Package: libnss-ldap Version: 220-1 Followup-For: Bug #277640 When performing the command 'getent passwd', the query times out. My nsswitch.conf settings are:
passwd: compat ldap group: compat ldap shadow: compat ldap I get the following errors in my syslog file: Feb 4 18:52:47 getent: nss_ldap: could not get LDAP result - Timed out Feb 4 18:52:57 getent: nss_ldap: could not get LDAP result - Timed out Turning enable-debugging on and rebuilding the package shows the following calls. Note that this is the last user returned and the next query. The time out takes place in the call to ldap_result. nss_ldap: ==> _nss_ldap_getent nss_ldap: ==> _nss_ldap_enter nss_ldap: <== _nss_ldap_enter nss_ldap: ==> _nss_ldap_getent_ex nss_ldap: ==> do_parse nss_ldap: ==> do_result nss_ldap: ==> ldap_result nss_ldap: <== ldap_result: rc = 100 nss_ldap: <== do_result nss_ldap: <== do_parse nss_ldap: <== _nss_ldap_getent_ex: rc = 1 nss_ldap: ==> _nss_ldap_leave nss_ldap: <== _nss_ldap_leave nss_ldap: <== _nss_ldap_getent testing:x:19002:40:Another Test User:/users/testing:/usr/local/bin/bash nss_ldap: ==> _nss_ldap_getent nss_ldap: ==> _nss_ldap_enter nss_ldap: <== _nss_ldap_enter nss_ldap: ==> _nss_ldap_getent_ex nss_ldap: ==> do_parse nss_ldap: ==> do_result nss_ldap: ==> ldap_result // Timeout occurs in this function nss_ldap: <== ldap_result: rc = 0 nss_ldap: could not get LDAP result - Timed out nss_ldap: <== do_result nss_ldap: <== do_parse nss_ldap: <== _nss_ldap_getent_ex: rc = -1 nss_ldap: ==> _nss_ldap_leave nss_ldap: <== _nss_ldap_leave nss_ldap: <== _nss_ldap_getent nss_ldap: ==> _nss_ldap_enter nss_ldap: <== _nss_ldap_enter nss_ldap: ==> _nss_ldap_ent_context_release nss_ldap: ==> do_result nss_ldap: ==> ldap_result // Timeout again here nss_ldap: <== ldap_result: rc = 0 nss_ldap: could not get LDAP result - Timed out nss_ldap: <== do_result nss_ldap: <== _nss_ldap_ent_context_release nss_ldap: ==> _nss_ldap_leave nss_ldap: <== _nss_ldap_leave I'm not sure how to see inside the ldap_result function call at this point. I may have time later to research this more, but I wanted to get this info out in case it helps. Here is the relevant info from my libnss-ldap.conf file: BASE dc=domain,dc=com URI ldaps://edirectory1.domain.com ldaps://edirectory2.domain.com TLS_REQCERT allow timelimit 10 bind_timelimit 10 pam_password nds nss_base_passwd dc=domain,dc=com nss_base_shadow dc=domain,dc=com -- System Information: Debian Release: 3.1 APT prefers testing APT policy: (900, 'testing'), (600, 'unstable') Architecture: i386 (i686) Kernel: Linux 2.4.26 Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) (ignored: LC_ALL set to C) Versions of packages libnss-ldap depends on: ii debconf 1.4.30.11 Debian configuration management sy ii libc6 2.3.2.ds1-20 GNU C Library: Shared libraries an ii libdb4.2 4.2.52-17 Berkeley v4.2 Database Libraries [ ii libldap2 2.1.30-3 OpenLDAP libraries -- debconf information excluded -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
