https://bugs.openldap.org/show_bug.cgi?id=9389
Howard Chu hyc@openldap.org changed:
What |Removed |Added ---------------------------------------------------------------------------- Status|UNCONFIRMED |RESOLVED Resolution|--- |WONTFIX
--- Comment #1 from Howard Chu hyc@openldap.org --- (In reply to Simon Pichugin from comment #0)
Description: When signal-interrupted (by any signal, i.e. SIGRTMIN+1) while in tls_read, libldap will stop the execution.
It will be better to make libldap more robust because some applications may use the signals in their watchdogs (i.e. SSSD).
Proposal: Add a retry action somewhere inside of ldap_install_tls which will reinitiate the operation from the beginning (so it won't affect the security aspect but it will increase reliability).
There doesn't appear to be any safe/reliable/portable way to retry these operations. It would make more sense for the calling application to simply mask off signals before initiating a TLS session.