WCP Supervisor Cluster upgrade gets hung at 3%
search cancel

WCP Supervisor Cluster upgrade gets hung at 3%

book

Article ID: 313511

calendar_today

Updated On:

Products

VMware Cloud Foundation VMware vCenter Server

Issue/Introduction


Error ---

root@vcenter-1 [ /storage ]# curl -vkLO https://vcenter-1.example.local:5480/wcpagent/photon-ova-small.ovf
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
  0     0    0     0    0     0      0      0 --:--:-- --:--:-- --:--:--     0*   Trying 127.0.0.1:5480...
* Connected to vcenter-1.example.local (127.0.0.1) port 5480 (#0)
* ALPN: offers http/1.1
* Cipher selection: ALL:!EXPORT:!EXPORT40:!EXPORT56:!aNULL:!LOW:!RC4:@STRENGTH
* TLSv1.2 (OUT), TLS header, Certificate Status (22):
} [5 bytes data]
* TLSv1.2 (OUT), TLS handshake, Client hello (1):
} [254 bytes data]
  0     0    0     0    0     0      0      0 --:--:--  0:01:00 --:--:--     0
* OpenSSL SSL_connect: SSL_ERROR_SYSCALL in connection to vcenter-1.example.local:5480
  0     0    0     0    0     0      0      0 --:--:--  0:01:01 --:--:--     0
* Closing connection 0
curl: (35) OpenSSL SSL_connect: SSL_ERROR_SYSCALL in connection to vcenter-1.example.local:5480
```

root@vcenter-1 [ /opt/vmware/var/log/lighttpd ]# tail -n 3 access.log
::ffff:172.17.139.240 172.17.139.6:5480 - [30/Aug/2023:09:20:16 +0000] "GET /rest/appliance/system/time HTTP/1.1" 200 106 "http://172.17.139.6:5480/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36"
::ffff:172.17.139.240 172.17.139.6:5480 - [30/Aug/2023:09:21:16 +0000] "GET /rest/appliance/system/time HTTP/1.1" 200 106 "http://172.17.139.6:5480/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36"
::ffff:172.17.139.240 172.17.139.6:5480 - [30/Aug/2023:09:22:01 +0000] "GET /rest/appliance/system/time HTTP/1.1" 200 106 "http://172.17.139.6:5480/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36"

 

Environment

  • VMware vCenter Server 8.0.2
  • VMware Cloud Foundation 4.5.1
  • VMware vCenter Server 7.0.3
  • Affects Supervisor Cluster upgrades from 1.22 to 1.23

Cause

Failure because the default value of "ssl.engine" in lighttpd config is disabled.


File-path - /opt/vmware/etc/lighttpd/lighttpd.conf
ssl.engine = "disable"
ssl.pemfile = "/etc/applmgmt/appliance/server.pem"
ssl.use-sslv2 = "disable"

Resolution

The issue has been resolved in VMware vCenter Server 8.0 u2 release.

To workaround the issue, please follow the below mentioned process:

  • Enable the ssl.engine by editing this File /opt/vmware/etc/lighttpd/lighttpd.conf
  • Make the following changes
    • ssl.engine = "enable"
    • ssl.pemfile = "/etc/applmgmt/appliance/server.pem"
    • ssl.use-sslv2 = "disable"
  • Restart the lighttpd service

 

Powered by Wolken Software