sysinv-conductor process kill test failure with error user-defined endpoint and token, error was: The account is locked for user
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
StarlingX |
Fix Released
|
High
|
Lin Shuicheng |
Bug Description
Brief Description
-----------------
After running test_process automation on sysinv-conductor process unable to run any system or fm commands from cli. Sysadmin account locked error message for any commands as below. Automaton Test sysinv kills process and verify recovery multiple times. This test was not passed and not behaving this way before.
'fm --os-username 'admin' --os-password 'Li69nux*' --os-project-name admin --os-auth-url http://[face::1]:5000/v3 --os-user-
[2020-04-06 13:39:45,235] 436 DEBUG MainThread ssh.expect :: Output:
+------
| Alarm ID | Reason Text | Entity ID | Severity | Time Stamp |
+------
| 400.001 | Service group controller-services failure; sysinv-
| 400.002 | Service group controller-services loss of redundancy; expected 1 standby member but no standby members available | service_
| 400.002 | Service group cloud-services loss of redundancy; expected 1 standby member but no standby members available | service_
| 400.002 | Service group oam-services loss of redundancy; expected 1 standby member but no standby members available | service_
| 400.002 | Service group vim-services loss of redundancy; expected 1 standby member but no standby members available | service_
+------
controller-0:~$
fm alarm-list
Must provide Keystone credentials or user-defined endpoint and token, error was: The account is locked for user: 7113e094afb54cd
system show
The account is locked for user: 7113e094afb54cd
Steps to Reproduce
------------------
1. Verify system health no alarms
2. Kill sysinv-conductor process multiple time using below script.
true; n=1; last_pid=''; pid=''; for((;n<5;)); do pid=$(cat /var/run/
if [ "x$pid" = "x" -o "$pid" = "$last_pid" ]; then echo "stale or empty PID:$pid, last_pid=
if [ $? -eq 0 ]; then echo "OK $n - $pid killed"; ((n++)); last_pid=$pid; pid=''; sleep 20;
3. Verify process recovered after process kill
4. Fm alarm-list after killing process.
5. As description system locked message was seen.
Expected Behavior
------------------
Able to execute commands after killing process.
Actual Behavior
----------------
Unable to run commands after killing process.
Reproducibility
---------------
100% reproducible
System Configuration
-------
Regular system wildcat-63-66
Branch/Pull Time/Commit
-------
2020-04-04_00-10-00
Last Pass
---------
2020-03-
Timestamp/Logs
--------------
2020-04-
Test Activity
-------------
Regression
tags: |
added: stx.config removed: stx.metal |
tags: | added: stx.retestneeded |
There was a code change which merged on 2020-04-01 related to the keystone account lock-out. /bugs.launchpad .net/starlingx/ +bug/1853017 /review. opendev. org/712823
LP: https:/
Gerrit Review: https:/
I'm not sure if it's related or not, but this TC was passing a week ago before this code was merged.
Assigning to Shuicheng to investigate.