Hi hackers! While working on connections stall problems with external LDAP authentication for [0] I made a notice, that the problem can be relevant for Postgres too: when LDAP timeout options was not set and auth operations is taking long time, the connection (or backend slot) can be hold for a undefined amount of time, causing various problems on server-side.
Seems like for some installation this times should be configurable, so I made a POC patch (attached), that adds new LDAP hba options: ldapnetworktimeout and ldaptimeout, which allows to configure LDAP_OPT_SEND_TIMEOUT/LDAP_OPT_NETWORK_TIMEOUT and LDAP_OPT_TIMELIMIT/LDAP_OPT_TIMEOUT for LDAP* objects. Any thoughts on this? [0] https://github.com/yandex/odyssey
0001-Add-timeout-options-for-LDAP-authentication-connecti.patch
Description: Binary data
-- Best regards, Roman Khapov
