LDAP_OPT_X_TLS_REQUIRE_CERT is not a boolean

git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@773 ef36b2f9-881f-0410-afb5-c4e39611909c

1 files changed, 5 insertions, 4 deletions

diff --git a/nslcd/myldap.c b/nslcd/myldap.c
index cfd24fd..9a61cab 100644
--- a/nslcd/myldap.c
+++ b/nslcd/myldap.c
@@ -445,7 +445,7 @@ static int do_set_options(MYLDAP_SESSION *session)
   int rc;
   struct timeval tv;
 #ifdef LDAP_OPT_X_TLS
-  int tls;
+  int i;
 #endif /* LDAP_OPT_X_TLS */
   /* turn on debugging */
   if (nslcd_cfg->ldc_debug)
@@ -498,8 +498,8 @@ static int do_set_options(MYLDAP_SESSION *session)
        (strncasecmp(nslcd_cfg->ldc_uris[session->current_uri].uri,"ldaps://",8)==0) )
   {
     /* use tls */
-    tls=LDAP_OPT_X_TLS_HARD;
-    LDAP_SET_OPTION(session->ld,LDAP_OPT_X_TLS,&tls);
+    i=LDAP_OPT_X_TLS_HARD;
+    LDAP_SET_OPTION(session->ld,LDAP_OPT_X_TLS,&i);
     /* rand file */
     if (nslcd_cfg->ldc_tls_randfile!=NULL)
     {
@@ -518,7 +518,8 @@ static int do_set_options(MYLDAP_SESSION *session)
     /* require cert? */
     if (nslcd_cfg->ldc_tls_checkpeer>-1)
     {
-      LDAP_SET_OPTION(session->ld,LDAP_OPT_X_TLS_REQUIRE_CERT,&nslcd_cfg->ldc_tls_checkpeer);
+      i=nslcd_cfg->ldc_tls_checkpeer?LDAP_OPT_X_TLS_DEMAND:LDAP_OPT_X_TLS_NEVER;
+      LDAP_SET_OPTION(session->ld,LDAP_OPT_X_TLS_REQUIRE_CERT,&i);
     }
     /* set cipher suite, certificate and private key */
     if (nslcd_cfg->ldc_tls_ciphers!=NULL)