Valid certificate for MacPorts subversion server?

Joshua Root jmr at macports.org
Thu Mar 15 18:44:42 PDT 2012


On 2012-3-16 11:13 , Ryan Schmidt wrote:
> 
> On Mar 15, 2012, at 19:08, Leo Singer wrote:
> 
>> Hello,
>>
>> When checking out the MacPorts subversion repository, and I get a certificate warning:
>>
>> $ svn co https://svn.macports.org/repository/macports/trunk/dports ports-svn
>> Error validating server certificate for 'https://svn.macports.org:443':
>> - The certificate is not issued by a trusted authority. Use the
>>  fingerprint to validate the certificate manually!
>> Certificate information:
>> - Hostname: *.macports.org
>> - Valid: from Tue, 22 Feb 2011 17:29:43 GMT until Tue, 18 Mar 2014 23:36:56 GMT
>> - Issuer: 07969287, http://certificates.godaddy.com/repository, GoDaddy.com, Inc., Scottsdale, Arizona, US
>> - Fingerprint: 4d:ea:4a:77:55:ac:8e:2e:9e:11:8a:59:3d:ec:c7:45:7d:b0:72:19
>> (R)eject, accept (t)emporarily or accept (p)ermanently? ^Csvn: OPTIONS of 'https://svn.macports.org/repository/macports/trunk/dports': Server certificate verification failed: issuer is not trusted (https://svn.macports.org)
>>
>> Is the server expected to have a valid certificate?
> 
> Yes, I thought we had a valid certificate. I also thought we recently fixed something in openssl so that it could use curl-ca-bundle's certificates. Are you using the svn that comes with OS X or the one from the MacPorts subversion port? If the former, try the latter.

The same certificate is used for all of *.macports.org, so if your
browser is happy with e.g. <https://www.macports.org/>, you can check
that the fingerprint is the same as the one svn is getting.

/usr/bin/svn seems not to know about any root certificates on Lion (but
does on Snow Leopard). File a radar I guess...

- Josh


More information about the macports-dev mailing list