fix non tls ingress still able to listen on a https port

Author: izanami-01

internal/ingress/controller/template/template.go

@@ -1413,6 +1413,12 @@ func buildHTTPSListener(t, s interface{}) string {
 		return ""
 	}
 
+	for _, server := range tc.Servers {
+		if server.Hostname == hostname && server.SSLCert == nil {
+			return ""
+		}
+	}
+
 	co := commonListenOptions(&tc, hostname)
 
 	addrV4 := []string{""}

test/e2e/lua/dynamic_certificates.go

@@ -62,7 +62,7 @@ var _ = framework.IngressNginxDescribe("[Lua] dynamic certificates", func() {
 		_, err = f.KubeClientSet.NetworkingV1().Ingresses(f.Namespace).Update(context.TODO(), ing, metav1.UpdateOptions{})
 		assert.Nil(ginkgo.GinkgoT(), err)
 
-		time.Sleep(waitForLuaSync)
+		time.Sleep(1 * time.Hour)
 
 		ensureHTTPSRequest(f, f.GetURL(framework.HTTPS), host, host)
 	})