Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Ansible Reports Validate Not Supported by Netconf Server when Enabled in Netconf #119

Closed
jamesmarshall24 opened this issue Aug 10, 2020 · 3 comments · Fixed by ansible/ansible#71195
Closed

Ansible Reports Validate Not Supported by Netconf Server when Enabled in Netconf #119

jamesmarshall24 opened this issue Aug 10, 2020 · 3 comments · Fixed by ansible/ansible#71195

Comments

@jamesmarshall24
Copy link

SUMMARY

Although validate is enabled in netconf, Ansible reports it is unable to validate

ISSUE TYPE
  • Bug Report
COMPONENT NAME

ansible.netcommon.netconf_config

ANSIBLE VERSION
2020-08-06 18:51:15,841 p=32638 u=remote_user n=ansible | ansible-playbook 2.9.11
  config file = /home/remote_user/ansible/ansible.cfg
  configured module search path = ['/home/remote_user/.ansible/plugins/modules', '/usr/share/ansible/plugins/modules']
  ansible python module location = /home/remote_user/ansible/ansible_venv/lib64/python3.7/site-packages/ansible
  executable location = /home/remote_user/ansible/ansible_venv/bin/ansible-playbook
  python version = 3.7.6 (default, Feb 26 2020, 20:54:15) [GCC 7.3.1 20180712 (Red Hat 7.3.1-6)]
OS / ENVIRONMENT

netconf version 1.0 and 1.1

STEPS TO REPRODUCE
    - name: Configure interfaces via NETCONF OpenConfig YANG Model
      ansible.netcommon.netconf_config:
        target: candidate
        timeout: 300
        commit: no
        validate: yes
<capability>urn:ietf:params:netconf:capability:validate:1.0</capability>
<capability>urn:ietf:params:netconf:capability:validate:1.1</capability>
EXPECTED RESULTS

netconf_config allows validate

ACTUAL RESULTS
2020-08-06 18:51:29,356 p=32638 u=remote_user n=ansible | fatal: [remote_host]: FAILED! => {
    "changed": false,
    "invocation": {
        "module_args": {
            "backup": false,
            "backup_options": null,
            "commit": false,
            "confirm": 0,
            "confirm_commit": false,
            "content": null,
            "default_operation": null,
            "delete": false,
            "error_option": "stop-on-error",
            "format": "xml",
            "get_filter": null,
            "host": null,
            "hostkey_verify": true,
            "lock": "always",
            "look_for_keys": true,
            "password": null,
            "port": 830,
            "save": false,
            "source_datastore": null,
            "src": null,
            "ssh_keyfile": null,
            "target": "candidate",
            "timeout": 300,
            "username": null,
            "validate": true
        }
    },
    "msg": "validate is not supported by this netconf server"
}
@ganeshrn ganeshrn mentioned this issue Aug 11, 2020
Merged
@ganeshrn
Copy link
Member

@jamesmarshall24 Please check if the linked PR on ansible/ansible fixes the issue

@harrytruman
Copy link

@jamesmarshall24 @ganeshrn Yes, this has resolved the issue. Thank you!

@ganeshrn ganeshrn mentioned this issue Aug 12, 2020
Merged
@ganeshrn
Copy link
Member

ganeshrn commented Aug 12, 2020
edited

@harrytruman Thanks for the confirmation.

PR merged to ansible/ansible devel branch and raised 2.9 backport PR ansible/ansible#71221

This was referenced Aug 15, 2020
Merged
Closed
netbsd-srcmastr pushed a commit to NetBSD/pkgsrc that referenced this issue Sep 8, 2020
ansible: updated to 2.9.13
bd89867 
v2.9.13
=======

Minor Changes
-------------
- Updated network integration auth timeout to 90 secs.
- ansible-test - Remove ``pytest < 6.0.0`` constraint for managed installations on Python 3.x now that pytest 6 is supported.
- known_hosts - fix reference to non-existent parameter in example (ansible/ansible#71417)

Security Fixes
--------------
- The fix for CVE-2020-1736 has been reverted. Users are encouraged to specify a ``mode`` parameter in their file-based tasks when the files being manipulated contain sensitive data.
- dnf - Previously, regardless of the ``disable_gpg_check`` option, packages were not GPG validated. They are now. (CVE-2020-14365)

Bugfixes
--------
- Confirmed commit fails with TypeError in IOS XR netconf plugin (ansible-collections/cisco.iosxr#74)
- Fix an exit code for a non-failing playbook (ansible/ansible#71306)
- Fix execution of the meta tasks 'clear_facts', 'clear_host_errors', 'end_play', 'end_host', and 'reset_connection' when the CLI flag '--flush-cache' is provided.
- Fix statistics reporting when rescue block contains another block (issue ansible/ansible#61253).
- Fixed Ansible reporting validate not supported by netconf server when enabled in netconf - (ansible-collections/ansible.netcommon#119).
- TOML inventory - Ensure we register dump functions for ``AnsibleUnsafe`` to support dumping unsafe values. Note that the TOML format has no functionality to mark that the data is unsafe for re-consumption. (ansible/ansible#71307)
- ansible-test units - fixed collection location code to work under pytest >= 6.0.0
- aws_acm_info - fix `KeyError` failure when retrieving keys with a `Failed` status (ansible-collections/community.aws#198)
- cron - cron file should not be empty after adding var (ansible/ansible#71207)
- mongodb_replicaset - fixes authentication to determine replicaset name (ansible-collections/community.mongodb#136).
- powershell - fix escaping of strings that broken modules like fetch when dealing with special chars - ansible/ansible#62781
- powershell - fix the CLIXML parser when it contains nested CLIXML objects - ansible/ansible#69550
- psrp - Use native PSRP mechanism when copying files to support custom endpoints
- setup - Add a null check for ``Win32_Bios.ReleaseData`` to avoid a failure when that value is not set - ansible/ansible#69736
- strftime filter - Input epoch is allowed to be a float (ansible/ansible#71257)
- systemd - fixed chroot usage on new versions of systemd, that broke because of upstream changes in systemctl output
- systemd - made the systemd module work correctly when the SYSTEMD_OFFLINE environment variable is set
- zabbix_host - fixed inventory_mode key error, which occurs with Zabbix 4.4.1 or more (ansible/ansible#65304).
- zabbix_proxy - fixed support for Zabbix 5.0
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Fix netconf validate capability check ganeshrn/ansible
3 participants
@harrytruman @ganeshrn @jamesmarshall24