Backport fix for Fix remaining corner cases in containerd certs.d support <ul dir=

[Release-1.27] - Fix remaining corner cases in containerd certs.d support about k3s HOT 1 CLOSED

brandond commented on May 24, 2024

[Release-1.27] - Fix remaining corner cases in containerd certs.d support

from k3s.

Comments (1)

ShylajaDevadiga commented on May 24, 2024

Validated using k3s version v1.27.12-rc1+k3s1

Environment Details

Infrastructure
Cloud EC2 instance

Node(s) CPU architecture, OS, and Version:
Ubuntu 22.04

$ cat /etc/rancher/k3s/registries.yaml 
---
mirrors:
  docker.io:
    endpoint:
      - https://registry.example.com/
      - docker.io
  k8s.gcr.io:
    endpoint:
      - https://registry.example.com/
      - k8s.gcr.io
configs:
  registry.example.com:
    auth:
      username: testusername
      password: testpassword
    tls:
      ca_file: /home/ubuntu/ca.pem

Steps to validate

Configure private registry
Create the registries.yaml with the last registry in the endpoint list as the default to /etc/rancher/k3s
Install k3s.
Validate certs.d//hosts.toml is generated

Results from reproducing the issue:

ubuntu@ip-172-31-9-127:~$ k3s -v
k3s version v1.27.11+k3s1 (06d6bc80)
go version go1.21.7

$ sudo cat  /var/lib/rancher/k3s/agent/etc/containerd/certs.d/docker.io/hosts.toml
cat: /var/lib/rancher/k3s/agent/etc/containerd/certs.d/docker.io/hosts.toml: No such file or directory

Results from validating the issue:

ubuntu@ip-172-31-15-59:~$ k3s -v
k3s version v1.27.12-rc1+k3s1 (78ad5756)
go version go1.21.8

$ sudo cat  /var/lib/rancher/k3s/agent/etc/containerd/certs.d/k8s.gcr.io/hosts.toml
# File generated by k3s. DO NOT EDIT.

server = "https://k8s.gcr.io/v2"
capabilities = ["pull", "resolve", "push"]



[host."https://registry.example.com/v2"]
  capabilities = ["pull", "resolve"]
  ca = ["/home/ubuntu/ca.pem"]

$ sudo cat  /var/lib/rancher/k3s/agent/etc/containerd/certs.d/docker.io/hosts.toml
# File generated by k3s. DO NOT EDIT.

server = "https://registry-1.docker.io/v2"
capabilities = ["pull", "resolve", "push"]



[host."https://registry.example.com/v2"]
  capabilities = ["pull", "resolve"]
  ca = ["/home/ubuntu/ca.pem"]

from k3s.

Recommend Projects