsa-sha2-512,rsa-sha2-256 hostbasedacceptedalgorithms ecdsa-sha2-nistp256,ecdsa-sha2-nistp256-cert-v01@openssh.com,sk-ecdsa-sha2-nistp256@openssh.com,sk-ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521,ecdsa-sha2-nistp521-cert-v01@openssh.com,ssh-ed25519,ssh-ed25519-cert-v01@openssh.com,sk-ssh-ed25519@openssh.com,sk-ssh-ed25519-cert-v01@openssh.com,rsa-sha2-256,rsa-sha2-256-cert-v01@openssh.com,rsa-sha2-512,rsa-sha2-512-cert-v01@openssh.com kexalgorithms mlkem768x25519-sha256,curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group14-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512 casignaturealgorithms ecdsa-sha2-nistp256,sk-ecdsa-sha2-nistp256@openssh.com,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,ssh-ed25519,sk-ssh-ed25519@openssh.com,rsa-sha2-256,rsa-sha2-512 loglevel INFO macs hmac-sha2-256-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha2-256,hmac-sha1,umac-128@openssh.com,hmac-sha2-512 securitykeyprovider internal pubkeyacceptedalgorithms ecdsa-sha2-nistp256,ecdsa-sha2-nistp256-cert-v01@openssh.com,sk-ecdsa-sha2-nistp256@openssh.com,sk-ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521,ecdsa-sha2-nistp521-cert-v01@openssh.com,ssh-ed25519,ssh-ed25519-cert-v01@openssh.com,sk-ssh-ed25519@openssh.com,sk-ssh-ed25519-cert-v01@openssh.com,rsa-sha2-256,rsa-sha2-256-cert-v01@openssh.com,rsa-sha2-512,rsa-sha2-512-cert-v01@openssh.com xauthlocation /usr/bin/xauth identityfile ~/.ssh/id_rsa identityfile ~/.ssh/id_ecdsa identityfile ~/.ssh/id_ecdsa_sk identityfile ~/.ssh/id_ed25519 identityfile ~/.ssh/id_ed25519_sk identityfile ~/.ssh/id_xmss canonicaldomains none globalknownhostsfile /etc/ssh/ssh_known_hosts /etc/ssh/ssh_known_hosts2 userknownhostsfile /root/.ssh/known_hosts /root/.ssh/known_hosts2 logverbose none channeltimeout none permitremoteopen any addkeystoagent false forwardagent no connecttimeout none tunneldevice any:any canonicalizePermittedcnames none controlpersist no escapechar ~ ipqos af21 cs1 rekeylimit 0 0 streamlocalbindmask 0177 syslogfacility USER TASK [Run third ssh in test mode to evaluate the configuration] **************** task path: /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/tests/ssh/tests_match.yml:64 Tuesday 17 June 2025 20:56:49 -0400 (0:00:00.421) 0:00:08.850 ********** ok: [managed-node1] => { "changed": false, "cmd": [ "ssh", "-G", "remote" ], "delta": "0:00:00.006987", "end": "2025-06-17 20:56:50.175569", "rc": 0, "start": "2025-06-17 20:56:50.168582" } STDOUT: host remote user root hostname remote.example.com port 22 addressfamily any batchmode no canonicalizefallbacklocal yes canonicalizehostname false checkhostip no compression no controlmaster false enablesshkeysign no clearallforwardings no exitonforwardfailure no fingerprinthash SHA256 forwardx11 no forwardx11trusted yes gatewayports no gssapiauthentication yes gssapikeyexchange no gssapidelegatecredentials no gssapitrustdns no gssapirenewalforcesrekey no gssapikexalgorithms gss-curve25519-sha256-,gss-nistp256-sha256-,gss-group14-sha256-,gss-group16-sha512- hashknownhosts no hostbasedauthentication no identitiesonly no kbdinteractiveauthentication yes nohostauthenticationforlocalhost no passwordauthentication yes permitlocalcommand no proxyusefdpass no pubkeyauthentication true requesttty auto sessiontype default stdinnull no forkafterauthentication no streamlocalbindunlink no stricthostkeychecking ask tcpkeepalive yes tunnel false verifyhostkeydns false visualhostkey no updatehostkeys true enableescapecommandline no canonicalizemaxdots 1 connectionattempts 1 forwardx11timeout 1200 numberofpasswordprompts 3 serveralivecountmax 3 serveraliveinterval 0 requiredrsasize 2048 obscurekeystroketiming yes ciphers aes256-gcm@openssh.com,chacha20-poly1305@openssh.com,aes256-ctr,aes128-gcm@openssh.com,aes128-ctr hostkeyalgorithms ssh-ed25519-cert-v01@openssh.com,ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521-cert-v01@openssh.com,sk-ssh-ed25519-cert-v01@openssh.com,sk-ecdsa-sha2-nistp256-cert-v01@openssh.com,rsa-sha2-512-cert-v01@openssh.com,rsa-sha2-256-cert-v01@openssh.com,ssh-ed25519,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,sk-ssh-ed25519@openssh.com,sk-ecdsa-sha2-nistp256@openssh.com,rsa-sha2-512,rsa-sha2-256 hostbasedacceptedalgorithms ecdsa-sha2-nistp256,ecdsa-sha2-nistp256-cert-v01@openssh.com,sk-ecdsa-sha2-nistp256@openssh.com,sk-ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521,ecdsa-sha2-nistp521-cert-v01@openssh.com,ssh-ed25519,ssh-ed25519-cert-v01@openssh.com,sk-ssh-ed25519@openssh.com,sk-ssh-ed25519-cert-v01@openssh.com,rsa-sha2-256,rsa-sha2-256-cert-v01@openssh.com,rsa-sha2-512,rsa-sha2-512-cert-v01@openssh.com kexalgorithms mlkem768x25519-sha256,curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group14-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512 casignaturealgorithms ecdsa-sha2-nistp256,sk-ecdsa-sha2-nistp256@openssh.com,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,ssh-ed25519,sk-ssh-ed25519@openssh.com,rsa-sha2-256,rsa-sha2-512 loglevel INFO macs hmac-sha2-256-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha2-256,hmac-sha1,umac-128@openssh.com,hmac-sha2-512 securitykeyprovider internal pubkeyacceptedalgorithms ecdsa-sha2-nistp256,ecdsa-sha2-nistp256-cert-v01@openssh.com,sk-ecdsa-sha2-nistp256@openssh.com,sk-ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521,ecdsa-sha2-nistp521-cert-v01@openssh.com,ssh-ed25519,ssh-ed25519-cert-v01@openssh.com,sk-ssh-ed25519@openssh.com,sk-ssh-ed25519-cert-v01@openssh.com,rsa-sha2-256,rsa-sha2-256-cert-v01@openssh.com,rsa-sha2-512,rsa-sha2-512-cert-v01@openssh.com xauthlocation /usr/bin/xauth identityfile ~/.ssh/id_rsa identityfile ~/.ssh/id_ecdsa identityfile ~/.ssh/id_ecdsa_sk identityfile ~/.ssh/id_ed25519 identityfile ~/.ssh/id_ed25519_sk identityfile ~/.ssh/id_xmss canonicaldomains none globalknownhostsfile /etc/ssh/ssh_known_hosts /etc/ssh/ssh_known_hosts2 userknownhostsfile /root/.ssh/known_hosts /root/.ssh/known_hosts2 logverbose none channeltimeout none permitremoteopen any addkeystoagent false forwardagent no connecttimeout none tunneldevice any:any canonicalizePermittedcnames none controlpersist no escapechar ~ ipqos af21 cs1 rekeylimit 0 0 streamlocalbindmask 0177 syslogfacility USER TASK [Verify the options are correctly evaluated] ****************************** task path: /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/tests/ssh/tests_match.yml:69 Tuesday 17 June 2025 20:56:50 -0400 (0:00:00.391) 0:00:09.241 ********** ok: [managed-node1] => { "changed": false } MSG: All assertions passed TASK [Restore configuration files] ********************************************* task path: /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/tests/ssh/tests_match.yml:85 Tuesday 17 June 2025 20:56:50 -0400 (0:00:00.110) 0:00:09.352 ********** included: /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/tests/ssh/tasks/restore.yml for managed-node1 TASK [Restore backed up files and remove what was not present] ***************** task path: /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/tests/ssh/tasks/restore.yml:2 Tuesday 17 June 2025 20:56:50 -0400 (0:00:00.025) 0:00:09.377 ********** ok: [managed-node1] => (item=/etc/ssh/ssh_config.d/00-ansible.conf) => { "ansible_loop_var": "item", "changed": false, "cmd": "if test -f /tmp/ansible.a6491d5k//etc/ssh/ssh_config.d/00-ansible.conf; then\n cp -a /tmp/ansible.a6491d5k//etc/ssh/ssh_config.d/00-ansible.conf $(dirname /etc/ssh/ssh_config.d/00-ansible.conf)\nelif test -f /etc/ssh/ssh_config.d/00-ansible.conf; then\n rm /etc/ssh/ssh_config.d/00-ansible.conf\nfi\n", "delta": "0:00:00.006148", "end": "2025-06-17 20:56:50.748937", "item": "/etc/ssh/ssh_config.d/00-ansible.conf", "rc": 0, "start": "2025-06-17 20:56:50.742789" } ok: [managed-node1] => (item=/etc/ssh/ssh_config) => { "ansible_loop_var": "item", "changed": false, "cmd": "if test -f /tmp/ansible.a6491d5k//etc/ssh/ssh_config; then\n cp -a /tmp/ansible.a6491d5k//etc/ssh/ssh_config $(dirname /etc/ssh/ssh_config)\nelif test -f /etc/ssh/ssh_config; then\n rm /etc/ssh/ssh_config\nfi\n", "delta": "0:00:00.006268", "end": "2025-06-17 20:56:51.136730", "item": "/etc/ssh/ssh_config", "rc": 0, "start": "2025-06-17 20:56:51.130462" } TASK [Remove temporary directory for backup files] ***************************** task path: /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/tests/ssh/tasks/restore.yml:15 Tuesday 17 June 2025 20:56:51 -0400 (0:00:00.828) 0:00:10.206 ********** ok: [managed-node1] => { "changed": false, "path": "/tmp/ansible.a6491d5k", "state": "absent" } PLAY RECAP ********************************************************************* managed-node1 : ok=26 changed=1 unreachable=0 failed=0 skipped=9 rescued=0 ignored=0 SYSTEM ROLES ERRORS BEGIN v1 [] SYSTEM ROLES ERRORS END v1 TASKS RECAP ******************************************************************** Tuesday 17 June 2025 20:56:51 -0400 (0:00:00.590) 0:00:10.796 ********** =============================================================================== fedora.linux_system_roles.ssh : Generate the configuration file --------- 1.25s /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/main.yml:53 Gathering Facts --------------------------------------------------------- 1.15s /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/tests/ssh/tests_match.yml:2 Make sure openssh is installed before creating backup ------------------- 1.09s /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/tests/ssh/tasks/setup.yml:19 Backup files ------------------------------------------------------------ 1.03s /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/tests/ssh/tasks/backup.yml:13 fedora.linux_system_roles.ssh : Ensure required packages are installed --- 0.86s /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/main.yml:5 Restore backed up files and remove what was not present ----------------- 0.83s /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/tests/ssh/tasks/restore.yml:2 Remove temporary directory for backup files ----------------------------- 0.59s /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/tests/ssh/tasks/restore.yml:15 Check if system is ostree ----------------------------------------------- 0.50s /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/tests/ssh/tasks/setup.yml:10 Create a temporary directory for backup files --------------------------- 0.49s /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/tests/ssh/tasks/backup.yml:5 Run first ssh in test mode to evaluate the configuration ---------------- 0.46s /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/tests/ssh/tests_match.yml:54 Download the configuration file ----------------------------------------- 0.44s /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/tests/ssh/tests_match.yml:33 Run second ssh in test mode to evaluate the configuration --------------- 0.42s /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/tests/ssh/tests_match.yml:59 fedora.linux_system_roles.ssh : Check if transactional-update exists in /sbin --- 0.40s /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/set_vars.yml:22 Run third ssh in test mode to evaluate the configuration ---------------- 0.39s /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/tests/ssh/tests_match.yml:64 Verify the options are correctly evaluated ------------------------------ 0.11s /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/tests/ssh/tests_match.yml:69 Verify the options are in the file -------------------------------------- 0.08s /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/tests/ssh/tests_match.yml:38 fedora.linux_system_roles.ssh : Notify user that reboot is needed to apply changes --- 0.07s /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/main.yml:17 Define specific variables ----------------------------------------------- 0.07s /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/tests/ssh/tasks/setup.yml:37 fedora.linux_system_roles.ssh : Reboot transactional update systems ----- 0.06s /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/main.yml:22 fedora.linux_system_roles.ssh : Fail if reboot is needed and not set ---- 0.05s /tmp/collections-pXN/ansible_collections/fedora/linux_system_roles/roles/ssh/tasks/main.yml:27