search

sonic-net / sonic-mgmt

Configuration management examples for SONiC
Other
176 stars 703 forks source link

[Bug]: tacacs/ scripts failed with 202405 branch code #13708

Open jessiewu01 opened 1 month ago

jessiewu01 commented 1 month ago

Issue Description

All test cases under tacacs/ folder failed with 202405 branch code. It also crashed tacacs_plus service in the PTF container and the service can not be recovered. I copied whole folder of tacacs/ from 202311 branch, all test cases passed.

Results you see

Test cases failed in tacacs/ folder

Results you expected to see

All test cases pass with tacacs/ folder scripts.

Is it platform specific

generic

Relevant log output

No response

Output of show version

No response

Attach files (if any)

No response

jessiewu01 commented 1 month ago

test_ro_user_2024-07-16-07-58-39.xml.txt

jessiewu01 commented 1 month ago

test_ro_user_2024-07-16-07-58-39.log

yxieca commented 1 month ago

@qiluo-msft sounds like there is a test regression? Please help triage.

veronica-arista commented 1 month ago

We see the tacacs test failures across all our platforms caused by the addition of duthost_admin_user and duthost_ssh_user by PR https://github.com/sonic-net/sonic-mgmt/pull/11614. With these users present in the tacplus config file, the ssh connection to the tacacs server cannot be established and I see some ldap related syslogs that I don't see otherwise: hostcfgd: auth login: not ldap type - rm session required

Additionally, the changes in https://github.com/sonic-net/sonic-mgmt/pull/13344 cause a "Host unreachable" error after tacacs/test_ro_user.py::test_ro_user_banned_command runs.