Comments (1)
Validated using k3s version v1.27.12-rc1+k3s1
Environment Details
Infrastructure
Cloud EC2 instance
Node(s) CPU architecture, OS, and Version:
Ubuntu 22.04
$ cat /etc/rancher/k3s/registries.yaml
---
mirrors:
docker.io:
endpoint:
- https://registry.example.com/
- docker.io
k8s.gcr.io:
endpoint:
- https://registry.example.com/
- k8s.gcr.io
configs:
registry.example.com:
auth:
username: testusername
password: testpassword
tls:
ca_file: /home/ubuntu/ca.pem
Steps to validate
- Configure private registry
- Create the registries.yaml with the last registry in the endpoint list as the default to /etc/rancher/k3s
- Install k3s.
- Validate certs.d//hosts.toml is generated
Results from reproducing the issue:
ubuntu@ip-172-31-9-127:~$ k3s -v
k3s version v1.27.11+k3s1 (06d6bc80)
go version go1.21.7
$ sudo cat /var/lib/rancher/k3s/agent/etc/containerd/certs.d/docker.io/hosts.toml
cat: /var/lib/rancher/k3s/agent/etc/containerd/certs.d/docker.io/hosts.toml: No such file or directory
Results from validating the issue:
ubuntu@ip-172-31-15-59:~$ k3s -v
k3s version v1.27.12-rc1+k3s1 (78ad5756)
go version go1.21.8
$ sudo cat /var/lib/rancher/k3s/agent/etc/containerd/certs.d/k8s.gcr.io/hosts.toml
# File generated by k3s. DO NOT EDIT.
server = "https://k8s.gcr.io/v2"
capabilities = ["pull", "resolve", "push"]
[host."https://registry.example.com/v2"]
capabilities = ["pull", "resolve"]
ca = ["/home/ubuntu/ca.pem"]
$ sudo cat /var/lib/rancher/k3s/agent/etc/containerd/certs.d/docker.io/hosts.toml
# File generated by k3s. DO NOT EDIT.
server = "https://registry-1.docker.io/v2"
capabilities = ["pull", "resolve", "push"]
[host."https://registry.example.com/v2"]
capabilities = ["pull", "resolve"]
ca = ["/home/ubuntu/ca.pem"]
from k3s.
Related Issues (20)
- [Release-1.28] - Unable to provision K3S downstream cluster in Rancher HOT 1
- [Release-1.27] - Unable to provision K3S downstream cluster in Rancher HOT 1
- Pods unable to reach 10.43.0.1:443 even with firewall disabled HOT 1
- Server nodes behind NAT, pod networking is broken HOT 5
- Empty string as a parameter in etcd extra args HOT 8
- Installing k3s cluster on azure vm
- Add SLSA provenance to releases
- containerd-shim creates many inotify instances HOT 1
- Understand k3s certificate rotation
- Internet blocked due to k3s HOT 1
- MySQL + Kine Conformance Checks Fail HOT 7
- apiserver received an error that is not an metav1.Status: &errors.errorString{s:"error dialing backend: tls: failed to verify certificate: x509: certificate is valid for 127.0.0.1, not xxx"} HOT 4
- Add Ubuntu 24.04 Support to k3s HOT 1
- k3 leaving remnants of hanging unkillable containers HOT 1
- Network policies blocking probes HOT 4
- Use private ip with external cloud manager that doesn't know about that ip
- Allow setting `priorityClassName` on ServiceLB daemonset. HOT 5
- k3s cluster should use GPU without mentioning runtimeClassName: "nvidia" in pod specs HOT 3
- Fail to run static pod without master running HOT 2
- --node-external-ip can not add annotate flannel.alpha.coreos.com/public-ip-overwrite HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from k3s.