TASK: [git | Copy SSH public key to server] ***********************************
fatal: [debian] => input file not found at /opt/software/sovereign/jmcg-sovereign/roles/git/files/gitolite.pub or /opt/software/sovereign/jmcg-sovereign/gitolite.pub

FATAL: all hosts have already failed -- aborting

Temporarily, I am just copying my public key into place as gitolite.pub in the base folder, but not adding it to git yet.

This error occurred while deploying to a Debian7 instance:

TASK: [mailserver | Create database user for OpenDMARC reports] ***************
failed: [10.200.200.73] => {"failed": true}
msg: unable to connect to database, check login_user and login_password are correct or ~/.my.cnf has the credentials

FATAL: all hosts have already failed -- aborting

Failure while provisioning on wheezy branch:

TASK: [ircbouncer | Install znc dependencies] *********************************
changed: [debian] => (item=automake,build-essential,checkinstall,g++,libperl-dev,libsasl2-dev,libssl-dev,libtool,openssl,pkg-config,python3-dev,swig)

TASK: [ircbouncer | Download znc release] *************************************
failed: [debian] => {"failed": true}
msg: failed to create temporary content file: timed out

FATAL: all hosts have already failed -- aborting

Building in vagrant Debian8 environment from jessie branch, eventually get to the apache2 configuration change where they went from using conf.d directory to using available/enabled directories.

TASK: [mailserver | Configure z-push apache alias and php settings] ***********
failed: [jessie] => {"checksum": "931ed5eeaf4885ccb4800b1bc7c489339e14f5af", "failed": true}
msg: Destination directory /etc/apache2/conf.d does not exist

FATAL: all hosts have already failed -- aborting

There is a pull request sovereign#427 on sovereign/sovereign jessie branch that purports to fix this, but the conditionals seem fragile to me. Also, there should be several configurations that refer to conf.d and we should try to catch all of them together in and the same fashion.

Contributor was sread 6b53da4

ERROR: ZNC is accepting encrypted logins
ERROR: Blog is redirecting to https
ERROR: Email autoconfiguration XML file is accessible over both HTTP and HTTPS
ERROR: ownCloud is redirecting to https and displaying login page
ERROR: selfoss is redirecting to https and displaying login page
ERROR: Webmail is redirecting to https and displaying login page
ERROR: test_zpush_http_unauthorized (tests.WebTests)
ERROR: test_zpush_https (tests.WebTests)

attached file contains details
nosetests-debian7-out.txt

Note that at this time the ERROR list is the same for master and jessie branches.

See 53f0f85

Added the 'force' option for now, still needs some testing.

nosetests
E..F.....F..E/home/jmcg/.local/lib/python2.7/site-packages/requests/packages/urllib3/connectionpool.py:789: InsecureRequestWarning: Unverified HTTPS request is being made. Adding certificate verification is strongly advised. See: https://urllib3.readthedocs.org/en/latest/security.html
InsecureRequestWarning)

.EEEEEE..

ERROR: ZNC is accepting encrypted logins

Traceback (most recent call last):
File "/opt/software/sovereign/jmcg-sovereign-jessie/tests.py", line 147, in test_irc_auth
ssl_sock.connect((TEST_SERVER, 6697))
File "/usr/lib/python2.7/ssl.py", line 844, in connect
self._real_connect(addr, False)
File "/usr/lib/python2.7/ssl.py", line 835, in _real_connect
self.do_handshake()
File "/usr/lib/python2.7/ssl.py", line 808, in do_handshake
self._sslobj.do_handshake()
SSLError: [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed (_ssl.c:590)

ERROR: Blog is redirecting to https

Traceback (most recent call last):
File "/opt/software/sovereign/jmcg-sovereign-jessie/tests.py", line 34, in test_blog_http
self.assertEquals(r.history[0].status_code, 301)
IndexError: list index out of range
-------------------- >> begin captured logging << --------------------
requests.packages.urllib3.connectionpool: INFO: Starting new HTTP connection (1): sovereign.local
requests.packages.urllib3.connectionpool: DEBUG: "GET / HTTP/1.1" 403 233
--------------------- >> end captured logging << ---------------------

ERROR: Email autoconfiguration XML file is accessible over both HTTP and HTTPS

Traceback (most recent call last):
File "/opt/software/sovereign/jmcg-sovereign-jessie/tests.py", line 45, in test_mail_autoconfig_http_and_https
r = requests.get(proto + '://autoconfig.' + TEST_SERVER + '/mail/config-v1.1.xml')
File "/home/jmcg/.local/lib/python2.7/site-packages/requests/api.py", line 69, in get
return request('get', url, params=params, *_kwargs)
File "/home/jmcg/.local/lib/python2.7/site-packages/requests/api.py", line 50, in request
response = session.request(method=method, url=url, *_kwargs)
File "/home/jmcg/.local/lib/python2.7/site-packages/requests/sessions.py", line 468, in request
resp = self.send(prep, *_send_kwargs)
File "/home/jmcg/.local/lib/python2.7/site-packages/requests/sessions.py", line 576, in send
r = adapter.send(request, *_kwargs)
File "/home/jmcg/.local/lib/python2.7/site-packages/requests/adapters.py", line 433, in send
raise SSLError(e, request=request)
SSLError: ("bad handshake: Error([('SSL routines', 'ssl3_get_server_certificate', 'certificate verify failed')],)",)
-------------------- >> begin captured logging << --------------------
requests.packages.urllib3.connectionpool: INFO: Starting new HTTP connection (1): autoconfig.sovereign.local
requests.packages.urllib3.connectionpool: DEBUG: "GET /mail/config-v1.1.xml HTTP/1.1" 200 1196
requests.packages.urllib3.connectionpool: INFO: Starting new HTTPS connection (1): autoconfig.sovereign.local
--------------------- >> end captured logging << ---------------------

ERROR: ownCloud is redirecting to https and displaying login page

Traceback (most recent call last):
File "/opt/software/sovereign/jmcg-sovereign-jessie/tests.py", line 93, in test_owncloud_http
r = requests.get('http://cloud.' + TEST_SERVER)
File "/home/jmcg/.local/lib/python2.7/site-packages/requests/api.py", line 69, in get
return request('get', url, params=params, *_kwargs)
File "/home/jmcg/.local/lib/python2.7/site-packages/requests/api.py", line 50, in request
response = session.request(method=method, url=url, *_kwargs)
File "/home/jmcg/.local/lib/python2.7/site-packages/requests/sessions.py", line 468, in request
resp = self.send(prep, *_send_kwargs)
File "/home/jmcg/.local/lib/python2.7/site-packages/requests/sessions.py", line 597, in send
history = [resp for resp in gen] if allow_redirects else []
File "/home/jmcg/.local/lib/python2.7/site-packages/requests/sessions.py", line 195, in resolve_redirects
*_adapter_kwargs
File "/home/jmcg/.local/lib/python2.7/site-packages/requests/sessions.py", line 576, in send
r = adapter.send(request, **kwargs)
File "/home/jmcg/.local/lib/python2.7/site-packages/requests/adapters.py", line 433, in send
raise SSLError(e, request=request)
SSLError: ("bad handshake: Error([('SSL routines', 'ssl3_get_server_certificate', 'certificate verify failed')],)",)
-------------------- >> begin captured logging << --------------------
requests.packages.urllib3.connectionpool: INFO: Starting new HTTP connection (1): cloud.sovereign.local
requests.packages.urllib3.connectionpool: DEBUG: "GET / HTTP/1.1" 301 246
requests.packages.urllib3.connectionpool: INFO: Starting new HTTPS connection (1): cloud.sovereign.local
--------------------- >> end captured logging << ---------------------

ERROR: selfoss is redirecting to https and displaying login page

Traceback (most recent call last):
File "/opt/software/sovereign/jmcg-sovereign-jessie/tests.py", line 108, in test_selfoss_http
r = requests.get('http://news.' + TEST_SERVER)
File "/home/jmcg/.local/lib/python2.7/site-packages/requests/api.py", line 69, in get
return request('get', url, params=params, *_kwargs)
File "/home/jmcg/.local/lib/python2.7/site-packages/requests/api.py", line 50, in request
response = session.request(method=method, url=url, *_kwargs)
File "/home/jmcg/.local/lib/python2.7/site-packages/requests/sessions.py", line 468, in request
resp = self.send(prep, *_send_kwargs)
File "/home/jmcg/.local/lib/python2.7/site-packages/requests/sessions.py", line 597, in send
history = [resp for resp in gen] if allow_redirects else []
File "/home/jmcg/.local/lib/python2.7/site-packages/requests/sessions.py", line 195, in resolve_redirects
*_adapter_kwargs
File "/home/jmcg/.local/lib/python2.7/site-packages/requests/sessions.py", line 576, in send
r = adapter.send(request, **kwargs)
File "/home/jmcg/.local/lib/python2.7/site-packages/requests/adapters.py", line 433, in send
raise SSLError(e, request=request)
SSLError: ("bad handshake: Error([('SSL routines', 'ssl3_get_server_certificate', 'certificate verify failed')],)",)
-------------------- >> begin captured logging << --------------------
requests.packages.urllib3.connectionpool: INFO: Starting new HTTP connection (1): news.sovereign.local
requests.packages.urllib3.connectionpool: DEBUG: "GET / HTTP/1.1" 301 245
requests.packages.urllib3.connectionpool: INFO: Starting new HTTPS connection (1): news.sovereign.local
--------------------- >> end captured logging << ---------------------

ERROR: Webmail is redirecting to https and displaying login page

Traceback (most recent call last):
File "/opt/software/sovereign/jmcg-sovereign-jessie/tests.py", line 54, in test_webmail_http
r = requests.get('http://mail.' + TEST_SERVER)
File "/home/jmcg/.local/lib/python2.7/site-packages/requests/api.py", line 69, in get
return request('get', url, params=params, *_kwargs)
File "/home/jmcg/.local/lib/python2.7/site-packages/requests/api.py", line 50, in request
response = session.request(method=method, url=url, *_kwargs)
File "/home/jmcg/.local/lib/python2.7/site-packages/requests/sessions.py", line 468, in request
resp = self.send(prep, *_send_kwargs)
File "/home/jmcg/.local/lib/python2.7/site-packages/requests/sessions.py", line 597, in send
history = [resp for resp in gen] if allow_redirects else []
File "/home/jmcg/.local/lib/python2.7/site-packages/requests/sessions.py", line 195, in resolve_redirects
*_adapter_kwargs
File "/home/jmcg/.local/lib/python2.7/site-packages/requests/sessions.py", line 576, in send
r = adapter.send(request, **kwargs)
File "/home/jmcg/.local/lib/python2.7/site-packages/requests/adapters.py", line 433, in send
raise SSLError(e, request=request)
SSLError: ("bad handshake: Error([('SSL routines', 'ssl3_get_server_certificate', 'certificate verify failed')],)",)
-------------------- >> begin captured logging << --------------------
requests.packages.urllib3.connectionpool: INFO: Starting new HTTP connection (1): mail.sovereign.local
requests.packages.urllib3.connectionpool: DEBUG: "GET / HTTP/1.1" 301 245
requests.packages.urllib3.connectionpool: INFO: Starting new HTTPS connection (1): mail.sovereign.local
--------------------- >> end captured logging << ---------------------

ERROR: test_zpush_http_unauthorized (tests.WebTests)

Traceback (most recent call last):
File "/opt/software/sovereign/jmcg-sovereign-jessie/tests.py", line 68, in test_zpush_http_unauthorized
r = requests.get('http://mail.' + TEST_SERVER + '/Microsoft-Server-ActiveSync')
File "/home/jmcg/.local/lib/python2.7/site-packages/requests/api.py", line 69, in get
return request('get', url, params=params, *_kwargs)
File "/home/jmcg/.local/lib/python2.7/site-packages/requests/api.py", line 50, in request
response = session.request(method=method, url=url, *_kwargs)
File "/home/jmcg/.local/lib/python2.7/site-packages/requests/sessions.py", line 468, in request
resp = self.send(prep, *_send_kwargs)
File "/home/jmcg/.local/lib/python2.7/site-packages/requests/sessions.py", line 597, in send
history = [resp for resp in gen] if allow_redirects else []
File "/home/jmcg/.local/lib/python2.7/site-packages/requests/sessions.py", line 195, in resolve_redirects
*_adapter_kwargs
File "/home/jmcg/.local/lib/python2.7/site-packages/requests/sessions.py", line 576, in send
r = adapter.send(request, **kwargs)
File "/home/jmcg/.local/lib/python2.7/site-packages/requests/adapters.py", line 433, in send
raise SSLError(e, request=request)
SSLError: ("bad handshake: Error([('SSL routines', 'ssl3_get_server_certificate', 'certificate verify failed')],)",)
-------------------- >> begin captured logging << --------------------
requests.packages.urllib3.connectionpool: INFO: Starting new HTTP connection (1): mail.sovereign.local
requests.packages.urllib3.connectionpool: DEBUG: "GET /Microsoft-Server-ActiveSync HTTP/1.1" 301 262
requests.packages.urllib3.connectionpool: INFO: Starting new HTTPS connection (1): mail.sovereign.local
--------------------- >> end captured logging << ---------------------

ERROR: test_zpush_https (tests.WebTests)

Traceback (most recent call last):
File "/opt/software/sovereign/jmcg-sovereign-jessie/tests.py", line 83, in test_zpush_https
'Cmd': 'Ping',
File "/home/jmcg/.local/lib/python2.7/site-packages/requests/api.py", line 109, in post
return request('post', url, data=data, json=json, *_kwargs)
File "/home/jmcg/.local/lib/python2.7/site-packages/requests/api.py", line 50, in request
response = session.request(method=method, url=url, *_kwargs)
File "/home/jmcg/.local/lib/python2.7/site-packages/requests/sessions.py", line 468, in request
resp = self.send(prep, *_send_kwargs)
File "/home/jmcg/.local/lib/python2.7/site-packages/requests/sessions.py", line 576, in send
r = adapter.send(request, *_kwargs)
File "/home/jmcg/.local/lib/python2.7/site-packages/requests/adapters.py", line 433, in send
raise SSLError(e, request=request)
SSLError: ("bad handshake: Error([('SSL routines', 'ssl3_get_server_certificate', 'certificate verify failed')],)",)
-------------------- >> begin captured logging << --------------------
requests.packages.urllib3.connectionpool: INFO: Starting new HTTPS connection (1): mail.sovereign.local
--------------------- >> end captured logging << ---------------------

FAIL: Connects with POP3S and asserts the existance of an email, then deletes it

Traceback (most recent call last):
File "/opt/software/sovereign/jmcg-sovereign-jessie/tests.py", line 361, in test_pop3s
self.assertPOP3Received(subject)
File "/opt/software/sovereign/jmcg-sovereign-jessie/tests.py", line 215, in assertPOP3Received
self.assertTrue("Subject: " + subject in text)
AssertionError: False is not true

FAIL: Email sent from an MUA has DKIM and TLS headers

Traceback (most recent call last):
File "/opt/software/sovereign/jmcg-sovereign-jessie/tests.py", line 307, in test_smtps_headers
data[0][1]
AssertionError: 'DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=sovereign.local;' not found in 'Return-Path: [email protected]\r\nDelivered-To: [email protected]\r\nReceived: from mail.sovereign.local\r\n\tby mail.sovereign.local (Dovecot) with LMTP id CgRxLC9af1ZsFwAAMLZLsA\r\n\tfor [email protected]; Sun, 27 Dec 2015 03:25:51 +0000\r\nReceived: from [127.0.1.1](unknown [172.16.100.1])\r\n\t(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))\r\n\t(No client certificate requested)\r\n\tby mail.sovereign.local (Postfix) with ESMTPSA id 4599D36268\r\n\tfor [email protected]; Sun, 27 Dec 2015 03:25:51 +0000 (UTC)\r\nContent-Type: text/plain; charset="us-ascii"\r\nMIME-Version: 1.0\r\nContent-Transfer-Encoding: 7bit\r\nSubject: 3cb524d8\r\nFrom: [email protected]\r\nTo: [email protected]\r\n\r\nTesting\r\n'

Ran 22 tests in 28.294s

FAILED (errors=8, failures=2)

Encountered while resuming the provsioning of debian(7)

TASK: [owncloud | Ensure repository key for ownCloud is in place for Debian 7] ***
changed: [debian]

TASK: [owncloud | Add ownCloud OpenSuSE repository for Debian 7] **************
failed: [debian] => {"failed": true, "parsed": false}
BECOME-SUCCESS-gnhjblqkncyyxwhdipovekqxmauqgihp
Traceback (most recent call last):
File "/home/vagrant/.ansible/tmp/ansible-tmp-1450765498.52-41218821707997/apt_repository", line 2749, in
main()
File "/home/vagrant/.ansible/tmp/ansible-tmp-1450765498.52-41218821707997/apt_repository", line 436, in main
cache.update()
File "/usr/lib/python2.7/dist-packages/apt/cache.py", line 418, in update
raise FetchFailedException(e)
apt.cache.FetchFailedException: W:Failed to fetch http://http.debian.net/debian/dists/wheezy-backports/Release.gpg Error reading from server. Remote end closed connection [IP: 5.153.231.35 80]
, E:Some index files failed to download. They have been ignored, or old ones used instead.
OpenSSH_6.9p1 Ubuntu-2, OpenSSL 1.0.2d 9 Jul 2015
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: /etc/ssh/ssh_config line 19: Applying options for *
debug1: auto-mux: Trying existing master
debug1: mux_client_request_session: master session id: 2
Shared connection to 127.0.0.1 closed.

FATAL: all hosts have already failed -- aborting

Encountered while building in vagrant Debian8 (jessie) environment:

NOTIFIED: [mailserver | restart solr] *****************************************
failed: [jessie] => {"failed": true}
msg: Job for tomcat8.service failed. See 'systemctl status tomcat8.service' and 'journalctl -xn' for details.

FATAL: all hosts have already failed -- aborting

Building in vagrant debian7 test environment. Error message looks like:

NOTIFIED: [webmail | set roundcube password] **********************************
failed: [debian] => {"changed": true, "cmd": ["sudo", "-u", "postgres", "psql", "-d", "roundcube", "-c", "ALTER USER roundcube with password 'testPassword';"], "delta": "0:00:00.085101", "end": "2015-12-13 04:53:31.129217", "rc": 2, "start": "2015-12-13 04:53:31.044116", "warnings": []}
stderr: psql: FATAL: database "roundcube" does not exist

FATAL: all hosts have already failed -- aborting

TASK: [vpn | Copy dnsmasq configuration file into place] **********************
FATAL: no hosts matched or all hosts have already failed -- aborting

After this, connections via "vagrant ssh" fail:

vagrant ssh
ssh_exchange_identification: read: Connection reset by peer

Debian7 branch provisioning now proceeds to conclusion without additional errors.

Starting to try tests.py.

First thing that happened was:

python tests.py
Traceback (most recent call last):
File "tests.py", line 5, in
import requests
ImportError: No module named requests

Now getting:
NOTIFIED: [vpn | restart dnsmasq] *********************************************
failed: [jessie] => {"failed": true}
msg: Job for dnsmasq.service failed. See 'systemctl status dnsmasq.service' and 'journalctl -xn' for details.

RUNNING HANDLER [vpn : restart openvpn] ****************************************
fatal: [jessie]: FAILED! => {"changed": false, "failed": true, "msg": "Job for [email protected] failed. See 'systemctl status [email protected]' and 'journalctl -xn' for details.\n"}

Doing "vagrant halt" followed by "vagrant up --provision" gets through to the end.

NOTIFIED: [vpn | restart dnsmasq] *********************************************
failed: [jessie] => {"failed": true}
msg: Job for dnsmasq.service failed. See 'systemctl status dnsmasq.service' and 'journalctl -xn' for details.

Building Debian8 from jessie branch, encounter this error:

TASK: [ircbouncer | Ensure znc user and group can read cert] ******************
failed: [jessie] => {"failed": true, "gid": 0, "group": "root", "mode": "0644", "owner": "root", "path": "/usr/lib/znc/znc.pem", "size": 4047, "state": "file", "uid": 0}
msg: chown failed: failed to look up user znc

FATAL: all hosts have already failed -- aborting

Building on Debian 7 - based Turnkey Linux Owncloud, encountered this error:

TASK: [webmail | Add backports for Roundcube on Debian] ***********************
failed: [10.200.200.73] => {"failed": true, "rc": 257}
msg: Destination /etc/apt/sources.list does not exist !

FATAL: all hosts have already failed -- aborting

Turnkey Linux uses /etc/apt/sources.list.d files exclusively.

Failed building against mailserver3 - Turnkey Linux 13 Owncloud (Debian7-based)

NOTIFIED: [mailserver | import sql postfix] ***********************************
failed: [10.200.200.73] => {"changed": true, "cmd": "PGPASSWORD='XXXXXXXX' psql -h localhost -d mailserver -U mailuser -f /etc/postfix/import.sql --set ON_ERROR_STOP=1", "delta": "0:00:01.303261", "end": "2015-12-29 08:04:01.041118", "rc": 3, "start": "2015-12-29 08:03:59.737857", "warnings": []}
stderr: psql:/etc/postfix/import.sql:3: NOTICE: table "virtual_users" does not exist, skipping
psql:/etc/postfix/import.sql:4: NOTICE: table "virtual_aliases" does not exist, skipping
psql:/etc/postfix/import.sql:5: NOTICE: table "virtual_domains" does not exist, skipping
psql:/etc/postfix/import.sql:11: NOTICE: CREATE TABLE will create implicit sequence "virtual_domains_id_seq" for serial column "virtual_domains.id"
psql:/etc/postfix/import.sql:11: NOTICE: CREATE TABLE / PRIMARY KEY will create implicit index "virtual_domains_pkey" for table "virtual_domains"
psql:/etc/postfix/import.sql:22: NOTICE: CREATE TABLE will create implicit sequence "virtual_users_id_seq" for serial column "virtual_users.id"
psql:/etc/postfix/import.sql:22: NOTICE: CREATE TABLE / PRIMARY KEY will create implicit index "virtual_users_pkey" for table "virtual_users"
psql:/etc/postfix/import.sql:22: NOTICE: CREATE TABLE / UNIQUE will create implicit index "virtual_users_email_key" for table "virtual_users"
psql:/etc/postfix/import.sql:34: NOTICE: CREATE TABLE will create implicit sequence "virtual_aliases_id_seq" for serial column "virtual_aliases.id"
psql:/etc/postfix/import.sql:34: NOTICE: CREATE TABLE / PRIMARY KEY will create implicit index "virtual_aliases_pkey" for table "virtual_aliases"
psql:/etc/postfix/import.sql:52: ERROR: insert or update on table "virtual_users" violates foreign key constraint "virtual_users_domain_id_fkey"
DETAIL: Key (domain_id)=(2) is not present in table "virtual_domains".
stdout: DROP TABLE
DROP TABLE
DROP TABLE
CREATE TABLE
CREATE INDEX
CREATE TABLE
CREATE INDEX
CREATE TABLE
CREATE INDEX
INSERT 0 1
INSERT 0 1

FATAL: all hosts have already failed -- aborting

TASK: [common | If /encrypted is empty, create the encfs there] ***************
failed: [jessie] => {"changed": true, "cmd": "printf "p\ntestPassword" | encfs /encrypted /decrypted --public --stdinpass && touch /decrypted/test", "delta": "0:00:04.123265", "end": "2015-12-21 06:46:05.672522", "rc": 1, "start": "2015-12-21 06:46:01.549257", "warnings": []}
stderr: fuse: device not found, try 'modprobe fuse' first
fuse failed. Common problems:

• fuse kernel module not installed (modprobe fuse)
• invalid options -- see usage message
  stdout: Creating new encrypted volume.
  Please choose from one of the following options:
  enter "x" for expert configuration mode,
  enter "p" for pre-configured paranoia mode,
  anything else, or an empty line will select standard mode.
  ?>
  Paranoia configuration selected.

Configuration finished. The filesystem to be created has
the following properties:
Filesystem cipher: "ssl/aes", version 3:0:2
Filename encoding: "nameio/block", version 3:0:1
Key Size: 256 bits
Block Size: 1024 bytes, including 8 byte MAC header
Each file contains 8 byte header with unique IV data.
Filenames encoded using IV chaining mode.
File data IV is chained to filename IV.
File holes passed through to ciphertext.

-------------------------- WARNING --------------------------
The external initialization-vector chaining option has been
enabled. This option disables the use of hard links on the
filesystem. Without hard links, some programs may not work.
The programs 'mutt' and 'procmail' are known to fail. For
more information, please see the encfs mailing list.
If you would like to choose another configuration setting,
please press CTRL-C now to abort and start over.

Now you will need to enter a password for your filesystem.
You will need to remember this password, as there is absolutely
no recovery mechanism. However, the password can be changed
later using encfsctl.

FATAL: all hosts have already failed -- aborting

Then, on retrying, get:

TASK: [common | Create encrypted directory] ***********************************
ok: [jessie]

TASK: [common | Check if the /encrypted directory is empty] *******************
failed: [jessie] => {"changed": false, "cmd": "ls /encrypted/", "delta": "0:00:00.006089", "end": "2015-12-21 07:02:37.148157", "rc": 2, "start": "2015-12-21 07:02:37.142068", "stdout_lines": [], "warnings": []}
stderr: ls: cannot access /encrypted/: No such file or directory
...ignoring

TASK: [common | If /encrypted is empty, create the encfs there] ***************
failed: [jessie] => {"changed": true, "cmd": "printf "p\ntestPassword" | encfs /encrypted /decrypted --public --stdinpass && touch /decrypted/test", "delta": "0:00:03.191178", "end": "2015-12-21 07:02:40.534868", "rc": 1, "start": "2015-12-21 07:02:37.343690", "warnings": []}
stdout: Error decoding volume key, password incorrect

Installing on Debian8 in vagrant environment.

TASK: [mailserver | Install Rspamd and Rmilter] *******************************
failed: [jessie] => (item=rspamd,rmilter) => {"failed": true, "item": "rspamd,rmilter"}
stderr: E: Failed to fetch http://http.debian.net/debian/pool/main/g/glib2.0/libglib2.0-data_2.42.1-1_all.deb Error reading from server. Remote end closed connection [IP: 5.153.231.35 80]

E: Unable to fetch some archives, maybe run apt-get update or try with --fix-missing?

stdout: Reading package lists...
Building dependency tree...
Reading state information...
The following extra packages will be installed:
libglib2.0-0 libglib2.0-data libgmime-2.6-0 libhiredis0.10 libluajit-5.1-2
libluajit-5.1-common shared-mime-info xdg-user-dirs
The following NEW packages will be installed:
libglib2.0-0 libglib2.0-data libgmime-2.6-0 libhiredis0.10 libluajit-5.1-2
libluajit-5.1-common rmilter rspamd shared-mime-info xdg-user-dirs
0 upgraded, 10 newly installed, 0 to remove and 0 not upgraded.
Need to get 6637 kB of archives.
After this operation, 24.3 MB of additional disk space will be used.
Get:1 http://download.opensuse.org/repositories/home:/cebka/Debian_8.0/ rspamd 1.0.11+nmu1 [812 kB]
Get:2 http://http.debian.net/debian/ jessie/main libglib2.0-0 amd64 2.42.1-1 [2401 kB]
Get:3 http://http.debian.net/debian/ jessie/main libgmime-2.6-0 amd64 2.6.20-1+b1 [230 kB]
Err http://http.debian.net/debian/ jessie/main libglib2.0-data all 2.42.1-1
Error reading from server. Remote end closed connection [IP: 5.153.231.35 80]
Get:4 http://http.debian.net/debian/ jessie/main shared-mime-info amd64 1.3-1 [634 kB]
Get:5 http://http.debian.net/debian/ jessie/main libhiredis0.10 amd64 0.11.0-4 [22.0 kB]
Get:6 http://http.debian.net/debian/ jessie/main libluajit-5.1-common all 2.0.3+dfsg-3 [36.6 kB]
Get:7 http://http.debian.net/debian/ jessie/main libluajit-5.1-2 amd64 2.0.3+dfsg-3 [204 kB]
Get:8 http://http.debian.net/debian/ jessie/main xdg-user-dirs amd64 0.15-2 [52.1 kB]
Get:9 http://http.debian.net/debian/ jessie/main rmilter amd64 1.6.1 [71.6 kB]
Fetched 4464 kB in 42s (104 kB/s)

msg: '/usr/bin/apt-get -y -o "Dpkg::Options::=--force-confdef" -o "Dpkg::Options::=--force-confold" install 'rspamd' 'rmilter'' failed: E: Failed to fetch http://http.debian.net/debian/pool/main/g/glib2.0/libglib2.0-data_2.42.1-1_all.deb Error reading from server. Remote end closed connection [IP: 5.153.231.35 80]

E: Unable to fetch some archives, maybe run apt-get update or try with --fix-missing?

FATAL: all hosts have already failed -- aborting

Built Debian7 in vagrant development environment.

Running python tests.py doesn't result in any output, no errors.

Simulating the steps the tests try to run include:

https://mail.sovereign.local/

Resulting screen says:
DATABASE ERROR: CONNECTION FAILED!

Unable to connect to the database!
Please contact your server-administrator.

but the screen includes two header layers from roundcube, so the web-site is up, it's just not able to access the database.

This likely has the same root cause as #1.

diff --git a/tests.py b/tests.py
index 753b497..b193ef1 100644
--- a/tests.py
+++ b/tests.py
@@ -148,7 +148,8 @@ class IRCTests(unittest.TestCase):

     # Check the encryption parameters
     cipher, version, bits = ssl_sock.cipher()

•    self.assertEquals(cipher, 'AES256-GCM-SHA384')
  

•    # self.assertEquals(cipher, 'AES256-GCM-SHA384')
  

•    self.assertEquals(cipher, 'ECDHE-RSA-AES256-GCM-SHA384')
   self.assertEquals(version, 'TLSv1/SSLv3')
   self.assertEquals(bits, 256)
  

This was encountered testing jessie branch in the vagrant environment.

NOTIFIED: [mailserver | import sql opendmarc] *********************************
failed: [jessie] => {"changed": true, "cmd": "PGPASSWORD='testPassword' psql -h localhost -d opendmarc -U opendmarc -f /etc/opendmarc/import.sql --set ON_ERROR_STOP=1", "delta": "0:00:00.374346", "end": "2016-02-21 20:36:38.893696", "rc": 3, "start": "2016-02-21 20:36:38.519350", "warnings": []}
stderr: psql:/etc/opendmarc/import.sql:3: ERROR: syntax error at or near "#"
LINE 1: # Source: http://www.trusteddomain.org/pipermail/opendmarc-u...
^

FATAL: all hosts have already failed -- aborting

Encountered this error while provisioning against a Turnkey Linux Owncloud (Debian7-based):

TASK: [webmail | Enable php5-mcrypt] ******************************************
failed: [10.200.200.73] => {"failed": true, "gid": 0, "group": "root", "mode": "0644", "owner": "root", "path": "/etc/php5/apache2/conf.d/20-mcrypt.ini", "size": 72, "state": "file", "uid": 0}
msg: refusing to convert between file and link for /etc/php5/apache2/conf.d/20-mcrypt.ini

FATAL: all hosts have already failed -- aborting

Here's the list of current errors:

ERROR: ZNC is accepting encrypted logins
ERROR: Blog is redirecting to https
ERROR: Email autoconfiguration XML file is accessible over both HTTP and HTTPS
ERROR: ownCloud is redirecting to https and displaying login page
ERROR: selfoss is redirecting to https and displaying login page
ERROR: Webmail is redirecting to https and displaying login page
ERROR: test_zpush_http_unauthorized (tests.WebTests)
ERROR: test_zpush_https (tests.WebTests)

attached file contains more details.
notests-jessie-out.txt