IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2025-02-25 18:55:28 -06:00
Code Issues Packages Projects Releases Wiki Activity

ipa-kdb: reduce LDAP operations timeout to 30 seconds

Browse Source 
Since LDAP operations used by ipa-kdb driver are synchronous, the
timeout specified here is blocking entire KDC. It is worth reducing the
timeout and since AS REQ processing timeout in KDC is 1 minute, reducing
the timeout for LDAP operations down to 30 seconds allows KDC to
respond promptly in worst case scenario as well.

Fixes: https://pagure.io/freeipa/issue/7217
Reviewed-By: Christian Heimes <cheimes@redhat.com>
Reviewed-By: Robbie Harwood <rharwood@redhat.com>
This commit is contained in:
Alexander Bokovoy 2018-11-16 13:24:46 +02:00 committed by Rob Crittenden
parent 6dc8b0c6a7
commit 122f968cee
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
daemons/ipa-kdb/ipa_kdb_common.c
View File

@ -23,7 +23,7 @@
#include "ipa_kdb.h" #include "ipa_kdb.h"
#include <unicase.h> #include <unicase.h>
static struct timeval std_timeout = {300, 0}; static struct timeval std_timeout = {30, 0};
char *ipadb_filter_escape(const char *input, bool star) char *ipadb_filter_escape(const char *input, bool star)
{ {