refactor(libstore): replace AWS SDK with curl-based S3 implementation

This commit replaces the AWS C++ SDK with a lighter curl-based approach for S3 binary cache operations. - Removed dependency on the heavy aws-cpp-sdk-s3 and aws-cpp-sdk-transfer - Added lightweight aws-crt-cpp for credential resolution only - Leverages curl's native AWS SigV4 authentication (requires curl >= 7.75.0) - S3BinaryCacheStore now delegates to HttpBinaryCacheStore - Function s3ToHttpsUrl converts ParsedS3URL to ParsedURL - Multipart uploads are no longer supported (may be reimplemented later) - Build now requires curl >= 7.75.0 for AWS SigV4 support Fixes: #13084, #12671, #11748, #12403, #5947
2025-11-08 19:46:02 +01:00 · 2025-08-21 05:38:42 +00:00 · 2025-08-21 05:38:42 +00:00 · 9295c14a35
commit 9295c14a35
parent a543519ca9
18 changed files with 14 additions and 1002 deletions
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@ -67,8 +67,7 @@ jobs:
            instrumented: false
            primary: true
            stdenv: stdenv
-            withAWS: true
-            withCurlS3: false
+            withCurlS3: true
          # TODO: remove once curl-based-s3 fully lands
          - scenario: on ubuntu (no s3)
            runs-on: ubuntu-24.04
@ -76,33 +75,21 @@ jobs:
            instrumented: false
            primary: false
            stdenv: stdenv
-            withAWS: false
            withCurlS3: false
-          # TODO: remove once curl-based-s3 fully lands
-          - scenario: on ubuntu (curl s3)
-            runs-on: ubuntu-24.04
-            os: linux
-            instrumented: false
-            primary: false
-            stdenv: stdenv
-            withAWS: false
-            withCurlS3: true
          - scenario: on macos
            runs-on: macos-14
            os: darwin
            instrumented: false
            primary: true
            stdenv: stdenv
-            withAWS: true
-            withCurlS3: false
+            withCurlS3: true
          - scenario: on ubuntu (with sanitizers / coverage)
            runs-on: ubuntu-24.04
            os: linux
            instrumented: true
            primary: false
            stdenv: clangStdenv
-            withAWS: true
-            withCurlS3: false
+            withCurlS3: true
    name: tests ${{ matrix.scenario }}
    runs-on: ${{ matrix.runs-on }}
    timeout-minutes: 60
@ -126,14 +113,12 @@ jobs:
        nix build --file ci/gha/tests/wrapper.nix componentTests -L \
          --arg withInstrumentation ${{ matrix.instrumented }} \
          --argstr stdenv "${{ matrix.stdenv }}" \
-          ${{ format('--arg withAWS {0}', matrix.withAWS) }} \
          ${{ format('--arg withCurlS3 {0}', matrix.withCurlS3) }}
    - name: Run VM tests
      run: |
        nix build --file ci/gha/tests/wrapper.nix vmTests -L \
          --arg withInstrumentation ${{ matrix.instrumented }} \
          --argstr stdenv "${{ matrix.stdenv }}" \
-          ${{ format('--arg withAWS {0}', matrix.withAWS) }} \
          ${{ format('--arg withCurlS3 {0}', matrix.withCurlS3) }}
      if: ${{ matrix.os == 'linux' }}
    - name: Run flake checks and prepare the installer tarball
@ -146,7 +131,6 @@ jobs:
        nix build --file ci/gha/tests/wrapper.nix codeCoverage.coverageReports -L \
          --arg withInstrumentation ${{ matrix.instrumented }} \
          --argstr stdenv "${{ matrix.stdenv }}" \
-          ${{ format('--arg withAWS {0}', matrix.withAWS) }} \
          ${{ format('--arg withCurlS3 {0}', matrix.withCurlS3) }} \
          --out-link coverage-reports
        cat coverage-reports/index.txt >> $GITHUB_STEP_SUMMARY