Do not attempt to use START_TLS on SSL connections

Not all LDAP servers are capable of handling dual-encryption with both TLS and SSL. https://fedorahosted.org/sssd/ticket/795
author: Stephen Gallagher <sgallagh@redhat.com> 2011-02-11 13:10:27 -0500
committer: Stephen Gallagher <sgallagh@redhat.com> 2011-02-15 07:42:14 -0500
commit: 9ae3cdc58118884e3bac4e7702d3d0b23ba0e450 (patch)
tree: ae8075ccd301616f214879ad1a0af3ce26cff651 /src/providers/ldap/ldap_common.c
parent: 480735cddc41159344b3e9f65b3e808fe44c82ce (diff)
download: sssd-9ae3cdc58118884e3bac4e7702d3d0b23ba0e450.tar.gz
sssd-9ae3cdc58118884e3bac4e7702d3d0b23ba0e450.tar.xz
sssd-9ae3cdc58118884e3bac4e7702d3d0b23ba0e450.zip
1 files changed, 9 insertions, 0 deletions
diff --git a/src/providers/ldap/ldap_common.c b/src/providers/ldap/ldap_common.c
index f2ea16aec..ce6d41d58 100644
--- a/src/providers/ldap/ldap_common.c
+++ b/src/providers/ldap/ldap_common.c
@@ -993,3 +993,12 @@ done:
     talloc_free(tmp_ctx);
     return ret;
 }
+
+bool sdap_is_secure_uri(const char *uri)
+{
+    /* LDAPS URI's are secure channels */
+    if (strncasecmp(uri, LDAP_SSL_URI, strlen(LDAP_SSL_URI)) == 0) {
+        return true;
+    }
+    return false;
+}
author	Stephen Gallagher <sgallagh@redhat.com>	2011-02-11 13:10:27 -0500
committer	Stephen Gallagher <sgallagh@redhat.com>	2011-02-15 07:42:14 -0500
commit	9ae3cdc58118884e3bac4e7702d3d0b23ba0e450 (patch)
tree	ae8075ccd301616f214879ad1a0af3ce26cff651 /src/providers/ldap/ldap_common.c
parent	480735cddc41159344b3e9f65b3e808fe44c82ce (diff)
download	sssd-9ae3cdc58118884e3bac4e7702d3d0b23ba0e450.tar.gz sssd-9ae3cdc58118884e3bac4e7702d3d0b23ba0e450.tar.xz sssd-9ae3cdc58118884e3bac4e7702d3d0b23ba0e450.zip