From: Ben Greear <greearb@candelatech.com>
Date: Fri, 7 Feb 2020 09:10:16 +0000 (-0800)
Subject: hs20-osu-client: Ignore TLS errors with webkit2
X-Git-Tag: hostap_2_10~1815
X-Git-Url: http://git.ipfire.org/gitweb.cgi?a=commitdiff_plain;h=921ea4962ea41e9db456a044733e5be1676d128a;p=thirdparty%2Fhostap.git

hs20-osu-client: Ignore TLS errors with webkit2

Hopefully this helps with self-signed certificates. This matches the
older behavior with webkit.

Signed-off-by: Ben Greear <greearb@candelatech.com>
---

diff --git a/src/utils/browser.c b/src/utils/browser.c
index 43d47dca3..504523625 100644
--- a/src/utils/browser.c
+++ b/src/utils/browser.c
@@ -213,6 +213,7 @@ int hs20_web_browser(const char *url)
 	WebKitWebView *view;
 #ifdef USE_WEBKIT2
 	WebKitSettings *settings;
+	WebKitWebContext *wkctx;
 #else /* USE_WEBKIT2 */
 	WebKitWebSettings *settings;
 	SoupSession *s;
@@ -284,6 +285,12 @@ int hs20_web_browser(const char *url)
 		     "hs20-client/1.0", NULL);
 	g_object_set(G_OBJECT(settings), "auto-load-images", TRUE, NULL);
 
+#ifdef USE_WEBKIT2
+	wkctx = webkit_web_context_get_default();
+	webkit_web_context_set_tls_errors_policy(
+		wkctx, WEBKIT_TLS_ERRORS_POLICY_IGNORE);
+#endif /* USE_WEBKIT2 */
+
 	webkit_web_view_load_uri(view, url);
 
 	gtk_main();