Revert "Use system sslcacertfile by default"

This reverts commit a4863b2f04.

offlineimap/repository/IMAP.py

@@ -321,15 +321,13 @@ class IMAPRepository(BaseRepository):
     def getsslcacertfile(self):
         """Determines CA bundle.
 
-        Returns path to the CA bundle.  It is explicitely specified or
+        Returns path to the CA bundle.  It is either explicitely specified
-        requested via "OS-DEFAULT" value (and we will search known
+        or requested via "OS-DEFAULT" value (and we will search known
-        locations for the current OS and distribution). If it is not
+        locations for the current OS and distribution).
-        specified, we will search it in the known locations.
 
-        If search route, via "OS-DEFAULT" or because is not specified,
+        If search via "OS-DEFAULT" route yields nothing, we will throw an
-        yields nothing, we will throw an exception to make our callers
+        exception to make our callers distinguish between not specified
-        distinguish between not specified value and non-existent
+        value and non-existent default CA bundle.
-        default CA bundle.
 
         It is also an error to specify non-existent file via configuration:
         it will error out later, but, perhaps, with less verbose explanation,
@@ -340,10 +338,7 @@ class IMAPRepository(BaseRepository):
         xforms = [os.path.expanduser, os.path.expandvars, os.path.abspath]
         cacertfile = self.getconf_xform('sslcacertfile', xforms, None)
         # Can't use above cacertfile because of abspath.
-        conf_sslacertfile = self.getconf('sslcacertfile', None)
+        if self.getconf('sslcacertfile', None) == "OS-DEFAULT":
-        if conf_sslacertfile == "OS-DEFAULT" or \
-                conf_sslacertfile is None or \
-                conf_sslacertfile == '':
             cacertfile = get_os_sslcertfile()
             if cacertfile is None:
                 searchpath = get_os_sslcertfile_searchpath()