Incus 6.22: The Community Fork That’s Outpacing Its Predecessor

The container and virtual machine management landscape just got a significant shake-up with the release of Incus 6.22, the latest iteration from the community-driven fork that emerged when Canonical altered LXD’s governance structure. This release represents not just incremental improvements but a bold statement about where open-source infrastructure management is heading.

Windows VM Communication Gets a Major Upgrade

Perhaps the most transformative change in this release is the introduction of vsock support for Windows VM agents. For years, Windows virtual machines in containerized environments have operated differently from their Linux counterparts, creating unnecessary complexity for system administrators. With Incus 6.22, that disparity disappears.

The technical breakthrough here involves signed Virtio vsock drivers combined with Go support on Windows platforms. This combination enables Incus to utilize vsock (virtual socket) communication instead of traditional TCP protocols between Windows VMs. The implications are substantial: when a Windows VM’s IP address becomes unavailable or changes dynamically, administrators no longer face communication breakdowns. The system maintains stable connections through the virtual socket interface, mirroring the robust behavior already enjoyed by Linux VMs.

This alignment represents more than technical parity—it’s about operational consistency across heterogeneous environments, a critical requirement for modern data centers running mixed workloads.

Backup Revolution: Streaming Without the Storage Overhead

Backup operations have historically been a pain point in container management systems. The traditional approach required creating temporary disk backups before transferring data, consuming significant storage resources and extending backup windows. Incus 6.22 obliterates this inefficiency with direct backup streaming capabilities.

The incus export command and its related functions now stream data directly from source to destination. This architectural change eliminates the intermediate step of writing backups to temporary storage, dramatically reducing both the storage footprint required for backup operations and the time needed to complete them. For organizations managing large-scale deployments, this translates to tangible cost savings and improved operational efficiency.

Granular Control: Disk-Only Snapshot Restoration

System administrators often face scenarios where they need to revert storage changes without disturbing configuration or runtime metadata. Incus 6.22 introduces disk-only restore functionality for snapshots, providing unprecedented granularity in recovery operations.

This feature allows administrators to selectively restore only the storage state of an instance while preserving its configuration settings and runtime metadata. Imagine a scenario where application data becomes corrupted but the VM configuration remains optimal—disk-only restoration enables precise recovery without the shotgun approach of full instance restoration. This level of surgical precision in system recovery represents a significant advancement in operational flexibility.

Storage Stack Enhancements: QCOW2 and Beyond

The storage subsystem receives comprehensive upgrades in this release. QCOW2 (QEMU Copy-On-Write version 2) format support expands significantly, with custom block volumes now defaulting to QCOW2 formatting. This standardization simplifies storage management and improves compatibility across different virtualization scenarios.

For users of lvmcluster storage pools, Incus 6.22 introduces two game-changing features: the ability to resize storage pools dynamically and an option to automatically remove newer snapshots when restoring older ones. The automatic snapshot cleanup during restoration addresses a common pain point—preventing storage bloat while maintaining the ability to roll back to known-good states.

Cluster Operations: Enhanced Visibility and Control

Managing distributed systems requires clear visibility into node states and recovery processes. Incus 6.22 introduces new member states including EVACUATING and RESTORING, providing administrators with precise insight into cluster node conditions. The ability to restore a node without automatically migrating instances back offers strategic flexibility during maintenance operations and disaster recovery scenarios.

These enhancements transform cluster management from a reactive process to a proactive discipline, enabling administrators to make informed decisions about workload distribution and node recovery timing.

Migration and Security: Streamlined Workflows

The incus-migrate tool evolves with URL-based image imports, allowing direct ingestion of remote QCOW2 or VMDK images. This eliminates intermediate download steps and accelerates migration workflows, particularly valuable when moving workloads between different cloud providers or on-premises environments.

Security-conscious organizations will appreciate the expanded ACME certificate support, now accommodating multiple domains through comma-separated lists. This simplifies HTTPS configuration for complex applications serving multiple virtual hosts, reducing administrative overhead while maintaining robust encryption standards.

Peripheral and Network Advancements

The release introduces full USB controller passthrough via unix-hotplug, enabling virtual machines to access physical USB devices with minimal latency. This capability proves invaluable for scenarios requiring hardware security keys, specialized peripherals, or device-specific software licensing.

SR-IOV (Single Root I/O Virtualization) networking receives a security enhancement through the new security.trusted option for NICs, providing granular control over network interface privileges and improving isolation between virtual machines sharing physical network resources.

Observability and Integration Improvements

Dedicated log storage volumes separate operational logs from application data, simplifying log management and improving system monitoring capabilities. Expanded certificate data in authorization scriptlets enhances integration with existing authentication and authorization systems, while image server restrictions for projects provide additional security boundaries in multi-tenant environments.

New instance boot time metrics offer deeper insights into system performance, enabling administrators to identify bottlenecks and optimize startup sequences for improved service availability.

Try It Yourself

The Incus team has made hands-on exploration effortless through their online platform, where users can experiment with these new features without local installation requirements. This accessibility reflects the project’s commitment to community engagement and rapid adoption of innovations.

For technical specifics, the release announcement provides comprehensive documentation, while the full changelog details every modification and enhancement included in this milestone release.

Tags:

Incus #ContainerManagement #Virtualization #OpenSource #SystemAdministration #DevOps #CloudComputing #WindowsVirtualization #StorageManagement #ClusterComputing

Viral Phrases:

GameChanger #Revolutionary #NextLevel #CuttingEdge #MustHave #IndustryStandard #FutureProof #EfficiencyBoost #OperationalExcellence #TechRevolution #InnovationUnleashed #PerformanceOptimized #SecurityEnhanced #UserExperience #CommunityDriven #ForkThatWorks #TechnicalBreakthrough #SystemTransformation #InfrastructureEvolution #DigitalTransformation

,