最近搞了一个树莓派集群,上了k8s,想把原来PC上的服务跑在树莓派上,在树莓派和PC,可以直接docker pull拉下来,,我们可以看到在docker hub上的镜像,我们从PC上,那是不是我们自己部署的私有仓库也支持直接多硬件架构的拉取呢,带着这个疑问,我们来看一看。
直接来看下docker registry的镜像(https://registry.hub.docker.com/_/registry/)
已经支持多架构了,那么我们怎么把多个平台的镜像推到镜像仓库呢?
为了让系统能够支持多平台的二进制文件,先挂载一下binfmt,为了让下面运行正常需要kernel >= 4.8 and binfmt-support >= 2.1.7
docker run --privileged --rm tonistiigi/binfmt --install all
查看一下binfmt
ls /proc/sys/fs/binfmt_misc
qemu-aarch64 qemu-arm qemu-mips64 qemu-mips64el qemu-ppc64le qemu-riscv64 qemu-s390x register status
本地部署的是个http的仓库,需要配置一下
docker配置文件/etc/docker/daemon.json
{
"experimental": true,
"insecure-registries":[
"10.10.30.61"
]
}
buildx配置文件buildkitd.toml
insecure-entitlements = [ "network.host", "security.insecure" ]
[registry."10.10.30.61"]
mirrors = ["10.10.30.61"]
http = true
insecure = true
创建一个新的buildx实例
docker buildx create --use --name localbuilder --platform=linux/amd64,linux/arm64,linux/arm/v7 --config=`pwd`/buildkitd.toml --driver-opt network=host
构建镜像,并推送到仓库
docker buildx build --platform=linux/amd64,linux/arm64,linux/arm/v7 -t 10.10.30.61/business --push .
查看manifest
docker manifest inspect --insecure 10.10.30.61/business
{
"schemaVersion": 2,
"mediaType": "application/vnd.docker.distribution.manifest.list.v2+json",
"manifests": [
{
"mediaType": "application/vnd.docker.distribution.manifest.v2+json",
"size": 1570,
"digest": "sha256:4bc6b508e4cfd5d691f445705559a544023de1118fb76958de0e6d414905a4fa",
"platform": {
"architecture": "amd64",
"os": "linux"
}
},
{
"mediaType": "application/vnd.docker.distribution.manifest.v2+json",
"size": 1570,
"digest": "sha256:177f6178b1a0c672127fd8f274afc8ffe08a6ba7b94821bb96db975fc4e512e3",
"platform": {
"architecture": "arm64",
"os": "linux"
}
},
{
"mediaType": "application/vnd.docker.distribution.manifest.v2+json",
"size": 1570,
"digest": "sha256:2a913359648660a319c286149cd4ca7b5b9e52caf7714a0a337431b14bb6cca5",
"platform": {
"architecture": "arm",
"os": "linux",
"variant": "v7"
}
}
]
}
这样就ok了,接下来就可以在树莓派上拉镜像啦
docker pull 10.10.30.61/business
跟在PC上一样,完美。