I’m an engineer on Bitbucket pipelines.
We have recently switched from docker to containerd via cri-o on our build nodes and some users have reported they are no longer able to pull images from their privately run nexus. The issue has been observed with the latest Nexux version 3.27.
We have gotten them to upgrade as we have reported bugs with previous versions as well and they still cannot. Please find below some log output of the errors they are seeing.
Run this locally -
docker run -dit --name containerd --privileged tianon/containerd
docker exec -ti containerd /bin/sh Once inside the container
Once inside the container run
run ctr --debug images pull --user <username>:<password> someimage
And you will get the log output
ctr --debug images pull --user xxx:xxx $REDACTED DEBU[0000] fetching image="$REDACTED" DEBU[0000] resolving host=$REDACTED DEBU[0000] do request host=$REDACTED request.header.accept="application/vnd.docker.distribution.manifest.v2+json, application/vnd.docker.distribution.manifest.list.v2+json, application/vnd.oci.image.manifest.v1+json, application/vnd.oci.image.index.v1+json, /" request.header.user-agent=containerd/v1.4.1 request.method=HEAD url="https://$REDACTED/v2/az-runscript/manifests/0.0.5" DEBU[0000] fetch response received host=$REDACTED response.header.cache-control="no-cache, no-store, max-age=0, must-revalidate, post-check=0, pre-check=0" response.header.connection=keep-alive response.header.content-length=1938 response.header.content-type=text/html response.header.date="Mon, 12 Oct 2020 21:07:58 GMT" response.header.expires=0 response.header.keep-alive="timeout=5" response.header.pragma=no-cache response.header.server="nginx/1.14.0 (Ubuntu)" response.header.x-content-type-options=nosniff response.header.x-frame-options=DENY response.status="404 Not Found" url="https://$REDACTED/v2/$REDACTED/manifests/$REDACTED" ctr: failed to resolve reference "$REDACTED/$REDACTED": $REDACTED/$REDACTED: not found