Symptom
we executed the command and other screen we were watching the logs and L3 services got impacted when we executed that command
avl-lab-asr4#show clock
10:36:47.057 EDT Fri May 26 2023
avl-lab-asr4# show platform sudi certificate sign nonce 4752
-----BEGIN CERTIFICATE-----
>
when certificate getting executed compltely
avl-lab-asr4#show clock
10:36:40.520 EDT Fri May 26 2023
avl-lab-asr4#
May 26 X.X.X.X : %BFDFSM-6-BFD_SESS_DOWN: BFD-SYSLOG: BFD session ld:2 handle:2,is going Down Reason: RX DOWN
May 26 X.X.X.X : %BFD-6-BFD_SESS_DESTROYED: BFD-SYSLOG: bfd_session_destroyed, ld:2 neigh proc:OSPF, handle:2 active
May 26 X.X.X.X : %OSPF-5-ADJCHG: Process 1, Nbr X.X.X..222 on TenGigabitEthernet0/0/25 from FULL to DOWN, Neighbor Down: BFD node down
May 26 X.X.X.X: %OSPF-5-ADJCHG: Process 1, Nbr X.X.X..222 on TenGigabitEthernet0/0/25 from DOWN to INIT, Received Hello
May 26 X.X.X.X: %OSPF-5-ADJCHG: Process 1, Nbr X.X.X.222 on TenGigabitEthernet0/0/25 from INIT to 2WAY, 2-Way Received
May 26 X.X.X.X: %OSPF-5-ADJCHG: Process 1, Nbr X.X.X.222 on TenGigabitEthernet0/0/25 from 2WAY to EXSTART, AdjOK?
May 26 X.X.X.X: %OSPF-5-ADJCHG: Process 1, X.X.X.222 on TenGigabitEthernet0/0/25 from EXSTART to INIT, 1-Way
Conditions
We face a customer issue with command ?show platform sudi certificate sign nonce xxxx? which when getting executed in show_tech is causing CPU spike for few second thereby causing OSPF and L3 services to flap.
This happen when we configure OSPF with aggressive timers. When we configure default timers for OSPF, issue is not seen.
the OSPF hello and dead timers to default isee not seen
Right now in customer node:
ip ospf dead-interval 3
ip ospf hello-interval 1
customer is not seeing issue on 16.12.03
Workaround
the OSPF hello and dead timers to default
Right now in customer node:
ip ospf dead-interval 3
ip ospf hello-interval 1
