Jesse Stutler

``` type Call struct { Seq uint64 ServiceMethod string // format "." Args interface{} // arguments to the function Reply interface{} // reply from the function Error error // if...

想请教一下，conn, _, err := w.(http.Hijacker).Hijack()这一步是在做什么呢

@kflansburg Thanks. I put the pod that only has the wasm workload into a new namespace that doesn't have the `istio-injection=enabled` label. But the pod's status still get stuck in...

There is the krustlet's log: ``` [2021-06-07T05:54:27Z ERROR kubelet::state::common::image_pull] error sending request for url (https://192.168.0.211:8088/v2/): error trying to connect: error:1408F10B:SSL routines:ssl3_get_record:wrong version number:../ssl/record/ssl3_record.c:332: Caused by: 0: error trying to connect:...

Thanks for your prompt reply! Too fast to get the answer. I understand a lot now😁, I will close the issue after solving it.

> All connections must be through HTTPS unless that registry is marked as "insecure" How to mark the registry as “insecure” if I have to use HTTP? It's a little...

Then I added the flag "--insecure-registries" to krustlet-wasi, but the log still reported some errors: ``` [2021-06-08T02:45:37Z ERROR kubelet::state::common::image_pull] Failed to decode registry token from auth request Caused by: duplicate...

If I used HTTPS harbor, I got unable to get local issuer certificate error: ``` [2021-06-08T05:34:56Z ERROR kubelet::state::common::image_pull] error sending request for url (https://harbor.hwcloud.nuaa/v2/): error trying to connect: error:1416F086:SSL routines:tls_process_server_certificate:certificate...

I'm a little confused..Only self-built container-registries like Harbor will cause this problem? Did someone meet the same problem before:`unable to get local issuer certificate`?

> Then I added the flag "--insecure-registries" to krustlet-wasi, but the log still reported some errors: > > ``` > [2021-06-08T02:45:37Z ERROR kubelet::state::common::image_pull] Failed to decode registry token from auth...