Hello ,

I have a problem with meta and multiple uri :

Two AD server opensuse 13.1 openldap 2.4.39 (install from repo)

make a meta backend that work but I when I configure it I use this directive , try to make a failover conf :

uri ldap://172.17.150.47:3268/ou=AD,ou=TOUT,dc=example,dc=fr ldap://172.17.150.48:3268/

Work like a charm until 172.17.150.47 go down --> slapd never try to contact 172.17.150.48 ...

slapd.conf ( relevant part )

----------------------------------------------------------

network-timeout 1 timeout 3 idletimeout 10 writetimeout 10

database meta suffix "ou=AD,ou=TOUT,dc=example,dc=fr"

uri ldap://172.17.150.47:3268/ou=AD,ou=TOUT,dc=example,dc=fr ldap://172.17.150.48:3268/

suffixmassage "ou=AD,ou=TOUT,dc=example,dc=fr" "dc=example,dc=fr" idassert-bind bindmethod=simple binddn="cn=xxxxxx,cn=Users,dc=example,dc=fr" credentials=<secret> mode=none idassert-authzFrom "dn.regex:.*"

--------------------------------------------------------------

I search on the list and found this :

http://www.openldap.org/lists/openldap-technical/201208/msg00231.html (one post on the thread, I read all of them)

The problem is exactly the same : if I start slapd and 172.17.150.47 not present (iptable output drop or reject) never ask 172.17.150.48 (tcpdump on the interface of slapd server)

in http://www.openldap.org/lists/openldap-technical/201208/msg00247.html (same thread) Howard Chu :

Sounds like you should file an ITS.

Pierangelo: looking at libldap/request.c and libldap/.open.c, it appears that request.c:ldap_new_connection() expects open.c:ldap_int_open_connection() to return -2 on an asynch open, but ldap_int_open_connection() unconditionally returns 0. This is probably interfering with back-meta's urllist_proc.