Giters

containerd / nerdctl

contaiNERD CTL - Docker-compatible CLI for containerd, with support for Compose, Rootless, eStargz, OCIcrypt, IPFS, ...

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

nerdctl login used against a basic auth server will error in confusing ways after hammering the server

apostasie opened this issue · comments

commented

Description

Passing wrong credentials against a basic auth registry will result in nerdctl trying repeatedly (ten times).

Then spit out:
too many 401 (probably)

Followed by a failed to call rh.Client.Do: Get \"https://10.4.0.1:5000/v2/\": tls: failed to verify certificate: x509: certificate signed by unknown authority" i=1 which does not make sense here.

Steps to reproduce the issue

  1. Start a registry with basic auth
  2. Login using nerdctl

Describe the results you received and expected

Received:

  • confusing error message
  • repeated attempts with the same wrong credentials instead of bailing out

Should have received:

  • more clear error message
  • try once and stop

What version of nerdctl are you using?

1.7.6

Are you using a variant of nerdctl? (e.g., Rancher Desktop)

None

Host information

No response