ITS#9468 do not arm expire timer for connections that are already tainted

f355aa64 · Tero Saarni · efb84b3e · f355aa64
Commit f355aa64 authored May 13, 2021 by Tero Saarni
--- a/servers/slapd/back-ldap/bind.c
+++ b/servers/slapd/back-ldap/bind.c
@@ -3122,6 +3122,11 @@ ldap_back_conn_prune( ldapinfo_t *li )

 		while ( lc ) {
 			ldapconn_t *next = LDAP_TAILQ_NEXT( lc, lc_q );
+
+			if ( LDAP_BACK_CONN_TAINTED( lc ) ) {
+				continue;
+			}
+
 			time_t conn_expires = ldap_back_conn_expire_time( li, lc );

 			if ( now >= conn_expires ) {
@@ -3149,6 +3154,11 @@ ldap_back_conn_prune( ldapinfo_t *li )
 	while ( edge ) {
 		TAvlnode *next = ldap_tavl_next( edge, TAVL_DIR_RIGHT );
 		ldapconn_t *lc = (ldapconn_t *)edge->avl_data;
+
+		if ( LDAP_BACK_CONN_TAINTED( lc ) ) {
+			continue;
+		}
+
 		time_t conn_expires = ldap_back_conn_expire_time( li, lc );

 		if ( now >= conn_expires ) {