FS#21719 - [ca-certificates] CAcert Class 3 Root certificate doesn't work correctly.
Attached to Project:
Arch Linux
Opened by Jan Alexander Steffens (heftig) - Wednesday, 17 November 2010, 05:07 GMT
Last edited by Pierre Schmitz (Pierre) - Saturday, 23 July 2011, 18:44 GMT
Opened by Jan Alexander Steffens (heftig) - Wednesday, 17 November 2010, 05:07 GMT
Last edited by Pierre Schmitz (Pierre) - Saturday, 23 July 2011, 18:44 GMT
|
Details
It seems both CAcert (class 1 and class 3) root certificates
are in the file cacert.org.crt. However, it seems OpenSSL
can only find the class 1 certificate.
After splitting the class 3 certificate into its own file and updating the ca-certificates, it works correctly. |
This task depends upon
Failed with "20 X509_V_ERR_UNABLE_TO_GET_ISSUER_CERT_LOCALLY: unable to get local issuer certificate" prior to my change.
Also, Firefox refused to connect to https://cats.cacert.org
Okay, i take a copy from testing and replace the Makefile to have two separate files but firefox do the same with https://cats.cacert.org as before. Are there better tests to check this?
@Pierre Thanks for the infos.