diff options
author | Stephen Gallagher <sgallagh@redhat.com> | 2011-02-11 13:10:27 -0500 |
---|---|---|
committer | Stephen Gallagher <sgallagh@redhat.com> | 2011-02-15 07:42:14 -0500 |
commit | 9ae3cdc58118884e3bac4e7702d3d0b23ba0e450 (patch) | |
tree | ae8075ccd301616f214879ad1a0af3ce26cff651 /src/providers/ldap/ldap_common.c | |
parent | 480735cddc41159344b3e9f65b3e808fe44c82ce (diff) | |
download | sssd-9ae3cdc58118884e3bac4e7702d3d0b23ba0e450.tar.gz sssd-9ae3cdc58118884e3bac4e7702d3d0b23ba0e450.tar.xz sssd-9ae3cdc58118884e3bac4e7702d3d0b23ba0e450.zip |
Do not attempt to use START_TLS on SSL connections
Not all LDAP servers are capable of handling dual-encryption with
both TLS and SSL.
https://fedorahosted.org/sssd/ticket/795
Diffstat (limited to 'src/providers/ldap/ldap_common.c')
-rw-r--r-- | src/providers/ldap/ldap_common.c | 9 |
1 files changed, 9 insertions, 0 deletions
diff --git a/src/providers/ldap/ldap_common.c b/src/providers/ldap/ldap_common.c index f2ea16aec..ce6d41d58 100644 --- a/src/providers/ldap/ldap_common.c +++ b/src/providers/ldap/ldap_common.c @@ -993,3 +993,12 @@ done: talloc_free(tmp_ctx); return ret; } + +bool sdap_is_secure_uri(const char *uri) +{ + /* LDAPS URI's are secure channels */ + if (strncasecmp(uri, LDAP_SSL_URI, strlen(LDAP_SSL_URI)) == 0) { + return true; + } + return false; +} |