Hey guys,

Our company is working in a DSS PCI compliant environment and since 30/06/2018, the protocol TLSv1.0 is no longer allowed.

We are currently running the Docker registry v2 for storing our internal custom images.
Our registry containers are listening on port 5000 (default), and we noticed that this port server is accepting TLSv1.0. connections.

I checked and I know that this subject was already discuss in 2015 in the Issue #279

But the code (distribution/registry/registry.go) is still referring to the MinVersion: tls.VersionTLS10, and that's not good for us.

Can you add a configuration option in the 'config.yml' to allow users to select the desired TLS version ?
I looked in the distribution/docs/configuration.md, but I was not able to find any reference to the TLS protocols.

That will be really appreciate.
Cheers