Robert T Dunn wrote:
We are experiencing a problem with SSL timeout as reported with issue 8047: https://bugs.openldap.org/show_bug.cgi?id=8047
Our issue is when the LDAP client does an SSL connect to establish the TLS session with the remote server. If the SERVER_HELLO returned from the remote server takes a significant amount of time or does not come back from the server at all (for example, someone unplugged the server), the LDAP client connection DOES NOT timeout, and there are no LDAP configuration options to force the session to timeout. So, the LDAP client connection is effectively hung forever. Issue 8047 reported the SSL timeout issue, but the issues status is still UNCONFIRMED. Are there any plans to correct this problem in future versions of LDAP Client?
As noted in this reply https://bugs.openldap.org/show_bug.cgi?id=8047#c5
This is not ours to fix; the underlying TLS libraries must provide async connection support.
Thanks,
Rob Dunn
IBM z/TPFDF development
email: strmbrgr@us.ibm.com mailto:strmbrgr@us.ibm.com phone: (845) 433-1312