lib-ldap: Set minimum protocol if supported by library

dovecot · Apr 29, 2016 · a17f068 · a17f068
1 parent ea3a3b6
commit a17f068
Showing 1 changed file with 2 additions and 1 deletion.
diff --git a/src/lib-ldap/ldap-connection.c b/src/lib-ldap/ldap-connection.c
@@ -55,10 +55,11 @@ int ldap_connection_setup(struct ldap_connection *conn, const char **error_r)
 	}
 
 	ldap_set_option(conn->conn, LDAP_OPT_X_TLS, &opt);
+#ifdef LDAP_OPT_X_TLS_PROTOCOL_MIN
 	/* refuse to connect to SSLv2 as it's completely insecure */
 	opt = LDAP_OPT_X_TLS_PROTOCOL_SSL3;
 	ldap_set_option(conn->conn, LDAP_OPT_X_TLS_PROTOCOL_MIN, &opt);
-
+#endif
 	opt = conn->set.timeout_secs;
 	/* default timeout */
 	ldap_set_option(conn->conn, LDAP_OPT_TIMEOUT, &opt);