Adding insecure registry in containerd

by

ctr does not read the /etc/containerd/config.toml config file, this config is used by cri, which means kubectl or crictl would use it.

The error log http: server gave HTTP response to HTTPS client, shows that the registry is using http, but ctr is trying to connect it using https. So if you want to pull the image from http, you should add the param --plain-http with ctr like this:

$ ctr i pull --plain-http <image>

The registry config doc is here.

You should be able to pull the image with crictl, remember to restart containerd.

$ sudo crictl -r /run/containerd/containerd.sock pull <image>

# or config runntime once for all
$ sudo crictl config runtime-endpoint /run/containerd/containerd.sock
$ sudo crictl pull <image>

Config example:

# /etc/containerd/config.toml
# change <IP>:5000 to your registry url

[plugins."io.containerd.grpc.v1.cri".registry]
  [plugins."io.containerd.grpc.v1.cri".registry.mirrors]
    [plugins."io.containerd.grpc.v1.cri".registry.mirrors."<IP>:5000"]
      endpoint = ["http://<IP>:5000"]
  [plugins."io.containerd.grpc.v1.cri".registry.configs]
    [plugins."io.containerd.grpc.v1.cri".registry.configs."<IP>:5000".tls]
      insecure_skip_verify = true

Restart the service after configuration modification.

$ sudo systemctl restart containerd

More Related Contents:

  1. How kubectl port-forward works?
  2. Tell when Job is Complete
  3. kubectl apply vs kubectl create?
  4. What’s the best way to share/mount one file into a pod?
  5. Helm install in certain order
  6. Ingress vs Load Balancer
  7. Restart pods when configmap updates in Kubernetes?
  8. How can I debug “ImagePullBackOff”?
  9. How can I edit a Deployment without modify the file manually?
  10. Inject node labels into Kubernetes pod
  11. Checking kubernetes pod CPU and memory
  12. How to assign a namespace to certain nodes?
  13. Kubernetes Cross Namespace Ingress Network
  14. Does kubectl port-forward ignore loadBalance services?
  15. How to rolling restart pods without changing deployment yaml in kubernetes?
  16. Nginx Ingress Controller – Failed Calling Webhook
  17. How to schedule pods restart
  18. how to pass environment variable in kubectl deployment?
  19. Kubernetes ConfigMap size limitation
  20. What is a headless service, what does it do/accomplish, and what are some legitimate use cases for it?
  21. How to get Kubernetes cluster name from K8s API
  22. Ingress configuration for k8s in different namespaces
  23. How to access/expose kubernetes-dashboard service outside of a cluster?
  24. 413 error with Kubernetes and Nginx ingress controller
  25. Kubernetes PVC with ReadWriteMany on AWS
  26. Kubernetes: Routing non HTTP Request via Ingress to Container
  27. Kubernetes Persistent Volume Access Modes: ReadWriteOnce vs ReadOnlyMany vs ReadWriteMany
  28. Listing all resources in a namespace
  29. How to know a Pod’s own IP address from inside a container in the Pod?
  30. Renew kubernetes pki after expired

Leave a Comment