cURL/SSL error when upgrading from 9.1.1 to 9.1.2

[dassencio]

Steps to reproduce

1. Go to the Admin area
2. Click on "Open updater"

Expected behaviour

The update process starts.

Actual behaviour

The following is shown on the screen:

cURL error 51: SSL: no alternative certificate subject name matches target host name 'localhost'

Server configuration

Operating system: Ubuntu/Linux

Web server:

Database: MySQL

PHP version: 5.6 and 7.0 (problem occurred with both versions)

ownCloud version: 9.1.1

Updated from an older ownCloud or fresh install: updated from 9.1

Where did you install ownCloud from: installed at web host

Signing status (ownCloud 9.0 and above):

Login as admin user into your ownCloud and access 
http://example.com/index.php/settings/integrity/failed 
paste the results here.

Integrity checker has been disabled. Integrity cannot be verified.

List of activated apps:
Default encryption module 1.3.0
Deleted files 0.9.0
First run wizard 1.1
Gallery 15.0.0
Mail Template Editor 0.1
Notifications 0.3.0
PDF Viewer 0.8.1
Share Files 0.10.0
Text Editor 2.1
Update notification 0.2.1
Video player 0.9.8
Calendar 1.4.1
Contacts 1.5.1
Audio Player 1.4.0

If you have access to your command line run e.g.:
sudo -u www-data php occ app:list
from within your ownCloud installation folder

(not possible)

The content of config/config.php:

If you have access to your command line run e.g.:
sudo -u www-data php occ config:list system
from within your ownCloud installation folder

or 

Insert your config.php content here
(Without the database password, passwordsalt and secret)

Are you using external storage, if yes which one: local/smb/sftp/...
no

Are you using encryption: yes/no
yes

Are you using an external user-backend, if yes which one: LDAP/ActiveDirectory/Webdav/...
no

Client configuration

Browser:
Firefox / Chromium

Operating system:
Ubuntu/Linux

Logs

Web server error log

Insert your webserver log here

ownCloud log (data/owncloud.log)

Insert your ownCloud log here

Browser log

Insert your browser log here, this could for example include:

a) The javascript console log
b) The network log 
c) ...

[PVince81]

@dassencio are you using SSL with a valid certificate ?

Seems the updater app is using "localhost" with HTTPS for which the cert is likely not verifiable.

@VicDeo any input on this ?

[dassencio]

@PVince81 : the certificate is valid and signed by Let's Encrypt. I've tried it both on Firefox and Chromium; both browsers accept it without a warning and recognize that it has been issued and verified by Let's Encrypt.

Also, the "Common Name (CN)" field is correctly set to the URL of the ownCloud instance I'm running -- and no, this URL is not localhost ;-)

[VicDeo]

@PVince81 Just the same with owncloud/updater#414 (comment)
If there is none of $_SERVER['HTTP_X_FORWARDED_HOST'] $_SERVER['HTTP_HOST']
$_SERVER['SERVER_NAME'] set - it will fallback to localhost

[PVince81]

@VicDeo so is this something that needs to be documented to make sure it's not missing in the setup ?

[geekonthepc]

I can confirm that I've experienced this issue too with the same environment apart from using Debian. The updater fails with this error when using Let's Encrypt as the certificate provider.

The workaround is to turn off the verify function within guzzlehttp's config - however I've been strongly advised that this will have significant security risks.

[VicDeo]

@geekonthepc are you using nginx?

[geekonthepc]

@VicDeo No, afraid not. I'm using Apache 2.4.

[ChargingBulle]

having the same issue
Image of Error + Screenshot of SSL Cert used

The log displays

Warning / core
Invalid request to occ controller. Details: "Web executor is not allowed to run from a host [MY EXTERNAL IP HERE]

Server configuration

Operating system:
Raspian

Web server:
Apache2

Database:
MongoDB

PHP version:
?

ownCloud version: (see ownCloud admin page)
9.1.3 (stable channel)

Updated from an older ownCloud or fresh install:
fresh

Where did you install ownCloud from:
?

Signing status (ownCloud 9.0 and above):
No errors have been found.

The content of config/config.php:
https://pastebin.com/LCXiS0tm

List of activated apps:
https://pastebin.com/0R9CLHGX

Are you using external storage, if yes which one:
none

Are you using encryption:
no

Are you using an external user-backend, if yes which one:
none

Client configuration

Browser: Firefox 54

Operating system: Windows 10 Pro

Browser log

[VicDeo]

Fixed down to stable9 with
owncloud/updater#443
owncloud/updater#441
owncloud/updater#438
owncloud/updater#434

Please change your updater/src/Utils/OccRunner.php using one of PRs above that matches your ownCloud version as a reference.

[lock]

This thread has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs.