-
-
Notifications
You must be signed in to change notification settings - Fork 194
Installation Docker OCI
It is possible to run RaspberryMatic also as a docker/OCI container on existing amd64, aarch64/arm64 or arm-based systems. While the docker version comes with almost all functionality that a "normal" RaspberryMatic system provides, some functionality like, e.g. the network setup or WebUI-based update mechanism has been explicitly disabled since these operations are usually performed on the system hosting the docker container itself rather than within the container.
Furthermore, while almost the same hardware requirements in terms of homematic rf-modules apply like with a standard RaspberryMatic system, the kernel drivers for, e.g. the RPI-RF-MOD
, HM-MOD-RPI-PCB
or HmIP-RFUSB
as well as for the HB-RF-USB
/HB-RF-USB-2
and the HB-RF-ETH
have to be installed on the hosting machine rather than within the container. The container then just uses these preloaded kernel drivers.
This driver installation can be either performed using a dedicated install-docker.sh
installation script or manually. In either cases, kernel modules are installed that are kindly developed and distributed by the author of piVCCU (@alexreinert).
- To be able to communicate with a
HmIP-HAP
orHmIPW-DRAP
device, the docker container implementation outlined here utilizes amacvlan
docker network which makes it necessary to have two static ip addresses (<IP-ADDRESS>
and<AUX-ADDRESS
) available from your local network which are outside of any DHCP range (e.g. NOT supplied by your router) and are exclusively assigned to the docker container as well as to your docker host so that both systems (docker host and container) can communicate with eachother.
- Ensure you installed docker:
curl -fsSL https://get.docker.com -o get-docker.sh sudo sh get-docker.sh
- Make sure to add the user under which the docker should run to the
docker
group:sudo usermod -aG docker $USER
- Make sure the docker environment works correctly by executing the
hello-world
example docker:docker run hello-world
- Install pivccu-modules-dkms kernel modules (required for
RPI-RF-MOD
,HM-MOD-RPI-PCB
orHmIP-RFUSB
use):sudo apt install wget ca-certificates build-essential bison flex libssl-dev gpg wget -qO - https://apt.pivccu.de/piVCCU/public.key | sudo gpg --dearmor -o /usr/share/keyrings/pivccu-archive-keyring.gpg sudo sh -c 'echo "deb [signed-by=/usr/share/keyrings/pivccu-archive-keyring.gpg] https://apt.pivccu.de/piVCCU stable main" >/etc/apt/sources.list.d/pivccu.list' sudo apt update sudo apt install pivccu-modules-dkms
- If you are using a RaspberryPi and want to use a
RPI-RF-MOD
orHM-MOD-RPI-PCB
connected to GPIO (NOT necessary if you want to use aHB-RF-USB
,HB-RF-USB-2
,HB-RF-ETH
orHmIP-RFUSB
):-
Install the necessary device tree patches:
sudo apt install pivccu-modules-raspberrypi
-
Disable bluetooth:
sudo bash -c 'cat <<EOT >>/boot/config.txt dtoverlay=disable-bt EOT' systemctl is-active --quiet hciuart.service && sudo systemctl disable hciuart.service
NOTE: If there is no
/boot/config.txt
, you may put these changes under/boot/firmware/usercfg.txt
-
Disable serial console
sudo sed -i /boot/cmdline.txt -e "s/console=\(serial0\|ttyAMA0\),[0-9]\+ //"
And alternative method (if you run into problems) for disabling the serial console or
ttyAMA0
would be to run the following script:sudo bash -c 'cat <<EOT >>/boot/config.txt dtoverlay=miniuart-bt core_freq=250 EOT'
NOTE: If there is no
/boot/config.txt
, you may put these changes under/boot/firmware/usercfg.txt
Disable and mask any serial getty service under your OS so that ttyAMA0 will be free:
sudo systemctl stop serial-getty@ttyAMA0.service && sudo systemctl disable serial-getty@ttyAMA0.service && sudo systemctl mask serial-getty@ttyAMA0.service
-
- If you are using a
HmIP-RFUSB
, make sure you DO NOT have a file/etc/udev/rules.d/10-hmiprfusb.rules
installed, otherwise delete it:sudo rm -f /etc/udev/rules.d/10-hmiprfusb.rules
- Make sure to execute the following so that a
/etc/udev/rules.d/99-Homematic.rules
udev rule file is created with the right entries:sudo bash -c 'cat <<EOF >/etc/udev/rules.d/99-Homematic.rules ATTRS{idVendor}=="1b1f" ATTRS{idProduct}=="c020", ENV{ID_MM_DEVICE_IGNORE}="1" ATTRS{idVendor}=="1b1f" ATTRS{idProduct}=="c00f", ENV{ID_MM_DEVICE_IGNORE}="1" ATTRS{idVendor}=="0403" ATTRS{idProduct}=="6f70", ENV{ID_MM_DEVICE_IGNORE}="1" ATTRS{idVendor}=="10c4" ATTRS{idProduct}=="8c07", ENV{ID_MM_DEVICE_IGNORE}="1" EOF'
- Install
eq3_char_loop
kernel module to automatic module load section:sudo sh -c 'echo eq3_char_loop >/etc/modules-load.d/eq3_char_loop.conf'
- Start+Load all necessary kernel modules on host:
PLEASE NOTE: If
sudo service pivccu-dkms start sudo modprobe eq3_char_loop
modprobe eq3_char_loop
fails it could be necessary to update the kernel-headers (especially on Raspberry Pi OS 64-bit):Afterwards you may have to execute thesudo apt update sudo apt install raspberrypi-kernel raspberrypi-kernel-headers raspberrypi-bootloader
pivccu-dkms
installation again and also install theeq3_char_loop
kernel module to the automatic module load section:sudo apt install pivccu-modules-dkms sudo sh -c 'echo eq3_char_loop >/etc/modules-load.d/eq3_char_loop.conf'
Before being able to use the container a macvlan
docker network have to be setup so that the docker container can correctly communicate with the local network. For this the following pre-steps have to be performed
NOTE: These steps are NOT required if you are going to use the install-docker.sh
method in the next section of the documentation to create the docker container.
-
Create a dedicated
macvlan
docker network namedccu
for the RaspberryMatic container:docker network create -d macvlan \ --opt parent=<INTERFACE> \ --subnet <SUBNET> \ ccu
Make sure to adapt the values for
<INTERFACE>
,<SUBNET>
to your needs. The following rules apply:- set
<INTERFACE>
to the interface name (e.g.eth0
) of the main ethernet device of your docker host which is in the same subnet as the container. - set
<SUBNET>
to the subnet of the LAN segment (e.g.192.168.178.0/24
) the container should be reachable in.
- set
-
Setup a "shim" network link so that the docker host itself can access the the docker container, which usually isn't the case because of network encapsulation:
sudo ip link add ccu-shim link <INTERFACE> type macvlan mode bridge sudo ip addr add <AUX-ADDRESS> dev ccu-shim sudo ip link set ccu-shim up sudo ip route add <IP-ADDRESS> dev ccu-shim protocol static
Make sure to use the same value for
<INTERFACE>
like one step above and adapt the values for<AUX-ADDRESS>
and<IP-ADDRESS>
according to:- set
<AUX-ADDRESS>
to an IP address from the same subnet (e.g.192.168.178.3
) which will be assigned to the docker host. - set
<IP-ADDRESS>
to the IP address you would like the docker container to use (e.g.192.168.178.4
).
- set
-
The above
ip
commands to create a shim network have to be executed after each reboot of the docker host system because they are not persistent. You have to either execute them each time, use theinstall-docker.sh
method below or add them to a boot-up script which will be executed on each boot.E.g. on Ubuntu/Debian the following content can be put into the file
/etc/network/if-up.d/99-ccu-shim-network
#!/bin/sh if [ "$IFACE" = "<INTERFACE>" ]; then if ! ip link show ccu-shim >/dev/null 2>&1; then ip link add ccu-shim link <INTERFACE> type macvlan mode bridge ip addr add <AUX-ADDRESS> dev ccu-shim ip link set ccu-shim up ip route add <IP-ADDRESS> dev ccu-shim protocol static fi fi
Make sure to set executable rights (
chmod a+rx /etc/network/if-up.d/99-ccu-shim-network
) to that file and to replace all<XXXX>
tags with the appropriate values from above.
For creating the docker container one can use different methods (install-docker.sh
, docker pull
, docker load
and docker compose
) as explained below. Please note, that in the following description one has to replace the <IP-ADDRESS>
, <INTERFACE>
and <SUBNET>
placeholders with appropriate values as already discussed above.
NOTE:
Please note, that the current version of the install-docker.sh
script can directly apply changes to the host system where the docker container is started, thus care should be taken when executing it via sudo
/root rights.
- Execute the following command to install all necessary dependencies and download and start the container:
The script will make sure all dependencies are installed and might request
wget -qO - https://raspberrymatic.de/install-docker.sh | bash -
sudo
rights to do so. If this is the case, re-run it withsudo
accordingly:wget -qO - https://raspberrymatic.de/install-docker.sh | sudo bash -
- After the script has created the docker container you should be able to start the container using:
NOTE: Omit
docker start -i ccu
-i
if you want to start the container non-interactive and put it in background.
If you want to use this script to permanently start the RaspberryMatic docker container you should download the install-docker.sh
script and perhaps adapt it to your needs. Make sure, however, to update the script over time because we might introduce changes to it as we move forward.
- Use
docker pull
to retrieve the latest version:docker pull ghcr.io/jens-maus/raspberrymatic:latest
- Create the raspberrymatic docker container:
docker create --name ccu \ --volume ccu_data:/usr/local:rw \ --volume /lib/modules:/lib/modules:ro \ --volume /run/udev/control:/run/udev/control \ --privileged --restart always --stop-timeout 30 \ --network ccu --ip <IP-ADDRESS> --hostname ccu \ ghcr.io/jens-maus/raspberrymatic:latest
- Start the docker container:
NOTE: Omit
docker start -i ccu
-i
if you want to start the container non-interactive and put it in background.
- Download the latest docker/oci image version of RaspberryMatic:
wget https://github.com/jens-maus/RaspberryMatic/releases/download/3.XX.XX.YYYYMMDD/RaspberryMatic-3.XX.XX.YYYYMMDD-oci_amd64.tgz
- Use
docker load
to load the downloaded into the docker environment:docker load < RaspberryMatic-3.XX.XX.YYYYMMDD-oci_amd64.tgz
- Run the raspberrymatic docker using cmd-line:
docker create --name ccu \ --volume ccu_data:/usr/local:rw \ --volume /lib/modules:/lib/modules:ro \ --volume /run/udev/control:/run/udev/control \ --privileged --restart always --stop-timeout 30 \ --network ccu --ip <IP-ADDRESS> --hostname ccu \ ghcr.io/jens-maus/raspberrymatic:amd64-3.XX.XX.YYYYMMDD
- Start the docker container:
NOTE: Omit
docker start -i ccu
-i
if you want to start the container non-interactive and put it in background.
- Add the following to your
docker-compose.yml
:version: "3.8" services: raspberrymatic: image: ghcr.io/jens-maus/raspberrymatic:latest container_name: ccu hostname: ccu privileged: true restart: unless-stopped stop_grace_period: 30s volumes: - ccu_data:/usr/local:rw - /lib/modules:/lib/modules:ro - /run/udev/control:/run/udev/control networks: ccu: ipv4_address: <IP-ADDRESS> volumes: ccu_data: networks: ccu: name: ccu driver: macvlan driver_opts: parent: <INTERFACE> ipam: config: - subnet: <SUBNET>
- Start your docker compose environment:
docker compose up
-
If you get
ERROR: could not insert 'eq3_char_loop': Exec format error
messages during startup the required kernel modules could not be correctly compiled on your docker host machine. To solve that issue you can try the following procedure:sudo apt remove --purge linux-headers-* sudo apt autoremove && sudo apt autoclean sudo apt install linux-headers-generic sudo apt install --reinstall pivccu-modules-dkms
-
If during container startup you receive
cpu.rt_runtime_us == 0
errors in thedocker logs ccu
output of your RaspberryMatic startup, your host system is using a linux kernel withCONFIG_RT_GROUP_SCHED
real-time scheduling capabilities and did not assign enough real-time shares to the docker daemon, thus the RaspberryMatic container.- Modify/Create the
/etc/docker/daemon.json
file to contain/look like:Afterwards, make sure you restart the docker daemon accordingly (e.g.{ "cpu-rt-runtime": 950000 }
sudo systemctl restart docker
). - Depending on the method you are using to start the RaspberryMatic docker container make sure to either
-
If using
install-docker.sh
:No action required as the latest
install-docker.sh
script should automatically set the necessary additional command-line options. -
If using
docker pull
ordocker load
:add the following command-line options to the corresponding
docker run ...
command:--cpu-rt-runtime 950000 --ulimit rtprio=99
-
If using
docker compose
:add the following options to your
docker-compose.yml
file:cpu_rt_runtime: 950000 ulimits: rtprio: 99
-
- Modify/Create the
After startup, point your web browser to the IP of your hosting system and with port :80
and the usual CCU WebUI should be accessible:
http://<IP-ADDRESS>/
After startup, you can either access the container via enabling SSH access to it in the CCU WebUI or you use the following docker exec
command to be able to use the command-line:
docker exec -it ccu /bin/sh
The RaspberryMatic docker has to be updated from the host machine (the recommended "docker way"). Use either the same instructions like in using install-docker.sh
and the other subsections (e.g. using docker pull
) so that you retrieve the very latest version of the RaspberryMatic docker with the next execution.
If you decide to get rid of the whole RaspberryMatic container installation or if you would like to cleanup before trying to install the container in a fresh environment you can do so by running the install-docker.sh
script with an uninstall
parameter:
wget -qO - https://raspberrymatic.de/install-docker.sh | sudo bash -s uninstall
This command will make sure to uninstall, remove and purge all relevant configuration files, docker container and docker network dependencies so that after a fresh reboot of your docker host system only the user data volume should still be present.
You can pass variables to the install-docker.sh
script to change the defaults upon runtime:
-
CCU_DATA_VOLUME
- Name of the docker volume where CCU data will persist. It can be a local location as well such as a mounted NAS folder, cluster fs (glusterfs), etc.
- Default: "ccu_data"
-
CCU_OCI_REPO
- Container repository to use
- Default: "ghcr.io/jens-maus/raspberrymatic"
-
CCU_OCI_TAG
- Container image tag to use
- Default: "latest"
-
CCU_CONTAINER_NAME
- Name of the container instance. Will also be used as
--hostname
parameter for docker run. - Default: "ccu"
- Name of the container instance. Will also be used as
-
CCU_CONTAINER_IP
- IP address for the container instance (e.g.
192.168.178.4
). Have to be a non-DHCP assignable IP address from the same LAN subnet as the docker host. - Default: "" (will be interactively requested)
- IP address for the container instance (e.g.
-
CCU_CONTAINER_IP_AUX
- Auxiliary ip address additionally assigned to the docker host system (e.g.
192.168.178.3
). Have to be a non-DHCP assignable IP address from the same LAN subnet as the main IP address of the docker host. - Default: "" (will be interactively requested)
- Auxiliary ip address additionally assigned to the docker host system (e.g.
-
CCU_NETWORK_NAME
- Name for the docker
macvlan
network being created/maintained. - Default: "ccu"
- Name for the docker
-
CCU_NETWORK_INTERFACE
- Interface name (e.g.
eth0
,ensXX
) of the main interface the docker host is running on and on which the same subnet is located. - Default: "" (will be automatically determined or interactively requested)
- Interface name (e.g.
-
CCU_NETWORK_SUBNET
- Subnet (e.g.
192.168.178.0/24
) of the main docker host and container ip address being used. - Default: "" (will be automatically determined or interactively requested)
- Subnet (e.g.
-
CCU_DOCKER_RUN_OPTIONS
- Additional options for docker run
- Default: ""
-
CCU_DOCKER_PULL_OPTIONS
- Additional options for docker pull run
- Default: ""
-
CCU_DOCKER_PULL_REFRESH
- Do a docker pull to refresh image
- Default: "true"
-
CCU_DOCKER_STOP_TIMEOUT
- time allowed to stop the container before Docker kills it
- Default: 30 (seconds)
Table of Contents RaspberryMatic Documentation © 2015-2024 Jens Maus and RaspberryMatic Contributors, licensed under CC BY-SA License 4.0