Add a check for ensuring mirror session ACLs are programmed to ASIC

[ryanzhu706]

Description
Add a check for ensuring mirror session ACLs are programmed to ASIC

What is the issue?
This fix is to address an issue where an ACL is added to CONFIG_DB, but before it could be programmed to ASIC, Orchagent is paused.
This leads to APPLY_VIEW failure when base image OA could not process this ACL entry and target image's OA still creates it.
The issue has an image fix available at sonic-net/sonic-sairedis#1240
This issue is very rare, and has been caught by upgrade path tests only once in thousands of iterations.

What is this fix?
A new logic is added to check if mirror session ACLs for arp and nd are added to ASIC..
ACLs are looked into ASIC_DB and matched using SAI_ACL_ENTRY_ATTR_PRIORITY attribute.
SAI_ACL_ENTRY_ATTR_PRIORITY for arp ACL is 8888 and for nd is 8887
If one of the ACLs is found missing then warmboot is aborted.

Tested:

### arp/test_wr_arp.py result:
=========================================================================== warnings summary ===========================================================================
../../../../usr/local/lib/python3.8/dist-packages/paramiko/transport.py:236
  /usr/local/lib/python3.8/dist-packages/paramiko/transport.py:236: CryptographyDeprecationWarning: Blowfish has been deprecated
    "class": algorithms.Blowfish,

-- Docs: https://docs.pytest.org/en/stable/how-to/capture-warnings.html
---------------------------------------------- generated xml file: /var/src/sonic-mgmt-int/tests/logs/arp/test_wr_arp.xml ----------------------------------------------
------------------------------------------------------------------------ live log sessionfinish ------------------------------------------------------------------------
19:08:59 __init__.pytest_terminal_summary         L0067 INFO   | Can not get Allure report URL. Please check logs
=============================================================== 2 passed, 1 warning in 858.02s (0:14:18) ===============================================================
INFO:root:Can not get Allure report URL. Please check logs

### manually warm-reboot result:
Fri May 31 08:38:28 PM UTC 2024 Starting warm-reboot
Fri May 31 08:38:31 PM UTC 2024 Saving counters folder before warmboot...
Fri May 31 08:38:42 PM UTC 2024 Loading kernel without secure boot
Fri May 31 08:38:44 PM UTC 2024 Setting up control plane assistant: 10.1.2.3 ...
Fri May 31 08:38:48 PM UTC 2024 Checking if mirror session ACLs (arp, nd) programmed to ASIC successfully
Fri May 31 08:38:48 PM UTC 2024 Mirror session ACLs (arp, nd) programmed to ASIC successfully

ERROR: There are port channels/peer devices that failed the probe: ['PortChannel102', 'PortChannel101', 'PortChannel103', 'PortChannel104']
Fri May 31 08:38:53 PM UTC 2024 Warning: Retry count feature support unknown for one or more neighbor devices; assuming that it's not available
Fri May 31 08:38:53 PM UTC 2024 Pausing orchagent ...

[linux-foundation-easycla]

The committers listed above are authorized under a signed CLA.

• ✅ login: ryanzhu706 (c76d30a, 1c722c3, faaac1d, 98ab5a3, c37c1a4)

[vaibhavhd]

Please test the change and update the description before PR merge

[saiarcot895]

You'll also need to fix up the email addresses in the commits (or squash the commits) for EasyCLA to pass.

[ayurkiv-nvda]

Hello @vaibhavhd
We found that in while loop we will fail after 1 iteration if ACL entries were not found in redis
I suggest continuing retry cycle.
Please take a look at suggested solution:

#3548

Thanks