Guest

Preview Tool

Cisco Bug: CSCul13187 - EXGW fails to read 4 byte value of MIP reg lifetime VSAs sent from AAA

Last Modified

Dec 24, 2016

Products (1)

  • Cisco ASR 5000 Series

Known Affected Releases

15.0(1) 15.0(14)

Description (partial)

EXGW fails to read 4 byte value of MIP reg lifetime VSAs sent from AAA. Instead of reading the 4 bytes, only first 2 bytes are read as the value is declared as short int at EXGW.

Symptom:
a) When AAA sends SN1-MIP-MIN-Reg-Lifetime-Realm and SN1-MIP-Reg-Lifetime-Realm in  the RADIUS Access-Accept, the AAA server sends 4 bytes values as these parameters are defined as INTEGER. 
b) RADIUS definition for these parameters are defined as uint16 in boxer and hence STAROS expects only 2 byte values for these parameters. So while processing these values, STAROS accepts only the first 2 bytes instead of accepting the complete 4 bytes.
c) Hence MIP-Reg-Lifetime-Realm and MIP-MIN-Reg-Lifetime-Realm are wrongly decoded in the Access-Accept and the correct value of these parameters are ignored in STAROS

Conditions:
HA call with radius authentication enabled. RADIUS/AAA server returns SN1-MIP-MIN-Reg-Lifetime-Realm and SN1-MIP-Reg-Lifetime-Realm in the Access-Accept
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.