From 7092e88eacb0730b46012bf2c54c6eb0d850f6b4 Mon Sep 17 00:00:00 2001
From: Colin Walters <walters@verbum.org>
Date: Tue, 9 Jul 2013 15:02:48 -0400
Subject: [PATCH] pull: Verify SSL/TLS certificates against system CA file by
 default

We also need a mechanism like GIT_SSL_NO_VERIFY...probably an option
in the config.
---
 src/ostree/ostree-fetcher.c | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/ostree/ostree-fetcher.c b/src/ostree/ostree-fetcher.c
index 045ff3f7..f55b3183 100644
--- a/src/ostree/ostree-fetcher.c
+++ b/src/ostree/ostree-fetcher.c
@@ -135,6 +135,7 @@ static void
 ostree_fetcher_init (OstreeFetcher *self)
 {
   self->session = soup_session_async_new_with_options (SOUP_SESSION_USER_AGENT, "ostree ",
+                                                       SOUP_SESSION_SSL_USE_SYSTEM_CA_FILE, TRUE,
                                                        SOUP_SESSION_USE_THREAD_CONTEXT, TRUE,
                                                        SOUP_SESSION_ADD_FEATURE_BY_TYPE, SOUP_TYPE_REQUESTER,
                                                        NULL);