[Date Prev][Date Next]
(ITS#8992) LDAP Over TLS causing reload
Full_Name: Sonesh Patel
Submission from: (NULL) (220.127.116.11)
We have introduced LDAP client using OpenLDAP 2.4.46 on FreeBSD server and we
are using LibreSSL 2.3.6 to perform SSL operations. We are using
SSL_CTX_add_extra_chain_cert API to add CA certificate into SSL context and
connection to LDAP server is successful.
But when client initiate 100 parallel secure connection per second towards LDAP
server by calling ldap_start_tls_s() API. FreeBSD server is going for Reload due
to software exception reported from SSL library. We are using blocking socket to
send and receive LDAP queries.
With non-secure LDAP connection, client able to initiate 900 parallel connection
towards LDAP server per second, but with secure LDAP connection, FreeBSD server
is going for reload at 100 parallel connection per second itself.
Does anyone observed similar issues with secure LDAP connection?
We already sent mail to the forum (email@example.com) dated Fri 7 Dec,
2018 but no response till now.
Appreciate for your response on above query.