2d657df LDAP: failover does not work on non-responsive ldaps

1 file Authored by thalman 4 years ago, Committed by jhrozek 4 years ago,
    LDAP: failover does not work on non-responsive ldaps
    
    In case ldaps:// is used, then establishing the secure socket is
    a sychronous operation. If there's nothing on the other end, then
    the process would be stuck waiting in for the crypto library
    to finish.
    
    Here we set socket read/write timeout so the operation can finish
    in reasonable time with an error. The ldap_network_timeout
    option is used for this timeout.
    
    Resolves:
    https://pagure.io/SSSD/sssd/issue/2878
    
    Reviewed-by: Alexey Tikhonov <atikhono@redhat.com>
    Reviewed-by: Jakub Hrozek <jhrozek@redhat.com>
    
        
file modified
+24 -2