Hi,

Was this case ever resolved?  I have the same issue on ASA running 9.4(1).

Regards

Matt

Looks like nothing happens on Cisco side.

The Bug CSCub 40805 talks about only three affected releases. Obviously other releases are also affected.  I have a customer who ran in this problem 4 times in the past 12 month.  We went through several upgrades in this time period.  Now we are running 9.3(3) 7 on this box and it recently happened again.

I also would be very interested how the case of yammari ended.

Regards

Andreas

I had my second instance of this issue about three weeks ago. They suggested I try a newer version of ios, but they couldn't give me a number that was confirmed to be free from this bug. I'm currently running 9.4(2)11 on all of my firewalls, but the only ones that have had this problem were in an active/standby configuration. The first time it happened I was able to reload the standby and fail over to it to reload the primary; however, the second time the standby wouldn't resync with the primary so I had to reload them both at the same time. This caused about a 5 minute outage and I lost several recent changes. I'm not sure why the bug hasn't been updated to show 9.4.2 as an affected release because I've opened two separate support cases and they have attributed my issue to this bug both times. I don't really want to roll back to 9.2(1) which is the latest known fixed release so I have started reloading both firewalls every other week to keep the problem from happening again. Hopefully they will come up with a known good release soon.

I'm also seeing this bug on a non-active/standby configuration (single 5512-X running 9.4(2)11). The bug behavior shows up here:

ASA# wr me
Building configuration...
Cryptochecksum: blah blah blah blah blah 

%Error opening disk0:/.private/startup-config (Too many open files)
Error executing command
[FAILED]
ASA# 

But what is especially concerning is the behavior when I try to view the startup-config:

ASA# sh startup-config 
No Configuration

Cisco indicates that the workaround is to reload the firewall, but how can I do that if I'm not even sure my startup-config is intact? Even a simple power failure for this firewall could render it totally unusable (i.e. returned to factory defaults).

So yes, very concerning. I hope there is a solution Cisco can provide soon.

I have now seen this a few times. Last was three weeks ago with a 5515-X with 9.5(2)2. Soft reboot (reload) fixed it again. After the reload I upgraded to 9.6(1)5. Hope to get rid of this annoying issue soon. 

Just as a follow-up to anyone who has the same issue as I did ... we ended up losing power to this affected ASA a few days ago. I was sure that it was completely unreachable and even reverted to factory defaults after not seeing it come back online. But suddenly, it was reachable again: turns out the ASA did use its last "known" startup configuration, present from a time before this bug's symptoms were triggered.

So, it turns out that even though "sh startup-config" returns no results, at least in my case, it did actually reload successfully. I would still not attempt this without local access and a console session, however.