From 6dc7dab6a80a2bc4cc347d144a9b9454a731e6a7 Mon Sep 17 00:00:00 2001
From: Tor Lillqvist <tml@iki.fi>
Date: Fri, 15 Mar 2013 13:53:12 +0200
Subject: Use default set of root certificates, if available, when using SSL

Part of fix for the WebDAV https server authentication problem noticed when
fixing bnc#805901.

Change-Id: Ic54c59bdadaf34cdba32949400d5da69712017f3
---
 ucb/source/ucp/webdav-neon/NeonSession.cxx | 5 +++++
 1 file changed, 5 insertions(+)

(limited to 'ucb/source')

diff --git a/ucb/source/ucp/webdav-neon/NeonSession.cxx b/ucb/source/ucp/webdav-neon/NeonSession.cxx
index 4c77d8eaf992..81bb6ab9e4fd 100644
--- a/ucb/source/ucp/webdav-neon/NeonSession.cxx
+++ b/ucb/source/ucp/webdav-neon/NeonSession.cxx
@@ -774,6 +774,11 @@ void NeonSession::Init()
             // Set a failure callback for certificate check
             ne_ssl_set_verify(
                 m_pHttpSession, NeonSession_CertificationNotify, this);
+
+            // Tell Neon to tell the SSL library used (OpenSSL or
+            // GnuTLS, I guess) to use a default set of root
+            // certificates.
+            ne_ssl_trust_default_ca(m_pHttpSession);
         }
 
         // Add hooks (i.e. for adding additional headers to the request)
-- 
cgit