Add test case for uncommon configuration options

2024-11-08 21:03:29 +01:00 · 2020-09-17 17:22:52 +02:00 · 2020-09-17 17:22:52 +02:00 · 1266519c23
commit 1266519c23
parent e2bc8f14e5
2 changed files with 57 additions and 0 deletions
--- a/.travis.yml
+++ b/.travis.yml
@ -31,3 +31,9 @@ script:
    ANSIBLE_FORCE_COLOR=1 ansible-playbook -i tests/inventory tests/test_set_common.yml --connection=local --become -v
    && (echo 'Common variables test: pass' && exit 0)
    || (echo 'Common variables test: fail' && exit 1)
+
+  # Test 4: Check if we set uncommon or unsupported configuration option, it will not fail hard
+  - >
+    ANSIBLE_FORCE_COLOR=1 ansible-playbook -i tests/inventory tests/test_set_uncommon.yml --connection=local --become -v
+    && (echo 'Uncommon configuration test: pass' && exit 0)
+    || (echo 'Uncommon configuration test: fail' && exit 1)
--- a/tests/test_set_uncommon.yml
+++ b/tests/test_set_uncommon.yml
@ -0,0 +1,51 @@
+---
+- hosts: all
+  become: true
+  tasks:
+  - name: Configure sshd with uncommon options, making sure it keeps running
+    block:
+      - name: Configure ssh with unsupported options
+        include_role:
+          name: ansible-sshd
+        vars:
+          sshd:
+            # Unsupported in new versions, but ignored ?
+            Protocol: 1
+            UsePrivilegeSeparation: no
+            UseLogin: yes
+            # Debian only
+            DebianBanner: /etc/motd
+            # Used in FreeBSD ?
+            VersionAddendum: FreeBSD-20180909
+            # HPN only
+            HPNDisabled: yes
+            HPNBufferSize: 2MB
+            TcpRcvBufPoll: yes
+            NoneEnabled: yes
+            # some builds might be without kerberos/GSSAPI
+            KerberosAuthentication: yes
+            GSSAPIStoreCredentialsOnRekey: yes
+            # SSHv1 options
+            KeyRegenerationInterval: 1h
+            ServerKeyBits: 1024
+            # This one is pretty new, but works on OpenBSD only
+            RDomain: 2
+        register: role_result
+
+      - name: unreachable task
+        fail:
+          msg: UNREACH
+    rescue:
+      - name: Check that we failed in the role
+        assert:
+          that:
+            - ansible_failed_result.msg != 'UNREACH'
+            - not role_result.changed
+          msg: "Role has not failed when it should have"
+
+      - name: Make sure service is still running
+        service:
+          name: sshd
+          state: started
+        register: result
+        failed_when: result.changed