Hello, I noticed that hook TS_HTTP_TXN_START_HOOK is called after activating SSL blind tunnel. Inside that hook I create a continuation for TS_HTTP_OS_DNS_HOOK, which is also called with url like tunnel://<ip address>:443.
I have a few questions regarding this behavior: 1) Is it ok that TXN_START is called for SSL tunnel? Since we're in a blind tunnel and all HTTP traffic is encrypted, there is not much we can do (like reading request header). 2) I create a continuation in TXN_START and set up TS_HTTP_OS_DNS_HOOK hook, which is called inside TSHttpTxnReenable call. Is it correct for DNS hook to be called for SSL tunnel, taking into account that it is called for an ip address instead of hostname? In my opinion no DNS resolution needed for tunnel case. 3) If invoking DNS hook is an expected behavior, is it possible to detect in TS_HTTP_TXN_START_HOOK handler that we're in SSL tunnel? In this case I will just not set up any additional hooks. -- -Lev
