Bug: Upstream MTLS only works for HTTPS listeners

[guydc]

Description:

• Envoy Proxy with a Backend TLS Client Certificate
• HTTP Listener with a route to Service with BTLSP

The connection to backend fails with: upstream connect error or disconnect/reset before headers. reset reason: remote connection failure, transport failure reason: TLS error: Secret is not supplied by SDS

The Upstream TLS context is create correctly, but an SDS secret never reaches "warm" status.