From e02baf21491340d2c92a42454c1c49c65bdd1e23 Mon Sep 17 00:00:00 2001
From: Adam Williamson <awilliam@redhat.com>
Date: Fri, 30 Oct 2020 13:05:29 -0700
Subject: [PATCH] Add a bit of debugging to crypto-policies

aka why isn't it working on a64 worker02

Signed-off-by: Adam Williamson <awilliam@redhat.com>
---
 roles/base/tasks/crypto-policies.yml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/roles/base/tasks/crypto-policies.yml b/roles/base/tasks/crypto-policies.yml
index 7f2bb5f111..5425458fa7 100644
--- a/roles/base/tasks/crypto-policies.yml
+++ b/roles/base/tasks/crypto-policies.yml
@@ -16,6 +16,9 @@
   - crypto-policies
   - base/crypto-policies
 
+- debug:
+  msg: "admv is {{ ansible_distribution_major_version }} ccp is {{ currentcryptopolicy.stdout }} cpa is {{ cryptopolicyapplied.rc }} "
+
 - name: Set crypto-policy on fedora 33 and higher hosts to allow 2fa to work
   command: "update-crypto-policies --set LEGACY"
   when: "ansible_distribution_major_version|int >= 33 and (currentcryptopolicy.stdout.find('LEGACY') == -1 or cryptopolicyapplied.rc != 0)"