Just did the upgrade to 28.0.4 and now this appears in the Security & setup warnings: Some files have not passed the integrity check.
EXTRA_FILE. Is the signature.json not up to date, or are there obsolete files?
Any help is much appreciated!
Technical information
=====================
The following list covers which files have failed the integrity check. Please read
the previous linked documentation to learn more about the errors and how to fix
them.
Results
=======
- mail
- EXTRA_FILE
- vendor/ezyang/htmlpurifier/library/HTMLPurifier/DefinitionCache/Serializer/URI/4.15.0,3478238e680361cd87bf880f5b3cc50a1e7abc6c,1.ser
- vendor/ezyang/htmlpurifier/library/HTMLPurifier/DefinitionCache/Serializer/HTML/4.15.0,100a0d442686872045400b774dcb082c945a1908,2019080701.ser
Raw output
==========
Array
(
[mail] => Array
(
[EXTRA_FILE] => Array
(
[vendor/ezyang/htmlpurifier/library/HTMLPurifier/DefinitionCache/Serializer/URI/4.15.0,3478238e680361cd87bf880f5b3cc50a1e7abc6c,1.ser] => Array
(
[expected] =>
[current] => 403272903ab6fd6acf8073eff7d4449d1d3c14a96ea299c257a66b334e44b09b0554c4f3be88a269f233dc1ec7e077e739d7a6d2c744dc9e1dadd7757ed1ca09
)
[vendor/ezyang/htmlpurifier/library/HTMLPurifier/DefinitionCache/Serializer/HTML/4.15.0,100a0d442686872045400b774dcb082c945a1908,2019080701.ser] => Array
(
[expected] =>
[current] => c68d95b7adc0174b7dcdc500b4480d4e29378ecda31c124be014323035795d47678e4d77629e7cfc8a667f6ec49863274ee48654b0a93d18e3a20c9f0febcdbf
)
)
)
)
linux 6.1.0-18-amd64 on debian 12.5
php8.1
nginx
postgres
According to the documentation, both “EXTRA_FILE” can be removed. After doing so and executing a rescan, the files re-appear and the error message in the administration settings remains.
The mail app was updated today to version 3.5.8 but this didn’t solve this error.
It’s related to the mail app not Nextcloud Server. Though I have no idea why you’re seeing those files appear since they look like cache files for HTMLPurifier - which should be impossible since the cache is disabled in Mail (they’re not in the distributed app artifact so they’re getting generated locally on your system for some reason).
What’s the date/time of the file? Are they recent?
Can you share a bit more context about your environment please. What installation method? And are you just installing the Mail app from the App store?
One thing that comes to mind is some other app that you have installed maybe using the same dependency. Can you share the output of occ app:list?
I know. It looks like this is a 3rd party lib. If I remove these files (as suggested), they are generated again and the mismatch happens. I think these generated files should not be part of the integrity.
I’m running the mail app since >2 years. I’ve installed this app via the GUI.
I see you have this (presumably force enabled on v29). It uses the same third-party library. As far as I can tell from glancing at the code of cms_pico, it does not disable the HTMLPurifier cache. As a result I think it’s possible it’s coming from that app even though you’re seeing it pop up in Mail.
Any chance you can disable cms_pico, clear the extra file(s), and see if they come back at all?
You’re right! I’ve disabled pico, removed the files, started the rescan and the message is gone. I’ve enabled pico again because I run my homepage on it. And the message is still gone. Thank you for your help!
Yes. That is the normal behavior of the integrity checker. Once everything is OK, it stays silent, even if integrity violations (extra files, changed files, etc.) occur again.
If you were to do an explicit integrity check on the mail app now:
occ integrity:check-app mail
then the messages would propably reappear. That means you should remember that for next time, because you first have to get the integrity checker quiet before you can violate again “unnoticed” against it.