Baoyuantop commented on issue #13454: URL: https://github.com/apache/apisix/issues/13454#issuecomment-4599965115
Thanks for the report. In the current implementation, `apisix.utils.redis` only runs AUTH and SELECT when `get_reused_times() == 0`. The Redis adapters for `limit-count`, `limit-req`, and `limit-conn` then put the socket back into the keepalive pool. At the same time, the `sock_opts` passed to `red:connect(...)` only contains the SSL options and does not set an explicit pool name that includes the database / username / password. So two configurations with the same Redis host and port but different databases or credentials can indeed reuse a connection with the wrong Redis logical context. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
