There are two parts to your question, and I can answer the certificate one. This appears to be a new 'feature' of mercurial:
Mercurial has improved its HTTPS support in the 1.7.x series. When connecting to an HTTPS server, it will now verify the server's certificate correctly and reject the connection if the server identity can't be confirmed - but only if Certification Authorities (CAs) have been configured. As of 1.7.3, Mercurial will warn if CAs haven't been configured.
This error will actually happen on ALL platforms that aren't configured correctly. I suggest looking at this wiki in regards to CA Certificates for more details. For Mac OS X 10.6 and higher do the following:
In terminal run the following code:
openssl req -new -x509 -extensions v3_ca -keyout /dev/null -out dummycert.pem -days 3650
This will create a 'dummy' certificate. It doesn't matter what you enter as values
- Next, copy the newly created cert to /etc:
sudo cp dummycert.pem /etc/hg-dummy-cert.pem
- Finally change the web configuration of the source tree repository:
- Open the Kiln repository
- Select Settings in the top right corner of the opened repo
- Select "Edit Config File..."
- Paste the following into the bottom of the file:
[web]cacerts = /etc/hg-dummy-cert.pem