Remove TLS EOF errors from logs (#16930)

Signed-off-by: Manuel de Brito Fontes <aledbf@gmail.com>
2025-12-08 17:36:30 +00:00 · 2023-03-21 06:23:13 -03:00 · 2023-03-21 06:23:13 -03:00 · aa61917989
commit aa61917989
parent b1ab625626
1 changed files with 17 additions and 1 deletions
--- a/components/ws-proxy/pkg/proxy/proxy.go
+++ b/components/ws-proxy/pkg/proxy/proxy.go
@ -5,16 +5,18 @@
 package proxy

 import (
+	"bytes"
 	"crypto/tls"
+	stdlog "log"
 	"net/http"
 	"os"
 	"path/filepath"

-	"github.com/gitpod-io/golang-crypto/ssh"
 	"github.com/gorilla/mux"
 	"github.com/klauspost/cpuid/v2"

 	"github.com/gitpod-io/gitpod/common-go/log"
+	"github.com/gitpod-io/golang-crypto/ssh"
 )

 // WorkspaceProxy is the entity which forwards all inbound requests to the relevant workspace pods.
@ -64,6 +66,7 @@ func (p *WorkspaceProxy) MustServe() {
 			PreferServerCipherSuites: true,
 			NextProtos:               []string{"h2", "http/1.1"},
 		},
+		ErrorLog: stdlog.New(logrusErrorWriter{}, "", 0),
 	}

 	var (
@ -141,3 +144,16 @@ func optimalDefaultCipherSuites() []uint16 {
 	}
 	return defaultCipherSuitesWithoutAESNI
 }
+
+var tlsHandshakeErrorPrefix = []byte("http: TLS handshake error")
+
+type logrusErrorWriter struct{}
+
+func (w logrusErrorWriter) Write(p []byte) (int, error) {
+	if bytes.Contains(p, tlsHandshakeErrorPrefix) {
+		return len(p), nil
+	}
+
+	log.Errorf("%s", string(p))
+	return len(p), nil
+}