Allow TLS to continue without system database

It will mean manual confirmation for users, but that is probably better than outright refusal.
2019-06-04 16:53:13 +02:00 · 2019-06-04 16:53:13 +02:00 · 6028c999ba
commit 6028c999ba
parent e7bc37918c
1 changed files with 2 additions and 1 deletions
--- a/tcp.c
+++ b/tcp.c
@ -373,7 +373,8 @@ tcp_tls_connect(void)
 	}
 	err = gnutls_certificate_set_x509_system_trust(xcred);
 	if (err < 0) {
-		gnutls_fatal("Could not load system trust database", err);
+		logger(Core, Error, "%s(), Could not load system trust database: %s",
+			   __func__, gnutls_strerror(err));
 	}
 	gnutls_certificate_set_verify_function(xcred, cert_verify_callback);
 	gnutls_transport_set_int(g_tls_session, g_sock);