Hide Forgot
sssd should possibly not keep the connection to the LDAP server indefinitely as it could render the server to run out of resources. Instead, we should close it after some (configurable) idle time.
Upstream ticket: https://fedorahosted.org/sssd/ticket/1036
Verified in version: # rpm -qi sssd | head Name : sssd Relocations: (not relocatable) Version : 1.8.0 Vendor: Red Hat, Inc. Release : 22.el6 Build Date: Mon 09 Apr 2012 07:40:33 PM IST Install Date: Mon 16 Apr 2012 04:57:02 PM IST Build Host: x86-003.build.bos.redhat.com Group : Applications/System Source RPM: sssd-1.8.0-22.el6.src.rpm Size : 7870660 License: GPLv3+ Signature : (none) Packager : Red Hat, Inc. <http://bugzilla.redhat.com/bugzilla> URL : http://fedorahosted.org/sssd/ Summary : System Security Services Daemon
Technical note added. If any revisions are required, please edit the "Technical Notes" field accordingly. All revisions will be proofread by the Engineering Content Services team. New Contents: Cause: SSSD would maintain its connection to the LDAP server as long as possible, to avoid the overhead of reconnecting. Consequence: This could cause resource-limitation issues on the server, since SSSD clients would be tying up an available file descriptor. Change: SSSD now has a configurable idle timeout, after which it will disconnect from the LDAP server until the next request is received. Result: SSSD will be a less resource-intensive client for LDAP servers.
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. http://rhn.redhat.com/errata/RHBA-2012-0747.html