Fixed #121 etc

Author: haxorof

.gitattributes

@@ -6,3 +6,7 @@
 *.yml text eol=lf
 *.json text eol=lf
 *.j2 text eol=lf
+
+# Do not export github and test related files to archive
+.github/ export-ignore
+tests/ export-ignore

CHANGELOG.md

@@ -7,6 +7,15 @@ and this project adheres to [Semantic Versioning](http://semver.org/spec/v2.0.0.
 
 ## [Unreleased](../../releases/tag/X.Y.Z)
 
+### Changed
+
+- Update default docker-compose version to 1.26.2
+- Changed `docker_x_ssl_match_hostname` to true and detection if missing
+
+### Fixed
+
+- No module named shutil_get_terminal_size ([#121](../../issues/121))
+
 ### Added
 
 - Add missing audit rules which are defined in CIS Docker Benchmark 1.2.0 ([#120](../../issues/120))

README.md

@@ -164,19 +164,18 @@ Here is the latest test results of the automated test which is located in the te
 
 Note! All distributions listed in test matrix below does not provided the latest released Docker CE version.
 
-**Last run:** 2020-07-03 (Latest possible Docker CE release 19.03.9, Run with Ansible 2.8.12)
+**Last run:** 2020-08-08 (Latest possible Docker CE release 19.03.9, Run with Ansible 2.8.13)
 
 ### Test Suites
 
 | Suite | ID                     | Comment                                                                              |
 |-------|------------------------|--------------------------------------------------------------------------------------|
 | s-1   | t_config               |                                                                                      |
-| s-2   | t_channel              | These tests might fail because it might not be any nightly Docker CE build available |
+| s-2   | t_channel              | Fail sometime since it might not be any nightly Docker CE build available            |
 | s-3   | t_postinstall          |                                                                                      |
-| s-4   | t_old_docker           |                                                                                      |
-| s-5   | t_devicemapper_config  |                                                                                      |
-| s-6   | t_auditd               |                                                                                      |
-| s-7   | t_docker_compatibility |
+| s-4   | t_devicemapper_config  |                                                                                      |
+| s-5   | t_auditd               |                                                                                      |
+| s-6   | t_docker_compatibility |
 
 ### Test Matrix
 
@@ -186,20 +185,20 @@ Note! All distributions listed in test matrix below does not provided the latest
 | :x: | At least one test failed |
 | :heavy_minus_sign: | No test done / Not yet tested |
 
-| #                  | s-1                | s-2                | s-3                | s-4                | s-5                | s-6                | s-7                |
-|--------------------|--------------------|--------------------|--------------------|--------------------|--------------------|--------------------|--------------------|
-| centos/7           | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_minus_sign: | :heavy_check_mark: | :heavy_check_mark: | :heavy_minus_sign: |
-| centos/8           | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_minus_sign: | :heavy_check_mark: | :heavy_check_mark: | :heavy_minus_sign: |
-| generic/ubuntu1604 | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_minus_sign: | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: |
-| generic/ubuntu1804 | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_minus_sign: | :heavy_check_mark: | :heavy_check_mark: | :heavy_minus_sign: |
-| generic/ubuntu2004 | :heavy_check_mark: | :x:                | :heavy_check_mark: | :heavy_minus_sign: | :heavy_check_mark: | :heavy_check_mark: | :heavy_minus_sign: |
-| generic/debian8    | :x:                | :x:                | :x:                | :heavy_minus_sign: | :x:                | :x:                | :heavy_minus_sign: |
-| generic/debian9    | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_minus_sign: | :heavy_check_mark: | :heavy_check_mark: | :heavy_minus_sign: |
-| generic/debian10   | :heavy_check_mark: | :heavy_check_mark: | :x:                | :heavy_minus_sign: | :heavy_check_mark: | :heavy_check_mark: | :heavy_minus_sign: |
-| generic/fedora30   | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_minus_sign: | :heavy_check_mark: | :heavy_check_mark: | :heavy_minus_sign: |
-| generic/fedora31   | :heavy_check_mark: | :x:                | :heavy_check_mark: | :heavy_minus_sign: | :heavy_check_mark: | :heavy_check_mark: | :heavy_minus_sign: |
-| rhel/7             | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_minus_sign: | :heavy_check_mark: | :heavy_check_mark: | :heavy_minus_sign: |
-| rhel/8             | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_minus_sign: | :heavy_check_mark: | :heavy_check_mark: | :heavy_minus_sign: |
+| #                  | s-1                | s-2                | s-3                | s-5                | s-6                | s-7                |
+|--------------------|--------------------|--------------------|--------------------|--------------------|--------------------|--------------------|
+| centos/7           | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_minus_sign: |
+| centos/8           | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_minus_sign: |
+| generic/ubuntu1604 | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: |
+| generic/ubuntu1804 | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_minus_sign: |
+| generic/ubuntu2004 | :heavy_check_mark: | :x:                | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_minus_sign: |
+| generic/debian8    | :heavy_check_mark: | :x:                | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_minus_sign: |
+| generic/debian9    | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_minus_sign: |
+| generic/debian10   | :heavy_check_mark: | :heavy_check_mark: | :x:                | :heavy_check_mark: | :heavy_check_mark: | :heavy_minus_sign: |
+| generic/fedora30   | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_minus_sign: |
+| generic/fedora31   | :heavy_check_mark: | :x:                | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_minus_sign: |
+| rhel/7             | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_minus_sign: |
+| rhel/8             | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_check_mark: | :heavy_minus_sign: |
 
 ## License
 

defaults/main.yml

@@ -113,7 +113,7 @@ docker_compose_no_pip: false
 # Uses Github API to lookup latest version of docker compose
 docker_compose_no_pip_detect_version: true
 # Docker compose version to use if no automatic lookup is used
-docker_compose_no_pip_version: 1.26.0
+docker_compose_no_pip_version: 1.26.2
 # Ensures dependencies are installed so that 'docker_stack' Ansible module will work.
 docker_stack: false
 # Additional PiP packages to install after Docker is configured and started.
@@ -136,10 +136,13 @@ docker_pip_sudo: true
 
 # Workaround for - No module named ssl_match_hostname
 # https://github.com/docker/docker-py/issues/1502
-docker_x_ssl_match_hostname: false
+docker_x_ssl_match_hostname: true
 # Workaround for - No module named zipp
 # https://github.com/haxorof/ansible-role-docker-ce/issues/112
 docker_x_fix_no_zipp_module: true
+# Workaround for - No module named shutil_get_terminal_size
+# https://github.com/haxorof/ansible-role-docker-ce/issues/121
+docker_x_shutil_get_terminal_size: true
 
 ################################################################################
 # Docker removal configuration

tasks/postinstall.yml

@@ -151,12 +151,40 @@
 
 # https://github.com/docker/docker-py/issues/1502
 - name: Workaround for issue - No module named ssl_match_hostname (Python 2.7)
-  become: yes
-  command: cp -r /usr/local/lib/python2.7/dist-packages/backports/ssl_match_hostname/ /usr/lib/python2.7/dist-packages/backports
+  block:
+    - name: Test if module ssl_match_hostname exists
+      command: python -c "import backports.ssl_match_hostname"
+      register: _docker_check_smh
+      changed_when: no
+      failed_when: _docker_check_smh.rc > 1
+      check_mode: no
+
+    - name: Apply workaround for issue - No module named ssl_match_hostname (Python 2.7)
+      become: yes
+      command: cp -r /usr/local/lib/python2.7/dist-packages/backports/ssl_match_hostname/ /usr/lib/python2.7/dist-packages/backports
+      when: _docker_check_smh.rc == 1
   when:
     - docker_x_ssl_match_hostname | bool
+    - not _docker_python3 | bool
     - _docker_additional_packages_pip | length > 0
+
+- name: Workaround for issue - No module named shutil_get_terminal_size (Python 2.7)
+  block:
+    - name: Test if module shutil_get_terminal_size exists
+      command: python -c "import backports.shutil_get_terminal_size"
+      register: _docker_check_shutil
+      changed_when: no
+      failed_when: _docker_check_shutil.rc > 1
+      check_mode: no
+
+    - name: Apply workaround for issue - No module named shutil_get_terminal_size (Python 2.7)
+      become: yes
+      command: cp -r /usr/local/lib/python2.7/dist-packages/backports/shutil_get_terminal_size/ /usr/lib/python2.7/dist-packages/backports
+      when: _docker_check_shutil.rc == 1
+  when:
+    - docker_x_shutil_get_terminal_size | bool
     - not _docker_python3 | bool
+    - _docker_additional_packages_pip | length > 0
 
 - name: Stat /usr/bin/docker-compose
   stat:
@@ -192,42 +220,36 @@
       when:
         - not docker_compose_no_pip_detect_version | bool
 
-    - name: Fetch docker-compose SHA265 sum file
-      get_url:
-        url: "https://github.com/docker/compose/releases/download/\
-          {{ _docker_compose_version }}/docker-compose-{{ ansible_system }}-{{ ansible_architecture }}.sha256"
-        dest: "/tmp/ansible.docker-compose-sha256"
-      register: _github_docker_compose_shasum_file
-      changed_when: false
-      until: _github_docker_compose_shasum_file.status_code == 200
-      retries: 10
-      check_mode: no
+    - name: Fetch SHA256 of docker-compose
+      block:
+        - name: Fetch docker-compose SHA265 sum file
+          get_url:
+            url: "https://github.com/docker/compose/releases/download/\
+              {{ _docker_compose_version }}/docker-compose-{{ ansible_system }}-{{ ansible_architecture }}.sha256"
+            dest: "/tmp/ansible.docker-compose-sha256"
+          register: _github_docker_compose_shasum_file
+          changed_when: false
+          until: _github_docker_compose_shasum_file.status_code == 200
+          retries: 10
+          check_mode: no
 
-    - name: Dump SHA256 file contents to variable
-      command: cat /tmp/ansible.docker-compose-sha256
-      register: _github_docker_compose_shasum
-      changed_when: false
-      check_mode: no
+        - name: Dump SHA256 file contents to variable
+          command: cat /tmp/ansible.docker-compose-sha256
+          register: _github_docker_compose_shasum
+          changed_when: false
+          check_mode: no
 
-    - name: Remove temporary file for SHA256 sum
-      file:
-        path: "/tmp/ansible.docker-compose-sha256"
-        state: absent
-      changed_when: false
-      check_mode: no
+        - name: Remove temporary file for SHA256 sum
+          file:
+            path: "/tmp/ansible.docker-compose-sha256"
+            state: absent
+          changed_when: false
+          check_mode: no
 
-    - name: Set SHA256 facts related to docker-compose
-      set_fact:
-        _docker_compose_checksum: "sha256:{{ _github_docker_compose_shasum.stdout | \
-          regex_replace('^([0-9a-zA-Z]*)[\\s\\t]+.+', '\\1') }}"
-
-    # Use when moving to Ansible 2.7 as minimum version
-    # - name: Set SHA256 facts related to docker-compose (Ansible >= 2.7)
-    #   set_fact:
-    #     _docker_compose_checksum: "sha256:https://github.com/docker/compose/releases/download/\
-    #       {{ _github_docker_compose.json.tag_name }}/\
-    #       docker-compose-{{ ansible_system }}-{{ ansible_architecture }}.sha256"
-    #   when: ansible_version.full is version_compare('2.7', '>=')
+        - name: Set SHA256 facts related to docker-compose
+          set_fact:
+            _docker_compose_checksum: "sha256:{{ _github_docker_compose_shasum.stdout | \
+              regex_replace('^([0-9a-zA-Z]*)[\\s\\t]+.+', '\\1') }}"
 
     - name: Install docker-compose {{ _docker_compose_version }} (Linux)
       become: true

tests/test_postinstall.yml

@@ -25,12 +25,6 @@
   hosts: test-host
   vars:
   tasks:
-    - name: Enable experimental workarounds (Debian Buster)
-      set_fact:
-        docker_x_ssl_match_hostname: true
-      when:
-        - ansible_distribution == "Debian" and ansible_distribution_major_version == 'buster/sid'
-
     - name: Install Docker SDK using PiP
       include_role:
         name: haxorof.docker_ce