• Error CNF130006 when performing lifecycle operations (upgrade/reconfigure) on a Cloud-native Network Function (CNF). 

• Helm Upgrade Failure.

• Error message: Unable to encrypt password to send to tca-cp <UUID>: Input length must be multiple of 16 when decrypting with padded cipher.

• The issue occurs specifically for NFs instantiated in TCA 2.3 after the environment is upgraded to TCA 3.3.

TCA: 3.3

TCP: 5.0.1

A breaking change in credential handling between TCA 2.3 and TCA 3.3. In TCA 2.3, Harbor repository credentials were stored in clear text in the CNF database. TCA 3.3 logic expects these credentials to be encrypted and fails when attempting to decrypt the legacy clear-text password using a symmetric key.

Resolved in the 3.3.0.1 patch

Workaround

Method 1: Helm and Repo Details Override (Recommended)

1. Initiate the reconfigure or upgrade workflow for the affected NF.

2. Select the "Both" option for overrides (Helm and repo details override).

3. Modify the Helm values as needed for your deployment.

4. Leave the repository details section unchanged. Note: You do not need to manually enter the Harbor repository URL, username, or password for each Helm chart.

5. Proceed with the workflow.

Method 2: Re-instantiate the NF

1. Terminate the existing NF instance.

2. Perform a fresh instantiation of the NF in the TCA 3.3 environment. Note: This method will result in service downtime.