can you run this:
/usr/sbin/update-ca-certificates
and post the output
root@syncloud:~# /usr/sbin/update-ca-certificates
Updating certificates in /etc/ssl/certs… 0 added, 0 removed; done.
Running hooks in /etc/ca-certificates/update.d…done.
root@syncloud:~#
Ok try these two:
ls -la /etc/ssl/certs/ | grep GlobalSign
ls -la /snap/platform/current/certs | grep GlobalSign
root@syncloud:~# ls -la /etc/ssl/certs/ | grep GlobalSign
lrwxrwxrwx 1 root root 27 Feb 1 2020 062cdee6.0 -> GlobalSign_Root_CA_-_R3.pem
lrwxrwxrwx 1 root root 31 Feb 1 2020 0d69c7e1.0 -> GlobalSign_ECC_Root_CA_-_R4.pem
lrwxrwxrwx 1 root root 27 Feb 1 2020 111e6273.0 -> GlobalSign_Root_CA_-_R2.pem
lrwxrwxrwx 1 root root 31 Feb 1 2020 1d3472b9.0 -> GlobalSign_ECC_Root_CA_-_R5.pem
lrwxrwxrwx 1 root root 27 Feb 1 2020 1e8e7201.0 -> GlobalSign_Root_CA_-_R3.pem
lrwxrwxrwx 1 root root 31 Feb 1 2020 2add47b6.0 -> GlobalSign_ECC_Root_CA_-_R5.pem
lrwxrwxrwx 1 root root 27 Feb 1 2020 4a6481c9.0 -> GlobalSign_Root_CA_-_R2.pem
lrwxrwxrwx 1 root root 22 Feb 1 2020 5ad8a5d6.0 -> GlobalSign_Root_CA.pem
lrwxrwxrwx 1 root root 66 Feb 1 2020 GlobalSign_ECC_Root_CA_-_R4.pem -> /usr/share/ca-certificates/mozilla/GlobalSign_ECC_Root_CA_-_R4.crt
lrwxrwxrwx 1 root root 66 Feb 1 2020 GlobalSign_ECC_Root_CA_-_R5.pem -> /usr/share/ca-certificates/mozilla/GlobalSign_ECC_Root_CA_-_R5.crt
lrwxrwxrwx 1 root root 57 Feb 1 2020 GlobalSign_Root_CA.pem -> /usr/share/ca-certificates/mozilla/GlobalSign_Root_CA.crt
lrwxrwxrwx 1 root root 62 Feb 1 2020 GlobalSign_Root_CA_-_R2.pem -> /usr/share/ca-certificates/mozilla/GlobalSign_Root_CA_-_R2.crt
lrwxrwxrwx 1 root root 62 Feb 1 2020 GlobalSign_Root_CA_-_R3.pem -> /usr/share/ca-certificates/mozilla/GlobalSign_Root_CA_-_R3.crt
lrwxrwxrwx 1 root root 31 Feb 1 2020 b0e59380.0 -> GlobalSign_ECC_Root_CA_-_R4.pem
lrwxrwxrwx 1 root root 22 Feb 1 2020 b0f3e76e.0 -> GlobalSign_Root_CA.pem
root@syncloud:~# ls -la /snap/platform/current/certs | grep GlobalSign
-rw-r--r-- 1 root root 704 Dec 23 11:53 GlobalSign_ECC_Root_CA_-_R4.crt
-rw-r--r-- 1 root root 794 Dec 23 11:53 GlobalSign_ECC_Root_CA_-_R5.crt
-rw-r--r-- 1 root root 1261 Dec 23 11:53 GlobalSign_Root_CA.crt
-rw-r--r-- 1 root root 1229 Dec 23 11:53 GlobalSign_Root_CA_-_R3.crt
-rw-r--r-- 1 root root 1972 Dec 23 11:53 GlobalSign_Root_CA_-_R6.crt
-rw-r--r-- 1 root root 769 Dec 23 11:53 GlobalSign_Root_E46.crt
-rw-r--r-- 1 root root 1915 Dec 23 11:53 GlobalSign_Root_R46.crt
root@syncloud:~#
How about this
ls -la /usr/share/ca-certificates/mozilla/ | grep GlobalSign
root@syncloud:~# ls -la /usr/share/ca-certificates/mozilla/ | grep GlobalSign
-rw-r--r-- 1 root root 704 Feb 6 23:47 GlobalSign_ECC_Root_CA_-_R4.crt
-rw-r--r-- 1 root root 794 Feb 6 23:47 GlobalSign_ECC_Root_CA_-_R5.crt
-rw-r--r-- 1 root root 1261 Feb 6 23:47 GlobalSign_Root_CA.crt
-rw-r--r-- 1 root root 1354 Mar 20 2023 GlobalSign_Root_CA_-_R2.crt
-rw-r--r-- 1 root root 1229 Feb 6 23:47 GlobalSign_Root_CA_-_R3.crt
-rw-r--r-- 1 root root 1972 Feb 6 23:47 GlobalSign_Root_CA_-_R6.crt
-rw-r--r-- 1 root root 769 Feb 6 23:47 GlobalSign_Root_E46.crt
-rw-r--r-- 1 root root 1915 Feb 6 23:47 GlobalSign_Root_R46.crt
root@syncloud:~#
One more
grep GlobalSign /etc/ca-certificates.conf
root@syncloud:~# grep GlobalSign /etc/ca-certificates.conf
mozilla/GlobalSign_ECC_Root_CA_-R4.crt
mozilla/GlobalSign_ECC_Root_CA-R5.crt
mozilla/GlobalSign_Root_CA.crt
mozilla/GlobalSign_Root_CA-R2.crt
mozilla/GlobalSign_Root_CA-_R3.crt
root@syncloud:~#
Can you run this and show me the output
ln -s /usr/share/ca-certificates/mozilla/GlobalSign_Root_CA_-_R6.crt /usr/local/share/ca-certificates/
ls -la /usr/local/share/ca-certificates
/usr/sbin/update-ca-certificates
root@syncloud:~# ln -s /usr/share/ca-certificates/mozilla/GlobalSign_Root_CA_-R6.crt /usr/local/share/ca-certificates/
root@syncloud:~#
root@syncloud:~# ls -la /usr/local/share/ca-certificates
total 12
drwxrwsr-x 2 root staff 4096 Feb 22 14:55 .
drwxrwsr-x 6 root staff 4096 Feb 1 2020 …
lrwxrwxrwx 1 root staff 62 Feb 22 14:55 GlobalSign_Root_CA-R6.crt → /usr/share/ca-certificates/mozilla/GlobalSign_Root_CA-_R6.crt
root@syncloud:~#
root@syncloud:~# /usr/sbin/update-ca-certificates
Updating certificates in /etc/ssl/certs… 1 added, 0 removed; done.
Running hooks in /etc/ca-certificates/update.d…done.
root@syncloud:~#
Hello Boris
The mail server is now working. The only thing I have seen are these error messages from Nextcloud:
There are some warnings regarding your setup.
One or more mimetype migrations are available. Occasionally new mimetypes are added to better handle certain file types. Migrating the mimetypes take a long time on larger instances so this is not done automatically during upgrades. Use the command occ maintenance:repair --include-expensive to perform the migrations.
There is an inactive LDAP configuration: s02
I have tried the command line, but I get the message that it does not recognise this command.
Thank you for your patience and perseverance!
Have a nice weekend.
1 Like
Try
snap run nextcloud.occ maintenance:repair --include-expensive
snap run nextcloud.occ ldap:delete-config s02
First I will try to make automatic, the second one is already fixed on new installations.
root@syncloud:~# snap run nextcloud.occ maintenance:repair --include-expensive
- Repair MySQL collation
- Not a mysql database → nothing to do
- Clean tags and favorites
- 0 tags of deleted users have been removed.
- 0 tags for delete files have been removed.
- 0 tag entries for deleted tags have been removed.
- 0 tags with no entries have been removed.
- Repair invalid shares
- Move .step file of updater to backup location
- Add move avatar background job
- Repair step already executed
- Add preview cleanup background jobs
- Migrate oauth2_clients table to nextcloud schema
- Update the oauth2_access_tokens table schema.
- Update the oauth2_clients table schema.
- Delete clients (and their related access tokens) with the redirect_uri starting with oc:// or ending with *
- Repair language codes
- Add log rotate job
- Clear frontend caches
- Image cache cleared
- JS cache cleared
- Clear every generated avatar
- Add preview background cleanup job
- Queue a one-time job to cleanup old backups of the updater
- Cleanup invalid photocache files for carddav
- Add background job to cleanup login flow v2 tokens
- Remove potentially over exposing share links
- No need to remove link shares.
- Clear access cache of projects
- Reset generated avatar flag
- Keep legacy encryption enabled
- Check encryption key format
- Remove old dashboard app config data
- Add job to cleanup the bruteforce entries
- Queue a one-time job to check for user uploaded certificates
- Repair DAV shares
- Add background job to set the lookup server share state for users
- Add token cleanup job
- Clean up abandoned apps
- Add possibly missing system config
- Add AI tasks cleanup jobs
- Queue a job to generate metadata
- migrate lazy config values
- Cache logo dimension to fix size in emails on Outlook
- Logo dimensions are already known
- Remove legacy “.ocdata” file
- Add cleanup-deleted-users background job
- Remove shares of old group memberships
- Repair mime types
- Validate the phone number and store it in a known format for search
- Handle outdated scheduling events
- Cleaning up old scheduling events
- Add read permissions for existing announcements
0 [->--------------------------] - AppAPI Daemons configuration GPU params update
- Daemons configuration GPU params updated: 0
- Upgrading Circles App
- Fix component of birthday calendars
- 14 birthday calendars updated.
- Regenerating birthday calendars to use new icons and fix old birthday events without year
- Repair step already executed
- Fix broken values of calendar objects
0 [----->----------------------] - Registering building of calendar search index as background job
- Repair step already executed
- Register building of social profile search index as background job
- Repair step already executed
- Registering background jobs to update cache for webcal calendars
- Added 0 background jobs to update webcal calendars
- Registering building of calendar reminder index as background job
- Repair step already executed
- Clean up orphan event and contact data
- 0 events without a calendar have been cleaned up
- 0 properties without an events have been cleaned up
- 0 changes without a calendar have been cleaned up
- 0 cached events without a calendar subscription have been cleaned up
- 0 changes without a calendar subscription have been cleaned up
- 0 contacts without an addressbook have been cleaned up
- 0 properties without a contact have been cleaned up
- 0 changes without an addressbook have been cleaned up
- Remove activity entries of private events
- Removed 0 activity entries
- Clean up old calendar subscriptions from deleted users that were not cleaned-up
0 [--------->------------------]- 0 calendar subscriptions without an user have been cleaned up
- Remove invalid object properties
- 0 invalid object properties removed.
- Fix the share type of guest shares when migrating from ownCloud
- Copy the share password into the dedicated column
- Set existing shares as accepted
- Repair steps for Memories
- Updating external table schema: -filecache::memories_name_hash
- Recreated filecache trigger with: Doctrine\DBAL\Platforms\PostgreSQL120Platform
- exiftool binary is configured: /var/snap/nextcloud/820/extra-apps/memories/bin-ext/exiftool-amd64-glibc
- go-vod binary is configured: /var/snap/nextcloud/820/extra-apps/memories/bin-ext/go-vod-amd64
- WARNING: ffmpeg binary could not be configured
- Remove any playlist files mistakenly added to music_tracks table
- Combine multi-disk albums and store disk numbers per track
- Register Music background jobs and remove legacy registrations
- Set creation and update dates for the library entities without one
- Update OAuth token expiration times
- init metadata
- Install recognize dependencies
- WARNING: Failed to install node binary
- WARNING: Failed to automatically install dependencies for recognize. Check the recognize admin panel for potential problems.
- Invalidate access cache for projects conversation provider
- Invalidation not required
- Cache the user display names
- Fix the namespace in database tables
- Switches from default updater server to the customer one if a valid subscription is available
- Repair step already executed
- Send an admin notification if monthly report is disabled
- Force-reset all Text document sessions
- Initialize migration of background images from dashboard to theming app
- Add background job to check for backup codes
- Insert UUIDFix background job for user and group in batches
- Remove deprecated refresh time markers for LDAP user records
- Populating added database structures for workflows
root@syncloud:~#
root@syncloud:~# snap run nextcloud.occ ldap:delete-config s02
Deleted configuration with configID ‘s02’
root@syncloud:~#
The following error message is displayed when Nextcloud is started:
Internal Server Error
Can you send logs from Settings?
I have sent the logs.
I have tried to update 2248. This does not work, but does not display an error message.
I will send you the logs again shortly.
This app seems to be not working:
files_antivirus","method":"PUT","url":"/remote.php/webdav/Enpass/vault.enpassdbsync","message":"{\"Exception\":\"RuntimeException\",\"Message\":\"The antivirus executable could not be found at /usr/bin/clamscan
Can you remove it?
snap run nextcloud.occ app:remove files_antivirus
Then try opening nextcloud web
Hi Boris
Thank you very much for your help! A great service!
Nextcloud is working perfectly again.
Only the Syncloud update from 2221 to 2248 does not work.
What can I do?
1 Like
Can you run this and show the output
snap refresh platform
Also send logs from settings.