feat: Add custom Docker build for package registry

[fred-maussion]

This PR introduces the capability for users to build a custom, lightweight Docker image for the Elastic Package Registry.

The official image includes all packages, which can be too heavy for environments that only require a subset. This feature allows users to create a smaller image containing only the packages relevant to their specific Kibana version, reducing the image footprint significantly based on the cmd/distrubution of @jsoriano

Changes:

1. Added Dockerfile.custom-registry : A new multi-stage Dockerfile that builds a custom image. It uses the cmd/distribution tool to download a specific set of packages before assembling the final image.

2. Added cmd/distribution/custom-packages.yml: A default configuration file for the custom build. Users can modify this file to define the exact set of packages they need.

3. Updated README.md : Added a new section on how to use the new Dockerfile and configuration to build a custom image, including an example of the resulting smaller image size.

This solves #1283 by providing a way for users to create optimized Package Registry images.

[prodsecmachine]

✅ Snyk checks have passed. No issues have been found so far.

Status	Scanner	Critical	High	Medium	Low	Total (0)
✅	Open Source Security	0	0	0	0	0 issues
✅	Licenses	0	0	0	0	0 issues

💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse.

[mrodm]

It would be helpful to add here the expected file path that users should use for their configuration files.

[fred-maussion]

fix with e972287

[mrodm]

Sorry, I was referring to add in this paragraph text the expected file (e.g. cmd/distribution/custom-packages.yml) to be created. And that file can be created based on the example one.

I think it is ok to keep using cmd/distribution/custom-packages.yml, so the example file is kept without changes in the working directory. But indicating in the documentation which file should be created.

This would also mean to revert the changes in the multi-stage dockerfile.

WDYT ?

[mrodm]

I see this change was related to this comment too
https://github.com/elastic/package-registry/pull/1554/changes/BASE..944d898d06acfe3cc7a973f1d1f01041e151bb26#r2820751820

Do you think it would be ok to just update the example file or create a new one ?

[elasticmachine]

💚 Build Succeeded

• Buildkite Build
• Commit: 32512ff

History

• 💚 Build #1707 succeeded 944d898
• 💚 Build #1699 succeeded c89ecfd
• 💔 Build #1698 failed 0515ec1
• 💔 Build #1664 failed 820aadc

[mrodm]

I was wondering if it could be possible to avoid duplicating the Dockerfile that builds the package-registry (stages 3 and 4 of this Dockerfile).

What about using in this Dockerfile the latest docker image of the Package Registry released or a known docker image? It could be set via a build argument so it can be set in the CLI while building the container too.

Given that, maybe this multi-stage Dockerfile could be updated to just 3 stages:

ARG GO_VERSION
ARG BUILDER_IMAGE=golang
# Example: docker.elastic.co/package-registry/package-registry:v1.36.0
ARG EPR_RUNNER_IMAGE

# STAGE 1: Build the 'distribution' tool
FROM --platform=${BUILDPLATFORM:-linux} ${BUILDER_IMAGE}:${GO_VERSION} AS distribution-builder
WORKDIR /src
COPY . .
ARG TARGETPLATFORM
# Build the distribution binary inside its own directory
RUN make -C cmd/distribution release-${TARGETPLATFORM:-linux/amd64}


# STAGE 2: Run the 'distribution' tool to download packages
FROM distribution-builder AS packager
# Copy the custom configuration for the packages we want
COPY ./cmd/distribution/examples/custom-packages.yaml .
# Run the tool. It will create the packages in 'build/distribution/'
RUN ./cmd/distribution/distribution ./cmd/distribution/examples/custom-packages.yaml


# STAGE 3: Final image assembly
FROM ${EPR_RUNNER_IMAGE}

COPY --from=packager /src/build/distribution/. /packages/package-registry/

And in the README, the instructions could be updated to be like:

# Ensure to pick the latest EPR docker image (tag) released as EPR_RUNNER_IMAGE build argument
# Or, it could be used another EPR docker image if needed
# Example using tags:
git fetch --tags
latest_version=$(git tag --sort=version:refname | tail -n 1)
epr_image="docker.elastic.co/package-registry/package-registry:$(latest_version)"

# Or, it could be used another EPR docker image if needed
# Example
epr_image="docker.elastic.co/package-registry/package-registry:v1.36.0"

docker build \
  --build-arg GO_VERSION="$(cat .go-version)" \
  --build-arg EPR_RUNNER_IMAGE="${epr_image}" \
  -f Dockerfile.custom-registry \
  -t custom-package-registry .

This is an example based on tags, but the user building this custom image could be setting directly a specific docker EPR image tag.

WDYT @fred-maussion ?

[mrodm]

It could be interesting to keep GO_VERSION and EPR_RUNNER_IMAGE to be without value to force setting those values as build arguments in the docker build command:

ARG GO_VERSION
ARG BUILDER_IMAGE=golang
# Example: docker.elastic.co/package-registry/package-registry:v1.36.0
ARG EPR_RUNNER_IMAGE

[mrodm]

Sorry, I was referring to add in this paragraph text the expected file (e.g. cmd/distribution/custom-packages.yml) to be created. And that file can be created based on the example one.

I think it is ok to keep using cmd/distribution/custom-packages.yml, so the example file is kept without changes in the working directory. But indicating in the documentation which file should be created.

This would also mean to revert the changes in the multi-stage dockerfile.

WDYT ?

[mrodm]

I see this change was related to this comment too
https://github.com/elastic/package-registry/pull/1554/changes/BASE..944d898d06acfe3cc7a973f1d1f01041e151bb26#r2820751820

Do you think it would be ok to just update the example file or create a new one ?