Gentoo Attachment #62564 for bug #96767

View | Details | Raw Unified
Collapse All | Expand All

(-) ldap-nss.c (+33 lines)

Lines 330-335	Link Here

  timelimit = __session.ls_config->ldc_bind_timelimit;

  timelimit = __session.ls_config->ldc_bind_timelimit;

#ifdef HAVE_LDAP_START_TLS_S

  if (__session.ls_config->ldc_ssl_on == SSL_START_TLS)

      int version;

      if (ldap_get_option

	  (__session.ls_conn, LDAP_OPT_PROTOCOL_VERSION,

	   &version) == LDAP_OPT_SUCCESS)

	  if (version < LDAP_VERSION3)

	      version = LDAP_VERSION3;

	      ldap_set_option (__session.ls_conn, LDAP_OPT_PROTOCOL_VERSION,

			       &version);

      debug ("==> start_tls");

      if (ldap_start_tls_s (__session.ls_conn, NULL, NULL) == LDAP_SUCCESS)

	  debug ("TLS startup succeeded");

      else

	  debug ("TLS startup failed");

	  do_close ();

	  debug ("<== do_open");

	  return NSS_UNAVAIL;

      debug ("<== start_tls");

#endif /* HAVE_LDAP_START_TLS_S */

  return do_bind (ld, timelimit, who, cred, with_sasl);

  return do_bind (ld, timelimit, who, cred, with_sasl);

#else

#else

Attachment #62564: tls patch for referrals for nss_ldap for bug #96767