Description
These are some notes of the issues faced while trying to follow the contributing instructions for windows (build_windows.md). The goal was to be able to build podman from source on windows and execute podman run on both WSL and Hyper-v.
The main question is if MSYS2 is still a requirement today as it complicates the setup of the dev environment. And if it is required how can we provide instructions to expose the tools installed via MSYS2 externally (to the IDE and Powershell).
Troubles when installing msys2 with chocolately
chocolately is a popular package manager for windows. I have used to install msys2 (choco install msys2) and started a mintty shell running msys2 from a terminal. But then the environment is MSYS2 rather then UCRT64 and I spent some time to understand why commands were not working (e.g. go could not be found).
MSYS2 VS Code integration (or other IDEs)
This is worth linking. And it's still unclear how to configure the golang VS Code extension to use the go version installed in MSYS2 environment.
build - RELEASE_NUMBER / RELEASE_VERSION issue
The first issue issue I faced trying to run make podman-remote was:
Makefile:754: *** Required variable RELEASE_NUMBER value is undefined, whitespace, or empty. Stop.
I resolved that executing export RELEASE_VERSION=5.0.0-dev
build - "file contains a virus" issue
github.com/containers/podman/v5/test/version: go build github.com/containers/podman/v5/test/version: open C:\msys64\tmp\go-build700477625\b001\exe\a.out.exe: Operation did not complete successfully because the file contains a virus or potentially unwanted software.
make: *** [Makefile:303: test/version/version] Error 1
To fix that "C:\msys64\tmp" should be added in the exlusions list in the Windows Security Virus & threat protection settings
hyper-v
It's difficult to find out how to configure podman to use hyper-v instead of the default wsl. Looking at the source code I found that we need to set $env:CONTAINERS_MACHINE_PROVIDER="hyperv". Also hyper-v should be enabled first (doc).
policy.json
The file [/etc/containers/policy.json](https://podman.io/docs/installation#policyjson) is required for machine init to work when the provider is hyper-v. Interestingly it's not needed when the provider is wsl:
Error: obtaining default signature policy: open /etc/containers/policy.json: The system cannot find the path specified.
To overcome that I had to use the powershell (not the MSYS2 shell) and create the file C:\etc\containers\policy.json copying https://src.fedoraproject.org/rpms/containers-common/raw/main/f/default-policy.json.
makefile and winmake.ps1
I found that CI uses ./winmake localmachine (pkg\machine\e2e\README.md). The script ./winmake.ps1 requires powershell (rather than MSYS2) and it's not clear why there are 2 makefiles.
Anyway I faced 2 problems to run it:
PS C:\Users\mario\Git\podman> ./winmake localmachine
./winmake : File C:\Users\mario\Git\podman\winmake.ps1 cannot be loaded. The file C:\Users\mario\Git\podman\winmake.ps1 is not digitally signed. You cannot run this script on the current system. For more
information about running scripts and setting execution policy, see about_Execution_Policies at https:/go.microsoft.com/fwlink/?LinkID=135170.
At line:1 char:1
+ ./winmake localmachine
+ ~~~~~~~~~
+ CategoryInfo : SecurityError: (:) [], PSSecurityException
+ FullyQualifiedErrorId : UnauthorizedAccess
This was fixed by Set-ExecutionPolicy -ExecutionPolicy Bypass.
And then I had another error because golang is missing (Powershell doesn't see the version installed by MSYS2):
Building Ginkgo
go build -o build/ginkgo.exe ./vendor/github.com/onsi/ginkgo/v2/ginkgo
Invoke-Expression : The term 'go' is not recognized as the name of a cmdlet, function, script file, or operable program. Check the spelling of the name, or if a path was included, verify that the path is correct
and try again.
At C:\Users\mario\Git\podman\contrib\cirrus\win-lib.ps1:74 char:5
+ Invoke-Expression $command
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : ObjectNotFound: (go:String) [Invoke-Expression], CommandNotFoundException
+ FullyQualifiedErrorId : CommandNotFoundException,Microsoft.PowerShell.Commands.InvokeExpressionCommand
I installed golang (choco install golang) and I was able to run ./winmake podman-remote.
Could not find gvproxy
After running $env:CONTAINERS_MACHINE_PROVIDER="hyperv"; ./podman.exe machine init, ./podman.exe machine start fails:
./podman.exe machine start
Starting machine "podman-machine-default"
Error: could not find "gvproxy" in one of {[C:\Program Files\RedHat\Podman] {<nil>}}. To resolve this error, set the helper_binaries_dir key in the `[engine]` section of containers.conf to the directory containing your helper binaries.
I run make win-gvproxy (using the MSYS2 shell):
$ make win-gvproxy
GOARCH=amd64 go build -o test/version/version ./test/version/
mkdir -p bin/windows/
curl -sSL -o bin/windows/gvproxy.exe --retry 5 https://github.com/containers/gvisor-tap-vsock/releases/download/v0.7.3/gvproxy-windowsgui.exe
curl -sSL -o bin/windows/win-sshproxy.exe --retry 5 https://github.com/containers/gvisor-tap-vsock/releases/download/v0.7.3/win-sshproxy.exe
But podman machine start was still failing with the same error so I tried to build podman remote using the HELPER_BINARIES_DIR make podman-remote HELPER_BINARIES_DIR=\Users\mario\Git\podman\bin\windows but without success.
Finally I created the following C:\etc\containers\containers.conf and the problem disappeared.
[engine]
helper_binaries_dir=["C:/Users/mario/Git/podman/bin/windows"]