ansible-playbook [core 2.17.14] config file = None configured module search path = ['/root/.ansible/plugins/modules', '/usr/share/ansible/plugins/modules'] ansible python module location = /usr/local/lib/python3.12/site-packages/ansible ansible collection location = /tmp/collections-b2t executable location = /usr/local/bin/ansible-playbook python version = 3.12.12 (main, Mar 27 2026, 00:00:00) [GCC 14.3.1 20251022 (Red Hat 14.3.1-4)] (/usr/bin/python3.12) jinja version = 3.1.6 libyaml = True No config file found; using defaults running playbook inside collection fedora.linux_system_roles Skipping callback 'debug', as we already have a stdout callback. Skipping callback 'json', as we already have a stdout callback. Skipping callback 'jsonl', as we already have a stdout callback. Skipping callback 'default', as we already have a stdout callback. Skipping callback 'minimal', as we already have a stdout callback. Skipping callback 'oneline', as we already have a stdout callback. PLAYBOOK: tests_purge_rules.yml ************************************************ 1 plays in /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tests_purge_rules.yml PLAY [Test auditd_purge_rules purge and idempotence] *************************** TASK [Gathering Facts] ********************************************************* task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tests_purge_rules.yml:5 Wednesday 22 April 2026 09:16:41 -0400 (0:00:00.027) 0:00:00.027 ******* [WARNING]: Platform linux on host managed-node1 is using the discovered Python interpreter at /usr/bin/python3.12, but future installation of another Python interpreter could change the meaning of that path. See https://docs.ansible.com/ansible- core/2.17/reference_appendices/interpreter_discovery.html for more information. ok: [managed-node1] TASK [Back up existing auditd configuration and rules metadata] **************** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tests_purge_rules.yml:13 Wednesday 22 April 2026 09:16:42 -0400 (0:00:01.200) 0:00:01.228 ******* included: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tasks/setup.yml for managed-node1 TASK [Check for existing auditd.conf] ****************************************** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tasks/setup.yml:7 Wednesday 22 April 2026 09:16:42 -0400 (0:00:00.016) 0:00:01.244 ******* ok: [managed-node1] => { "changed": false, "stat": { "atime": 1776863767.625307, "attr_flags": "", "attributes": [], "block_size": 4096, "blocks": 8, "charset": "us-ascii", "checksum": "33eefb6af1c751110a125b8b468118e6f0edb244", "ctime": 1776863763.2462888, "dev": 51714, "device_type": 0, "executable": false, "exists": true, "gid": 0, "gr_name": "root", "inode": 268435651, "isblk": false, "ischr": false, "isdir": false, "isfifo": false, "isgid": false, "islnk": false, "isreg": true, "issock": false, "isuid": false, "mimetype": "text/plain", "mode": "0640", "mtime": 1776863763.247759, "nlink": 1, "path": "/etc/audit/auditd.conf", "pw_name": "root", "readable": true, "rgrp": true, "roth": false, "rusr": true, "size": 852, "uid": 0, "version": "164589221", "wgrp": false, "woth": false, "writeable": true, "wusr": true, "xgrp": false, "xoth": false, "xusr": false } } TASK [Check for existing custom.rules] ***************************************** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tasks/setup.yml:12 Wednesday 22 April 2026 09:16:43 -0400 (0:00:00.459) 0:00:01.704 ******* ok: [managed-node1] => { "changed": false, "stat": { "atime": 1776863766.189301, "attr_flags": "", "attributes": [], "block_size": 4096, "blocks": 8, "charset": "us-ascii", "checksum": "beaedc34af6f74d852b504550a00030393947a4b", "ctime": 1776863764.5390887, "dev": 51714, "device_type": 0, "executable": false, "exists": true, "gid": 0, "gr_name": "root", "inode": 289407172, "isblk": false, "ischr": false, "isdir": false, "isfifo": false, "isgid": false, "islnk": false, "isreg": true, "issock": false, "isuid": false, "mimetype": "text/plain", "mode": "0664", "mtime": 1776863764.240293, "nlink": 1, "path": "/etc/audit/rules.d/custom.rules", "pw_name": "root", "readable": true, "rgrp": true, "roth": true, "rusr": true, "size": 293, "uid": 0, "version": "3472116871", "wgrp": true, "woth": false, "writeable": true, "wusr": true, "xgrp": false, "xoth": false, "xusr": false } } TASK [Remember whether custom.rules existed] *********************************** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tasks/setup.yml:17 Wednesday 22 April 2026 09:16:43 -0400 (0:00:00.382) 0:00:02.086 ******* ok: [managed-node1] => { "ansible_facts": { "__auditd_integration_had_custom_rules": true }, "changed": false } TASK [Back up auditd.conf before test] ***************************************** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tasks/setup.yml:21 Wednesday 22 April 2026 09:16:43 -0400 (0:00:00.015) 0:00:02.102 ******* changed: [managed-node1] => { "changed": true, "checksum": "33eefb6af1c751110a125b8b468118e6f0edb244", "dest": "/root/.lsr_auditd_integration_auditd.conf.bak", "gid": 0, "group": "root", "md5sum": "eda8c45ce09c30766469af2714e2eff9", "mode": "0640", "owner": "root", "secontext": "system_u:object_r:admin_home_t:s0", "size": 852, "src": "/etc/audit/auditd.conf", "state": "file", "uid": 0 } TASK [Back up custom.rules before test] **************************************** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tasks/setup.yml:29 Wednesday 22 April 2026 09:16:44 -0400 (0:00:00.454) 0:00:02.557 ******* changed: [managed-node1] => { "changed": true, "checksum": "beaedc34af6f74d852b504550a00030393947a4b", "dest": "/root/.lsr_auditd_integration_custom.rules.bak", "gid": 0, "group": "root", "md5sum": "02a93488fb84ceabb705a049f70ced6b", "mode": "0664", "owner": "root", "secontext": "system_u:object_r:admin_home_t:s0", "size": 293, "src": "/etc/audit/rules.d/custom.rules", "state": "file", "uid": 0 } TASK [Record auditd.conf backup path for cleanup] ****************************** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tasks/setup.yml:37 Wednesday 22 April 2026 09:16:44 -0400 (0:00:00.374) 0:00:02.931 ******* ok: [managed-node1] => { "ansible_facts": { "__auditd_integration_backup_auditd_conf": "/root/.lsr_auditd_integration_auditd.conf.bak" }, "changed": false } TASK [Record custom.rules backup path for cleanup] ***************************** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tasks/setup.yml:42 Wednesday 22 April 2026 09:16:44 -0400 (0:00:00.014) 0:00:02.945 ******* ok: [managed-node1] => { "ansible_facts": { "__auditd_integration_backup_custom_rules": "/root/.lsr_auditd_integration_custom.rules.bak" }, "changed": false } TASK [Ensure rules.d backup parent directory is absent] ************************ task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tests_purge_rules.yml:16 Wednesday 22 April 2026 09:16:44 -0400 (0:00:00.015) 0:00:02.960 ******* ok: [managed-node1] => { "changed": false, "path": "/root/.lsr_auditd_purge_rulesd.backup", "state": "absent" } TASK [Create parent directory for rules.d snapshot] **************************** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tests_purge_rules.yml:21 Wednesday 22 April 2026 09:16:45 -0400 (0:00:00.456) 0:00:03.417 ******* changed: [managed-node1] => { "changed": true, "gid": 0, "group": "root", "mode": "0700", "owner": "root", "path": "/root/.lsr_auditd_purge_rulesd.backup", "secontext": "unconfined_u:object_r:admin_home_t:s0", "size": 6, "state": "directory", "uid": 0 } TASK [Snapshot rules.d tree for full restore after test] *********************** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tests_purge_rules.yml:27 Wednesday 22 April 2026 09:16:45 -0400 (0:00:00.375) 0:00:03.792 ******* changed: [managed-node1] => { "changed": true, "checksum": null, "dest": "/root/.lsr_auditd_purge_rulesd.backup/", "gid": 0, "group": "root", "md5sum": null, "mode": "0750", "owner": "root", "secontext": "unconfined_u:object_r:admin_home_t:s0", "size": 45, "src": "/etc/audit/rules.d/", "state": "directory", "uid": 0 } TASK [Install decoy rules fragment to be removed by purge] ********************* task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tests_purge_rules.yml:34 Wednesday 22 April 2026 09:16:45 -0400 (0:00:00.370) 0:00:04.163 ******* changed: [managed-node1] => { "changed": true, "checksum": "35324fa08aa315fc1ab79570382f077fec44dce9", "dest": "/etc/audit/rules.d/99-lsr-purge-decoy.rules", "gid": 0, "group": "root", "md5sum": "f628c72c0861f587eff2d10f92b8e21b", "mode": "0644", "owner": "root", "secontext": "system_u:object_r:auditd_etc_t:s0", "size": 89, "src": "/root/.ansible/tmp/ansible-tmp-1776863805.8981726-11380-67571890580040/.source.rules", "state": "file", "uid": 0 } TASK [Run auditd role with purge enabled] ************************************** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tests_purge_rules.yml:42 Wednesday 22 April 2026 09:16:46 -0400 (0:00:00.699) 0:00:04.862 ******* included: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tasks/run_role_with_clear_facts.yml for managed-node1 TASK [Clear facts] ************************************************************* task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tasks/run_role_with_clear_facts.yml:9 Wednesday 22 April 2026 09:16:46 -0400 (0:00:00.019) 0:00:04.882 ******* META: facts cleared TASK [Run the role] ************************************************************ task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tasks/run_role_with_clear_facts.yml:23 Wednesday 22 April 2026 09:16:46 -0400 (0:00:00.000) 0:00:04.883 ******* skipping: [managed-node1] => { "changed": false, "false_condition": "__sr_failed_when is defined", "skip_reason": "Conditional result was False" } TASK [Run the role normally] *************************************************** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tasks/run_role_with_clear_facts.yml:33 Wednesday 22 April 2026 09:16:46 -0400 (0:00:00.014) 0:00:04.898 ******* included: fedora.linux_system_roles.auditd for managed-node1 TASK [fedora.linux_system_roles.auditd : Validating arguments against arg spec 'main' - Manage auditd and audit rules] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tests_purge_rules.yml:5 Wednesday 22 April 2026 09:16:46 -0400 (0:00:00.065) 0:00:04.963 ******* ok: [managed-node1] => { "changed": false, "validate_args_context": { "argument_spec_name": "main", "name": "auditd", "path": "/tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd", "type": "role" } } MSG: The arg spec validation passed TASK [fedora.linux_system_roles.auditd : Set platform/version specific variables] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/main.yml:3 Wednesday 22 April 2026 09:16:46 -0400 (0:00:00.014) 0:00:04.978 ******* included: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/set_vars.yml for managed-node1 TASK [fedora.linux_system_roles.auditd : Ensure ansible_facts used by role] **** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/set_vars.yml:2 Wednesday 22 April 2026 09:16:46 -0400 (0:00:00.017) 0:00:04.995 ******* ok: [managed-node1] TASK [fedora.linux_system_roles.auditd : Check if system is ostree] ************ task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/set_vars.yml:10 Wednesday 22 April 2026 09:16:47 -0400 (0:00:00.587) 0:00:05.582 ******* ok: [managed-node1] => { "changed": false, "stat": { "exists": false } } TASK [fedora.linux_system_roles.auditd : Set flag to indicate system is ostree] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/set_vars.yml:15 Wednesday 22 April 2026 09:16:47 -0400 (0:00:00.361) 0:00:05.944 ******* ok: [managed-node1] => { "ansible_facts": { "__auditd_is_ostree": false }, "changed": false } TASK [fedora.linux_system_roles.auditd : Set platform/version specific variables] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/set_vars.yml:19 Wednesday 22 April 2026 09:16:47 -0400 (0:00:00.019) 0:00:05.963 ******* skipping: [managed-node1] => (item=RedHat.yml) => { "ansible_loop_var": "item", "changed": false, "false_condition": "__vars_file is file", "item": "RedHat.yml", "skip_reason": "Conditional result was False" } skipping: [managed-node1] => (item=CentOS.yml) => { "ansible_loop_var": "item", "changed": false, "false_condition": "__vars_file is file", "item": "CentOS.yml", "skip_reason": "Conditional result was False" } skipping: [managed-node1] => (item=CentOS_10.yml) => { "ansible_loop_var": "item", "changed": false, "false_condition": "__vars_file is file", "item": "CentOS_10.yml", "skip_reason": "Conditional result was False" } skipping: [managed-node1] => (item=CentOS_10.yml) => { "ansible_loop_var": "item", "changed": false, "false_condition": "__vars_file is file", "item": "CentOS_10.yml", "skip_reason": "Conditional result was False" } skipping: [managed-node1] => { "changed": false } MSG: All items skipped TASK [fedora.linux_system_roles.auditd : Resolve package names for OS family] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/set_vars.yml:34 Wednesday 22 April 2026 09:16:47 -0400 (0:00:00.026) 0:00:05.990 ******* ok: [managed-node1] => { "ansible_facts": { "__auditd_packages": [ "audit" ] }, "changed": false } TASK [fedora.linux_system_roles.auditd : Validate role parameters] ************* task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/main.yml:8 Wednesday 22 April 2026 09:16:47 -0400 (0:00:00.014) 0:00:06.005 ******* included: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml for managed-node1 TASK [fedora.linux_system_roles.auditd : Assert num_logs range (num_logs_parser)] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:4 Wednesday 22 April 2026 09:16:47 -0400 (0:00:00.030) 0:00:06.035 ******* ok: [managed-node1] => { "changed": false } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert freq range (freq_parser)] ****** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:11 Wednesday 22 April 2026 09:16:47 -0400 (0:00:00.017) 0:00:06.052 ******* ok: [managed-node1] => { "changed": false } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert incremental flush requires non-zero freq (sanity_check)] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:18 Wednesday 22 April 2026 09:16:47 -0400 (0:00:00.016) 0:00:06.069 ******* ok: [managed-node1] => { "changed": false } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert priority_boost range (priority_boost_parser)] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:25 Wednesday 22 April 2026 09:16:47 -0400 (0:00:00.016) 0:00:06.086 ******* ok: [managed-node1] => { "changed": false } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert q_depth range (q_depth_parser)] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:31 Wednesday 22 April 2026 09:16:47 -0400 (0:00:00.015) 0:00:06.101 ******* ok: [managed-node1] => { "changed": false } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert auditd_maximum_rate is null or a non-negative integer] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:38 Wednesday 22 April 2026 09:16:47 -0400 (0:00:00.015) 0:00:06.117 ******* ok: [managed-node1] => { "changed": false } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert auditd_backlog_wait_time is null or a non-negative integer] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:48 Wednesday 22 April 2026 09:16:47 -0400 (0:00:00.022) 0:00:06.139 ******* ok: [managed-node1] => { "changed": false } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert max_restarts range (max_restarts_parser)] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:58 Wednesday 22 April 2026 09:16:47 -0400 (0:00:00.022) 0:00:06.162 ******* ok: [managed-node1] => { "changed": false } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert tcp_listen_port range when listener enabled in build (tcp_listen_port_parser)] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:64 Wednesday 22 April 2026 09:16:47 -0400 (0:00:00.016) 0:00:06.178 ******* ok: [managed-node1] => { "changed": false } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert tcp_listen_queue range (tcp_listen_queue_parser)] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:70 Wednesday 22 April 2026 09:16:47 -0400 (0:00:00.016) 0:00:06.195 ******* ok: [managed-node1] => { "changed": false } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert tcp_max_per_addr range (tcp_max_per_addr_parser)] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:76 Wednesday 22 April 2026 09:16:47 -0400 (0:00:00.016) 0:00:06.212 ******* ok: [managed-node1] => { "changed": false } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert tcp_client_max_idle range (tcp_client_max_idle_parser)] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:82 Wednesday 22 April 2026 09:16:47 -0400 (0:00:00.016) 0:00:06.228 ******* ok: [managed-node1] => { "changed": false } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert tcp_client_ports format (tcp_client_ports_parser)] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:88 Wednesday 22 April 2026 09:16:47 -0400 (0:00:00.016) 0:00:06.244 ******* skipping: [managed-node1] => { "changed": false, "false_condition": "auditd_tcp_client_ports is string", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.auditd : Assert tcp_client_ports range order] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:98 Wednesday 22 April 2026 09:16:47 -0400 (0:00:00.015) 0:00:06.260 ******* skipping: [managed-node1] => { "changed": false, "false_condition": "auditd_tcp_client_ports is string", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.auditd : Assert space_left_action rejects halt (space_action_parser)] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:107 Wednesday 22 April 2026 09:16:47 -0400 (0:00:00.014) 0:00:06.275 ******* ok: [managed-node1] => { "changed": false } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert space_left percentage is between 1 and 99 when given as N%] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:113 Wednesday 22 April 2026 09:16:47 -0400 (0:00:00.015) 0:00:06.290 ******* skipping: [managed-node1] => { "changed": false, "false_condition": "(auditd_space_left | string) is match('^[0-9]+%$')", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.auditd : Assert admin_space_left percentage is between 1 and 99 when given as N%] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:125 Wednesday 22 April 2026 09:16:47 -0400 (0:00:00.015) 0:00:06.306 ******* skipping: [managed-node1] => { "changed": false, "false_condition": "(auditd_admin_space_left | string) is match('^[0-9]+%$')", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.auditd : Assert space_left is greater than admin_space_left when both use same form] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:137 Wednesday 22 April 2026 09:16:48 -0400 (0:00:00.015) 0:00:06.321 ******* ok: [managed-node1] => { "changed": false } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert disk_full_action rejects email (disk_full_action_parser)] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:161 Wednesday 22 April 2026 09:16:48 -0400 (0:00:00.024) 0:00:06.346 ******* ok: [managed-node1] => { "changed": false } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert disk_error_action rejects email and rotate (disk_error_action_parser)] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:167 Wednesday 22 April 2026 09:16:48 -0400 (0:00:00.015) 0:00:06.361 ******* ok: [managed-node1] => { "changed": false } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert exec companion paths when action is exec] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:173 Wednesday 22 April 2026 09:16:48 -0400 (0:00:00.015) 0:00:06.377 ******* skipping: [managed-node1] => { "changed": false, "false_condition": "auditd_max_log_file_action | lower == 'exec'", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.auditd : Assert space_left_action exec path] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:180 Wednesday 22 April 2026 09:16:48 -0400 (0:00:00.014) 0:00:06.391 ******* skipping: [managed-node1] => { "changed": false, "false_condition": "auditd_space_left_action | lower == 'exec'", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.auditd : Assert admin_space_left_action exec path] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:187 Wednesday 22 April 2026 09:16:48 -0400 (0:00:00.012) 0:00:06.404 ******* skipping: [managed-node1] => { "changed": false, "false_condition": "auditd_admin_space_left_action | lower == 'exec'", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.auditd : Assert disk_full_action exec path] **** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:194 Wednesday 22 April 2026 09:16:48 -0400 (0:00:00.012) 0:00:06.416 ******* skipping: [managed-node1] => { "changed": false, "false_condition": "auditd_disk_full_action | lower == 'exec'", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.auditd : Assert disk_error_action exec path] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:201 Wednesday 22 April 2026 09:16:48 -0400 (0:00:00.012) 0:00:06.428 ******* skipping: [managed-node1] => { "changed": false, "false_condition": "auditd_disk_error_action | lower == 'exec'", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.auditd : Assert name when name_format is user (resolve_node)] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:208 Wednesday 22 April 2026 09:16:48 -0400 (0:00:00.011) 0:00:06.440 ******* skipping: [managed-node1] => { "changed": false, "false_condition": "auditd_name_format | lower == 'user'", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.auditd : Validate auditd_rules structure and values] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:215 Wednesday 22 April 2026 09:16:48 -0400 (0:00:00.011) 0:00:06.452 ******* included: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml for managed-node1 TASK [fedora.linux_system_roles.auditd : Assert auditd_rules is a list of dicts] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml:4 Wednesday 22 April 2026 09:16:48 -0400 (0:00:00.038) 0:00:06.490 ******* ok: [managed-node1] => { "changed": false } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert each auditd_rules entry has required action and filter] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml:13 Wednesday 22 April 2026 09:16:48 -0400 (0:00:00.023) 0:00:06.514 ******* ok: [managed-node1] => (item=always,exit) => { "ansible_loop_var": "item", "changed": false, "item": { "action": "always", "arch": "b64", "filter": "exit", "keyname": "lsr_auditd_purge_test", "path": "/etc/issue", "permission": [ "read" ], "syscall": "open" } } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert auditd_rules entries use only supported keys] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml:29 Wednesday 22 April 2026 09:16:48 -0400 (0:00:00.026) 0:00:06.541 ******* ok: [managed-node1] => (item={'action': 'always', 'filter': 'exit', 'arch': 'b64', 'syscall': 'open', 'path': '/etc/issue', 'permission': ['read'], 'keyname': 'lsr_auditd_purge_test'}) => { "ansible_loop_var": "item", "changed": false, "item": { "action": "always", "arch": "b64", "filter": "exit", "keyname": "lsr_auditd_purge_test", "path": "/etc/issue", "permission": [ "read" ], "syscall": "open" } } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert auditd_rules path and dir are mutually exclusive] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml:49 Wednesday 22 April 2026 09:16:48 -0400 (0:00:00.023) 0:00:06.564 ******* ok: [managed-node1] => (item={'action': 'always', 'filter': 'exit', 'arch': 'b64', 'syscall': 'open', 'path': '/etc/issue', 'permission': ['read'], 'keyname': 'lsr_auditd_purge_test'}) => { "ansible_loop_var": "item", "changed": false, "item": { "action": "always", "arch": "b64", "filter": "exit", "keyname": "lsr_auditd_purge_test", "path": "/etc/issue", "permission": [ "read" ], "syscall": "open" } } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert auditd_rules path or dir requires filter exit] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml:56 Wednesday 22 April 2026 09:16:48 -0400 (0:00:00.020) 0:00:06.585 ******* ok: [managed-node1] => (item={'action': 'always', 'filter': 'exit', 'arch': 'b64', 'syscall': 'open', 'path': '/etc/issue', 'permission': ['read'], 'keyname': 'lsr_auditd_purge_test'}) => { "ansible_loop_var": "item", "changed": false, "item": { "action": "always", "arch": "b64", "filter": "exit", "keyname": "lsr_auditd_purge_test", "path": "/etc/issue", "permission": [ "read" ], "syscall": "open" } } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert auditd_rules syscall requires valid filter type] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml:64 Wednesday 22 April 2026 09:16:48 -0400 (0:00:00.022) 0:00:06.608 ******* ok: [managed-node1] => (item={'action': 'always', 'filter': 'exit', 'arch': 'b64', 'syscall': 'open', 'path': '/etc/issue', 'permission': ['read'], 'keyname': 'lsr_auditd_purge_test'}) => { "ansible_loop_var": "item", "changed": false, "item": { "action": "always", "arch": "b64", "filter": "exit", "keyname": "lsr_auditd_purge_test", "path": "/etc/issue", "permission": [ "read" ], "syscall": "open" } } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert auditd_rules field is a non-empty string or list of non-empty strings] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml:74 Wednesday 22 April 2026 09:16:48 -0400 (0:00:00.026) 0:00:06.634 ******* skipping: [managed-node1] => (item={'action': 'always', 'filter': 'exit', 'arch': 'b64', 'syscall': 'open', 'path': '/etc/issue', 'permission': ['read'], 'keyname': 'lsr_auditd_purge_test'}) => { "ansible_loop_var": "item", "changed": false, "false_condition": "item.field is defined", "item": { "action": "always", "arch": "b64", "filter": "exit", "keyname": "lsr_auditd_purge_test", "path": "/etc/issue", "permission": [ "read" ], "syscall": "open" }, "skip_reason": "Conditional result was False" } skipping: [managed-node1] => { "changed": false } MSG: All items skipped TASK [fedora.linux_system_roles.auditd : Assert auditd_rules filesystem filter includes fstype=debugfs or fstype=tracefs] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml:84 Wednesday 22 April 2026 09:16:48 -0400 (0:00:00.019) 0:00:06.654 ******* skipping: [managed-node1] => (item={'action': 'always', 'filter': 'exit', 'arch': 'b64', 'syscall': 'open', 'path': '/etc/issue', 'permission': ['read'], 'keyname': 'lsr_auditd_purge_test'}) => { "ansible_loop_var": "item", "changed": false, "false_condition": "item.filter == 'filesystem'", "item": { "action": "always", "arch": "b64", "filter": "exit", "keyname": "lsr_auditd_purge_test", "path": "/etc/issue", "permission": [ "read" ], "syscall": "open" }, "skip_reason": "Conditional result was False" } skipping: [managed-node1] => { "changed": false } MSG: All items skipped TASK [fedora.linux_system_roles.auditd : Assert auditd_rules field fragments use a supported operator] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml:106 Wednesday 22 April 2026 09:16:48 -0400 (0:00:00.019) 0:00:06.673 ******* skipping: [managed-node1] => (item={'action': 'always', 'filter': 'exit', 'arch': 'b64', 'syscall': 'open', 'path': '/etc/issue', 'permission': ['read'], 'keyname': 'lsr_auditd_purge_test'}) => { "ansible_loop_var": "item", "changed": false, "false_condition": "item.field is defined", "item": { "action": "always", "arch": "b64", "filter": "exit", "keyname": "lsr_auditd_purge_test", "path": "/etc/issue", "permission": [ "read" ], "syscall": "open" }, "skip_reason": "Conditional result was False" } skipping: [managed-node1] => { "changed": false } MSG: All items skipped TASK [fedora.linux_system_roles.auditd : Assert auditd_rules permission is a non-empty string or list of non-empty strings] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml:122 Wednesday 22 April 2026 09:16:48 -0400 (0:00:00.017) 0:00:06.691 ******* ok: [managed-node1] => (item={'action': 'always', 'filter': 'exit', 'arch': 'b64', 'syscall': 'open', 'path': '/etc/issue', 'permission': ['read'], 'keyname': 'lsr_auditd_purge_test'}) => { "ansible_loop_var": "item", "changed": false, "item": { "action": "always", "arch": "b64", "filter": "exit", "keyname": "lsr_auditd_purge_test", "path": "/etc/issue", "permission": [ "read" ], "syscall": "open" } } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert auditd_rules permission values are recognized] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml:132 Wednesday 22 April 2026 09:16:48 -0400 (0:00:00.023) 0:00:06.714 ******* ok: [managed-node1] => (item={'action': 'always', 'filter': 'exit', 'arch': 'b64', 'syscall': 'open', 'path': '/etc/issue', 'permission': ['read'], 'keyname': 'lsr_auditd_purge_test'}) => { "ansible_loop_var": "item", "changed": false, "item": { "action": "always", "arch": "b64", "filter": "exit", "keyname": "lsr_auditd_purge_test", "path": "/etc/issue", "permission": [ "read" ], "syscall": "open" } } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert auditd_rules permission list does not mix nowarn with other values] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml:151 Wednesday 22 April 2026 09:16:48 -0400 (0:00:00.028) 0:00:06.742 ******* ok: [managed-node1] => (item={'action': 'always', 'filter': 'exit', 'arch': 'b64', 'syscall': 'open', 'path': '/etc/issue', 'permission': ['read'], 'keyname': 'lsr_auditd_purge_test'}) => { "ansible_loop_var": "item", "changed": false, "item": { "action": "always", "arch": "b64", "filter": "exit", "keyname": "lsr_auditd_purge_test", "path": "/etc/issue", "permission": [ "read" ], "syscall": "open" } } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert auditd_rules arch is a non-empty string or list of non-empty strings] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml:162 Wednesday 22 April 2026 09:16:48 -0400 (0:00:00.028) 0:00:06.771 ******* ok: [managed-node1] => (item={'action': 'always', 'filter': 'exit', 'arch': 'b64', 'syscall': 'open', 'path': '/etc/issue', 'permission': ['read'], 'keyname': 'lsr_auditd_purge_test'}) => { "ansible_loop_var": "item", "changed": false, "item": { "action": "always", "arch": "b64", "filter": "exit", "keyname": "lsr_auditd_purge_test", "path": "/etc/issue", "permission": [ "read" ], "syscall": "open" } } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert auditd_rules syscall is a number, non-empty string, or list of numbers and/or non-empty strings] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml:172 Wednesday 22 April 2026 09:16:48 -0400 (0:00:00.022) 0:00:06.793 ******* ok: [managed-node1] => (item={'action': 'always', 'filter': 'exit', 'arch': 'b64', 'syscall': 'open', 'path': '/etc/issue', 'permission': ['read'], 'keyname': 'lsr_auditd_purge_test'}) => { "ansible_loop_var": "item", "changed": false, "item": { "action": "always", "arch": "b64", "filter": "exit", "keyname": "lsr_auditd_purge_test", "path": "/etc/issue", "permission": [ "read" ], "syscall": "open" } } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert auditd_rules keyname is a non-empty string or list of non-empty strings] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml:182 Wednesday 22 April 2026 09:16:48 -0400 (0:00:00.023) 0:00:06.817 ******* ok: [managed-node1] => (item={'action': 'always', 'filter': 'exit', 'arch': 'b64', 'syscall': 'open', 'path': '/etc/issue', 'permission': ['read'], 'keyname': 'lsr_auditd_purge_test'}) => { "ansible_loop_var": "item", "changed": false, "item": { "action": "always", "arch": "b64", "filter": "exit", "keyname": "lsr_auditd_purge_test", "path": "/etc/issue", "permission": [ "read" ], "syscall": "open" } } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Initialize keyname list for auditd_rules length check] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml:192 Wednesday 22 April 2026 09:16:48 -0400 (0:00:00.022) 0:00:06.839 ******* ok: [managed-node1] => { "ansible_facts": { "__auditd_rules_keynames_to_check": [] }, "changed": false } TASK [fedora.linux_system_roles.auditd : Append auditd_rules keynames for length checks] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml:196 Wednesday 22 April 2026 09:16:48 -0400 (0:00:00.011) 0:00:06.850 ******* ok: [managed-node1] => (item={'action': 'always', 'filter': 'exit', 'arch': 'b64', 'syscall': 'open', 'path': '/etc/issue', 'permission': ['read'], 'keyname': 'lsr_auditd_purge_test'}) => { "ansible_facts": { "__auditd_rules_keynames_to_check": [ "lsr_auditd_purge_test" ] }, "ansible_loop_var": "item", "changed": false, "item": { "action": "always", "arch": "b64", "filter": "exit", "keyname": "lsr_auditd_purge_test", "path": "/etc/issue", "permission": [ "read" ], "syscall": "open" } } TASK [fedora.linux_system_roles.auditd : Assert each auditd_rules keyname is at most 31 characters] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml:208 Wednesday 22 April 2026 09:16:48 -0400 (0:00:00.027) 0:00:06.878 ******* ok: [managed-node1] => (item=lsr_auditd_purge_test) => { "ansible_loop_var": "item", "changed": false, "item": "lsr_auditd_purge_test" } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Warn when auditd_rules omits arch (not io_uring, not arch nowarn)] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml:216 Wednesday 22 April 2026 09:16:48 -0400 (0:00:00.021) 0:00:06.899 ******* skipping: [managed-node1] => (item=0,always,exit) => { "ansible_index_var": "idx", "ansible_loop_var": "item", "false_condition": "not (item.arch is defined and ( (item.arch is string and ((item.arch == 'nowarn') or (item.arch | trim | length > 0))) or (item.arch is iterable and item.arch is not string and item.arch | length > 0) ))", "idx": 0, "item": { "action": "always", "arch": "b64", "filter": "exit", "keyname": "lsr_auditd_purge_test", "path": "/etc/issue", "permission": [ "read" ], "syscall": "open" } } skipping: [managed-node1] => {} MSG: All items skipped TASK [fedora.linux_system_roles.auditd : Warn when auditd_rules uses path or dir without permissions or syscalls] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml:230 Wednesday 22 April 2026 09:16:48 -0400 (0:00:00.027) 0:00:06.927 ******* skipping: [managed-node1] => (item=0,always,exit) => { "ansible_index_var": "idx", "ansible_loop_var": "item", "false_condition": "not (item.permission is defined or item.syscall is defined)", "idx": 0, "item": { "action": "always", "arch": "b64", "filter": "exit", "keyname": "lsr_auditd_purge_test", "path": "/etc/issue", "permission": [ "read" ], "syscall": "open" } } skipping: [managed-node1] => {} MSG: All items skipped TASK [fedora.linux_system_roles.auditd : Install audit packages] *************** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/main.yml:11 Wednesday 22 April 2026 09:16:48 -0400 (0:00:00.020) 0:00:06.947 ******* ok: [managed-node1] => { "changed": false, "rc": 0, "results": [] } MSG: Nothing to do TASK [fedora.linux_system_roles.auditd : Deploy auditd configuration] ********** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/main.yml:17 Wednesday 22 April 2026 09:16:49 -0400 (0:00:01.293) 0:00:08.241 ******* ok: [managed-node1] => { "changed": false, "checksum": "33eefb6af1c751110a125b8b468118e6f0edb244", "dest": "/etc/audit/auditd.conf", "gid": 0, "group": "root", "mode": "0640", "owner": "root", "path": "/etc/audit/auditd.conf", "secontext": "system_u:object_r:auditd_etc_t:s0", "size": 852, "state": "file", "uid": 0 } TASK [fedora.linux_system_roles.auditd : Ensure rules.d directory exists] ****** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/main.yml:24 Wednesday 22 April 2026 09:16:50 -0400 (0:00:00.682) 0:00:08.924 ******* ok: [managed-node1] => { "changed": false, "gid": 0, "group": "root", "mode": "0750", "owner": "root", "path": "/etc/audit/rules.d", "secontext": "system_u:object_r:auditd_etc_t:s0", "size": 77, "state": "directory", "uid": 0 } TASK [fedora.linux_system_roles.auditd : Purge rules.d when requested] ********* task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/main.yml:30 Wednesday 22 April 2026 09:16:50 -0400 (0:00:00.367) 0:00:09.291 ******* included: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/purge_rules.yml for managed-node1 TASK [fedora.linux_system_roles.auditd : Discover files in rules.d] ************ task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/purge_rules.yml:12 Wednesday 22 April 2026 09:16:51 -0400 (0:00:00.034) 0:00:09.326 ******* ok: [managed-node1] => { "changed": false, "examined": 3, "files": [ { "atime": 1776863539.684, "ctime": 1776755377.715, "dev": 51714, "gid": 0, "gr_name": "root", "inode": 126510, "isblk": false, "ischr": false, "isdir": false, "isfifo": false, "isgid": false, "islnk": false, "isreg": true, "issock": false, "isuid": false, "mode": "0640", "mtime": 1767657600.0, "nlink": 1, "path": "/etc/audit/rules.d/audit.rules", "pw_name": "root", "rgrp": true, "roth": false, "rusr": true, "size": 244, "uid": 0, "wgrp": false, "woth": false, "wusr": true, "xgrp": false, "xoth": false, "xusr": false }, { "atime": 1776863766.189301, "ctime": 1776863764.5390887, "dev": 51714, "gid": 0, "gr_name": "root", "inode": 289407172, "isblk": false, "ischr": false, "isdir": false, "isfifo": false, "isgid": false, "islnk": false, "isreg": true, "issock": false, "isuid": false, "mode": "0664", "mtime": 1776863764.240293, "nlink": 1, "path": "/etc/audit/rules.d/custom.rules", "pw_name": "root", "rgrp": true, "roth": true, "rusr": true, "size": 293, "uid": 0, "wgrp": true, "woth": false, "wusr": true, "xgrp": false, "xoth": false, "xusr": false }, { "atime": 1776863806.5014012, "ctime": 1776863806.5049791, "dev": 51714, "gid": 0, "gr_name": "root", "inode": 520093891, "isblk": false, "ischr": false, "isdir": false, "isfifo": false, "isgid": false, "islnk": false, "isreg": true, "issock": false, "isuid": false, "mode": "0644", "mtime": 1776863806.2204022, "nlink": 1, "path": "/etc/audit/rules.d/99-lsr-purge-decoy.rules", "pw_name": "root", "rgrp": true, "roth": true, "rusr": true, "size": 89, "uid": 0, "wgrp": false, "woth": false, "wusr": true, "xgrp": false, "xoth": false, "xusr": false } ], "matched": 3, "skipped_paths": {} } MSG: All paths examined TASK [fedora.linux_system_roles.auditd : Stat existing custom.rules before purge] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/purge_rules.yml:18 Wednesday 22 April 2026 09:16:51 -0400 (0:00:00.448) 0:00:09.775 ******* ok: [managed-node1] => { "changed": false, "stat": { "atime": 1776863766.189301, "attr_flags": "", "attributes": [], "block_size": 4096, "blocks": 8, "charset": "us-ascii", "checksum": "beaedc34af6f74d852b504550a00030393947a4b", "ctime": 1776863764.5390887, "dev": 51714, "device_type": 0, "executable": false, "exists": true, "gid": 0, "gr_name": "root", "inode": 289407172, "isblk": false, "ischr": false, "isdir": false, "isfifo": false, "isgid": false, "islnk": false, "isreg": true, "issock": false, "isuid": false, "mimetype": "text/plain", "mode": "0664", "mtime": 1776863764.240293, "nlink": 1, "path": "/etc/audit/rules.d/custom.rules", "pw_name": "root", "readable": true, "rgrp": true, "roth": true, "rusr": true, "size": 293, "uid": 0, "version": "3472116871", "wgrp": true, "woth": false, "writeable": true, "wusr": true, "xgrp": false, "xoth": false, "xusr": false } } TASK [fedora.linux_system_roles.auditd : Read existing custom.rules for comparison] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/purge_rules.yml:23 Wednesday 22 April 2026 09:16:51 -0400 (0:00:00.392) 0:00:10.168 ******* ok: [managed-node1] => { "changed": false, "content": "IwojIEFuc2libGUgbWFuYWdlZAojCiMgc3lzdGVtX3JvbGU6YXVkaXRkCgoKIyBEZWxldGUgYWxsIHByZXZpb3VzIHJ1bGVzCi1ECiMgU2V0IGJ1ZmZlciBzaXplCi1iIDMyNzY4CiMgU2V0IGZhaWx1cmUgYmVoYXZpb3IKLWYgMQojIFRoaXMgZGV0ZXJtaW5lIGhvdyBsb25nIHRvIHdhaXQgaW4gYnVyc3Qgb2YgZXZlbnRzCi0tYmFja2xvZ193YWl0X3RpbWUgNjAwMDAKIyBTZXQgZW5hYmxlIGZsYWcgKDA9ZGlzYWJsZSwgMT1lbmFibGUsIDI9bG9ja2VkLCByZXF1aXJlcyByZWJvb3QgdG8gdW5sb2NrKQotZSAxCgo=", "encoding": "base64", "source": "/etc/audit/rules.d/custom.rules" } TASK [fedora.linux_system_roles.auditd : Record whether to keep existing custom.rules (managed rules)] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/purge_rules.yml:29 Wednesday 22 April 2026 09:16:52 -0400 (0:00:00.434) 0:00:10.603 ******* ok: [managed-node1] => { "ansible_facts": { "__auditd_purge_keep_custom_rules": false }, "changed": false } TASK [fedora.linux_system_roles.auditd : Remove files from rules.d] ************ task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/purge_rules.yml:62 Wednesday 22 April 2026 09:16:52 -0400 (0:00:00.062) 0:00:10.665 ******* changed: [managed-node1] => (item=/etc/audit/rules.d/audit.rules) => { "ansible_loop_var": "item", "changed": true, "item": { "atime": 1776863539.684, "ctime": 1776755377.715, "dev": 51714, "gid": 0, "gr_name": "root", "inode": 126510, "isblk": false, "ischr": false, "isdir": false, "isfifo": false, "isgid": false, "islnk": false, "isreg": true, "issock": false, "isuid": false, "mode": "0640", "mtime": 1767657600.0, "nlink": 1, "path": "/etc/audit/rules.d/audit.rules", "pw_name": "root", "rgrp": true, "roth": false, "rusr": true, "size": 244, "uid": 0, "wgrp": false, "woth": false, "wusr": true, "xgrp": false, "xoth": false, "xusr": false }, "path": "/etc/audit/rules.d/audit.rules", "state": "absent" } changed: [managed-node1] => (item=/etc/audit/rules.d/custom.rules) => { "ansible_loop_var": "item", "changed": true, "item": { "atime": 1776863766.189301, "ctime": 1776863764.5390887, "dev": 51714, "gid": 0, "gr_name": "root", "inode": 289407172, "isblk": false, "ischr": false, "isdir": false, "isfifo": false, "isgid": false, "islnk": false, "isreg": true, "issock": false, "isuid": false, "mode": "0664", "mtime": 1776863764.240293, "nlink": 1, "path": "/etc/audit/rules.d/custom.rules", "pw_name": "root", "rgrp": true, "roth": true, "rusr": true, "size": 293, "uid": 0, "wgrp": true, "woth": false, "wusr": true, "xgrp": false, "xoth": false, "xusr": false }, "path": "/etc/audit/rules.d/custom.rules", "state": "absent" } changed: [managed-node1] => (item=/etc/audit/rules.d/99-lsr-purge-decoy.rules) => { "ansible_loop_var": "item", "changed": true, "item": { "atime": 1776863806.5014012, "ctime": 1776863806.5049791, "dev": 51714, "gid": 0, "gr_name": "root", "inode": 520093891, "isblk": false, "ischr": false, "isdir": false, "isfifo": false, "isgid": false, "islnk": false, "isreg": true, "issock": false, "isuid": false, "mode": "0644", "mtime": 1776863806.2204022, "nlink": 1, "path": "/etc/audit/rules.d/99-lsr-purge-decoy.rules", "pw_name": "root", "rgrp": true, "roth": true, "rusr": true, "size": 89, "uid": 0, "wgrp": false, "woth": false, "wusr": true, "xgrp": false, "xoth": false, "xusr": false }, "path": "/etc/audit/rules.d/99-lsr-purge-decoy.rules", "state": "absent" } Notification for handler Run augenrules has been saved. Notification for handler Run augenrules has been saved. Notification for handler Run augenrules has been saved. TASK [fedora.linux_system_roles.auditd : Deploy custom audit rules] ************ task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/main.yml:36 Wednesday 22 April 2026 09:16:53 -0400 (0:00:01.102) 0:00:11.768 ******* Notification for handler Run augenrules has been saved. changed: [managed-node1] => { "changed": true, "checksum": "a35d086301423f4b4d79370debf2e063e25201d9", "dest": "/etc/audit/rules.d/custom.rules", "gid": 0, "group": "root", "md5sum": "b93616973cabae5beefcae4e8fa7e040", "mode": "0664", "owner": "root", "secontext": "system_u:object_r:auditd_etc_t:s0", "size": 386, "src": "/root/.ansible/tmp/ansible-tmp-1776863813.5075507-11573-236516882033918/.source.rules", "state": "file", "uid": 0 } TASK [fedora.linux_system_roles.auditd : Start and enable auditd service] ****** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/main.yml:46 Wednesday 22 April 2026 09:16:54 -0400 (0:00:00.747) 0:00:12.516 ******* skipping: [managed-node1] => { "changed": false, "false_condition": "auditd_start_service | bool", "skip_reason": "Conditional result was False" } TASK [Flush handlers after first role run] ************************************* task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tests_purge_rules.yml:58 Wednesday 22 April 2026 09:16:54 -0400 (0:00:00.012) 0:00:12.529 ******* NOTIFIED HANDLER fedora.linux_system_roles.auditd : Run augenrules for managed-node1 META: triggered running handlers for managed-node1 RUNNING HANDLER [fedora.linux_system_roles.auditd : Run augenrules] ************ task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/handlers/main.yml:3 Wednesday 22 April 2026 09:16:54 -0400 (0:00:00.000) 0:00:12.530 ******* NOTIFIED HANDLER fedora.linux_system_roles.auditd : Load audit rules for managed-node1 changed: [managed-node1] => { "changed": true, "cmd": [ "augenrules" ], "delta": "0:00:00.023623", "end": "2026-04-22 09:16:54.641267", "rc": 0, "start": "2026-04-22 09:16:54.617644" } RUNNING HANDLER [fedora.linux_system_roles.auditd : Load audit rules] ********** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/handlers/main.yml:9 Wednesday 22 April 2026 09:16:54 -0400 (0:00:00.469) 0:00:12.999 ******* skipping: [managed-node1] => { "changed": false, "false_condition": "auditd_start_service | bool", "skip_reason": "Conditional result was False" } TASK [Stat decoy fragment after purge] ***************************************** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tests_purge_rules.yml:61 Wednesday 22 April 2026 09:16:54 -0400 (0:00:00.011) 0:00:13.011 ******* ok: [managed-node1] => { "changed": false, "stat": { "exists": false } } TASK [Verify decoy rules file was purged] ************************************** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tests_purge_rules.yml:66 Wednesday 22 April 2026 09:16:55 -0400 (0:00:00.366) 0:00:13.378 ******* ok: [managed-node1] => { "changed": false } MSG: All assertions passed TASK [Read custom.rules after purge] ******************************************* task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tests_purge_rules.yml:71 Wednesday 22 April 2026 09:16:55 -0400 (0:00:00.013) 0:00:13.392 ******* ok: [managed-node1] => { "changed": false, "content": "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", "encoding": "base64", "source": "/etc/audit/rules.d/custom.rules" } TASK [Verify custom.rules reflects role auditd_rules] ************************** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tests_purge_rules.yml:76 Wednesday 22 April 2026 09:16:55 -0400 (0:00:00.364) 0:00:13.757 ******* ok: [managed-node1] => { "changed": false } MSG: All assertions passed TASK [Capture checksum of custom.rules before second role run] ***************** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tests_purge_rules.yml:84 Wednesday 22 April 2026 09:16:55 -0400 (0:00:00.019) 0:00:13.776 ******* ok: [managed-node1] => { "changed": false, "stat": { "atime": 1776863814.6263666, "attr_flags": "", "attributes": [], "block_size": 4096, "blocks": 8, "charset": "us-ascii", "checksum": "ea658c9f7ca1a3f50afec94de5fee9184a583a47f0feb1e8888e8c386cdbe13a", "ctime": 1776863814.1586065, "dev": 51714, "device_type": 0, "executable": false, "exists": true, "gid": 0, "gr_name": "root", "inode": 633340162, "isblk": false, "ischr": false, "isdir": false, "isfifo": false, "isgid": false, "islnk": false, "isreg": true, "issock": false, "isuid": false, "mimetype": "text/plain", "mode": "0664", "mtime": 1776863813.8773699, "nlink": 1, "path": "/etc/audit/rules.d/custom.rules", "pw_name": "root", "readable": true, "rgrp": true, "roth": true, "rusr": true, "size": 386, "uid": 0, "version": "3623326391", "wgrp": true, "woth": false, "writeable": true, "wusr": true, "xgrp": false, "xoth": false, "xusr": false } } TASK [Run auditd role again with identical purge and rules] ******************** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tests_purge_rules.yml:90 Wednesday 22 April 2026 09:16:55 -0400 (0:00:00.381) 0:00:14.158 ******* included: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tasks/run_role_with_clear_facts.yml for managed-node1 TASK [Clear facts] ************************************************************* task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tasks/run_role_with_clear_facts.yml:9 Wednesday 22 April 2026 09:16:55 -0400 (0:00:00.018) 0:00:14.176 ******* META: facts cleared TASK [Run the role] ************************************************************ task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tasks/run_role_with_clear_facts.yml:23 Wednesday 22 April 2026 09:16:55 -0400 (0:00:00.000) 0:00:14.177 ******* skipping: [managed-node1] => { "changed": false, "false_condition": "__sr_failed_when is defined", "skip_reason": "Conditional result was False" } TASK [Run the role normally] *************************************************** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tasks/run_role_with_clear_facts.yml:33 Wednesday 22 April 2026 09:16:55 -0400 (0:00:00.014) 0:00:14.192 ******* included: fedora.linux_system_roles.auditd for managed-node1 TASK [fedora.linux_system_roles.auditd : Validating arguments against arg spec 'main' - Manage auditd and audit rules] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tests_purge_rules.yml:5 Wednesday 22 April 2026 09:16:55 -0400 (0:00:00.029) 0:00:14.222 ******* ok: [managed-node1] => { "changed": false, "validate_args_context": { "argument_spec_name": "main", "name": "auditd", "path": "/tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd", "type": "role" } } MSG: The arg spec validation passed TASK [fedora.linux_system_roles.auditd : Set platform/version specific variables] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/main.yml:3 Wednesday 22 April 2026 09:16:55 -0400 (0:00:00.014) 0:00:14.237 ******* included: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/set_vars.yml for managed-node1 TASK [fedora.linux_system_roles.auditd : Ensure ansible_facts used by role] **** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/set_vars.yml:2 Wednesday 22 April 2026 09:16:55 -0400 (0:00:00.016) 0:00:14.254 ******* ok: [managed-node1] TASK [fedora.linux_system_roles.auditd : Check if system is ostree] ************ task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/set_vars.yml:10 Wednesday 22 April 2026 09:16:56 -0400 (0:00:00.592) 0:00:14.847 ******* skipping: [managed-node1] => { "changed": false, "false_condition": "not __auditd_is_ostree is defined", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.auditd : Set flag to indicate system is ostree] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/set_vars.yml:15 Wednesday 22 April 2026 09:16:56 -0400 (0:00:00.016) 0:00:14.863 ******* skipping: [managed-node1] => { "changed": false, "false_condition": "not __auditd_is_ostree is defined", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.auditd : Set platform/version specific variables] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/set_vars.yml:19 Wednesday 22 April 2026 09:16:56 -0400 (0:00:00.015) 0:00:14.878 ******* skipping: [managed-node1] => (item=RedHat.yml) => { "ansible_loop_var": "item", "changed": false, "false_condition": "__vars_file is file", "item": "RedHat.yml", "skip_reason": "Conditional result was False" } skipping: [managed-node1] => (item=CentOS.yml) => { "ansible_loop_var": "item", "changed": false, "false_condition": "__vars_file is file", "item": "CentOS.yml", "skip_reason": "Conditional result was False" } skipping: [managed-node1] => (item=CentOS_10.yml) => { "ansible_loop_var": "item", "changed": false, "false_condition": "__vars_file is file", "item": "CentOS_10.yml", "skip_reason": "Conditional result was False" } skipping: [managed-node1] => (item=CentOS_10.yml) => { "ansible_loop_var": "item", "changed": false, "false_condition": "__vars_file is file", "item": "CentOS_10.yml", "skip_reason": "Conditional result was False" } skipping: [managed-node1] => { "changed": false } MSG: All items skipped TASK [fedora.linux_system_roles.auditd : Resolve package names for OS family] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/set_vars.yml:34 Wednesday 22 April 2026 09:16:56 -0400 (0:00:00.028) 0:00:14.906 ******* ok: [managed-node1] => { "ansible_facts": { "__auditd_packages": [ "audit" ] }, "changed": false } TASK [fedora.linux_system_roles.auditd : Validate role parameters] ************* task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/main.yml:8 Wednesday 22 April 2026 09:16:56 -0400 (0:00:00.017) 0:00:14.924 ******* included: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml for managed-node1 TASK [fedora.linux_system_roles.auditd : Assert num_logs range (num_logs_parser)] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:4 Wednesday 22 April 2026 09:16:56 -0400 (0:00:00.029) 0:00:14.953 ******* ok: [managed-node1] => { "changed": false } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert freq range (freq_parser)] ****** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:11 Wednesday 22 April 2026 09:16:56 -0400 (0:00:00.017) 0:00:14.971 ******* ok: [managed-node1] => { "changed": false } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert incremental flush requires non-zero freq (sanity_check)] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:18 Wednesday 22 April 2026 09:16:56 -0400 (0:00:00.016) 0:00:14.987 ******* ok: [managed-node1] => { "changed": false } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert priority_boost range (priority_boost_parser)] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:25 Wednesday 22 April 2026 09:16:56 -0400 (0:00:00.018) 0:00:15.006 ******* ok: [managed-node1] => { "changed": false } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert q_depth range (q_depth_parser)] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:31 Wednesday 22 April 2026 09:16:56 -0400 (0:00:00.018) 0:00:15.025 ******* ok: [managed-node1] => { "changed": false } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert auditd_maximum_rate is null or a non-negative integer] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:38 Wednesday 22 April 2026 09:16:56 -0400 (0:00:00.015) 0:00:15.041 ******* ok: [managed-node1] => { "changed": false } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert auditd_backlog_wait_time is null or a non-negative integer] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:48 Wednesday 22 April 2026 09:16:56 -0400 (0:00:00.021) 0:00:15.063 ******* ok: [managed-node1] => { "changed": false } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert max_restarts range (max_restarts_parser)] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:58 Wednesday 22 April 2026 09:16:56 -0400 (0:00:00.023) 0:00:15.086 ******* ok: [managed-node1] => { "changed": false } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert tcp_listen_port range when listener enabled in build (tcp_listen_port_parser)] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:64 Wednesday 22 April 2026 09:16:56 -0400 (0:00:00.016) 0:00:15.103 ******* ok: [managed-node1] => { "changed": false } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert tcp_listen_queue range (tcp_listen_queue_parser)] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:70 Wednesday 22 April 2026 09:16:56 -0400 (0:00:00.017) 0:00:15.121 ******* ok: [managed-node1] => { "changed": false } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert tcp_max_per_addr range (tcp_max_per_addr_parser)] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:76 Wednesday 22 April 2026 09:16:56 -0400 (0:00:00.016) 0:00:15.138 ******* ok: [managed-node1] => { "changed": false } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert tcp_client_max_idle range (tcp_client_max_idle_parser)] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:82 Wednesday 22 April 2026 09:16:56 -0400 (0:00:00.015) 0:00:15.154 ******* ok: [managed-node1] => { "changed": false } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert tcp_client_ports format (tcp_client_ports_parser)] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:88 Wednesday 22 April 2026 09:16:56 -0400 (0:00:00.015) 0:00:15.170 ******* skipping: [managed-node1] => { "changed": false, "false_condition": "auditd_tcp_client_ports is string", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.auditd : Assert tcp_client_ports range order] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:98 Wednesday 22 April 2026 09:16:56 -0400 (0:00:00.015) 0:00:15.185 ******* skipping: [managed-node1] => { "changed": false, "false_condition": "auditd_tcp_client_ports is string", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.auditd : Assert space_left_action rejects halt (space_action_parser)] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:107 Wednesday 22 April 2026 09:16:56 -0400 (0:00:00.015) 0:00:15.200 ******* ok: [managed-node1] => { "changed": false } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert space_left percentage is between 1 and 99 when given as N%] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:113 Wednesday 22 April 2026 09:16:56 -0400 (0:00:00.015) 0:00:15.216 ******* skipping: [managed-node1] => { "changed": false, "false_condition": "(auditd_space_left | string) is match('^[0-9]+%$')", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.auditd : Assert admin_space_left percentage is between 1 and 99 when given as N%] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:125 Wednesday 22 April 2026 09:16:56 -0400 (0:00:00.015) 0:00:15.231 ******* skipping: [managed-node1] => { "changed": false, "false_condition": "(auditd_admin_space_left | string) is match('^[0-9]+%$')", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.auditd : Assert space_left is greater than admin_space_left when both use same form] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:137 Wednesday 22 April 2026 09:16:56 -0400 (0:00:00.015) 0:00:15.247 ******* ok: [managed-node1] => { "changed": false } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert disk_full_action rejects email (disk_full_action_parser)] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:161 Wednesday 22 April 2026 09:16:56 -0400 (0:00:00.023) 0:00:15.270 ******* ok: [managed-node1] => { "changed": false } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert disk_error_action rejects email and rotate (disk_error_action_parser)] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:167 Wednesday 22 April 2026 09:16:56 -0400 (0:00:00.015) 0:00:15.285 ******* ok: [managed-node1] => { "changed": false } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert exec companion paths when action is exec] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:173 Wednesday 22 April 2026 09:16:56 -0400 (0:00:00.016) 0:00:15.302 ******* skipping: [managed-node1] => { "changed": false, "false_condition": "auditd_max_log_file_action | lower == 'exec'", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.auditd : Assert space_left_action exec path] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:180 Wednesday 22 April 2026 09:16:57 -0400 (0:00:00.014) 0:00:15.317 ******* skipping: [managed-node1] => { "changed": false, "false_condition": "auditd_space_left_action | lower == 'exec'", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.auditd : Assert admin_space_left_action exec path] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:187 Wednesday 22 April 2026 09:16:57 -0400 (0:00:00.013) 0:00:15.330 ******* skipping: [managed-node1] => { "changed": false, "false_condition": "auditd_admin_space_left_action | lower == 'exec'", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.auditd : Assert disk_full_action exec path] **** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:194 Wednesday 22 April 2026 09:16:57 -0400 (0:00:00.013) 0:00:15.343 ******* skipping: [managed-node1] => { "changed": false, "false_condition": "auditd_disk_full_action | lower == 'exec'", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.auditd : Assert disk_error_action exec path] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:201 Wednesday 22 April 2026 09:16:57 -0400 (0:00:00.013) 0:00:15.356 ******* skipping: [managed-node1] => { "changed": false, "false_condition": "auditd_disk_error_action | lower == 'exec'", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.auditd : Assert name when name_format is user (resolve_node)] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:208 Wednesday 22 April 2026 09:16:57 -0400 (0:00:00.012) 0:00:15.368 ******* skipping: [managed-node1] => { "changed": false, "false_condition": "auditd_name_format | lower == 'user'", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.auditd : Validate auditd_rules structure and values] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_role_vars.yml:215 Wednesday 22 April 2026 09:16:57 -0400 (0:00:00.013) 0:00:15.381 ******* included: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml for managed-node1 TASK [fedora.linux_system_roles.auditd : Assert auditd_rules is a list of dicts] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml:4 Wednesday 22 April 2026 09:16:57 -0400 (0:00:00.035) 0:00:15.418 ******* ok: [managed-node1] => { "changed": false } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert each auditd_rules entry has required action and filter] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml:13 Wednesday 22 April 2026 09:16:57 -0400 (0:00:00.023) 0:00:15.442 ******* ok: [managed-node1] => (item=always,exit) => { "ansible_loop_var": "item", "changed": false, "item": { "action": "always", "arch": "b64", "filter": "exit", "keyname": "lsr_auditd_purge_test", "path": "/etc/issue", "permission": [ "read" ], "syscall": "open" } } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert auditd_rules entries use only supported keys] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml:29 Wednesday 22 April 2026 09:16:57 -0400 (0:00:00.027) 0:00:15.469 ******* ok: [managed-node1] => (item={'action': 'always', 'filter': 'exit', 'arch': 'b64', 'syscall': 'open', 'path': '/etc/issue', 'permission': ['read'], 'keyname': 'lsr_auditd_purge_test'}) => { "ansible_loop_var": "item", "changed": false, "item": { "action": "always", "arch": "b64", "filter": "exit", "keyname": "lsr_auditd_purge_test", "path": "/etc/issue", "permission": [ "read" ], "syscall": "open" } } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert auditd_rules path and dir are mutually exclusive] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml:49 Wednesday 22 April 2026 09:16:57 -0400 (0:00:00.024) 0:00:15.493 ******* ok: [managed-node1] => (item={'action': 'always', 'filter': 'exit', 'arch': 'b64', 'syscall': 'open', 'path': '/etc/issue', 'permission': ['read'], 'keyname': 'lsr_auditd_purge_test'}) => { "ansible_loop_var": "item", "changed": false, "item": { "action": "always", "arch": "b64", "filter": "exit", "keyname": "lsr_auditd_purge_test", "path": "/etc/issue", "permission": [ "read" ], "syscall": "open" } } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert auditd_rules path or dir requires filter exit] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml:56 Wednesday 22 April 2026 09:16:57 -0400 (0:00:00.022) 0:00:15.516 ******* ok: [managed-node1] => (item={'action': 'always', 'filter': 'exit', 'arch': 'b64', 'syscall': 'open', 'path': '/etc/issue', 'permission': ['read'], 'keyname': 'lsr_auditd_purge_test'}) => { "ansible_loop_var": "item", "changed": false, "item": { "action": "always", "arch": "b64", "filter": "exit", "keyname": "lsr_auditd_purge_test", "path": "/etc/issue", "permission": [ "read" ], "syscall": "open" } } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert auditd_rules syscall requires valid filter type] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml:64 Wednesday 22 April 2026 09:16:57 -0400 (0:00:00.022) 0:00:15.538 ******* ok: [managed-node1] => (item={'action': 'always', 'filter': 'exit', 'arch': 'b64', 'syscall': 'open', 'path': '/etc/issue', 'permission': ['read'], 'keyname': 'lsr_auditd_purge_test'}) => { "ansible_loop_var": "item", "changed": false, "item": { "action": "always", "arch": "b64", "filter": "exit", "keyname": "lsr_auditd_purge_test", "path": "/etc/issue", "permission": [ "read" ], "syscall": "open" } } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert auditd_rules field is a non-empty string or list of non-empty strings] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml:74 Wednesday 22 April 2026 09:16:57 -0400 (0:00:00.026) 0:00:15.565 ******* skipping: [managed-node1] => (item={'action': 'always', 'filter': 'exit', 'arch': 'b64', 'syscall': 'open', 'path': '/etc/issue', 'permission': ['read'], 'keyname': 'lsr_auditd_purge_test'}) => { "ansible_loop_var": "item", "changed": false, "false_condition": "item.field is defined", "item": { "action": "always", "arch": "b64", "filter": "exit", "keyname": "lsr_auditd_purge_test", "path": "/etc/issue", "permission": [ "read" ], "syscall": "open" }, "skip_reason": "Conditional result was False" } skipping: [managed-node1] => { "changed": false } MSG: All items skipped TASK [fedora.linux_system_roles.auditd : Assert auditd_rules filesystem filter includes fstype=debugfs or fstype=tracefs] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml:84 Wednesday 22 April 2026 09:16:57 -0400 (0:00:00.018) 0:00:15.583 ******* skipping: [managed-node1] => (item={'action': 'always', 'filter': 'exit', 'arch': 'b64', 'syscall': 'open', 'path': '/etc/issue', 'permission': ['read'], 'keyname': 'lsr_auditd_purge_test'}) => { "ansible_loop_var": "item", "changed": false, "false_condition": "item.filter == 'filesystem'", "item": { "action": "always", "arch": "b64", "filter": "exit", "keyname": "lsr_auditd_purge_test", "path": "/etc/issue", "permission": [ "read" ], "syscall": "open" }, "skip_reason": "Conditional result was False" } skipping: [managed-node1] => { "changed": false } MSG: All items skipped TASK [fedora.linux_system_roles.auditd : Assert auditd_rules field fragments use a supported operator] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml:106 Wednesday 22 April 2026 09:16:57 -0400 (0:00:00.014) 0:00:15.597 ******* skipping: [managed-node1] => (item={'action': 'always', 'filter': 'exit', 'arch': 'b64', 'syscall': 'open', 'path': '/etc/issue', 'permission': ['read'], 'keyname': 'lsr_auditd_purge_test'}) => { "ansible_loop_var": "item", "changed": false, "false_condition": "item.field is defined", "item": { "action": "always", "arch": "b64", "filter": "exit", "keyname": "lsr_auditd_purge_test", "path": "/etc/issue", "permission": [ "read" ], "syscall": "open" }, "skip_reason": "Conditional result was False" } skipping: [managed-node1] => { "changed": false } MSG: All items skipped TASK [fedora.linux_system_roles.auditd : Assert auditd_rules permission is a non-empty string or list of non-empty strings] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml:122 Wednesday 22 April 2026 09:16:57 -0400 (0:00:00.018) 0:00:15.616 ******* ok: [managed-node1] => (item={'action': 'always', 'filter': 'exit', 'arch': 'b64', 'syscall': 'open', 'path': '/etc/issue', 'permission': ['read'], 'keyname': 'lsr_auditd_purge_test'}) => { "ansible_loop_var": "item", "changed": false, "item": { "action": "always", "arch": "b64", "filter": "exit", "keyname": "lsr_auditd_purge_test", "path": "/etc/issue", "permission": [ "read" ], "syscall": "open" } } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert auditd_rules permission values are recognized] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml:132 Wednesday 22 April 2026 09:16:57 -0400 (0:00:00.023) 0:00:15.639 ******* ok: [managed-node1] => (item={'action': 'always', 'filter': 'exit', 'arch': 'b64', 'syscall': 'open', 'path': '/etc/issue', 'permission': ['read'], 'keyname': 'lsr_auditd_purge_test'}) => { "ansible_loop_var": "item", "changed": false, "item": { "action": "always", "arch": "b64", "filter": "exit", "keyname": "lsr_auditd_purge_test", "path": "/etc/issue", "permission": [ "read" ], "syscall": "open" } } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert auditd_rules permission list does not mix nowarn with other values] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml:151 Wednesday 22 April 2026 09:16:57 -0400 (0:00:00.028) 0:00:15.668 ******* ok: [managed-node1] => (item={'action': 'always', 'filter': 'exit', 'arch': 'b64', 'syscall': 'open', 'path': '/etc/issue', 'permission': ['read'], 'keyname': 'lsr_auditd_purge_test'}) => { "ansible_loop_var": "item", "changed": false, "item": { "action": "always", "arch": "b64", "filter": "exit", "keyname": "lsr_auditd_purge_test", "path": "/etc/issue", "permission": [ "read" ], "syscall": "open" } } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert auditd_rules arch is a non-empty string or list of non-empty strings] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml:162 Wednesday 22 April 2026 09:16:57 -0400 (0:00:00.029) 0:00:15.698 ******* ok: [managed-node1] => (item={'action': 'always', 'filter': 'exit', 'arch': 'b64', 'syscall': 'open', 'path': '/etc/issue', 'permission': ['read'], 'keyname': 'lsr_auditd_purge_test'}) => { "ansible_loop_var": "item", "changed": false, "item": { "action": "always", "arch": "b64", "filter": "exit", "keyname": "lsr_auditd_purge_test", "path": "/etc/issue", "permission": [ "read" ], "syscall": "open" } } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert auditd_rules syscall is a number, non-empty string, or list of numbers and/or non-empty strings] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml:172 Wednesday 22 April 2026 09:16:57 -0400 (0:00:00.023) 0:00:15.721 ******* ok: [managed-node1] => (item={'action': 'always', 'filter': 'exit', 'arch': 'b64', 'syscall': 'open', 'path': '/etc/issue', 'permission': ['read'], 'keyname': 'lsr_auditd_purge_test'}) => { "ansible_loop_var": "item", "changed": false, "item": { "action": "always", "arch": "b64", "filter": "exit", "keyname": "lsr_auditd_purge_test", "path": "/etc/issue", "permission": [ "read" ], "syscall": "open" } } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Assert auditd_rules keyname is a non-empty string or list of non-empty strings] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml:182 Wednesday 22 April 2026 09:16:57 -0400 (0:00:00.023) 0:00:15.744 ******* ok: [managed-node1] => (item={'action': 'always', 'filter': 'exit', 'arch': 'b64', 'syscall': 'open', 'path': '/etc/issue', 'permission': ['read'], 'keyname': 'lsr_auditd_purge_test'}) => { "ansible_loop_var": "item", "changed": false, "item": { "action": "always", "arch": "b64", "filter": "exit", "keyname": "lsr_auditd_purge_test", "path": "/etc/issue", "permission": [ "read" ], "syscall": "open" } } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Initialize keyname list for auditd_rules length check] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml:192 Wednesday 22 April 2026 09:16:57 -0400 (0:00:00.029) 0:00:15.774 ******* ok: [managed-node1] => { "ansible_facts": { "__auditd_rules_keynames_to_check": [] }, "changed": false } TASK [fedora.linux_system_roles.auditd : Append auditd_rules keynames for length checks] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml:196 Wednesday 22 April 2026 09:16:57 -0400 (0:00:00.014) 0:00:15.789 ******* ok: [managed-node1] => (item={'action': 'always', 'filter': 'exit', 'arch': 'b64', 'syscall': 'open', 'path': '/etc/issue', 'permission': ['read'], 'keyname': 'lsr_auditd_purge_test'}) => { "ansible_facts": { "__auditd_rules_keynames_to_check": [ "lsr_auditd_purge_test" ] }, "ansible_loop_var": "item", "changed": false, "item": { "action": "always", "arch": "b64", "filter": "exit", "keyname": "lsr_auditd_purge_test", "path": "/etc/issue", "permission": [ "read" ], "syscall": "open" } } TASK [fedora.linux_system_roles.auditd : Assert each auditd_rules keyname is at most 31 characters] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml:208 Wednesday 22 April 2026 09:16:57 -0400 (0:00:00.028) 0:00:15.818 ******* ok: [managed-node1] => (item=lsr_auditd_purge_test) => { "ansible_loop_var": "item", "changed": false, "item": "lsr_auditd_purge_test" } MSG: All assertions passed TASK [fedora.linux_system_roles.auditd : Warn when auditd_rules omits arch (not io_uring, not arch nowarn)] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml:216 Wednesday 22 April 2026 09:16:57 -0400 (0:00:00.021) 0:00:15.839 ******* skipping: [managed-node1] => (item=0,always,exit) => { "ansible_index_var": "idx", "ansible_loop_var": "item", "false_condition": "not (item.arch is defined and ( (item.arch is string and ((item.arch == 'nowarn') or (item.arch | trim | length > 0))) or (item.arch is iterable and item.arch is not string and item.arch | length > 0) ))", "idx": 0, "item": { "action": "always", "arch": "b64", "filter": "exit", "keyname": "lsr_auditd_purge_test", "path": "/etc/issue", "permission": [ "read" ], "syscall": "open" } } skipping: [managed-node1] => {} MSG: All items skipped TASK [fedora.linux_system_roles.auditd : Warn when auditd_rules uses path or dir without permissions or syscalls] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/assert_auditd_rules.yml:230 Wednesday 22 April 2026 09:16:57 -0400 (0:00:00.026) 0:00:15.866 ******* skipping: [managed-node1] => (item=0,always,exit) => { "ansible_index_var": "idx", "ansible_loop_var": "item", "false_condition": "not (item.permission is defined or item.syscall is defined)", "idx": 0, "item": { "action": "always", "arch": "b64", "filter": "exit", "keyname": "lsr_auditd_purge_test", "path": "/etc/issue", "permission": [ "read" ], "syscall": "open" } } skipping: [managed-node1] => {} MSG: All items skipped TASK [fedora.linux_system_roles.auditd : Install audit packages] *************** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/main.yml:11 Wednesday 22 April 2026 09:16:57 -0400 (0:00:00.021) 0:00:15.887 ******* ok: [managed-node1] => { "changed": false, "rc": 0, "results": [] } MSG: Nothing to do TASK [fedora.linux_system_roles.auditd : Deploy auditd configuration] ********** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/main.yml:17 Wednesday 22 April 2026 09:16:58 -0400 (0:00:01.217) 0:00:17.106 ******* ok: [managed-node1] => { "changed": false, "checksum": "33eefb6af1c751110a125b8b468118e6f0edb244", "dest": "/etc/audit/auditd.conf", "gid": 0, "group": "root", "mode": "0640", "owner": "root", "path": "/etc/audit/auditd.conf", "secontext": "system_u:object_r:auditd_etc_t:s0", "size": 852, "state": "file", "uid": 0 } TASK [fedora.linux_system_roles.auditd : Ensure rules.d directory exists] ****** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/main.yml:24 Wednesday 22 April 2026 09:16:59 -0400 (0:00:00.698) 0:00:17.805 ******* ok: [managed-node1] => { "changed": false, "gid": 0, "group": "root", "mode": "0750", "owner": "root", "path": "/etc/audit/rules.d", "secontext": "system_u:object_r:auditd_etc_t:s0", "size": 26, "state": "directory", "uid": 0 } TASK [fedora.linux_system_roles.auditd : Purge rules.d when requested] ********* task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/main.yml:30 Wednesday 22 April 2026 09:16:59 -0400 (0:00:00.379) 0:00:18.184 ******* included: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/purge_rules.yml for managed-node1 TASK [fedora.linux_system_roles.auditd : Discover files in rules.d] ************ task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/purge_rules.yml:12 Wednesday 22 April 2026 09:16:59 -0400 (0:00:00.035) 0:00:18.219 ******* ok: [managed-node1] => { "changed": false, "examined": 1, "files": [ { "atime": 1776863814.6263666, "ctime": 1776863814.1586065, "dev": 51714, "gid": 0, "gr_name": "root", "inode": 633340162, "isblk": false, "ischr": false, "isdir": false, "isfifo": false, "isgid": false, "islnk": false, "isreg": true, "issock": false, "isuid": false, "mode": "0664", "mtime": 1776863813.8773699, "nlink": 1, "path": "/etc/audit/rules.d/custom.rules", "pw_name": "root", "rgrp": true, "roth": true, "rusr": true, "size": 386, "uid": 0, "wgrp": true, "woth": false, "wusr": true, "xgrp": false, "xoth": false, "xusr": false } ], "matched": 1, "skipped_paths": {} } MSG: All paths examined TASK [fedora.linux_system_roles.auditd : Stat existing custom.rules before purge] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/purge_rules.yml:18 Wednesday 22 April 2026 09:17:00 -0400 (0:00:00.378) 0:00:18.597 ******* ok: [managed-node1] => { "changed": false, "stat": { "atime": 1776863814.6263666, "attr_flags": "", "attributes": [], "block_size": 4096, "blocks": 8, "charset": "us-ascii", "checksum": "a35d086301423f4b4d79370debf2e063e25201d9", "ctime": 1776863814.1586065, "dev": 51714, "device_type": 0, "executable": false, "exists": true, "gid": 0, "gr_name": "root", "inode": 633340162, "isblk": false, "ischr": false, "isdir": false, "isfifo": false, "isgid": false, "islnk": false, "isreg": true, "issock": false, "isuid": false, "mimetype": "text/plain", "mode": "0664", "mtime": 1776863813.8773699, "nlink": 1, "path": "/etc/audit/rules.d/custom.rules", "pw_name": "root", "readable": true, "rgrp": true, "roth": true, "rusr": true, "size": 386, "uid": 0, "version": "3623326391", "wgrp": true, "woth": false, "writeable": true, "wusr": true, "xgrp": false, "xoth": false, "xusr": false } } TASK [fedora.linux_system_roles.auditd : Read existing custom.rules for comparison] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/purge_rules.yml:23 Wednesday 22 April 2026 09:17:00 -0400 (0:00:00.382) 0:00:18.980 ******* ok: [managed-node1] => { "changed": false, "content": "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", "encoding": "base64", "source": "/etc/audit/rules.d/custom.rules" } TASK [fedora.linux_system_roles.auditd : Record whether to keep existing custom.rules (managed rules)] *** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/purge_rules.yml:29 Wednesday 22 April 2026 09:17:01 -0400 (0:00:00.379) 0:00:19.359 ******* ok: [managed-node1] => { "ansible_facts": { "__auditd_purge_keep_custom_rules": true }, "changed": false } TASK [fedora.linux_system_roles.auditd : Remove files from rules.d] ************ task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/purge_rules.yml:62 Wednesday 22 April 2026 09:17:01 -0400 (0:00:00.062) 0:00:19.421 ******* skipping: [managed-node1] => (item=/etc/audit/rules.d/custom.rules) => { "ansible_loop_var": "item", "changed": false, "false_condition": "not (\n (item.path | basename == 'custom.rules')\n and (__auditd_purge_keep_custom_rules | default(false) | bool)\n)", "item": { "atime": 1776863814.6263666, "ctime": 1776863814.1586065, "dev": 51714, "gid": 0, "gr_name": "root", "inode": 633340162, "isblk": false, "ischr": false, "isdir": false, "isfifo": false, "isgid": false, "islnk": false, "isreg": true, "issock": false, "isuid": false, "mode": "0664", "mtime": 1776863813.8773699, "nlink": 1, "path": "/etc/audit/rules.d/custom.rules", "pw_name": "root", "rgrp": true, "roth": true, "rusr": true, "size": 386, "uid": 0, "wgrp": true, "woth": false, "wusr": true, "xgrp": false, "xoth": false, "xusr": false }, "skip_reason": "Conditional result was False" } skipping: [managed-node1] => { "changed": false } MSG: All items skipped TASK [fedora.linux_system_roles.auditd : Deploy custom audit rules] ************ task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/main.yml:36 Wednesday 22 April 2026 09:17:01 -0400 (0:00:00.019) 0:00:19.441 ******* skipping: [managed-node1] => { "changed": false, "false_condition": "not (__auditd_purge_keep_custom_rules | default(false) | bool)", "skip_reason": "Conditional result was False" } TASK [fedora.linux_system_roles.auditd : Start and enable auditd service] ****** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/main.yml:46 Wednesday 22 April 2026 09:17:01 -0400 (0:00:00.013) 0:00:19.455 ******* skipping: [managed-node1] => { "changed": false, "false_condition": "auditd_start_service | bool", "skip_reason": "Conditional result was False" } TASK [Flush handlers after second role run] ************************************ task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tests_purge_rules.yml:106 Wednesday 22 April 2026 09:17:01 -0400 (0:00:00.011) 0:00:19.467 ******* META: triggered running handlers for managed-node1 TASK [Stat custom.rules after second role run] ********************************* task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tests_purge_rules.yml:109 Wednesday 22 April 2026 09:17:01 -0400 (0:00:00.000) 0:00:19.467 ******* ok: [managed-node1] => { "changed": false, "stat": { "atime": 1776863814.6263666, "attr_flags": "", "attributes": [], "block_size": 4096, "blocks": 8, "charset": "us-ascii", "checksum": "ea658c9f7ca1a3f50afec94de5fee9184a583a47f0feb1e8888e8c386cdbe13a", "ctime": 1776863814.1586065, "dev": 51714, "device_type": 0, "executable": false, "exists": true, "gid": 0, "gr_name": "root", "inode": 633340162, "isblk": false, "ischr": false, "isdir": false, "isfifo": false, "isgid": false, "islnk": false, "isreg": true, "issock": false, "isuid": false, "mimetype": "text/plain", "mode": "0664", "mtime": 1776863813.8773699, "nlink": 1, "path": "/etc/audit/rules.d/custom.rules", "pw_name": "root", "readable": true, "rgrp": true, "roth": true, "rusr": true, "size": 386, "uid": 0, "version": "3623326391", "wgrp": true, "woth": false, "writeable": true, "wusr": true, "xgrp": false, "xoth": false, "xusr": false } } TASK [Verify custom.rules unchanged on idempotent second run] ****************** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tests_purge_rules.yml:115 Wednesday 22 April 2026 09:17:01 -0400 (0:00:00.385) 0:00:19.853 ******* ok: [managed-node1] => { "changed": false } MSG: All assertions passed TASK [Stat decoy path after second run] **************************************** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tests_purge_rules.yml:124 Wednesday 22 April 2026 09:17:01 -0400 (0:00:00.020) 0:00:19.874 ******* ok: [managed-node1] => { "changed": false, "stat": { "exists": false } } TASK [Verify decoy did not reappear] ******************************************* task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tests_purge_rules.yml:129 Wednesday 22 April 2026 09:17:01 -0400 (0:00:00.371) 0:00:20.245 ******* ok: [managed-node1] => { "changed": false } MSG: All assertions passed TASK [Check whether purge test rules.d snapshot exists] ************************ task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tests_purge_rules.yml:135 Wednesday 22 April 2026 09:17:01 -0400 (0:00:00.015) 0:00:20.260 ******* ok: [managed-node1] => { "changed": false, "stat": { "atime": 1776863805.805477, "attr_flags": "", "attributes": [], "block_size": 4096, "blocks": 0, "charset": "binary", "ctime": 1776863805.805477, "dev": 51714, "device_type": 0, "executable": true, "exists": true, "gid": 0, "gr_name": "root", "inode": 507510978, "isblk": false, "ischr": false, "isdir": true, "isfifo": false, "isgid": false, "islnk": false, "isreg": false, "issock": false, "isuid": false, "mimetype": "inode/directory", "mode": "0750", "mtime": 1776863805.8052914, "nlink": 2, "path": "/root/.lsr_auditd_purge_rulesd.backup", "pw_name": "root", "readable": true, "rgrp": true, "roth": false, "rusr": true, "size": 45, "uid": 0, "version": "2924440165", "wgrp": false, "woth": false, "writeable": true, "wusr": true, "xgrp": true, "xoth": false, "xusr": true } } TASK [Remove rules.d tree before restoring snapshot] *************************** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tests_purge_rules.yml:143 Wednesday 22 April 2026 09:17:02 -0400 (0:00:00.380) 0:00:20.641 ******* changed: [managed-node1] => { "changed": true, "path": "/etc/audit/rules.d", "state": "absent" } TASK [Recreate empty rules.d directory] **************************************** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tests_purge_rules.yml:148 Wednesday 22 April 2026 09:17:02 -0400 (0:00:00.381) 0:00:21.023 ******* changed: [managed-node1] => { "changed": true, "gid": 0, "group": "root", "mode": "0750", "owner": "root", "path": "/etc/audit/rules.d", "secontext": "unconfined_u:object_r:auditd_etc_t:s0", "size": 6, "state": "directory", "uid": 0 } TASK [Copy snapshot back into rules.d] ***************************************** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tests_purge_rules.yml:154 Wednesday 22 April 2026 09:17:03 -0400 (0:00:00.379) 0:00:21.403 ******* changed: [managed-node1] => { "changed": true, "checksum": null, "dest": "/etc/audit/rules.d/", "gid": 0, "group": "root", "md5sum": null, "mode": "0750", "owner": "root", "secontext": "unconfined_u:object_r:auditd_etc_t:s0", "size": 45, "src": "/root/.lsr_auditd_purge_rulesd.backup/", "state": "directory", "uid": 0 } TASK [Remove purge test rules.d snapshot directory on managed host] ************ task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tests_purge_rules.yml:161 Wednesday 22 April 2026 09:17:03 -0400 (0:00:00.377) 0:00:21.780 ******* changed: [managed-node1] => { "changed": true, "path": "/root/.lsr_auditd_purge_rulesd.backup", "state": "absent" } TASK [Restore system state after purge test] *********************************** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tests_purge_rules.yml:167 Wednesday 22 April 2026 09:17:03 -0400 (0:00:00.383) 0:00:22.164 ******* included: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tasks/cleanup.yml for managed-node1 TASK [Restore auditd.conf from integration test backup] ************************ task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tasks/cleanup.yml:3 Wednesday 22 April 2026 09:17:03 -0400 (0:00:00.020) 0:00:22.184 ******* ok: [managed-node1] => { "changed": false, "checksum": "33eefb6af1c751110a125b8b468118e6f0edb244", "dest": "/etc/audit/auditd.conf", "gid": 0, "group": "root", "md5sum": "eda8c45ce09c30766469af2714e2eff9", "mode": "0640", "owner": "root", "secontext": "system_u:object_r:auditd_etc_t:s0", "size": 852, "src": "/root/.lsr_auditd_integration_auditd.conf.bak", "state": "file", "uid": 0 } TASK [Remove auditd.conf backup file] ****************************************** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tasks/cleanup.yml:11 Wednesday 22 April 2026 09:17:04 -0400 (0:00:00.383) 0:00:22.568 ******* changed: [managed-node1] => { "changed": true, "path": "/root/.lsr_auditd_integration_auditd.conf.bak", "state": "absent" } TASK [Restore custom.rules from integration test backup] *********************** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tasks/cleanup.yml:17 Wednesday 22 April 2026 09:17:04 -0400 (0:00:00.379) 0:00:22.947 ******* ok: [managed-node1] => { "changed": false, "checksum": "beaedc34af6f74d852b504550a00030393947a4b", "dest": "/etc/audit/rules.d/custom.rules", "gid": 0, "group": "root", "md5sum": "02a93488fb84ceabb705a049f70ced6b", "mode": "0664", "owner": "root", "secontext": "unconfined_u:object_r:auditd_etc_t:s0", "size": 293, "src": "/root/.lsr_auditd_integration_custom.rules.bak", "state": "file", "uid": 0 } TASK [Remove custom.rules backup file] ***************************************** task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tasks/cleanup.yml:25 Wednesday 22 April 2026 09:17:05 -0400 (0:00:00.378) 0:00:23.326 ******* changed: [managed-node1] => { "changed": true, "path": "/root/.lsr_auditd_integration_custom.rules.bak", "state": "absent" } TASK [Remove custom.rules if it did not exist before test] ********************* task path: /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tasks/cleanup.yml:31 Wednesday 22 April 2026 09:17:05 -0400 (0:00:00.372) 0:00:23.699 ******* skipping: [managed-node1] => { "changed": false, "false_condition": "not __auditd_integration_had_custom_rules | bool", "skip_reason": "Conditional result was False" } PLAY RECAP ********************************************************************* managed-node1 : ok=131 changed=14 unreachable=0 failed=0 skipped=42 rescued=0 ignored=0 SYSTEM ROLES ERRORS BEGIN v1 [] SYSTEM ROLES ERRORS END v1 TASKS RECAP ******************************************************************** Wednesday 22 April 2026 09:17:05 -0400 (0:00:00.011) 0:00:23.710 ******* =============================================================================== fedora.linux_system_roles.auditd : Install audit packages --------------- 1.29s /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/main.yml:11 fedora.linux_system_roles.auditd : Install audit packages --------------- 1.22s /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/main.yml:11 Gathering Facts --------------------------------------------------------- 1.20s /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tests_purge_rules.yml:5 fedora.linux_system_roles.auditd : Remove files from rules.d ------------ 1.10s /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/purge_rules.yml:62 fedora.linux_system_roles.auditd : Deploy custom audit rules ------------ 0.75s /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/main.yml:36 Install decoy rules fragment to be removed by purge --------------------- 0.70s /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tests_purge_rules.yml:34 fedora.linux_system_roles.auditd : Deploy auditd configuration ---------- 0.70s /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/main.yml:17 fedora.linux_system_roles.auditd : Deploy auditd configuration ---------- 0.68s /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/main.yml:17 fedora.linux_system_roles.auditd : Ensure ansible_facts used by role ---- 0.59s /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/set_vars.yml:2 fedora.linux_system_roles.auditd : Ensure ansible_facts used by role ---- 0.59s /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/set_vars.yml:2 fedora.linux_system_roles.auditd : Run augenrules ----------------------- 0.47s /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/handlers/main.yml:3 Check for existing auditd.conf ------------------------------------------ 0.46s /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tasks/setup.yml:7 Ensure rules.d backup parent directory is absent ------------------------ 0.46s /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tests_purge_rules.yml:16 Back up auditd.conf before test ----------------------------------------- 0.45s /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tasks/setup.yml:21 fedora.linux_system_roles.auditd : Discover files in rules.d ------------ 0.45s /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/purge_rules.yml:12 fedora.linux_system_roles.auditd : Read existing custom.rules for comparison --- 0.43s /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/purge_rules.yml:23 fedora.linux_system_roles.auditd : Stat existing custom.rules before purge --- 0.39s /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/roles/auditd/tasks/purge_rules.yml:18 Stat custom.rules after second role run --------------------------------- 0.39s /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tests_purge_rules.yml:109 Remove purge test rules.d snapshot directory on managed host ------------ 0.38s /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tests_purge_rules.yml:161 Restore auditd.conf from integration test backup ------------------------ 0.38s /tmp/collections-b2t/ansible_collections/fedora/linux_system_roles/tests/auditd/tasks/cleanup.yml:3