Incus on Gentoo

SR_D · November 10, 2023, 9:11pm

Just curious if anyone has gotten Incus 0.2-r1 to work on Gentoo. I’ve get to get it to compile as it seems to depend on cowsql which isn’t building.

stgraber · November 11, 2023, 2:18am

Was that using the ebuild?

juippis · November 11, 2023, 7:45am

Hey,

please open a new bug at https://bugs.gentoo.org/ with emerge --info and your build.log file attached. Or post them here - but bugs.gentoo.org has a better chance for us Gentoo maintainers to notice it.

I can confirm cowsql and incus builds and works on Gentoo.

SR_D · November 11, 2023, 9:00pm

Yes, from ebuilds. Incus 0.2-rc1 was masked and I think requires some testing version of it’s dependencies so it’s not a simple emerge to get it loaded. And probably not a problem for the maintainers. I’m sure I just need to figure out the correct packages. Gotta love Gentoo.
Thanks for the info.

SR_D · November 12, 2023, 2:43am

So, did get it to build using test packages for the dependencies cowsql and raft, but when running …

$ incus admin init

got …

$ sudo incus admin init
Would you like to use clustering? (yes/no) [default=no]:
Do you want to configure a new storage pool? (yes/no) [default=yes]:
Name of the new storage pool [default=default]:
Name of the storage backend to use (dir, lvm) [default=dir]:
Would you like to create a new local network bridge? (yes/no) [default=yes]:
What should the new bridge be called? [default=incusbr0]:
What IPv4 address should be used? (CIDR subnet notation, “auto” or “none”) [default=auto]:
What IPv6 address should be used? (CIDR subnet notation, “auto” or “none”) [default=auto]:
Would you like the server to be available over the network? (yes/no) [default=no]:
Would you like stale cached images to be updated automatically? (yes/no) [default=yes]:
Would you like a YAML "init" preseed to be printed? (yes/no) [default=no]:
Error: Failed to create local member network "incusbr0" in project "default": Failed to setup firewall: Failed to run: iptables -w -t nat -I POSTROUTING -s 10.60.239.0/24 ! -d 10.60.239.0/24 -j MASQUERADE -m comment --comment generated for Incus network incusbr0: exit status 1 (Warning: Extension comment revision 0 not supported, missing kernel module?
iptables: No chain/target/match by that name.)

Looks like I’m running into some sort of iptables issue and getting 403’s for trying to get to the Incus documentation.

https://linuxcontainers.org/incus/docs/main/

stgraber · November 12, 2023, 3:19am

Got that part fixed at least

The error you’re getting seems to suggest that your kernel doesn’t have the module necessary to attach comments to firewall rules. I believe that is CONFIG_NETFILTER_XT_MATCH_COMMENT

SR_D · November 14, 2023, 12:06am

Apparently that’s no longer an option as I look through a 6.1.19 kernel.

stgraber · November 14, 2023, 3:24pm

root@castiana:~# grep -i comment /boot/config-6.6.1-zabbly+ 
CONFIG_NETFILTER_XT_MATCH_COMMENT=m

It’s still a thing in 6.6.1

SR_D · November 25, 2023, 11:29pm

I’m not having much luck with Incus on Gentoo and can’t provide much feed back off of the stale ebuilds so I’ve cloned the source, but have no experience with Go. What does it take to build the tree after cloning?

stgraber · November 25, 2023, 11:44pm

Basically, make sure you have a recent version of Go installed, make sure you have the various dependencies installed, then run make deps and make to get things built.