On Mon, May 4, 2009 at 11:18 AM, Juan Lang <[email protected]> wrote: > Hi Austin, > >> The error is very cryptic...currently only shows up on OpenSolaris and >> FreeBSD (if /usr/ports/security/ca_root_nss isn't installed). It >> apparently also shows up on some Linux distributions that don't ship >> OpenSSL with any certificates. > > While the error may be cryptic, it shows a real bug: we don't support > the correct root certificate location on OpenSolaris. As I said > earlier, adding a warning that isn't applicable most of the time > doesn't seem like an appropriate fix.
OpenSolaris doesn't have any Verisign root certificates installed by default, which is the problem there. Would changing it to: "CERT_TRUST_IS_UNTRUSTED_ROOT is expected if no trusted root certificate is available." be better? I'm working on installing Verisign root certificates on OpenSolaris, give me a couple days... -- -Austin
