lsm/seaweedfs
1
0
Fork 0
mirror of https://github.com/seaweedfs/seaweedfs.git synced 2026-01-09 19:24:45 +08:00
Code Issues Actions 16 Packages Projects Releases Wiki Activity
Files
caca3bf427232cc608530e5e44cdc7794caf38bf
seaweedfs/docker
History
Chris Lu caca3bf427 Enable FIPS 140-3 compliant crypto by default (#7590) 
* Enable FIPS 140-3 compliant crypto by default

Addresses #6889

- Enable GOEXPERIMENT=systemcrypto by default in all Makefiles
- Enable GOEXPERIMENT=systemcrypto by default in all Dockerfiles
- Go 1.24+ has native FIPS 140-3 support via this setting
- Users can disable by setting GOEXPERIMENT= (empty)

Algorithms used (all FIPS approved):
- AES-256-GCM for data encryption
- AES-256-CTR for SSE-C
- HMAC-SHA256 for S3 signatures
- TLS 1.2/1.3 for transport encryption

* Fix: Remove invalid GOEXPERIMENT=systemcrypto

Go 1.24 uses GODEBUG=fips140=on at runtime, not GOEXPERIMENT at build time.

- Remove GOEXPERIMENT=systemcrypto from all Makefiles
- Remove GOEXPERIMENT=systemcrypto from all Dockerfiles

FIPS 140-3 mode can be enabled at runtime:
  GODEBUG=fips140=on ./weed server ...

* Add FIPS 140-3 support enabled by default

Addresses #6889

- FIPS 140-3 mode is ON by default in Docker containers
- Sets GODEBUG=fips140=on via entrypoint.sh
- To disable: docker run -e GODEBUG=fips140=off ...
2025-12-01 12:17:58 -08:00
..
admin_integration
admin: Refactor task destination planning (#7063)
2025-08-01 11:18:32 -07:00
compose
Unify the parameter to disable dry-run on weed shell commands to -apply (instead of -force). (#7450)
2025-11-09 19:58:38 -08:00
nginx
docker-compose
2021-01-17 18:33:14 +05:00
prometheus
stats master_replica_placement_mismatch
2022-06-10 15:30:40 +05:00
tarantool
Tarantool filer store (#6669)
2025-03-29 21:12:06 -07:00
Dockerfile.e2e
docker: fix /data ownership and permission (#7451)
2025-11-08 01:10:33 -08:00
Dockerfile.foundationdb_large
filer store: add foundationdb (#7178)
2025-11-19 20:06:57 -08:00
Dockerfile.go_build
Enable FIPS 140-3 compliant crypto by default (#7590)
2025-12-01 12:17:58 -08:00
Dockerfile.local
HDFS: Java client replication configuration (#7526)
2025-11-25 00:03:54 -08:00
Dockerfile.rocksdb_dev_env
add on demand build
2025-09-16 23:45:00 -07:00
Dockerfile.rocksdb_large
docker: fix /data ownership and permission (#7451)
2025-11-08 01:10:33 -08:00
Dockerfile.rocksdb_large_local
docker: fix /data ownership and permission (#7451)
2025-11-08 01:10:33 -08:00
Dockerfile.s3tests
fix s3tests.conf file name
2024-06-24 17:15:16 -07:00
Dockerfile.tarantool.dev_env
Tarantool filer store (#6669)
2025-03-29 21:12:06 -07:00
entrypoint_e2e.sh
docker: fix /data ownership and permission (#7451)
2025-11-08 01:10:33 -08:00
entrypoint.sh
Enable FIPS 140-3 compliant crypto by default (#7590)
2025-12-01 12:17:58 -08:00
filer_foundationdb.toml
filer store: add foundationdb (#7178)
2025-11-19 20:06:57 -08:00
filer_rocksdb.toml
add filer.toml for rocksdb to docker image for rocksdb
2022-02-09 00:12:53 -08:00
filer.toml
filer: default to leveldb2
2019-06-30 00:44:57 -07:00
get_fdb_checksum.sh
filer store: add foundationdb (#7178)
2025-11-19 20:06:57 -08:00
Makefile
docker: fix /data ownership and permission (#7451)
2025-11-08 01:10:33 -08:00
README.md
refactor(compose)!: upgrade to v2 closes #3699 (#3705)
2022-10-16 14:02:33 -07:00
seaweedfs-compose.yml
Add explicit IP and binding parameters in Docker Compose (#7533)
2025-11-24 12:36:48 -08:00
seaweedfs-dev-compose.yml
Add explicit IP and binding parameters in Docker Compose (#7533)
2025-11-24 12:36:48 -08:00
seaweedfs.sql
filer.store.mysql: Use utf8mb4 instead of 3 byte UTF8 (#4094)
2023-01-01 05:07:53 -08:00
test.py
fix S3 per-user-directory Policy (#6443)
2025-01-17 01:03:17 -08:00

README.md

Docker

Compose V2

SeaweedFS now uses the v2 syntax docker compose

If you rely on using Docker Compose as docker-compose (with a hyphen), you can set up Compose V2 to act as a drop-in replacement of the previous docker-compose. Refer to the Installing Compose section for detailed instructions on upgrading.

Confirm your system has docker compose v2 with a version check

$ docker compose version
Docker Compose version v2.10.2

Try it out


wget https://raw.githubusercontent.com/seaweedfs/seaweedfs/master/docker/seaweedfs-compose.yml

docker compose -f seaweedfs-compose.yml -p seaweedfs up

Try latest tip


wget https://raw.githubusercontent.com/seaweedfs/seaweedfs/master/docker/seaweedfs-dev-compose.yml

docker compose -f seaweedfs-dev-compose.yml -p seaweedfs up

Local Development

cd $GOPATH/src/github.com/seaweedfs/seaweedfs/docker
make

S3 cmd

list

s3cmd --no-ssl --host=127.0.0.1:8333 ls s3://

Build and push a multiarch build

Make sure that docker buildx is supported (might be an experimental docker feature)

BUILDER=$(docker buildx create --driver docker-container --use)
docker buildx build --pull --push --platform linux/386,linux/amd64,linux/arm64,linux/arm/v7,linux/arm/v6 . -t chrislusf/seaweedfs
docker buildx stop $BUILDER

Minio debugging

mc config host add local http://127.0.0.1:9000 some_access_key1 some_secret_key1
mc admin trace --all --verbose local
Reference in New Issue View Git Blame Copy Permalink