Skip to content

Træfik BOSH Release v1.14.0

Choose a tag to compare

View all tags
@gk-concourse-ninja gk-concourse-ninja released this 28 Oct 22:56
· 99 commits to master since this release
v1.14.0
44f13c0

Improvements

  • Bump Træfik to the latest version 1.7.26.

  • Bump the Consul release to v1.4.0 in the clustering.yml and clustering-compiled-release.yml ops files.

  • Bump BPM to v1.1.9 in the traefik.yml deployment manifest.

Caveats

  • Smoke tests require an access to the Internet.

  • Clustering mode is experimental: we've experienced situations where no Traefik node is able to acquire the Consul lock in order to access Let's Encrypt cetificates. In such situations, all HTTPS requests requiring a Let's Encrypt certificate are failing, which is pretty bad. We've observed that the Traefik timeout for acquiring Consul lock is too short. Consul does store the expected lock value written by Traefik, but a little too late. So when the value is available, Traefik already has failed at acquiring the lock, and has already started retrying, writing a new value. Traefik won't be able to read the new value back because Consul is still late. Lock acquiring will fail again. Traefik will be able to read this new value only during the next retry. All in all, with enough Let's Encrypt certificates stored (we haven't identified any precise threshold yet), we've observed an infinite loop while Traefik fails at acquiring the Consul lock.

Deployment

releases:
- name:    traefik
  version: 1.14.0
  url:     https://github.com/gstackio/traefik-boshrelease/releases/download/v1.14.0/traefik-1.14.0.tgz
  sha1:    ab38f5ed442b401788776fc6481a84dcb4fa0a33
Assets 3
Loading