HTTP Upload does not respect trusted (self-signed) SSL/TLS certificates
Versions
- OS: All
- Gajim version: 1.0.3
- GTK version: 3.22.30
- Python-nbxmpp version: 0.6.6
Steps to reproduce the problem
- Use own Jabber Server with TLS encryption and self signed certificate
- Connect to own server using Gajim
- Get unknown certificate warning
- Verify fingerprint and accept new certificate
- Use Send File -> HTTP Upload or receive File via HTTP Upload
Expected behavior
Image is uploaded or received
Actual behavior
Image is not uploaded or displayed
Background information
The HTTP Upload uses the certificates from the python distribution located in Gajim program folder under Gajim\lib\python3.6\site-packages\certifi\cacert.pem
The connection cerfificate is not added to this list, nor a "local" list of trusted certificates is used.
Bug evasion
Add your certificate to Gajim\lib\python3.6\site-packages\certifi\cacert.pem (Problematic under Windows, as this file is owned by the system)
Bug solving proposal
Make HTTP Upload use the locally accepted certificates list in addition to the python list.