Debian/Ubuntu system wide CA certificate file doesn't seem to be used

If you create a CA certificate and add it to the default locations by copying it to /usr/local/share/ca-certificates/ and running 'update-ca-certificates' it should be picked up by anything using openssl.

For example curl:

1) before running update-ca-certificates:

 $ curl https://192.0.2.254:13776
 curl: (60) SSL certificate problem: unable to get local issuer certificate
 More details here: http://curl.haxx.se/docs/sslcerts.html

2) after running update-ca-certificates:

$ curl https://192.0.2.254:13776
{"versions": [{"status": "CURRENT", "updated": "2012-01-04T11:33:21Z", "id": "v1.0", "links": [{"href": "http://192.0.2.254:13776/v1/", "rel": "self"}]}, {"status": "CURRENT", "updated": "2012-11-21T11:33:21Z", "id": "v2.0", "links": [{"href": "http://192.0.2.254:13776/v2/", "rel": "self"}]}]}

although pointing directly to the CA file does work:

$ swift --os-cacert /etc/ssl/from-heat-ca.crt stat
       Account: AUTH_1afbe6c2405a423ba09edb5ed4e9fdd9
    Containers: 0
       Objects: 0
         Bytes: 0
   Content-Type: text/plain; charset=utf-8
    X-Timestamp: 1397488871.41080
    X-Trans-Id: tx20aaa5756fad489d81d37-00534bfce7
    X-Put-Timestamp: 1397488871.41080

after update-ca-certificates has been run the CA cert is not picked up automatically from the system-wide location:

$ swift stat
[Errno 1] _ssl.c:509: error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed