github/containerd
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases 2 Wiki Activity

Update hosts doc

Browse Source 
Signed-off-by: Jess <jess@ros.io>
This commit is contained in:
Jess 2022-11-03 15:13:47 -06:00
parent f0bf9e7f8b
commit 8b1b81eefd
1 changed files with 18 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

18
docs/hosts.md
View File

@ -73,6 +73,9 @@ $ tree /etc/containerd/certs.d
└── hosts.toml └── hosts.toml
``` ```
Optionally the `_default` registry host namespace can be used as a fallback, if no
other namespace matches.
The `/v2` portion of the pull request format shown above refers to the version of the The `/v2` portion of the pull request format shown above refers to the version of the
distribution api. If not included in the pull request, `/v2` is added by default for all distribution api. If not included in the pull request, `/v2` is added by default for all
clients compliant to the distribution specification linked above. clients compliant to the distribution specification linked above.
@ -157,6 +160,21 @@ server = "https://registry-1.docker.io" # Exclude this to not use upstream
ca = "docker-mirror.crt" # Or absolute path /etc/containerd/certs.d/docker.io/docker-mirror.crt ca = "docker-mirror.crt" # Or absolute path /etc/containerd/certs.d/docker.io/docker-mirror.crt
``` ```
### Setup Default Mirror for All Registries
```
$ tree /etc/containerd/certs.d
/etc/containerd/certs.d
└── _default
└── hosts.toml
$ cat /etc/containerd/certs.d/_default/hosts.toml
server = "https://registry.example.com"
[host."https://registry.example.com"]
capabilities = ["pull", "resolve"]
```
### Bypass TLS Verification Example ### Bypass TLS Verification Example
To bypass the TLS verification for a private registry at `192.168.31.250:5000` To bypass the TLS verification for a private registry at `192.168.31.250:5000`