algo/roles/common/tasks/facts.yml

---
- block:
  - name: Generate password for the CA key
    command: openssl rand -hex 16
    register: CA_password

  - name: Generate p12 export password
    shell: >
      openssl rand 8 |
      python -c 'import sys,string; chars=string.ascii_letters + string.digits + "_@"; print("".join([chars[ord(c) % 64] for c in list(sys.stdin.read())]))'      
    register: p12_password_generated
    when: p12_password is not defined
    tags: update-users
  become: false
  delegate_to: localhost

- name: Define facts
  set_fact:
    p12_export_password: "{{ p12_password|default(p12_password_generated.stdout) }}"
  tags: update-users

- name: Set facts
  set_fact:
    CA_password: "{{ CA_password.stdout }}"
    IP_subject_alt_name: "{{ IP_subject_alt_name }}"

- name: Set IPv6 support as a fact
  set_fact:
    ipv6_support: "{% if ansible_default_ipv6['gateway'] is defined %}true{% else %}false{% endif %}"
  tags: always

- name: Check size of MTU
  set_fact:
    reduce_mtu: "{{ 1500 - ansible_default_ipv4['mtu']|int if reduce_mtu|int == 0 and ansible_default_ipv4['mtu']|int < 1500 else reduce_mtu|int }}"
  tags: always