Svn Error

vivek rai · 01-24-2009, 01:04 AM

I am having problem running svn up command

vivek@host30:/shares/host/vivek/examinator/trunk> /usr/local/bin/svn up

Error validating server certificate for 'https://svn.terra.org:443':

- The certificate is not issued by a trusted authority. Use the

fingerprint to validate the certificate manually!

Certificate information:

- Hostname: svn.terra.org

- Valid: from Fri, 01 Dec 2006 23:06:57 GMT until Tue, 01 Dec 2009
23:06:57 GMT

- Issuer: Equifax Secure Certificate Authority, Equifax, US

- Fingerprint:
32:14:3f:9f:ac:de:b1:a9:c7:1f:89:a3:7f:73:a4:25:a6:a4:3c:84

(R)eject or accept (t)emporarily?

when i check through this command it shows.

vivek@host30 ~]$ ldd /usr/local/bin/svn | grep ssl
libssl.so.0.9.8 => //opt/CollabNet_Subversion/lib/libssl.so.0.9.8 (0xb7ca9000)

vivek@host30 ~]$ ldd /usr/local/bin/svn | grep crypto
libcrypto.so.0.9.8 => //opt/CollabNet_Subversion/lib/libcrypto.so.0.9.8 (0xb7b33000)

so it looks like the CollabNet subversion bundles it's own ssl libraries.

geek745 · 01-25-2009, 12:52 AM

I've seen that certificate validation error when the site in question has registered the ssl cert for *.domain.net when you're at svn.domain.net, which is misinterpreted for some reason; the wildcard is not expanded to match... anyone else? I would say it's safe to accept temporarily, unless you've seen it work without problems in the past (when you did your initial checkout did you have that problem?)

vivek rai · 01-25-2009, 01:46 AM

ok....

geek745 · 01-27-2009, 01:31 AM

I tried to checkout the repository you mentioned. Here are my results:

Code:

Script started on Mon 26 Jan 2009 10:25:05 PM PST
pnguyen@paulx2:~/tmp$ svn co https://svn.terra.org/repo/forge/projects/exam/trunk lq-test
Error validating server certificate for 'https://svn.terra.org:443':
 - The certificate is not issued by a trusted authority. Use the
   fingerprint to validate the certificate manually!
 - The certificate hostname does not match.
Certificate information:
 - Hostname: *.opendns.com
 - Valid: from Mon, 11 Aug 2008 22:15:56 GMT until Thu, 12 Aug 2010 22:15:56 GMT
 - Issuer: Equifax Secure Inc., US
 - Fingerprint: f5:a8:16:c8:70:b3:da:d1:23:db:2c:98:50:77:28:e9:20:af:62:90
(R)eject, accept (t)emporarily or accept (p)ermanently? t
svn: PROPFIND request failed on '/repo/forge/projects/exam/trunk'
svn: PROPFIND of '/repo/forge/projects/exam/trunk': 501 Not Implemented (https://svn.terra.org)
pnguyen@paulx2:~/tmp$ exit

Script done on Mon 26 Jan 2009 10:25:26 PM PST

I am using opendns, so the fact that the certificate comes from opendns means that the site svn.terra.org does not exist... (the page that ultimately loads bears a certificate belonging to opendns.com, which is not what was requested - terra.org). Any thoughts on that lead? Bad link?

terra.org · 01-28-2009, 02:06 PM

Hi,

I'm working in the site Terra.org. Actually, we don't have any subdomain or resource called svn.terra.org. Maybe it is a typo error.

Please, Can you give me the exact download location of your SVN package?

You can write me to admtech(at)terra.org

thanks in advance

terra.org · 01-28-2009, 07:11 PM

ok, maybe I have found the problem. Probably the address must be https://svn.terracotta.org/

therefore try: https://svn.terracotta.org/repo/forg...cts/exam/trunk

Is it right?

vivek rai · 01-30-2009, 01:03 AM

hmm...

terra.org · 01-31-2009, 01:36 PM

hmmm? What mean?

after few searches I suppose it's terracota.org. But I'm not svn user.

vivek rai · 02-04-2009, 04:12 AM

When I install the binaries from Collabnet my users are all told that the certificate isn't recognized even though it is a valid certificate.

How do I tell Collabnet Subversion binaries to recognize my certificate authority?

My users are getting pretty annoyed about having to accept the certificate every time.