Jitsi-meet: Debian/Ubuntu apt download certificate expired
Description:
sudo apt update
Atteint聽:1 http://deb.debian.org/debian buster InRelease
Atteint聽:2 http://deb.debian.org/debian buster-updates InRelease
Atteint聽:3 http://security.debian.org/debian-security buster/updates InRelease
Ign聽:4 https://download.jitsi.org stable/ InRelease
Err聽:5 https://download.jitsi.org stable/ Release
Certificate verification failed: The certificate is NOT trusted. The certificate chain uses expired certificate. Could not handshake: Error in the certificate verification. [IP聽: 2001:660:2402::22 443]
Steps to reproduce:
running apt update with jitsi repos activated
Expected behavior:
should not finish with error
Actual behavior:
upgrade not possible as ended with error
Server information:
- Jitsi Meet version: 2.0.4548-1
- Operating System: Debian 10 aka Buster
Client information:
- Browser / app version:NA
- Operating System:NA
Additional information:
NA
tootai
All 12 comments
Hello,
I have the same problem on ubuntu 18.04 when trying to update to jitsi-meet 2.0.4627-1 via repo.
norecords
on 30 May 2020
@jitsi/developers
luixxiul
on 30 May 2020
Seems to be caused by an AddTrust Root Expiration: https://support.sectigo.com/articles/Knowledge/Sectigo-AddTrust-External-CA-Root-Expiring-May-30-2020
youthpolicy
on 30 May 2020
Same issue - Ubuntu 20.04
Err:6 https://download.jitsi.org stable/ Release
Certificate verification failed: The certificate is NOT trusted. The certificate chain uses expired certificate. Could not handshake: Error in the certificate verification. [IP: 2001:660:2402::22 443]
sj64
on 30 May 2020
I think everyone is having this problem.
I'm having it too. Seems like a certificate expired.
Not much we can do until jitsi issues a new certificate.
pdarcos
on 30 May 2020
I'm facing the same issue on a ubuntu 20.04
designamx
on 30 May 2020
Is there an ETA for a fix?
Just curious, so I don't need to check every hour or so.
LeekYT
on 30 May 2020
Since the issue is global among platforms, no new reports are required.
Is there an ETA for a fix?
While I don't have the authority to proceed stuff so I'm not sure, I'm afraid it could take a while over the weekend.
luixxiul
on 30 May 2020
For update, please subscribe to this issue by clicking the button above right:
luixxiul
on 30 May 2020
Just a workaround... you can make apt-get to ignore certificates.
It is not recommended to do so, but if you cannot wait to update jitsi, just update & upgrade with this option.
apt-get update -o Acquire::https::download.jitsi.org::Verify-Peer=false
apt-get upgrade -o Acquire::https::download.jitsi.org::Verify-Peer=false
CollapsedMetal
on 30 May 2020
I was able to reproduce the problem, although not come to a complete understanding of the nuance of the certificate chain issues. It's not a simple case of an expired certificate. We have worked around it for now, and I was able to confirm it working again for me. Please check again and re-open if you continue to have problems.
aaronkvanmeerten
on 31 May 2020
It鈥檚 probably caused by APT using GnuTLS https://twitter.com/sleevi_/status/1266731836912422912
c-goes
on 31 May 2020
Related issues
niallmurphy-ie
路
45Comments
JpTiger
路
50Comments
kinnla
路
40Comments
Janhouse
路
99Comments
shellshocker
路
47Comments
Most helpful comment
I was able to reproduce the problem, although not come to a complete understanding of the nuance of the certificate chain issues. It's not a simple case of an expired certificate. We have worked around it for now, and I was able to confirm it working again for me. Please check again and re-open if you continue to have problems.