From 7564009a4ba8a998ea4cecaa8f1e5135fec12b69 Mon Sep 17 00:00:00 2001
From: Tim Rizzi <trizzi@gitlab.com>
Date: Tue, 11 Mar 2025 13:51:30 -0700
Subject: [PATCH] Deprecate: s3v1 storage driver

---
 ...container-registry-s3v1-storage driver.yml | 24 +++++++++++++++++
 doc/update/breaking_windows.md                |  1 +
 doc/update/deprecations.md                    | 26 +++++++++++++++++++
 3 files changed, 51 insertions(+)
 create mode 100644 data/deprecations/17.10-container-registry-s3v1-storage driver.yml

diff --git a/data/deprecations/17.10-container-registry-s3v1-storage driver.yml b/data/deprecations/17.10-container-registry-s3v1-storage driver.yml
new file mode 100644
index 000000000000..eabcf2f4cf7c
--- /dev/null
+++ b/data/deprecations/17.10-container-registry-s3v1-storage driver.yml	
@@ -0,0 +1,24 @@
+- title: "S3 storage driver (AWS SDK v1) for the container registry"
+  announcement_milestone: "17.10"
+  removal_milestone: "18.0"
+  breaking_change: true
+  reporter: trizzi
+  stage: Package
+  issue_url: https://gitlab.com/gitlab-org/gitlab/-/issues/523095
+  impact: low
+  scope: instance
+  resolution_role: maintainer
+  manual_task: true
+  window: "3"
+  body: |
+    The S3 storage driver for the container registry that uses AWS SDK v1 is deprecated and will be removed in GitLab 18.0. If you use S3 object storage for your container registry, you'll need to update your configuration to use the new `s3_v2` driver.
+
+    The `s3_v2` storage driver is based on AWS SDK v2 and provides improved performance, better security, and continued support from AWS. It will be available starting May 2025 to replace the deprecated [AWS SDK v1](https://aws.amazon.com/blogs/developer/announcing-end-of-support-for-aws-sdk-for-go-v1-on-july-31-2025/), which reaches end-of-support on July 31, 2025.
+
+    To migrate to the `s3_v2` driver:
+
+    1. Update your registry configuration file to use the `s3_v2` configuration instead of `s3`.
+    1. Move from Signature Version 2 to Signature Version 4 for authentication if you haven't already, as AWS SDK v2 only supports Signature Version 4.
+    1. Test the configuration in a non-production environment before deploying to production.
+
+    For more information about updating your storage driver configuration, see [use object storage](https://docs.gitlab.com/administration/packages/container_registry/#use-object-storage).
diff --git a/doc/update/breaking_windows.md b/doc/update/breaking_windows.md
index c22d90ac4695..888fedb4df4f 100644
--- a/doc/update/breaking_windows.md
+++ b/doc/update/breaking_windows.md
@@ -100,4 +100,5 @@ This window takes place on May 5 - 7, 2025 from 09:00 UTC to 22:00 UTC.
 | [Dependency Proxy token scope enforcement](https://gitlab.com/gitlab-org/gitlab/-/issues/426887) | High | Package | Group |
 | [REST API endpoint `pre_receive_secret_detection_enabled` is deprecated](https://gitlab.com/gitlab-org/gitlab/-/issues/514413) | Medium | Application_security_testing | Instance |
 | [Remove duoProAssignedUsersCount GraphQL field](https://gitlab.com/gitlab-org/gitlab/-/issues/498671) | Low | Plan | Group, project |
+| [S3 storage driver (AWS SDK v1) for the container registry](https://gitlab.com/gitlab-org/gitlab/-/issues/523095) | Low | Package | Instance |
 | [Remove `previousStageJobsOrNeeds` from GraphQL](https://gitlab.com/gitlab-org/gitlab/-/issues/424417) | Low | Verify | Instance |
diff --git a/doc/update/deprecations.md b/doc/update/deprecations.md
index 1ba5bf0131e3..191794f7e9b9 100644
--- a/doc/update/deprecations.md
+++ b/doc/update/deprecations.md
@@ -1853,6 +1853,32 @@ In GitLab 18.0, only the runner registration methods implemented in the new GitL
 
 <div class="deprecation breaking-change" data-milestone="18.0">
 
+### S3 storage driver (AWS SDK v1) for the container registry
+
+<div class="deprecation-notes">
+
+- Announced in GitLab <span class="milestone">17.10</span>
+- Removal in GitLab <span class="milestone">18.0</span> ([breaking change](https://docs.gitlab.com/update/terminology/#breaking-change))
+- To discuss this change or learn more, see the [deprecation issue](https://gitlab.com/gitlab-org/gitlab/-/issues/523095).
+
+</div>
+
+The S3 storage driver for the container registry that uses AWS SDK v1 is deprecated and will be removed in GitLab 18.0. If you use S3 object storage for your container registry, you'll need to update your configuration to use the new `s3_v2` driver.
+
+The `s3_v2` storage driver is based on AWS SDK v2 and provides improved performance, better security, and continued support from AWS. It will be available starting May 2025 to replace the deprecated [AWS SDK v1](https://aws.amazon.com/blogs/developer/announcing-end-of-support-for-aws-sdk-for-go-v1-on-july-31-2025/), which reaches end-of-support on July 31, 2025.
+
+To migrate to the `s3_v2` driver:
+
+1. Update your registry configuration file to use the `s3_v2` configuration instead of `s3`.
+1. Move from Signature Version 2 to Signature Version 4 for authentication if you haven't already, as AWS SDK v2 only supports Signature Version 4.
+1. Test the configuration in a non-production environment before deploying to production.
+
+For more information about updating your storage driver configuration, see [use object storage](https://docs.gitlab.com/administration/packages/container_registry/#use-object-storage).
+
+</div>
+
+<div class="deprecation breaking-change" data-milestone="18.0">
+
 ### SAST jobs no longer use global cache settings
 
 <div class="deprecation-notes">
-- 
GitLab