Releases
0.164.0
Release Highlights
Route Integrity
Operators may now configure router.backends.enable_tls
for the Gorouter to enable support for routes with tls_port
details
Gorouter now provides a client certificate for TLS handshake with backend when tls_port
is provided in NATS route.register
message details
Gorouter retries backends when the TLS handshake fails details
Gorouter retries backends when it can't validate instance identity details
Gorouter returns an error when it can't validate instance identity details
Gorouter returns an error when backend certificate contains the wrong instance identity in a SAN even if the correct IP is a SAN details
Gorouter provides private_instance_id
and a tls
boolean in response from the /routes
endpoint details
Gorouter now emits a metric backend_invalid_tls_cert
that is incremented when gorouter doesn't trust backend certs details
Gorouter now emits a metric backend_invalid_id
that is incremented when the instance id cannot be validated for any backend details
Gorouter now emits a metric backend_tls_handshake_failed
is incremented when no backends are listening on TLS details
Gorouter now emits a metric routes_pruned
that increments with each route pruned details
Misc
tcp-emitter
has been removed from routing-release details
A bug has been fixed which caused X-Vcap-Request-Id
headers to be duplicated in responses from the Cloud Controller details
Manifest Property Changes
gorouter
0.163.0
0.164.0
Default Value
did not exist
router.backends.enable_tls
false
You can’t perform that action at this time.