·
24 commits
to master
since this release
Improvements
-
Switch to using Jammy stemcells.
-
Bump Træfik to the latest version 1.7.34.
-
Bump the Consul release to v1.6.0 in the
clustering.ymlandclustering-compiled-release.ymlops files. -
Bump BPM to v1.2.19 in the
traefik.ymldeployment manifest. -
Improved Concourse pipelines, re-generated from Cloud Foundry community-maintained pipeline templates.
-
For contributors, provide more documentation and share helper scripts for manual testing and version bumps.
Caveats
- Clustering mode is experimental: we've experienced situations where no Traefik node is able to acquire the Consul lock in order to access Let's Encrypt cetificates. In such situations, all HTTPS requests requiring a Let's Encrypt certificate are failing, which is pretty bad. We've observed that the Traefik timeout for acquiring Consul lock is too short. Consul does store the expected lock value written by Traefik, but a little too late. So when the value is available, Traefik already has failed at acquiring the lock, and has already started retrying, writing a new value. Traefik won't be able to read the new value back because Consul is still late. Lock acquiring will fail again. Traefik will be able to read this new value only during the next retry. All in all, with enough Let's Encrypt certificates stored (we haven't identified any precise threshold yet), we've observed an infinite loop while Traefik fails at acquiring the Consul lock.
Deployment
releases:
- name: traefik
version: 1.16.0
url: https://github.com/gstackio/traefik-boshrelease/releases/download/v1.16.0/traefik-1.16.0.tgz
sha1: 896eaeed289b6ec5670029ed5f30e28ccb1b3d87