Failed task makeovpn : Move ovpn files to a subdirectory

cucho commented 7 years ago

Running the instructions with a brand new Ubuntu 16.04.01 x64 droplet from OSX, stuck into this:

TASK [makeovpn : Move ovpn files to a subdirectory] ****************************
failed: [178.XX.XX.XX] (item=[u'airvpn1', u'ovpn']) => {"failed": true, "item": ["airvpn1", "ovpn"], "msg": "Source /etc/openvpn/keys/airvpn1.ovpn not found"}
failed: [178.XX.XX.XX] (item=[u'airvpn1', u'crt']) => {"failed": true, "item": ["airvpn1", "crt"], "msg": "Source /etc/openvpn/keys/airvpn1.crt not found"}
failed: [178.XX.XX.XX] (item=[u'airvpn1', u'key']) => {"failed": true, "item": ["airvpn1", "key"], "msg": "Source /etc/openvpn/keys/airvpn1.key not found"}
    to retry, use: --limit @/Users/cucho/Projects/openvpn/popup-openvpn/manage.retry

(I masked my IP address, and airvpn1 is the single element in openvpn_clients)

PLAY [apply common configuration to all nodes] Green tasks:
TASK [setup]
TASK [common : Install Base Layer Packages]
TASK [common : Perform Safe Upgrade]
TASK [common : Deploy SSH Configuration]
TASK [sudo : Allow 'sudo' group to have passwordless sudo]
TASK [swapfile : Show Swap and RAM] Skipped (blue) tasks: (all skip_reason: Conditional check failed)
TASK [swapfile : Make swapfile]
TASK [swapfile : Set swapfile permissions]
TASK [swapfile : Make swap]
TASK [swapfile : Add to fstab]
TASK [swapfile : Turn swap on] Green:
PLAY [deploy Stoutsopenvpn OpenVPN role]
TASK [setup]
TASK [iptables-openvpn : Install Base Layer Packages]
TASK [iptables-openvpn : Deploy iptables rules and restart iptables] YELLOW:
TASK [makeovpn : make working directory for each unassembled ovpn file] RED:
TASK [makeovpn : Move ovpn files to a subdirectory]

robbintt commented 7 years ago

Thanks for filing this. Can send me the complete output? The problem seems to be that your keyfiles aren't being created.

One cause would be having no usernames or passwords in group_vars/all, you must have at least one name/password pair (example below of 4 pairs):

openvpn_use_pam_users:
- { name: defaultuser1, password: asecurepassword1 }
- { name: defaultuser2, password: asecurepassword2 }
- { name: defaultuser3, password: asecurepassword3 }
- { name: defaultuser4, password: asecurepassword4 }

robbintt commented 7 years ago

Please also give me the output of ansible --version

cucho commented 7 years ago

Thank you for your reply.

Ansible version:

ansible 2.2.0.0
  config file = 
  configured module search path = Default w/o overrides

in group_vars/all (other lines are unchanged):

openvpn_clients: [airvpn1]

openvpn_use_pam_users:
- { name: airuser, password: swambergsexjohn }

Output:

Air:popup-openvpn cucho$ sh manage.sh
No config file found; using defaults

PLAY [Install Ansible Dependencies] ********************************************

TASK [raw] *********************************************************************
changed: [178.XXX.XXX.XXX] => {"changed": true, "rc": 0, "stderr": "Shared connection to 178.XXX.XXX.XXX closed.\r\n", "stdout": "", "stdout_lines": []}

PLAY [apply common configuration to all nodes] *********************************

TASK [setup] *******************************************************************
ok: [178.XXX.XXX.XXX]

TASK [common : Install Base Layer Packages] ************************************
ok: [178.XXX.XXX.XXX] => (item=[u'vim', u'git', u'fail2ban', u'aptitude']) => {"cache_update_time": 1483951008, "cache_updated": false, "changed": false, "item": ["vim", "git", "fail2ban", "aptitude"]}

TASK [common : Perform Safe Upgrade] *******************************************
ok: [178.XXX.XXX.XXX] => {"changed": false, "msg": "Reading package lists...\nBuilding dependency tree...\nReading state information...\nReading extended state information...\nInitializing package states...\nBuilding tag database...\nNo packages will be installed, upgraded, or removed.\n0 packages upgraded, 0 newly installed, 0 to remove and 0 not upgraded.\nNeed to get 0 B of archives. After unpacking 0 B will be used.\nReading package lists...\nBuilding dependency tree...\nReading state information...\nReading extended state information...\nInitializing package states...\nBuilding tag database...\n", "stderr": "", "stdout": "Reading package lists...\nBuilding dependency tree...\nReading state information...\nReading extended state information...\nInitializing package states...\nBuilding tag database...\nNo packages will be installed, upgraded, or removed.\n0 packages upgraded, 0 newly installed, 0 to remove and 0 not upgraded.\nNeed to get 0 B of archives. After unpacking 0 B will be used.\nReading package lists...\nBuilding dependency tree...\nReading state information...\nReading extended state information...\nInitializing package states...\nBuilding tag database...\n", "stdout_lines": ["Reading package lists...", "Building dependency tree...", "Reading state information...", "Reading extended state information...", "Initializing package states...", "Building tag database...", "No packages will be installed, upgraded, or removed.", "0 packages upgraded, 0 newly installed, 0 to remove and 0 not upgraded.", "Need to get 0 B of archives. After unpacking 0 B will be used.", "Reading package lists...", "Building dependency tree...", "Reading state information...", "Reading extended state information...", "Initializing package states...", "Building tag database..."]}

TASK [common : Deploy SSH Configuration] ***************************************
ok: [178.XXX.XXX.XXX] => {"changed": false, "gid": 0, "group": "root", "mode": "0644", "owner": "root", "path": "/etc/ssh/sshd_config", "size": 2609, "state": "file", "uid": 0}

TASK [sudo : Allow 'sudo' group to have passwordless sudo] *********************
ok: [178.XXX.XXX.XXX] => {"backup": "", "changed": false, "msg": ""}

TASK [swapfile : Show Swap and RAM] ********************************************
ok: [178.XXX.XXX.XXX] => {
    "msg": "ram=488, swap=4095"
}

TASK [swapfile : Make swapfile] ************************************************
skipping: [178.XXX.XXX.XXX] => {"changed": false, "skip_reason": "Conditional check failed", "skipped": true}

TASK [swapfile : Set swapfile permissions] *************************************
skipping: [178.XXX.XXX.XXX] => {"changed": false, "skip_reason": "Conditional check failed", "skipped": true}

TASK [swapfile : Make swap] ****************************************************
skipping: [178.XXX.XXX.XXX] => {"changed": false, "skip_reason": "Conditional check failed", "skipped": true}

TASK [swapfile : Add to fstab] *************************************************
skipping: [178.XXX.XXX.XXX] => {"changed": false, "skip_reason": "Conditional check failed", "skipped": true}

TASK [swapfile : Turn swap on] *************************************************
skipping: [178.XXX.XXX.XXX] => {"changed": false, "skip_reason": "Conditional check failed", "skipped": true}

PLAY [deploy Stoutsopenvpn OpenVPN role] ***************************************

TASK [setup] *******************************************************************
ok: [178.XXX.XXX.XXX]

TASK [iptables-openvpn : Install Base Layer Packages] **************************
ok: [178.XXX.XXX.XXX] => (item=[u'iptables-persistent']) => {"cache_update_time": 1483951008, "cache_updated": false, "changed": false, "item": ["iptables-persistent"]}

TASK [iptables-openvpn : Deploy iptables rules and restart iptables] ***********
ok: [178.XXX.XXX.XXX] => (item={u'dest': u'/etc/iptables/rules.v4', u'src': u'../files/rules.v4'}) => {"changed": false, "gid": 0, "group": "root", "item": {"dest": "/etc/iptables/rules.v4", "src": "../files/rules.v4"}, "mode": "0644", "owner": "root", "path": "/etc/iptables/rules.v4", "size": 904, "state": "file", "uid": 0}
ok: [178.XXX.XXX.XXX] => (item={u'dest': u'/etc/iptables/rules.v6', u'src': u'../files/rules.v6'}) => {"changed": false, "gid": 0, "group": "root", "item": {"dest": "/etc/iptables/rules.v6", "src": "../files/rules.v6"}, "mode": "0644", "owner": "root", "path": "/etc/iptables/rules.v6", "size": 183, "state": "file", "uid": 0}

TASK [makeovpn : make working directory for each unassembled ovpn file] ********
changed: [178.XXX.XXX.XXX] => (item=airvpn1) => {"changed": true, "gid": 0, "group": "root", "item": "airvpn1", "mode": "0755", "owner": "root", "path": "/etc/openvpn/keys/ovpn_files/airvpn1", "size": 4096, "state": "directory", "uid": 0}

TASK [makeovpn : Move ovpn files to a subdirectory] ****************************
failed: [178.XXX.XXX.XXX] (item=[u'airvpn1', u'ovpn']) => {"failed": true, "item": ["airvpn1", "ovpn"], "msg": "Source /etc/openvpn/keys/airvpn1.ovpn not found"}
failed: [178.XXX.XXX.XXX] (item=[u'airvpn1', u'crt']) => {"failed": true, "item": ["airvpn1", "crt"], "msg": "Source /etc/openvpn/keys/airvpn1.crt not found"}
failed: [178.XXX.XXX.XXX] (item=[u'airvpn1', u'key']) => {"failed": true, "item": ["airvpn1", "key"], "msg": "Source /etc/openvpn/keys/airvpn1.key not found"}
    to retry, use: --limit @/Users/cucho/Projects/openvpn/popup-openvpn/manage.retry

PLAY RECAP *********************************************************************
178.XXX.XXX.XXX               : ok=11   changed=2    unreachable=0    failed=1

robbintt commented 7 years ago

It looks like you haven't recursively cloned the subrepo for stouts. You have to pull recursive. I can explain tomorrow. If you look it up, can you please send a PR for that section of the howto?

http://stackoverflow.com/questions/3796927/how-to-git-clone-including-submodules

robbintt / popup-openvpn

Failed task makeovpn : Move ovpn files to a subdirectory #8