国内本地WSL2编译rancher源码

rancher编译

一 、环境准备

1.确定 wsl能够上网，我本地采用桥接模式，这样同一个局域网 的电脑也可以直接访问wsl。桥接模式配置如下:

a. 在.wslconfig 文件中配置如下:

[wsl2]
networkingMode=bridged
vmSwitch=WSL-Bridge
dhcp=true
ipv6=true

b. 打开hyper-v管理器

创建虚拟交换机，绑定本地的可上网网卡即可。新生成的桥的ip地址和无线网卡处于同一网段如图

这样就能上网了。当然其他如默认的nat或者mirror方式都可以。

2. wsl安装fastgithub服务

你懂的，rancher和k3s需要从github上下载很多源码和依赖，需要fastgithub来加速。下载地址为github.com/creazyboyon... 下载到本地，解压。并启动服务如图

3 更改docker镜像源为国内

```
  {
    "registry-mirrors": [
        "https://proxy.1panel.live",
        "https://proxy.1panel.top",
        "https://docker.1ms.run",
        "https://docker.m.daocloud.io",
        "https://dockerproxy.com",
        "https://docker.mirrors.ustc.edu.cn",
        "https://docker.nju.edu.cn"
]

}

4. 下载rancher 源码

我下载的是2.11的版本，编译参考链接

1. github.com/rancher/ran...
2. 如果源码源码路径为/opt/code/rancher/ 那么更改 package/Dockerfile 如下:

ARG ARCH=amd64

ARG BUILD_WORKDIR=/app

ARG GODEP_APISERVER=scratch
ARG GODEP_APISERVER_PATH
ARG GODEP_LASSO=scratch
ARG GODEP_LASSO_PATH
ARG GODEP_NORMAN=scratch
ARG GODEP_NORMAN_PATH
ARG GODEP_REMOTEDIALER=scratch
ARG GODEP_REMOTEDIALER_PATH
ARG GODEP_SHEPHERD=scratch
ARG GODEP_SHEPHERD_PATH
ARG GODEP_STEVE=scratch
ARG GODEP_STEVE_PATH
ARG GODEP_WRANGLER=scratch
ARG GODEP_WRANGLER_PATH

ARG CHART_DEFAULT_BRANCH=dev-v2.11
ARG PARTNER_CHART_DEFAULT_BRANCH=main
ARG RKE2_CHART_DEFAULT_BRANCH=main
# kontainer-driver-metadata branch to be set for specific branch other than dev/master, logic at rancher/rancher/pkg/settings/setting.go
ARG CATTLE_KDM_BRANCH=dev-v2.11

ARG VERSION=${VERSION}

FROM --platform=$BUILDPLATFORM ${GODEP_APISERVER} AS godep-apiserver
FROM --platform=$BUILDPLATFORM ${GODEP_LASSO} AS godep-lasso
FROM --platform=$BUILDPLATFORM ${GODEP_NORMAN} AS godep-norman
FROM --platform=$BUILDPLATFORM ${GODEP_REMOTEDIALER} AS godep-remotedialer
FROM --platform=$BUILDPLATFORM ${GODEP_SHEPHERD} AS godep-shepherd
FROM --platform=$BUILDPLATFORM ${GODEP_STEVE} AS godep-steve
FROM --platform=$BUILDPLATFORM ${GODEP_WRANGLER} AS godep-wrangler

FROM registry.suse.com/bci/bci-micro:15.7 AS final
RUN : # No-op command to create an explicit layer - this fixes a weird buildkit/buildx bug on macos arm

# Temporary build stage image
FROM registry.suse.com/bci/bci-base:15.7 AS chroot-builder
# Install system packages using builder image that has zypper
COPY --from=final / /chroot/
# Install some packages with zypper in the chroot of the final micro image
RUN zypper refresh && \
  zypper --installroot /chroot -n in --no-recommends \
  curl util-linux ca-certificates ca-certificates-mozilla xz gzip tar gawk vim-small \
  openssh-clients openssl patterns-base-fips && \
  zypper --installroot /chroot clean -a && \
  rm -rf /chroot/var/cache/zypp/* /chroot/var/log/zypp/* /chroot/tmp/* /chroot/var/tmp/* /chroot/usr/share/doc/packages/*


FROM chroot-builder AS chroot-builder-server
COPY --from=final / /chroot/
RUN zypper refresh && \
  zypper --installroot /chroot -n in --no-recommends \
  git-core unzip sed shadow netcat-openbsd mkisofs && \
  zypper --installroot /chroot clean -a && \
  rm -rf /chroot/var/cache/zypp/* /chroot/var/log/zypp/* /chroot/tmp/* /chroot/var/tmp/* /chroot/usr/share/doc/packages/*


FROM chroot-builder AS chroot-builder-agent
COPY --from=final / /chroot/
RUN zypper refresh && \
  zypper --installroot /chroot -n in --no-recommends \
  jq git-core hostname iproute2 less bash-completion bind-utils acl sysstat && \
  zypper --installroot /chroot clean -a && \
  rm -rf /chroot/var/cache/zypp/* /chroot/var/log/zypp/* /chroot/tmp/* /chroot/var/tmp/* /chroot/usr/share/doc/packages/*


FROM final AS builder
COPY --from=chroot-builder-server /chroot/ /

FROM --platform=$BUILDPLATFORM registry.suse.com/bci/golang:1.24 AS go-builder
ARG CGO_ENABLED=0
ENV CGO_ENABLED=$CGO_ENABLED
ENV GOMODCACHE=/root/.cache/go/modcache
ENV pGOCACHE=/root/.cache/go/cache




FROM builder AS rancher-charts
ARG CHART_DEFAULT_BRANCH
RUN git config --global http.https://github.com.proxy http://localhost:38457 \
  && git config --global https.https://github.com.proxy https://localhost:38457 \
  && mkdir -p /var/lib/rancher-data/local-catalogs/v2 && \
  # Temporarily clone from our GitHub's main repo, to avoid unnecessary load in git.rancher.io
  git config --global url."https://github.com/rancher/".insteadOf https://git.rancher.io/ && git config --global http.sslVerify false && \
  # Charts need to be copied into the sha256 value of git url computed in https://github.com/rancher/rancher/blob/5ebda9ac23c06e9647b586ec38aa51cc9ff9b031/pkg/catalogv2/git/download.go#L102 to create a unique folder per url
  git clone -b $CHART_DEFAULT_BRANCH --depth 1 https://github.com/rancher/charts /var/lib/rancher-data/local-catalogs/v2/rancher-charts/4b40cac650031b74776e87c1a726b0484d0877c3ec137da0872547ff9b73a721 

# \
#   && git config --global  --unset https.https://github.com.proxy \
#   && git config --global  --unset http.https://github.com.proxy 


FROM builder AS partner-charts
ARG PARTNER_CHART_DEFAULT_BRANCH
RUN git config --global http.https://github.com.proxy http://localhost:38457 \
  && git config --global https.https://github.com.proxy https://localhost:38457 \
  && mkdir -p /var/lib/rancher-data/local-catalogs/v2 && \
  # Temporarily clone from our GitHub's main repo, to avoid unnecessary load in git.rancher.io
  git config --global url."https://github.com/rancher/".insteadOf https://git.rancher.io/ &&   git config --global http.sslVerify false && \
  # Charts need to be copied into the sha256 value of git url computed in https://github.com/rancher/rancher/blob/5ebda9ac23c06e9647b586ec38aa51cc9ff9b031/pkg/catalogv2/git/download.go#L102 to create a unique folder per url
  git clone -b $PARTNER_CHART_DEFAULT_BRANCH --depth 1 https://github.com/rancher/partner-charts /var/lib/rancher-data/local-catalogs/v2/rancher-partner-charts/8f17acdce9bffd6e05a58a3798840e408c4ea71783381ecd2e9af30baad65974 
#\
#&& git config --global  --unset https.https://github.com.proxy \
#    && git config --global  --unset http.https://github.com.proxy

FROM builder AS rke2-charts
ARG RKE2_CHART_DEFAULT_BRANCH
RUN git config --global http.https://github.com.proxy http://localhost:38457 \
  && git config --global https.https://github.com.proxy https://localhost:38457 \
  && mkdir -p /var/lib/rancher-data/local-catalogs/v2 && \
  # Temporarily clone from our GitHub's main repo, to avoid unnecessary load in git.rancher.io
  git config --global url."https://github.com/rancher/".insteadOf https://git.rancher.io/ &&  git config --global http.sslVerify false && \
  # Charts need to be copied into the sha256 value of git url computed in https://github.com/rancher/rancher/blob/5ebda9ac23c06e9647b586ec38aa51cc9ff9b031/pkg/catalogv2/git/download.go#L102 to create a unique folder per url
  git clone -b $RKE2_CHART_DEFAULT_BRANCH --depth 1 https://github.com/rancher/rke2-charts /var/lib/rancher-data/local-catalogs/v2/rancher-rke2-charts/675f1b63a0a83905972dcab2794479ed599a6f41b86cd6193d69472d0fa889c9 \
&& git config --global  --unset https.https://github.com.proxy \
  && git config --global  --unset http.https://github.com.proxy

FROM builder AS kdm
ARG CATTLE_KDM_BRANCH
RUN mkdir -p /var/lib/rancher-data/driver-metadata 
COPY ./package/download/data.json /var/lib/rancher-data/driver-metadata/data.json

# curl -sLf https://releases.rancher.com/kontainer-driver-metadata/${CATTLE_KDM_BRANCH}/data.json > /var/lib/rancher-data/driver-metadata/data.json


FROM builder AS tini
ARG ARCH
ENV TINI_VERSION=v0.18.0
ENV TINI_URL_amd64=https://github.com/krallin/tini/releases/download/${TINI_VERSION}/tini \
  TINI_URL_arm64=https://github.com/krallin/tini/releases/download/${TINI_VERSION}/tini-arm64 \
  TINI_URL_s390x=https://github.com/krallin/tini/releases/download/${TINI_VERSION}/tini-s390x \
  TINI_URL=TINI_URL_${ARCH}
RUN curl -sLf ${!TINI_URL} > /usr/bin/tini && \
  chmod +x /usr/bin/tini


# Main stage using bci-micro as the base image
FROM final AS base
# Copy binaries and configuration files from builder to micro
COPY --from=chroot-builder-server /chroot/ /

# Test that some of the dependency binaries were copied
# and are working on the target image.
RUN /usr/bin/unshare --version && \
  /usr/bin/mount --version && \
  /usr/bin/umount --version && \
  /usr/bin/nsenter --version

RUN useradd rancher && \
  groupadd jail-accessors && \
  usermod -aG jail-accessors rancher && \
  mkdir -p /var/lib/rancher /var/lib/cattle /opt/jail /opt/drivers/management-state/bin && \
  chgrp jail-accessors /var/lib/rancher /var/lib/cattle /usr/local/bin && \
  chmod 750            /var/lib/rancher /var/lib/cattle /usr/local/bin && \
  chmod g+s            /var/lib/rancher /var/lib/cattle /usr/local/bin

RUN mkdir /root/.kube && \
  ln -s /etc/rancher/k3s/k3s.yaml /root/.kube/k3s.yaml  && \
  ln -s /etc/rancher/k3s/k3s.yaml /root/.kube/config && \
  ln -s /usr/bin/rancher /usr/bin/reset-password && \
  ln -s /usr/bin/rancher /usr/bin/ensure-default-admin
WORKDIR /var/lib/rancher

ARG ARCH
ARG ETCD_UNSUPPORTED_ARCH
ARG IMAGE_REPO=rancher
ARG CHART_DEFAULT_BRANCH
ARG PARTNER_CHART_DEFAULT_BRANCH
ARG RKE2_CHART_DEFAULT_BRANCH
ARG CATTLE_KDM_BRANCH

ENV CATTLE_CHART_DEFAULT_BRANCH=$CHART_DEFAULT_BRANCH
ENV CATTLE_PARTNER_CHART_DEFAULT_BRANCH=$PARTNER_CHART_DEFAULT_BRANCH
ENV CATTLE_RKE2_CHART_DEFAULT_BRANCH=$RKE2_CHART_DEFAULT_BRANCH
ENV CATTLE_MACHINE_VERSION=v0.15.0-rancher127
ENV CATTLE_K3S_VERSION=v1.32.1+k3s1
ENV CATTLE_MACHINE_PROVISION_IMAGE=rancher/machine:${CATTLE_MACHINE_VERSION}
ENV CATTLE_ETCD_VERSION=v3.5.16
ENV DOCKER_MACHINE_LINODE_VERSION=v0.1.15
ENV LINODE_UI_DRIVER_VERSION=v0.7.0
# make sure the version number is consistent with the one at Line 100 of pkg/data/management/machinedriver_data.go
ENV DOCKER_MACHINE_HARVESTER_VERSION=v1.0.2
ENV CATTLE_KDM_BRANCH=${CATTLE_KDM_BRANCH}
ENV CATTLE_WINS_AGENT_VERSION=v0.5.1
ENV CATTLE_WINS_AGENT_INSTALL_SCRIPT=https://raw.githubusercontent.com/rancher/wins/${CATTLE_WINS_AGENT_VERSION}/install.ps1
ENV CATTLE_WINS_AGENT_UNINSTALL_SCRIPT=https://raw.githubusercontent.com/rancher/wins/${CATTLE_WINS_AGENT_VERSION}/uninstall.ps1
ENV CATTLE_WINS_AGENT_UPGRADE_IMAGE=rancher/wins:${CATTLE_WINS_AGENT_VERSION}
ENV CATTLE_CSI_PROXY_AGENT_VERSION=v1.1.3
# make sure the CATTLE_SYSTEM_AGENT_VERSION is consistent with tests/v2/codecoverage/package/Dockerfile
ENV CATTLE_SYSTEM_AGENT_VERSION=v0.3.12
ENV CATTLE_SYSTEM_AGENT_DOWNLOAD_PREFIX=https://github.com/rancher/system-agent/releases/download
ENV CATTLE_SYSTEM_AGENT_UPGRADE_IMAGE=rancher/system-agent:${CATTLE_SYSTEM_AGENT_VERSION}-suc
ENV CATTLE_SYSTEM_AGENT_INSTALLER_IMAGE=rancher/system-agent-installer-
# make sure the ENV CATTLE_SYSTEM_AGENT_INSTALL_SCRIPT is consistent with pkg/settings/setting.go to utlize the local version of install script downloaded during build/package
ENV CATTLE_SYSTEM_AGENT_INSTALL_SCRIPT=${CATTLE_SYSTEM_AGENT_DOWNLOAD_PREFIX}/${CATTLE_SYSTEM_AGENT_VERSION}/install.sh
ENV CATTLE_SYSTEM_AGENT_UNINSTALL_SCRIPT=${CATTLE_SYSTEM_AGENT_DOWNLOAD_PREFIX}/${CATTLE_SYSTEM_AGENT_VERSION}/system-agent-uninstall.sh
ENV CATTLE_SYSTEM_UPGRADE_CONTROLLER_CHART_VERSION=106.0.0

# AKS,EKS,GKE Operator charts versions
ARG CATTLE_AKS_OPERATOR_VERSION
ENV CATTLE_AKS_OPERATOR_VERSION=$CATTLE_AKS_OPERATOR_VERSION
ARG CATTLE_EKS_OPERATOR_VERSION
ENV CATTLE_EKS_OPERATOR_VERSION=$CATTLE_EKS_OPERATOR_VERSION
ARG CATTLE_GKE_OPERATOR_VERSION
ENV CATTLE_GKE_OPERATOR_VERSION=$CATTLE_GKE_OPERATOR_VERSION

# System charts minimal version
# Deprecated in favor of CATTLE_FLEET_VERSION.
ENV CATTLE_FLEET_MIN_VERSION=""
ARG CATTLE_FLEET_VERSION
ENV CATTLE_FLEET_VERSION=$CATTLE_FLEET_VERSION
ARG CATTLE_RANCHER_WEBHOOK_VERSION
ENV CATTLE_RANCHER_WEBHOOK_VERSION=$CATTLE_RANCHER_WEBHOOK_VERSION
ARG CATTLE_REMOTEDIALER_PROXY_VERSION
ENV CATTLE_REMOTEDIALER_PROXY_VERSION=$CATTLE_REMOTEDIALER_PROXY_VERSION
ARG CATTLE_RANCHER_PROVISIONING_CAPI_VERSION
ENV CATTLE_RANCHER_PROVISIONING_CAPI_VERSION=$CATTLE_RANCHER_PROVISIONING_CAPI_VERSION
ARG CATTLE_CSP_ADAPTER_MIN_VERSION
ENV CATTLE_CSP_ADAPTER_MIN_VERSION=$CATTLE_CSP_ADAPTER_MIN_VERSION

COPY --from=rancher-charts /var/lib/rancher-data/local-catalogs/v2/rancher-charts/4b40cac650031b74776e87c1a726b0484d0877c3ec137da0872547ff9b73a721 /var/lib/rancher-data/local-catalogs/v2/rancher-charts/4b40cac650031b74776e87c1a726b0484d0877c3ec137da0872547ff9b73a721
COPY --from=partner-charts /var/lib/rancher-data/local-catalogs/v2/rancher-partner-charts/8f17acdce9bffd6e05a58a3798840e408c4ea71783381ecd2e9af30baad65974 /var/lib/rancher-data/local-catalogs/v2/rancher-partner-charts/8f17acdce9bffd6e05a58a3798840e408c4ea71783381ecd2e9af30baad65974
COPY --from=rke2-charts /var/lib/rancher-data/local-catalogs/v2/rancher-rke2-charts/675f1b63a0a83905972dcab2794479ed599a6f41b86cd6193d69472d0fa889c9 /var/lib/rancher-data/local-catalogs/v2/rancher-rke2-charts/675f1b63a0a83905972dcab2794479ed599a6f41b86cd6193d69472d0fa889c9

COPY ./package/download/docker-machine-driver-linode_linux-amd64.zip .
COPY ./package/download/rancher-machine-amd64.tar.gz .
COPY ./package/download/docker-machine-driver-harvester-amd64.tar.gz .

RUN  tar xvzf ./rancher-machine-amd64.tar.gz  -C /usr/bin && \
  chown root:root /usr/bin/rancher-machine && \
  unzip ./docker-machine-driver-linode_linux-${ARCH}.zip -d /opt/drivers/management-state/bin && \
  mkdir -p /usr/share/rancher/ui/assets/ && \
  ln -s /opt/drivers/management-state/bin/docker-machine-driver-linode /usr/share/rancher/ui/assets/ && \
  rm docker-machine-driver-linode_linux-${ARCH}.zip

RUN tar -xf docker-machine-driver-harvester-${ARCH}.tar.gz -C /opt/drivers/management-state/bin && \
  ln -s /opt/drivers/management-state/bin/docker-machine-driver-harvester /usr/share/rancher/ui/assets/ && \
  rm docker-machine-driver-harvester-${ARCH}.tar.gz

ENV ETCD_URL=https://github.com/etcd-io/etcd/releases/download/${CATTLE_ETCD_VERSION}/etcd-${CATTLE_ETCD_VERSION}-linux-${ARCH}.tar.gz

# Set up K3s: copy the necessary binaries from the K3s image.
COPY --from=rancher/k3s:v1.32.1-k3s1 \
  /bin/blkid \
  /bin/bandwidth \
  /bin/cni \
  /bin/conntrack \
  /bin/containerd \
  /bin/containerd-shim-runc-v2 \
  /bin/ethtool \
  /bin/firewall \
  /bin/ip \
  /bin/ipset \
  /bin/k3s \
  /bin/losetup \
  /bin/pigz \
  /bin/runc \
  /bin/which \
  /bin/aux/xtables-legacy-multi \
  /usr/bin/

RUN ln -s /usr/bin/cni /usr/bin/bridge && \
  ln -s /usr/bin/cni /usr/bin/flannel && \
  ln -s /usr/bin/cni /usr/bin/host-local && \
  ln -s /usr/bin/cni /usr/bin/loopback && \
  ln -s /usr/bin/cni /usr/bin/portmap && \
  ln -s /usr/bin/k3s /usr/bin/crictl && \
  ln -s /usr/bin/k3s /usr/bin/ctr && \
  ln -s /usr/bin/k3s /usr/bin/k3s-agent && \
  ln -s /usr/bin/k3s /usr/bin/k3s-etcd-snapshot && \
  ln -s /usr/bin/k3s /usr/bin/k3s-server && \
  ln -s /usr/bin/k3s /usr/bin/kubectl && \
  ln -s /usr/bin/pigz /usr/bin/unpigz && \
  ln -s /usr/bin/xtables-legacy-multi /usr/bin/iptables && \
  ln -s /usr/bin/xtables-legacy-multi /usr/bin/iptables-save && \
  ln -s /usr/bin/xtables-legacy-multi /usr/bin/iptables-restore && \
  ln -s /usr/bin/xtables-legacy-multi /usr/bin/iptables-translate && \
  ln -s /usr/bin/xtables-legacy-multi /usr/bin/ip6tables && \
  ln -s /usr/bin/xtables-legacy-multi /usr/bin/ip6tables-save && \
  ln -s /usr/bin/xtables-legacy-multi /usr/bin/ip6tables-restore && \
  ln -s /usr/bin/xtables-legacy-multi /usr/bin/ip6tables-translate

COPY --from=tini /usr/bin/tini /usr/bin/tini
COPY ./package/download/etcd-v3.5.16-linux-amd64.tar.gz .

RUN mkdir -p /var/lib/rancher/k3s/agent/images/ && \
  tar xvzf etcd-v3.5.16-linux-amd64.tar.gz --strip-components=1 --no-same-owner -C /usr/bin/ etcd-${CATTLE_ETCD_VERSION}-linux-${ARCH}/etcdctl && \
  mkdir -p /var/lib/rancher-data/driver-metadata

ENV CATTLE_UI_VERSION=2.11.9-alpha2
ENV CATTLE_DASHBOARD_UI_VERSION=v2.11.9-alpha2

ENV CATTLE_CLI_VERSION=v2.11.9

# Base UI brand used as a fallback env setting (not user facing) to indicate this is a non-prime install
ENV CATTLE_BASE_UI_BRAND=

# Please update the api-ui-version in pkg/settings/settings.go when updating the version here.
ENV CATTLE_API_UI_VERSION=1.1.11

RUN mkdir -p /var/log/auditlog
ENV AUDIT_LOG_PATH=/var/log/auditlog/rancher-api-audit.log
ENV AUDIT_LOG_MAXAGE=10
ENV AUDIT_LOG_MAXBACKUP=10
ENV AUDIT_LOG_MAXSIZE=100
ENV AUDIT_LEVEL=0

COPY ./package/download/2.11.9-alpha2.tar.gz .

RUN mkdir -p /usr/share/rancher/ui && \
  cp ./2.11.9-alpha2.tar.gz  /usr/share/rancher/ui/ && \
  cd /usr/share/rancher/ui && \
  tar xvzf ./2.11.9-alpha2.tar.gz --strip-components=1 
COPY ./package/download/component.js .
COPY ./package/download/component.css .
COPY ./package/download/linode.svg .

RUN mkdir -p assets/rancher-ui-driver-linode && \
  cp ./component.js   assets/rancher-ui-driver-linode\ && \
  cp ./component.css  assets/rancher-ui-driver-linode\ && \
  cp ./linode.svg  assets/rancher-ui-driver-linode\linode.svg && \
  cd assets/rancher-ui-driver-linode 

COPY ./package/download/1.1.11.tar.gz .
COPY ./package/download/v2.13.0-alpha5.tar.gz .

RUN mkdir -p /usr/share/rancher/ui/api-ui && \
  cp ./1.1.11.tar.gz /usr/share/rancher/ui/api-ui/ && \
  cp ./v2.13.0-alpha5.tar.gz /usr/share/rancher/ui/api-ui/ && \
  cd /usr/share/rancher/ui/api-ui && \
  tar xvzf ./1.1.11.tar.gz  --strip-components=1 
RUN mkdir -p /usr/share/rancher/ui-dashboard/dashboard && \
  cp ./v2.13.0-alpha5.tar.gz /usr/share/rancher/ui-dashboard/dashboard/ && \
  cd /usr/share/rancher/ui-dashboard/dashboard && \
  tar xvzf ./v2.13.0-alpha5.tar.gz  --strip-components=2 && \
  ln -s dashboard/index.html ../index.html  

COPY ./package/download/rancher-system-agent-arm64 /usr/share/rancher/ui/assets/
COPY ./package/download/rancher-system-agent-amd64 /usr/share/rancher/ui/assets/

COPY ./package/download/install.sh /usr/share/rancher/ui/assets/system-agent-install.sh
COPY ./package/download/system-agent-uninstall.sh /usr/share/rancher/ui/assets/system-agent-uninstall.sh
COPY ./package/download/wins.exe /usr/share/rancher/ui/assets/wins.exe
COPY ./package/download/install.ps1 /usr/share/rancher/ui/assets/wins-agent-install.ps1
COPY ./package/download/uninstall.ps1 /usr/share/rancher/ui/assets/wins-agent-uninstall.ps1
COPY ./package/download/csi-proxy-v1.1.3.tar.gz /usr/share/rancher/ui/assets/csi-proxy-v1.1.3.tar.gz

RUN  cd /usr/share/rancher/ui/assets 
  
  #curl -sfL ${CATTLE_SYSTEM_AGENT_DOWNLOAD_PREFIX}/${CATTLE_SYSTEM_AGENT_VERSION}/rancher-system-agent-arm64 -O && \
  #curl -sfL ${CATTLE_SYSTEM_AGENT_DOWNLOAD_PREFIX}/${CATTLE_SYSTEM_AGENT_VERSION}/rancher-system-agent-amd64 -O && \
  #curl -sfL ${CATTLE_SYSTEM_AGENT_INSTALL_SCRIPT} -o system-agent-install.sh && \
  #curl -sfL ${CATTLE_SYSTEM_AGENT_UNINSTALL_SCRIPT} -o system-agent-uninstall.sh && \
  #curl -sfL https://github.com/rancher/wins/releases/download/${CATTLE_WINS_AGENT_VERSION}/wins.exe -O && \
  #curl -sfL https://acs-mirror.azureedge.net/csi-proxy/${CATTLE_CSI_PROXY_AGENT_VERSION}/binaries/csi-proxy-${CATTLE_CSI_PROXY_AGENT_VERSION}.tar.gz -O && \
  #curl -sfL ${CATTLE_WINS_AGENT_INSTALL_SCRIPT} -o wins-agent-install.ps1 \
  #curl -sfL ${CATTLE_WINS_AGENT_UNINSTALL_SCRIPT} -o wins-agent-uninstall.ps1

ENV GOPROXY=https://goproxy.cn,direct
#come here
ENV CATTLE_CLI_URL_DARWIN=https://releases.rancher.com/cli2/${CATTLE_CLI_VERSION}/rancher-darwin-amd64-${CATTLE_CLI_VERSION}.tar.gz
ENV CATTLE_CLI_URL_LINUX=https://releases.rancher.com/cli2/${CATTLE_CLI_VERSION}/rancher-linux-amd64-${CATTLE_CLI_VERSION}.tar.gz
ENV CATTLE_CLI_URL_WINDOWS=https://releases.rancher.com/cli2/${CATTLE_CLI_VERSION}/rancher-windows-386-${CATTLE_CLI_VERSION}.zip

COPY --from=kdm /var/lib/rancher-data/driver-metadata/data.json /var/lib/rancher-data/driver-metadata/data.json

ENV ETCDCTL_API=3

ENV SSL_CERT_DIR=/etc/rancher/ssl
ENV ETCD_UNSUPPORTED_ARCH=${ETCD_UNSUPPORTED_ARCH}


# Enable exporting of the k3s images as part of the build process.
#FROM --platform=$BUILDPLATFORM go-builder AS images
#ENV GOPROXY=https://goproxy.cn,direct
#ENV GO111MODULE=on
#WORKDIR /src
#ENV CGO_ENABLED=1
#ENV CATTLE_K3S_VERSION=v1.32.1+k3s1
#RUN zypper -n install libbtrfs-devel libgpgme-devel
#COPY hack/airgap/go.mod hack/airgap/go.sum /src/
#RUN --mount=type=cache,target=/root/.cache,id=rancher go mod download
#COPY hack/airgap/ /src/
#RUN --mount=type=cache,target=/root/.cache,id=rancher go build -tags k3s_export -o export-images ./...
#RUN ./export-images -k3s-version ${CATTLE_K3S_VERSION} -output /src/k3s-airgap-images.tar

# Output just k3s images
FROM scratch AS k3s-images
COPY ./package/download/k3s-airgap-images-amd64.tar /k3s-airgap-images.tar
ENV CATTLE_K3S_VERSION=v1.32.1+k3s1

# rancher-go-builder is an intermediate stage with go mod ready and Rancher
# dependencies downloaded. Can be used to build both the Rancher server and agent
# binaries.
FROM --platform=$BUILDPLATFORM go-builder AS rancher-go-builder
ENV GOPROXY=https://goproxy.cn,direct
ENV GO111MODULE=on
ARG BUILD_WORKDIR
WORKDIR ${BUILD_WORKDIR}
ARG GODEP_APISERVER_PATH
COPY --from=godep-apiserver / ${GODEP_APISERVER_PATH}
ARG GODEP_LASSO_PATH
COPY --from=godep-lasso / ${GODEP_LASSO_PATH}
ARG GODEP_NORMAN_PATH
COPY --from=godep-norman / ${GODEP_NORMAN_PATH}
ARG GODEP_REMOTEDIALER_PATH
COPY --from=godep-remotedialer / ${GODEP_REMOTEDIALER_PATH}
ARG GODEP_SHEPHERD_PATH
COPY --from=godep-shepherd / ${GODEP_SHEPHERD_PATH}
ARG GODEP_STEVE_PATH
COPY --from=godep-steve / ${GODEP_STEVE_PATH}
ARG GODEP_WRANGLER_PATH
COPY --from=godep-wrangler / ${GODEP_WRANGLER_PATH}
# Only invalidate cache if go.mod/go.sum changes.
COPY go.mod go.sum ./
COPY pkg/apis/go.mod pkg/apis/go.sum pkg/apis/
COPY pkg/client/go.mod pkg/client/go.sum pkg/client/
RUN --mount=type=cache,target=/root/.cache,id=rancher go mod download
RUN --mount=type=cache,target=/root/.cache,id=rancher cd pkg/apis && go mod download
RUN --mount=type=cache,target=/root/.cache,id=rancher cd pkg/client && go mod download


FROM --platform=$BUILDPLATFORM rancher-go-builder AS server-build
ENV GOPROXY=https://goproxy.cn,direct
ENV GO111MODULE=on
ARG VERSION
ARG COMMIT
ARG RKE_VERSION
ARG TAGS="k8s"
ARG LINKFLAGS="-extldflags -static"
ARG DEFAULT_VALUES="{\"rke-version\":\"${RKE_VERSION}\"}"
ARG LDFLAGS="-X github.com/rancher/rancher/pkg/version.Version=${VERSION} -X github.com/rancher/rancher/pkg/version.GitCommit=${COMMIT} -X github.com/rancher/rancher/pkg/settings.InjectDefaults=${DEFAULT_VALUES} ${LINKFLAGS}"
ARG TARGETOS
ARG TARGETARCH
COPY pkg/ pkg/
COPY main.go ./
RUN --mount=type=cache,target=/root/.cache,id=rancher GOOS=$TARGETOS GOARCH=$TARGETARCH go build -tags "${TAGS}" -ldflags "${LDFLAGS}" -o /app/rancher

# Output just the server binary
FROM scratch AS server-binary
COPY --from=server-build /app/rancher /bin/rancher


FROM --platform=$BUILDPLATFORM rancher-go-builder AS agent-build
ENV GOPROXY=https://goproxy.cn,direct
ENV GO111MODULE=on
ARG VERSION
ARG TAGS="k8s"
ARG LINKFLAGS="-extldflags -static"
ARG LDFLAGS="-X main.VERSION=${VERSION} $LINKFLAGS"
ARG TARGETOS
ARG TARGETARCH
COPY cmd/ cmd/
COPY pkg/ pkg/
RUN --mount=type=cache,target=/root/.cache,id=rancher GOOS=$TARGETOS GOARCH=$TARGETARCH go build -tags "${TAGS}" -ldflags "${LDFLAGS}" -o /app/agent ./cmd/agent


FROM base AS server
ENV GOPROXY=https://goproxy.cn,direct
ENV GO111MODULE=on
ARG VERSION
ARG BASE_REGISTRY
ARG BASE_UI_BRAND
ARG RANCHER_VERSION_TYPE

ENV CATTLE_BASE_REGISTRY=$BASE_REGISTRY
ENV CATTLE_BASE_UI_BRAND=$BASE_UI_BRAND
ENV RANCHER_VERSION_TYPE=$RANCHER_VERSION_TYPE
ENV CATTLE_SERVER_VERSION=${VERSION}
ENV CATTLE_AGENT_IMAGE=${IMAGE_REPO}/rancher-agent:${VERSION}
ENV CATTLE_SERVER_IMAGE=${IMAGE_REPO}/rancher

COPY --chown=root:root --chmod=0755 \
  --from=server-build /app/rancher /usr/bin/
#COPY --chown=root:root --chmod=0755 \
#    --from=images /src/k3s-airgap-images.tar /var/lib/rancher/k3s/agent/images/
COPY --chown=root:root --chmod=0755  ./package/download/k3s-airgap-images-amd64.tar /var/lib/rancher/k3s/agent/images/k3s-airgap-images.tar

COPY --chown=root:root --chmod=0755 \
  package/loglevel \
  package/entrypoint.sh \
  package/jailer.sh /usr/bin/

VOLUME /var/lib/rancher
VOLUME /var/lib/kubelet
VOLUME /var/lib/cni
VOLUME /var/log

LABEL "io.artifacthub.package.logo-url"="https://raw.githubusercontent.com/rancher/ui/master/public/assets/images/logos/welcome-cow.svg" \
  "io.artifacthub.package.readme-url"="https://raw.githubusercontent.com/rancher/rancher/${VERSION}/README.md" \
  "org.opencontainers.image.description"="Rancher Manager: complete container management platform." \
  "org.opencontainers.image.title"="Rancher Manager: complete container management platform." \
  "org.opencontainers.image.source"="https://github.com/rancher/rancher" \
  "org.opencontainers.image.version"=${VERSION} \
  "org.opensuse.reference"=rancher/rancher:${VERSION}
ENTRYPOINT ["entrypoint.sh"]


# Main stage using bci-micro as the base image.
FROM final AS agent
ENV GOPROXY=https://goproxy.cn,direct
ENV GO111MODULE=on
# Copy binaries and configuration files from zypper to micro.
COPY --from=chroot-builder-agent /chroot/ /

# Test that some of the dependency binaries were copied
# and are working on the target image.
RUN /usr/bin/unshare --version && \
  /usr/bin/mount --version && \
  /usr/bin/umount --version && \
  /usr/bin/nsenter --version

ARG ARCH
ENV KUBECTL_VERSION=v1.32.1

COPY ./package/download/kubectl /usr/bin/
RUN chmod +x /usr/bin/kubectl

LABEL io.cattle.agent=true

ARG RANCHER_REPO=rancher
ARG VERSION
ENV AGENT_IMAGE=${RANCHER_REPO}/rancher-agent:${VERSION}
# For now, this value needs to be manually synced with the one in the main Dockerfile. This pins downstream webhook's version.
ARG CATTLE_RANCHER_WEBHOOK_VERSION
ENV CATTLE_RANCHER_WEBHOOK_VERSION=$CATTLE_RANCHER_WEBHOOK_VERSION
ARG CATTLE_RANCHER_PROVISIONING_CAPI_VERSION
ENV CATTLE_RANCHER_PROVISIONING_CAPI_VERSION=$CATTLE_RANCHER_PROVISIONING_CAPI_VERSION
ENV SSL_CERT_DIR=/etc/kubernetes/ssl/certs
COPY --from=rancher-charts /var/lib/rancher-data/local-catalogs/v2/rancher-charts/4b40cac650031b74776e87c1a726b0484d0877c3ec137da0872547ff9b73a721 /var/lib/rancher-data/local-catalogs/v2/rancher-charts/4b40cac650031b74776e87c1a726b0484d0877c3ec137da0872547ff9b73a721
COPY --from=partner-charts /var/lib/rancher-data/local-catalogs/v2/rancher-partner-charts/8f17acdce9bffd6e05a58a3798840e408c4ea71783381ecd2e9af30baad65974 /var/lib/rancher-data/local-catalogs/v2/rancher-partner-charts/8f17acdce9bffd6e05a58a3798840e408c4ea71783381ecd2e9af30baad65974
COPY --from=rke2-charts /var/lib/rancher-data/local-catalogs/v2/rancher-rke2-charts/675f1b63a0a83905972dcab2794479ed599a6f41b86cd6193d69472d0fa889c9 /var/lib/rancher-data/local-catalogs/v2/rancher-rke2-charts/675f1b63a0a83905972dcab2794479ed599a6f41b86cd6193d69472d0fa889c9
COPY --from=kdm /var/lib/rancher-data/driver-metadata/data.json /var/lib/rancher-data/driver-metadata/data.json
COPY --from=tini /usr/bin/tini /usr/bin/
COPY --from=agent-build /app/agent /usr/bin/
COPY package/loglevel package/run.sh package/kubectl-shell.sh package/shell-setup.sh /usr/bin/
WORKDIR /var/lib/rancher

LABEL "io.artifacthub.package.logo-url"="https://raw.githubusercontent.com/rancher/ui/master/public/assets/images/logos/welcome-cow.svg" \
    "io.artifacthub.package.readme-url"="https://raw.githubusercontent.com/rancher/rancher/${VERSION}/README.md" \
    "org.opencontainers.image.description"="Rancher Manager Agent: complete container management platform." \
    "org.opencontainers.image.title"="Rancher Manager Agent: complete container management platform." \
    "org.opencontainers.image.source"="https://github.com/rancher/rancher" \
    "org.opencontainers.image.version"=${VERSION} \
    "org.opensuse.reference"=rancher/rancher-agent:${VERSION}

ENTRYPOINT ["run.sh"]

主要更改就是配置git 的fastgithub代理如行84、85、99、100 112、113、当下载完成后119、120取消代理设置。

3. 修改 dev-scripts/quick 脚本 修改docker 运行的网络类型为host以其能使用本地fastgtihub代理

#!/usr/bin/env bash

## This script builds the Rancher server image exclusively, sans Dapper

set -eo pipefail
set -x

# variables
COMMIT=$(git rev-parse --short HEAD)
TAG="${TAG:-$(grep -m1 ' TAG:' .github/workflows/pull-request.yml | sed -e 's/^[[:space:]]*//' -e 's/[[:space:]]*$//' -e "s/\${{ github.sha }}/$COMMIT/g" | cut -d' ' -f2)}"
OS="${OS:-linux}"
ARCH="${ARCH:-amd64}"
REPO="${REPO:-rancher}"
CATTLE_K3S_VERSION=$(grep -m1 'ENV CATTLE_K3S_VERSION=' package/Dockerfile | cut -d '=' -f2)
CATTLE_KDM_BRANCH=$(grep -m1 'ARG CATTLE_KDM_BRANCH=' package/Dockerfile | cut -d '=' -f2)

RKE_VERSION=$(grep -m1 'github.com/rancher/rke' go.mod | awk '{print $2}')
if [[ -z "$RKE_VERSION" ]]; then
  RKE_VERSION=$(grep -m1 'github.com/rancher/rke' go.mod | awk '{print $4}')
fi
CATTLE_RANCHER_WEBHOOK_VERSION=$(grep -m1 'webhookVersion' build.yaml | cut -d ' ' -f2)
CATTLE_REMOTEDIALER_PROXY_VERSION=$(grep -m1 'remoteDialerProxyVersion' build.yaml | cut -d ' ' -f2)
CATTLE_CSP_ADAPTER_MIN_VERSION=$(grep -m1 'cspAdapterMinVersion' build.yaml | cut -d ' ' -f2)
CATTLE_RANCHER_PROVISIONING_CAPI_VERSION=$(grep -m1 'provisioningCAPIVersion' build.yaml | cut -d ' ' -f2)
CATTLE_FLEET_VERSION=$(grep -m1 'fleetVersion' build.yaml | cut -d ' ' -f2)

# download kontainer driver metadata
curl -sLf https://releases.rancher.com/kontainer-driver-metadata/"${CATTLE_KDM_BRANCH}"/data.json >./data.json

BUILD_ARGS=()
BUILD_ARGS+=("--build-arg=VERSION=${TAG}")
BUILD_ARGS+=("--build-arg=ARCH=${ARCH}")
BUILD_ARGS+=("--build-arg=IMAGE_REPO=${REPO}")
BUILD_ARGS+=("--build-arg=COMMIT=${COMMIT}")
BUILD_ARGS+=("--build-arg=RKE_VERSION=${RKE_VERSION}")
BUILD_ARGS+=("--build-arg=CATTLE_RANCHER_WEBHOOK_VERSION=${CATTLE_RANCHER_WEBHOOK_VERSION}")
BUILD_ARGS+=("--build-arg=CATTLE_REMOTEDIALER_PROXY_VERSION=${CATTLE_REMOTEDIALER_PROXY_VERSION}")
BUILD_ARGS+=("--build-arg=CATTLE_RANCHER_PROVISIONING_CAPI_VERSION=${CATTLE_RANCHER_PROVISIONING_CAPI_VERSION}")
BUILD_ARGS+=("--build-arg=CATTLE_CSP_ADAPTER_MIN_VERSION=${CATTLE_CSP_ADAPTER_MIN_VERSION}")
BUILD_ARGS+=("--build-arg=CATTLE_FLEET_VERSION=${CATTLE_FLEET_VERSION}")
BUILD_ARGS+=("--build-arg=RANCHER_TAG=${TAG}")
BUILD_ARGS+=("--build-arg=RANCHER_REPO=${REPO}")
#BUILD_ARGS+=("--build-arg=BASE_REGISTRY=https://docker.m.daocloud.io")

# because macos doesn't have realpath apparently
abs_path() {
echo "$(cd "$(dirname "$1")" && pwd -P)/$(basename "$1")"
}

is_safe_local_directive() {
while IFS= read -r safe_path; do
  safe_path="$(abs_path "$safe_path")"
  if [[ "$1" == "$safe_path"* ]]; then
    return 0
  fi
done < <(echo "$BUILD_SAFE_DIRS" | tr ':' '\n')
return 1
}

needs_workdir="false"

# add_context adds _some_ support for local replace directives of dependency.
add_context() {
if ! replace=$(grep "$1 =>" go.mod); then
  return 0
fi

# Detect local replace directive or either form:
#             github.com/rancher/steve => /absolute/or/relative/path/to/steve
# or
#     replace github.com/rancher/steve => /absolute/or/relative/path/to/steve
if [ -n "$(echo "$replace" | cut -d= -f2 | cut -d' ' -f3)" ]; then
  return 0
fi

set +x
godep=$(echo "$replace" | cut -d= -f2 | cut -d' ' -f2)
path=$(abs_path "$godep")
if ! is_safe_local_directive "$path"; then
  cat <<EOF
Detected replace directive with path $godep ($path). This directive is not listed under a safe
prefix path with BUILD_SAFE_DIRS environment variable.
Path you want to use with replace directive must be under a prefix path set in the BUILD_SAFE_DIRS
env var. Its value should be a colon-separated (:) list of prefix paths.
For example, for a path of /home/user/sources/steve, you could set BUILD_SAFE_DIRS=/home/user/sources.
EOF
  exit 1
fi

set -x
BUILD_ARGS+=("--build-context=$2=$path")
BUILD_ARGS+=("--build-arg=$3=$2")
BUILD_ARGS+=("--build-arg=$3_PATH=$path")
needs_workdir="true"
}

add_context "github.com/rancher/apiserver" "apiserver-context" "GODEP_APISERVER"
add_context "github.com/rancher/lasso" "lasso-context" "GODEP_LASSO"
add_context "github.com/rancher/norman" "norman-context" "GODEP_NORMAN"
add_context "github.com/rancher/remotedialer" "remotedialer-context" "GODEP_REMOTEDIALER"
add_context "github.com/rancher/shepherd" "shepherd-context" "GODEP_SHEPHERD"
add_context "github.com/rancher/steve" "steve-context" "GODEP_STEVE"
add_context "github.com/rancher/wrangler/v3" "wrangler-context" "GODEP_WRANGLER"

if [ "$needs_workdir" = "true" ]; then
BUILD_ARGS+=("--build-arg=BUILD_WORKDIR=$PWD")
fi

if [ "$TARGET" = "k3s-images" ]; then
docker buildx build \
  "${BUILD_ARGS[@]}" \
  --output=type=local,dest=$PWD/bin \
  --platform="${OS}/${ARCH}" \
  --target k3s-images \
  --network host \
  --file ./package/Dockerfile .
fi

if [ "$TARGET" = "binary-server" ]; then
docker buildx build \
  "${BUILD_ARGS[@]}" \
  --output=type=local,dest=$PWD \
  --platform="${OS}/${ARCH}" \
  --target server-binary \
  --network host \
  --file ./package/Dockerfile .
fi

if [ -z "$TARGET" ] || [ "$TARGET" = "server" ]; then
# start the builds
docker buildx build \
  "${BUILD_ARGS[@]}" \
  --tag "${REPO}"/rancher:"${TAG}" \
  --platform="${OS}/${ARCH}" \
  --target server \
  --network host \
  --file ./package/Dockerfile .
fi

if [ -z "$TARGET" ] || [ "$TARGET" = "agent" ]; then
docker buildx build \
  "${BUILD_ARGS[@]}" \
  --tag "${REPO}"/rancher-agent:"${TAG}" \
  --platform="${OS}/${ARCH}" \
  --target agent \
  --network host \
  --file ./package/Dockerfile .
fi

参见行115、125、136、146行内容 --network host \

5 执行编译

运行 ./dev-scripts/quick进行代码编译，如果成功会生成ranche镜像和agent镜像如图

enjoy!