From 6028c999ba7852d560b7831853502e675c65709a Mon Sep 17 00:00:00 2001
From: Pierre Ossman <ossman@cendio.se>
Date: Tue, 4 Jun 2019 16:53:13 +0200
Subject: [PATCH] Allow TLS to continue without system database

It will mean manual confirmation for users, but that is probably
better than outright refusal.
---
 tcp.c | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/tcp.c b/tcp.c
index 1b16886..71fc2f7 100644
--- a/tcp.c
+++ b/tcp.c
@@ -373,7 +373,8 @@ tcp_tls_connect(void)
 	}
 	err = gnutls_certificate_set_x509_system_trust(xcred);
 	if (err < 0) {
-		gnutls_fatal("Could not load system trust database", err);
+		logger(Core, Error, "%s(), Could not load system trust database: %s",
+			   __func__, gnutls_strerror(err));
 	}
 	gnutls_certificate_set_verify_function(xcred, cert_verify_callback);
 	gnutls_transport_set_int(g_tls_session, g_sock);