From d89c30a084e90a4617dcd9d140b83a39974d3d77 Mon Sep 17 00:00:00 2001
From: ak1ra <git@ak1ra.xyz>
Date: Tue, 2 Sep 2025 10:32:47 +0800
Subject: [PATCH 1/2] fix: fix bind mount volumes on docker-compose.yml

---
 docker-compose.yml | 46 +++++++++++++++++++++++-----------------------
 1 file changed, 23 insertions(+), 23 deletions(-)

diff --git a/docker-compose.yml b/docker-compose.yml
index 1129029..3416390 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -17,16 +17,16 @@ services:
     read_only: false
     restart: always
     sysctls:
-        # mitigate TIME-WAIT Assassination hazards in TCP
+      # mitigate TIME-WAIT Assassination hazards in TCP
       - net.ipv4.tcp_rfc1337=1
-        # SACK is commonly exploited and rarely used
+      # SACK is commonly exploited and rarely used
       - net.ipv4.tcp_sack=0
       - net.ipv4.tcp_dsack=0
       - net.ipv4.tcp_fack=0
-        # SSR could impact TCP's performance on a fixed-speed network (e.g., wired)
+      # SSR could impact TCP's performance on a fixed-speed network (e.g., wired)
       - net.ipv4.tcp_slow_start_after_idle=0
     volumes:
-      - 'redis_data:/bitnami/redis/data'
+      - "redis_data:/bitnami/redis/data"
 
   gcr-registry:
     cap_drop:
@@ -47,16 +47,16 @@ services:
     read_only: false
     restart: always
     sysctls:
-        # mitigate TIME-WAIT Assassination hazards in TCP
+      # mitigate TIME-WAIT Assassination hazards in TCP
       - net.ipv4.tcp_rfc1337=1
-        # SACK is commonly exploited and rarely used
+      # SACK is commonly exploited and rarely used
       - net.ipv4.tcp_sack=0
       - net.ipv4.tcp_dsack=0
       - net.ipv4.tcp_fack=0
-        # SSR could impact TCP's performance on a fixed-speed network (e.g., wired)
+      # SSR could impact TCP's performance on a fixed-speed network (e.g., wired)
       - net.ipv4.tcp_slow_start_after_idle=0
     volumes:
-      - ./config.yml:/etc/docker/registry/config.yml:ro
+      - ./registry-config.yml:/etc/distribution/config.yml:ro
       - ./data:/var/lib/registry
 
   k8s-registry:
@@ -78,16 +78,16 @@ services:
     read_only: false
     restart: always
     sysctls:
-        # mitigate TIME-WAIT Assassination hazards in TCP
+      # mitigate TIME-WAIT Assassination hazards in TCP
       - net.ipv4.tcp_rfc1337=1
-        # SACK is commonly exploited and rarely used
+      # SACK is commonly exploited and rarely used
       - net.ipv4.tcp_sack=0
       - net.ipv4.tcp_dsack=0
       - net.ipv4.tcp_fack=0
-        # SSR could impact TCP's performance on a fixed-speed network (e.g., wired)
+      # SSR could impact TCP's performance on a fixed-speed network (e.g., wired)
       - net.ipv4.tcp_slow_start_after_idle=0
     volumes:
-      - ./config.yml:/etc/docker/registry/config.yml:ro
+      - ./registry-config.yml:/etc/distribution/config.yml:ro
       - ./data:/var/lib/registry
 
   docker-registry:
@@ -111,16 +111,16 @@ services:
     read_only: false
     restart: always
     sysctls:
-        # mitigate TIME-WAIT Assassination hazards in TCP
+      # mitigate TIME-WAIT Assassination hazards in TCP
       - net.ipv4.tcp_rfc1337=1
-        # SACK is commonly exploited and rarely used
+      # SACK is commonly exploited and rarely used
       - net.ipv4.tcp_sack=0
       - net.ipv4.tcp_dsack=0
       - net.ipv4.tcp_fack=0
-        # SSR could impact TCP's performance on a fixed-speed network (e.g., wired)
+      # SSR could impact TCP's performance on a fixed-speed network (e.g., wired)
       - net.ipv4.tcp_slow_start_after_idle=0
     volumes:
-      - ./config.yml:/etc/docker/registry/config.yml:ro
+      - ./registry-config.yml:/etc/distribution/config.yml:ro
       - ./data:/var/lib/registry
 
   quay-registry:
@@ -142,16 +142,16 @@ services:
     read_only: false
     restart: always
     sysctls:
-        # mitigate TIME-WAIT Assassination hazards in TCP
+      # mitigate TIME-WAIT Assassination hazards in TCP
       - net.ipv4.tcp_rfc1337=1
-        # SACK is commonly exploited and rarely used
+      # SACK is commonly exploited and rarely used
       - net.ipv4.tcp_sack=0
       - net.ipv4.tcp_dsack=0
       - net.ipv4.tcp_fack=0
-        # SSR could impact TCP's performance on a fixed-speed network (e.g., wired)
+      # SSR could impact TCP's performance on a fixed-speed network (e.g., wired)
       - net.ipv4.tcp_slow_start_after_idle=0
     volumes:
-      - ./config.yml:/etc/docker/registry/config.yml:ro
+      - ./registry-config.yml:/etc/distribution/config.yml:ro
       - ./data:/var/lib/registry
 
   caddy:
@@ -175,13 +175,13 @@ services:
     read_only: false
     restart: always
     sysctls:
-        # mitigate TIME-WAIT Assassination hazards in TCP
+      # mitigate TIME-WAIT Assassination hazards in TCP
       - net.ipv4.tcp_rfc1337=1
-        # SACK is commonly exploited and rarely used
+      # SACK is commonly exploited and rarely used
       - net.ipv4.tcp_sack=0
       - net.ipv4.tcp_dsack=0
       - net.ipv4.tcp_fack=0
-        # SSR could impact TCP's performance on a fixed-speed network (e.g., wired)
+      # SSR could impact TCP's performance on a fixed-speed network (e.g., wired)
       - net.ipv4.tcp_slow_start_after_idle=0
     ulimits:
       nproc: 16384

From ef5ae5eb300eb73c67b1d98e402556f100a3c704 Mon Sep 17 00:00:00 2001
From: ak1ra <git@ak1ra.xyz>
Date: Tue, 2 Sep 2025 10:33:09 +0800
Subject: [PATCH 2/2] chore: update log.level and log.formatter on
 registry-config.yml

---
 registry-config.yml | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/registry-config.yml b/registry-config.yml
index 8741422..f3edddb 100644
--- a/registry-config.yml
+++ b/registry-config.yml
@@ -1,5 +1,9 @@
+# https://distribution.github.io/distribution/about/configuration/#list-of-configuration-options
 version: 0.1
 log:
+  # [error, warn, info, debug]
+  level: info
+  formatter: json
   fields:
     service: registry
 storage: