Re: client timeouts [was: Re: multiple servers in DNS and TLS] - Emmanuel Dreyfus - org.openldap.openldap-software

10 messages in org.openldap.openldap-softwareRe: client timeouts [was: Re: multipl...

From	Sent On	Attachments
Emmanuel Dreyfus	Jul 16, 2007 6:04 am
Quanah Gibson-Mount	Jul 16, 2007 8:13 am
Emmanuel Dreyfus	Jul 17, 2007 2:49 pm
Emmanuel Dreyfus	Jul 17, 2007 2:58 pm
Dieter Kluenter	Jul 17, 2007 8:15 pm
Emmanuel Dreyfus	Jul 17, 2007 9:44 pm
Philip Guenther	Jul 17, 2007 11:07 pm
Howard Chu	Jul 18, 2007 3:00 am
Emmanuel Dreyfus	Jul 18, 2007 5:30 am
Howard Chu	Jul 18, 2007 8:34 am

	Permalink for this message Paste this link in email or IM:
	Permalink for this thread Paste this link in email or IM:
	Atom feed for this thread Paste this URL into your reader:

Subject:	Re: client timeouts [was: Re: multiple servers in DNS and TLS]	Actions...
From:	Emmanuel Dreyfus (ma...@netbsd.org)
Date:	Jul 18, 2007 5:30:38 am
List:	org.openldap.openldap-software

Philip Guenther <guenther+ldap...@sendmail.com> wrote:

Nope. TIMELIMIT just sets the default for the value passed to the server in the search request. There's no option for setting a default timeout to be used by the ldap_result() call. What's more, there's no API of any sort for putting a timeout on TLS/SSL negotiation.

A long-lived program that needs to impose a time limit on LDAP operations that may include using ldap_starttls_s() or opening an ldaps URL basically has to do so in one thread or process and do the timing out in a separate thread or process.

(Or reimplement that part of the OpenLDAP API, I suppose.)

So how do you build a failover mechanism? Because it's something that can be done, right?

	Start a set with this search
	Include this search in one of my sets
	Exclude this search from one of my sets
	Permalink to these results Paste this link in email or IM:
	Atom feed for tracking future search results Paste this URL into your reader: