Arcanist exception

After a clean installation using the bitnami image I followed the instructions here ( to setup de mailers.

It looks like this:

    "key": "stmp-mailer",
    "type": "smtp",
    "options": {
      "host": "server",
      "user": "user" ,
      "port": 587,
      "password": "passwd",
      "protocol": "tls"

After this if I try to send a mail from the test app, I get the following message:

EXCEPTION: (RuntimeException) stream_socket_enable_crypto(): SSL operation failed with code 1. OpenSSL Error messages:
error:1416F086:SSL routines:tls_process_server_certificate:certificate verify failed at [<arcanist>/src/error/PhutilErrorHandler.php:263]
arcanist(head=stable, ref.stable=ac54d61d7af2), phabricator(head=stable, ref.stable=86ad69863930)

After a little of search I found that I can just tell Arcanist to bypass the certificate (

However, I’m unable to run almost anything using arcanist. A sample:

 $  arc set-config https.blindly-trust-domains '[""]'

[2020-12-14 18:48:55] EXCEPTION: (TypeError) Argument 1 passed to ArcanistBlindlyTrustHTTPEngineExtension::setDomains() must be of the type array, string given, called in /opt/bitnami/arcanist/scripts/arcanist.php on line 304 at [<arcanist>/src/configuration/ArcanistBlindlyTrustHTTPEngineExtension.php:10]
arcanist(head=stable, ref.stable=ac54d61d7af2)
  #0 ArcanistBlindlyTrustHTTPEngineExtension::setDomains(string) called at [<arcanist>/scripts/arcanist.php:304]

but the same happens if I run get-config

Is this crash normal or any kind of misconfiguration?

Arcanist version: arcanist ac54d61d7af20f5d65ba889974f23a86bfb6cd57 (19 Oct 2020)

It seems that the mailer problem is related with the smtp certificate. It’s working with the gmail smtp server. Furthermore, when running:

$  echo QUIT | openssl s_client -crlf -starttls smtp  -connect

depth=2 OU = GlobalSign Root CA - R2, O = GlobalSign, CN = GlobalSign
verify return:1
depth=1 C = US, O = Google Trust Services, CN = GTS CA 1O1
verify return:1
depth=0 C = US, ST = California, L = Mountain View, O = Google LLC, CN =
verify return:1

** For the Gmail to work I have previously to follow these steps:

mv cacert.pem cacert.crt
cp cacert.crt /usr/local/share/ca-certificates/
chmod +r /usr/local/share/ca-certificates/cacert.crt

while using thw other SMTP results in:

depth=0 CN = XXX
verify error:num=20:unable to get local issuer certificate
verify return:1
depth=0 CN = XXX
verify error:num=21:unable to verify the first certificate
verify return:1

I’m pretty sure this smtp server has a valid, not self-signed certificate that is working with other services. This explains why the smtp is not working. Still I don’t understand what’s going on with Arcanist.