http://bugs.winehq.org/show_bug.cgi?id=15704
--- Comment #12 from Juan Lang juan_lang@yahoo.com 2009-05-03 11:02:14 --- (In reply to comment #11)
I don't find having a bunch random certificates globally installed to be good security practice, so I am not inclined to request such thing from the distribution maintainer.
Sure. If I required these things to be installed, I would have marked this invalid. It's a valid bug. There are two ways to approach it: 1) Make the test succeed even in the absence of the verisign root cert. 2) Find the correct location of root certs on Solaris/PC-BSD, and support them in crypt32.
My test was already supposed to do 1), but apparently it doesn't do it sufficiently well. But if I fix it without doing 2), Solaris/PC-BSD will always be broken. So mainly I was hoping for feedback on the location of the root certs on these platforms, so that crypt32 chain verification may someday work there.