Unable to update seafile-cli

freezziey · December 13, 2021, 8:15pm

When running apt-get update i get

E: The repository 'https://linux-clients.seafile.com/seafile-deb/focal stable Release' no longer has a Release file.
N: Updating from such a repository can't be done securely, and is therefore disabled by default.
N: See apt-secure(8) manpage for repository creation and user configuration details.

When running apt-get upgrade

Err:1 https://linux-clients.seafile.com/seafile-deb/focal stable/main amd64 libseafile0 amd64 8.0.4
  Certificate verification failed: The certificate is NOT trusted. The certificate chain uses expired certificate.  Could not handshake: Error in the certificate verification. [IP: 18.212.2.44 443]
Err:2 https://linux-clients.seafile.com/seafile-deb/focal stable/main amd64 seafile-daemon amd64 8.0.4
  Certificate verification failed: The certificate is NOT trusted. The certificate chain uses expired certificate.  Could not handshake: Error in the certificate verification. [IP: 18.212.2.44 443]
Err:3 https://linux-clients.seafile.com/seafile-deb/focal stable/main amd64 seafile-cli amd64 8.0.4
  Certificate verification failed: The certificate is NOT trusted. The certificate chain uses expired certificate.  Could not handshake: Error in the certificate verification. [IP: 18.212.2.44 443]
E: Failed to fetch https://linux-clients.seafile.com/seafile-deb/focal/pool/main/s/seafile-daemon/libseafile0_8.0.4_amd64.deb  Certificate verification failed: The certificate is NOT trusted. The certificate chain uses expired certificate.  Could not handshake: Error in the certificate verification. [IP: 18.212.2.44 443]
E: Failed to fetch https://linux-clients.seafile.com/seafile-deb/focal/pool/main/s/seafile-daemon/seafile-daemon_8.0.4_amd64.deb  Certificate verification failed: The certificate is NOT trusted. The certificate chain uses expired certificate.  Could not handshake: Error in the certificate verification. [IP: 18.212.2.44 443]
E: Failed to fetch https://linux-clients.seafile.com/seafile-deb/focal/pool/main/s/seafile-daemon/seafile-cli_8.0.4_amd64.deb  Certificate verification failed: The certificate is NOT trusted. The certificate chain uses expired certificate.  Could not handshake: Error in the certificate verification. [IP: 18.212.2.44 443]
E: Unable to fetch some archives, maybe run apt-get update or try with --fix-missing?

Has seafile forgot to update the root CA in september?

shoeper · December 14, 2021, 12:17pm

Looks like debian cannot process the old letsencrypt chain. Accessing https://linux-clients.seafile.com/ in the browser works.

The issue is that a certificate used for cross signing expired in september and some implementations let the connection fail, although there is a second valid full certification chain.

TLDR: The certificate is valid and not expired.

Is your system fully upgraded? You can also try to run apt-get install ca-certificates.

freezziey · December 14, 2021, 1:09pm

Thank you

apt-get install ca-certificates did the trick. Haden’t considered it as I set up the server 3 weeks ago and it should have had the latest certs already. Maybe my hosting provider was not fast enough with updating the images.