I am currently using FreeBSD x86_64 10.1 stable running the BOINC client version 7.2.33. As recently as November 23, 2014 I was able to connect to the World Community Grid to crunch workunits. I just recently updated my version of Firefox to 34, which also involves updating the certificate store ca-root-nss.crt. Now I am unable to connect to WCG without it throwing the error Scheduler request failed: Peer certificate cannot be authenticated with given CA certificates. So I enabled the <http_debug> flag and got the whole picture:

Thu Dec 4 18:04:26 2014 | World Community Grid | update requested by user
Thu Dec 4 18:04:29 2014 | World Community Grid | Sending scheduler request: Requested by user.
Thu Dec 4 18:04:29 2014 | World Community Grid | Not requesting tasks: "no new tasks" requested via Manager
Thu Dec 4 18:04:29 2014 | World Community Grid | [http] HTTP_OP::init_post(): https://scheduler.worldcommunitygrid.org/boinc/wcg_cgi/fcgi
Thu Dec 4 18:04:29 2014 | World Community Grid | [http] [ID#1] Info: Connection 1 seems to be dead!
Thu Dec 4 18:04:29 2014 | World Community Grid | [http] [ID#1] Info: Closing connection 1
Thu Dec 4 18:04:29 2014 | World Community Grid | [http] [ID#1] Info: Connection 0 seems to be dead!
Thu Dec 4 18:04:29 2014 | World Community Grid | [http] [ID#1] Info: Closing connection 0
Thu Dec 4 18:04:29 2014 | World Community Grid | [http] [ID#1] Info: Hostname was NOT found in DNS cache
Thu Dec 4 18:04:30 2014 | World Community Grid | [http] [ID#1] Info: Trying 198.20.8.246...
Thu Dec 4 18:04:30 2014 | World Community Grid | [http] [ID#1] Info: Connected to scheduler.worldcommunitygrid.org (198.20.8.246) port 443 (#4)
Thu Dec 4 18:04:30 2014 | World Community Grid | [http] [ID#1] Info: successfully set certificate verify locations:
Thu Dec 4 18:04:30 2014 | World Community Grid | [http] [ID#1] Info: CAfile: /usr/local/share/certs/ca-root-nss.crt
Thu Dec 4 18:04:30 2014 | World Community Grid | [http] [ID#1] Info: CApath: none
Thu Dec 4 18:04:30 2014 | World Community Grid | [http] [ID#1] Info: SSLv3, TLS handshake, Client hello (1):
Thu Dec 4 18:04:30 2014 | World Community Grid | [http] [ID#1] Info: SSLv3, TLS handshake, Server hello (2):
Thu Dec 4 18:04:30 2014 | World Community Grid | [http] [ID#1] Info: SSLv3, TLS handshake, CERT (11):
Thu Dec 4 18:04:30 2014 | World Community Grid | [http] [ID#1] Info: SSLv3, TLS alert, Server hello (2):
Thu Dec 4 18:04:30 2014 | World Community Grid | [http] [ID#1] Info: SSL certificate problem: self signed certificate in certificate chain
Thu Dec 4 18:04:30 2014 | World Community Grid | [http] [ID#1] Info: Closing connection 4
Thu Dec 4 18:04:30 2014 | World Community Grid | [http] HTTP error: Peer certificate cannot be authenticated with given CA certificates
Thu Dec 4 18:04:31 2014 | World Community Grid | Scheduler request failed: Peer certificate cannot be authenticated with given CA certificates

So there is a self-signed certificate in the chain. Does anyone have any advice on where to go to help resolve this issue... i.e. WCG, BOINC, FreeBSD, Mozilla? I'm a little confused. Thank you all in advance!

Jeremy

I see you posted the same at the WCG forums, which as far as I can see is the correct place to do so in the first place.

---

I see that your problem wasn't fixed, and that it may need an enhancement. I'll forward the problem to the BOINC developers, since they also build for FreeBSD.

---

I've had contact over this with the BOINC developers.
The problem seems to be that the path to the certificate is only available at '/usr/local/share/cert/ca-root-nss.crt'. To get this to change, does need the package maintainer of BOINC for FreeBSD.

We haven't a clue who that is.
But reading the maintainer list, you either have to email ports at freebsd dot org, or more specific for this since it's a bug, freebsd-ports-bugs at FreeBSD dot org

---