From e6e4377546c64a3035bd74390467eb12bd84a426 Mon Sep 17 00:00:00 2001
From: Per Lundberg <perlun@gmail.com>
Date: Thu, 1 Jun 2023 15:49:05 +0300
Subject: [PATCH] Disable slowdown when TLS deliberately disabled

---
 dockerd-entrypoint.sh | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/dockerd-entrypoint.sh b/dockerd-entrypoint.sh
index 00819384b..8f5c130d8 100755
--- a/dockerd-entrypoint.sh
+++ b/dockerd-entrypoint.sh
@@ -127,10 +127,12 @@ if [ "$#" -eq 0 ] || [ "${1#-}" != "$1" ]; then
 			"$@"
 		DOCKERD_ROOTLESS_ROOTLESSKIT_FLAGS="${DOCKERD_ROOTLESS_ROOTLESSKIT_FLAGS:-} -p 0.0.0.0:2376:2376/tcp"
 	else
-		# TLS disabled (-e DOCKER_TLS_CERTDIR='') or missing certs
+		# TLS disabled (-e DOCKER_TLS_CERTDIR=''). # --tls=false silences the "Binding to IP address without --tlsverify is insecure" warning and
+		# slowdown.
 		set -- dockerd \
 			--host="$dockerSocket" \
 			--host=tcp://0.0.0.0:2375 \
+			--tls=false \
 			"$@"
 		DOCKERD_ROOTLESS_ROOTLESSKIT_FLAGS="${DOCKERD_ROOTLESS_ROOTLESSKIT_FLAGS:-} -p 0.0.0.0:2375:2375/tcp"
 	fi