Guest

Preview Tool

Cisco Bug: CSCvs39368 - DME process may traceback due to memory leak on Firepower 4100/9300

Last Modified

Oct 28, 2020

Products (1)

  • Cisco Firepower 9300 Series

Known Affected Releases

2.4(1.234) 2.7(1.123) r241

Description (partial)

Symptom:
The DME process may traceback and restart due to a memory leak. In most cases the system as a whole does not reboot, however, some cases have reported entire chassis restarts as a result of this. In either scenario the issue is service impacting. 
This may impact heartbeats between ASA/FTD and FXOS and subsequently result in a failover in Active/Standby HA or a node leave event in a Cluster.

Conditions:
Prior to 2.4.1, this problem only occurs when CC mode is enabled. Starting from 2.4.1, it is seen unconditionally. The leak is related to periodic validation of trustpoints and their respective certificate chain. There are one or more default trustpoints configured which is why it is seen unconditionally.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.