From ed29a525b398aa57e9ff419806796e61b44873d7 Mon Sep 17 00:00:00 2001 From: Harshavardhana Date: Tue, 21 Jan 2025 02:10:10 -0800 Subject: [PATCH] remove fips builds --- Dockerfile.release.fips | 69 ----------------------------------------- docker-buildx.sh | 8 ----- 2 files changed, 77 deletions(-) delete mode 100644 Dockerfile.release.fips diff --git a/Dockerfile.release.fips b/Dockerfile.release.fips deleted file mode 100644 index d048280ea..000000000 --- a/Dockerfile.release.fips +++ /dev/null @@ -1,69 +0,0 @@ -FROM golang:1.23-alpine AS build - -ARG TARGETARCH -ARG RELEASE - -ENV GOPATH=/go -ENV CGO_ENABLED=0 - -# Install curl and minisign -RUN apk add -U --no-cache ca-certificates && \ - apk add -U --no-cache curl && \ - go install aead.dev/minisign/cmd/minisign@v0.2.1 - -# Download minio binary and signature files -RUN curl -s -q https://dl.min.io/server/minio/release/linux-${TARGETARCH}/archive/minio.${RELEASE}.fips -o /go/bin/minio && \ - curl -s -q https://dl.min.io/server/minio/release/linux-${TARGETARCH}/archive/minio.${RELEASE}.fips.minisig -o /go/bin/minio.minisig && \ - curl -s -q https://dl.min.io/server/minio/release/linux-${TARGETARCH}/archive/minio.${RELEASE}.fips.sha256sum -o /go/bin/minio.sha256sum && \ - chmod +x /go/bin/minio - -# Download mc binary and signature files -RUN curl -s -q https://dl.min.io/client/mc/release/linux-${TARGETARCH}/mc.fips -o /go/bin/mc && \ - curl -s -q https://dl.min.io/client/mc/release/linux-${TARGETARCH}/mc.fips.minisig -o /go/bin/mc.minisig && \ - curl -s -q https://dl.min.io/client/mc/release/linux-${TARGETARCH}/mc.fips.sha256sum -o /go/bin/mc.sha256sum && \ - chmod +x /go/bin/mc - -RUN if [ "$TARGETARCH" = "amd64" ]; then \ - curl -L -s -q https://github.com/moparisthebest/static-curl/releases/latest/download/curl-${TARGETARCH} -o /go/bin/curl; \ - chmod +x /go/bin/curl; \ - fi - -# Verify binary signature using public key "RWTx5Zr1tiHQLwG9keckT0c45M3AGeHD6IvimQHpyRywVWGbP1aVSGavRUN" -RUN minisign -Vqm /go/bin/minio -x /go/bin/minio.minisig -P RWTx5Zr1tiHQLwG9keckT0c45M3AGeHD6IvimQHpyRywVWGbP1aVSGav - -FROM registry.access.redhat.com/ubi9/ubi-micro:latest - -ARG RELEASE - -LABEL name="MinIO" \ - vendor="MinIO Inc " \ - maintainer="MinIO Inc " \ - version="${RELEASE}" \ - release="${RELEASE}" \ - summary="MinIO is a High Performance Object Storage, API compatible with Amazon S3 cloud storage service." \ - description="MinIO object storage is fundamentally different. Designed for performance and the S3 API, it is 100% open-source. MinIO is ideal for large, private cloud environments with stringent security requirements and delivers mission-critical availability across a diverse range of workloads." - -ENV MINIO_ACCESS_KEY_FILE=access_key \ - MINIO_SECRET_KEY_FILE=secret_key \ - MINIO_ROOT_USER_FILE=access_key \ - MINIO_ROOT_PASSWORD_FILE=secret_key \ - MINIO_KMS_SECRET_KEY_FILE=kms_master_key \ - MINIO_UPDATE_MINISIGN_PUBKEY="RWTx5Zr1tiHQLwG9keckT0c45M3AGeHD6IvimQHpyRywVWGbP1aVSGav" \ - MINIO_CONFIG_ENV_FILE=config.env - -RUN chmod -R 777 /usr/bin - -COPY --from=build /etc/ssl/certs/ca-certificates.crt /etc/ssl/certs/ -COPY --from=build /go/bin/minio* /usr/bin/ -COPY --from=build /go/bin/mc* /usr/bin/ -COPY --from=build /go/bin/cur* /usr/bin/ - -COPY CREDITS /licenses/CREDITS -COPY LICENSE /licenses/LICENSE -COPY dockerscripts/docker-entrypoint.sh /usr/bin/docker-entrypoint.sh - -EXPOSE 9000 -VOLUME ["/data"] - -ENTRYPOINT ["/usr/bin/docker-entrypoint.sh"] -CMD ["minio"] diff --git a/docker-buildx.sh b/docker-buildx.sh index 476908145..792f7a44a 100755 --- a/docker-buildx.sh +++ b/docker-buildx.sh @@ -32,12 +32,4 @@ docker buildx build --push --no-cache \ docker buildx prune -f -docker buildx build --push --no-cache \ - --build-arg RELEASE="${release}" \ - -t "minio/minio:${release}.fips" \ - -t "quay.io/minio/minio:${release}.fips" \ - --platform=linux/amd64 -f Dockerfile.release.fips . - -docker buildx prune -f - sudo sysctl net.ipv6.conf.all.disable_ipv6=0