Comments (9)
I have the same problem with TLS verification and root certs. I would like to know how to disable the TLS verification. The text below shows the output when creating a container using a hello-world image.
docker run hello-world
Unable to find image 'hello-world:latest' locally
Pulling repository docker.io/library/hello-world
C:\Program Files\Docker\Docker\Resources\bin\docker.exe: Error while pulling image: Get https://index.docker.io/v1/repositories/library/hello-world/images: x509: certificate signed by unknown authority.
See 'C:\Program Files\Docker\Docker\Resources\bin\docker.exe run --help'.
from for-win.
@DeltaWhy thanks for opening this issue!
We decide what components to open source as the components mature and make sense as stand-alone projects. This blog post has more details on that thinking: https://blog.docker.com/2016/05/docker-unikernels-open-source/
Instead of having you build your own boot2docker, we'd much rather make Docker for Windows work for you. Can you provide more details on why the current proxy functionality is not working for you, either in this issue or in a separete one?
from for-win.
The proxy support is a huge improvement over Toolbox, and I can actually use it with the insecure-registries option, but I dislike the idea of completely disabling TLS verification rather than adding the root certs.
I actually took it a step farther though and modified dockerd so that it sets the proxy environment variables and adds the CA certs for every container that it creates. This lets me use the official images (and other images) from Docker Hub, or build other people's Dockerfiles rather than having to build a local version of every single image and keep up with security updates myself. It also helps with CI and other tools where Docker is used from code and there's not an obvious way to add the settings manually. I'd really like to be able to build a MobyLinux with these engine patches.
I assume those patches wouldn't be suitable for upstream but if I'm wrong about that I could open an issue on Engine.
from for-win.
We have a roadmap item to let end-users add certs to the certstore in Moby - would that cover your needs?
from for-win.
Well, I guess. Is there some workaround in the meanwhile?
from for-win.
@mcesar you could add an insecure registry setting as per #36
from for-win.
@rneugeba I added both index.docker.io and index.docker.io:5000 to insecure registry setting, but the problem remains the same.
from for-win.
@mcesar @DeltaWhy FYI, I'm going to close this issue because open sourcing the whole project is not something we plan to do in the short/medium term. Also the root issue you are describing is a duplicate of #48 which FYI should be fixed in next Beta (beta26)
from for-win.
Closed issues are locked after 30 days of inactivity.
This helps our team focus on active issues.
If you have found a problem that seems similar to this, please open a new issue.
Send feedback to Docker Community Slack channels #docker-for-mac or #docker-for-windows.
/lifecycle locked
from for-win.
Related Issues (20)
- Volumes not initially mounting for services that restart on windows reboot HOT 11
- Docker for Windows pulling old OS Version from Multi-Architecture Manifest List on Windows 11
- Always exposes all gpus, even with e.g. --gpus '"device=0"' #12677
- unexpected WSL error HOT 3
- 运行着的docker desktop突然停止,并且启动失败报错
- Docker forgets WSL integration config after OS restart HOT 1
- Inconsistent clipboard behavior after text find in Docker Desktop Logs tab
- Containers can't connect to the internet or to each other via host ip HOT 3
- Docker Desktop on Windows starts, stops, and quits
- docker pull failure due to connection refusal HOT 9
- Docker Desktop 4.28 keep asking to configure
- Can't resolve container host name in windows browser
- Docker Swarm containers are not having outbound/external connectivity in windows server 2022
- Docker Desktop stopped starting on Windows
- How to leverage VFP NAT rules for outbound connectivity for overlay networks created by Docker Swarm in Windows server 2022 HOT 2
- Docker containers on windows fail after every machine restart HOT 1
- Docker desktop for Windows failing on startup HOT 3
- Group policy for Server service prevents installation of Docker Desktop
- Docker Desktop - Unexpected WSL error HOT 2
- Installation Failed Docker Version: 4.28.0 HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from for-win.