fix(tcp-log):repeated sslhandshake in [tcp-log] plugin (#11803)

* FIX:Repeated sslhandshake in [tcp-log] plugin * add changelog * update message as the comments * Update changelog/unreleased/kong/fix-tcp-log-sslhandshake.yml Co-authored-by: tzssangglass <tzssangglass@apache.org> --------- Co-authored-by: tzssangglass <tzssangglass@apache.org> (cherry picked from commit 3fed60b)
Kong · Oct 26, 2023 · 44a381a · 44a381a
1 parent 7b7c42b
commit 44a381a
Show file tree

Hide file tree

Showing 2 changed files with 12 additions and 2 deletions.
diff --git a/changelog/unreleased/kong/fix-tcp-log-sslhandshake.yml b/changelog/unreleased/kong/fix-tcp-log-sslhandshake.yml
@@ -0,0 +1,3 @@
+message: "**tcp-log**: fix an issue that repeated ssl handshake"
+type: bugfix
+scope: Plugin
diff --git a/kong/plugins/tcp-log/handler.lua b/kong/plugins/tcp-log/handler.lua
@@ -31,8 +31,15 @@ local function log(premature, conf, message)
     return
   end
 
-  if conf.tls then
-    ok, err = sock:sslhandshake(true, conf.tls_sni, false)
+  local times, err = sock:getreusedtimes()
+  if not times then
+    kong.log.err("failed to get socket reused time to ", host, ":", tostring(port), ": ", err)
+    sock:close()
+    return
+  end
+
+  if conf.tls and times == 0 then
+    ok, err = sock:sslhandshake(false, conf.tls_sni, false)
     if not ok then
       kong.log.err("failed to perform TLS handshake to ", host, ":", port, ": ", err)
       sock:close()