Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/timebertt/pi-cloud-init

Minimal Raspberry Pi OS including cloud-init
https://github.com/timebertt/pi-cloud-init

cloud-init iot k3s kubernetes raspberry-pi raspberry-pi-os

Last synced: 10 days ago
JSON representation

Minimal Raspberry Pi OS including cloud-init

Awesome Lists containing this project

README 

        
# Minimal Raspberry Pi OS including cloud-init



This repo features a custom [Raspberry Pi OS Lite](https://www.raspberrypi.org/software/operating-systems/) image including [cloud-init](https://cloud-init.io/) built with [pi-gen](https://github.com/RPi-Distro/pi-gen).



## TL;DR: How to use the image :gear:



1. Download the image from GitHub:

    ```bash

    ARCH=armhf # either armhf or aarch64 (experimental)

    curl -sSL -o 2021-05-10-raspios-buster-$ARCH-lite-cloud-init.zip https://github.com/timebertt/pi-cloud-init/releases/download/2021-05-10/2021-05-10-raspios-buster-$ARCH-lite-cloud-init.zip && \

    unzip -o 2021-05-10-raspios-buster-$ARCH-lite-cloud-init.zip

    ```



2. Mount the `boot` partition (of the `.img` file) to add `user-data`, `meta-data` and optionally `network-config` files to the root of it. Unmount it again, once added.

3. Flash image to SD card using [balena etcher](https://www.balena.io/etcher/), [Raspberry Pi Imager](https://www.raspberrypi.org/software/) or similar.

4. Insert SD card into Pi and power up! :rocket:



## Rationale :bulb:



[Raspberry Pi OS](https://www.raspberrypi.org/software/operating-systems/) is fairly easy to setup. Though, if you want to setup a Raspberry Pi cluster like Alex Ellis and the community [have been doing for five years+](https://alexellisuk.medium.com/five-years-of-raspberry-pi-clusters-77e56e547875), you will have to repeat some manual configuration steps like copying SSH keys, networking setup and so on for each Pi.



[cloud-init](https://cloud-init.io/) is the de-facto standard for solving the same problem on cloud instances. It's baked into most cloud images, which makes cloud instances discover initialization and configuration data from the cloud provider's [metadata service](https://cloudinit.readthedocs.io/en/latest/topics/datasources.html).



cloud-init can be used for bootstrapping Raspberry Pis as well, making it easy to configure networking, packages and remote access consistently across a fleet of Pis. Unfortunately, Raspberry Pi OS doesn't ship with cloud-init out of the box and thus requires [manual installation and configuration](https://gist.github.com/RichardBronosky/fa7d4db13bab3fbb8d9e0fff7ea88aa2).



This repo features a custom image based on Raspberry Pi OS Lite built with [pi-gen](https://github.com/RPi-Distro/pi-gen) with cloud-init preinstalled, which allows to pass initialization and configuration data (in form of `meta-data`, `user-data` and `network-config` files) to Pis via the boot image flashed to an SD card. This makes it easy to bootstrap multiple Pis in a plug-and-play fashion without attaching a monitor or manually SSHing into each one of them.



**Why not simply use Ubuntu Server?** :question:



[Ubuntu Server](https://ubuntu.com/download/raspberry-pi) comes with cloud-init preinstalled and also features a Raspberry Pi Image. It can be leveraged in a [similar fashion](https://gitlab.com/Bjorn_Samuelsson/raspberry-pi-cloud-init-wifi) to the image built by this project to bootstrap Pis. Though, in my tests Ubuntu Server already consumed more than `300MB` of precious memory on my Pis without anything installed. Therefore I started building a custom image based on Raspberry Pi OS Lite, which consumes only roughly `60MB` of memory out of the box.



**Why not use k3os?** :question:



[k3os](https://github.com/rancher/k3os) is a minimal OS designed to run [k3s](https://github.com/k3s-io/k3s) and be managed by `kubectl`. It also features a `cloud-init`-like configuration file, which can be used to easily configure hosts. Unfortunately, there are currently [no official RPi images](https://github.com/rancher/k3os/issues/309), but you can build one on your own by leveraging [this project](https://github.com/rancher/k3os/issues/309).

In my tests, `k3os` performed quite well with some additional overhead in CPU and Memory usage. I chose to build my own images based on Raspberry Pi OS, because of the lower resource usage, the familiarity with Debian-based distros, flexibility in bootstrapping my clusters (not tied to k3s) and the endless resources on Raspberry Pi OS.



## How to build the image :construction:



You can build the image yourself and customize the build along the way by following these steps.



1. Setup a Debian VM using [vagrant](https://www.vagrantup.com/) which will build the image. This provides a clean build environment and additionally works on a Linux as well as macOS.

    ```bash

    # what image to build: either amrhf (default) or aarch64 (experimental)

    export ARCH=armhf

    vagrant up --provision

    ```



2. Start pi-gen build in the VM. This is going to take some time...

    ```bash

    vagrant ssh

    ./pi-cloud-init/build.sh

    ```

    When you want to rebuild from scratch (e.g. because you want to build for another arch), you can run

    ```bash

    vagrant ssh

    CLEAN=1 ./pi-cloud-init/build.sh

    ```



3. Transfer produced image to the host machine and unzip.

    This requires the `vagrant-scp` plugin, install it first by running:

    ```bash

    vagrant plugin install vagrant-scp

    ```

    ```bash

    zip_file=$(date +%Y-%m-%d)-raspios-buster-$ARCH-lite-cloud-init.zip && \

    vagrant scp raspios-builder:/home/vagrant/pi-cloud-init/$zip_file $zip_file && \

    unzip -o "$zip_file"

    ```



4. Customize `user-data.yaml`, `meta-data.yaml` and `network-config.yaml` for the instance you're setting up.



5. Mount boot partition to inject `user-data`, `meta-data` and `network-config`.

    (It's assuming a macOS machine, but you should be able to accomplish the same using `mount` and `umount` on Linux.)

    ```bash

    img_file="${zip_file%.zip}.img" && \

    volume="$(hdiutil mount "$img_file" | egrep -o '/Volumes/.+')" && \

    cp meta-data.yaml "$volume"/meta-data && \

    cp user-data.yaml "$volume"/user-data && \

    cp network-config.yaml "$volume"/network-config && \

    device="$(mount | grep "$volume" | cut -f1 -d' ' | egrep -o '/dev/disk.')" && \

    diskutil umountDisk "$device" && \

    diskutil eject "$device"

    ```



6. Optionally, you can verify the image and cloud-init functionality using [dockerpi](https://github.com/lukechilds/dockerpi) (only works with `armhf` images). It start a Docker container with QEMU in it emulating a Pi. This way you can already verify, that the image and the provided `user-data` is working without flashing a new SD card everytime.

    ```bash

    docker run -it -v $PWD/$img_file:/sdcard/filesystem.img lukechilds/dockerpi:vm

    ...

    cloud-init[96]: Cloud-init v. 20.2 running 'init-local' at Mon, 08 Mar 2021 19:54:02 +0000. Up 53.20 seconds.

    ...

    cloud-init[380]: Cloud-init v. 20.2 running 'init' at Mon, 08 Mar 2021 19:54:42 +0000. Up 93.34 seconds.

    ...

    cloud-init[568]: Cloud-init v. 20.2 running 'modules:config' at Mon, 08 Mar 2021 19:55:48 +0000. Up 159.10 seconds.

    ...

    cloud-init[620]: Cloud-init v. 20.2 running 'modules:final' at Mon, 08 Mar 2021 19:56:05 +0000. Up 175.50 seconds.

    cloud-init[620]: Cloud-init v. 20.2 finished at Mon, 08 Mar 2021 19:56:08 +0000. Datasource DataSourceNoCloud [seed=/dev/sda1][dsmode=net].  Up 179.17 seconds

    ```



7. Now, flash the image including cloud-init data to SD card, using [balena etcher](https://www.balena.io/etcher/), [Raspberry Pi Imager](https://www.raspberrypi.org/software/) or similar.



8. Finally, SSH into your Pi and verify cloud-init functionality. By default, the `pi` user is locked and SSH password authentication is disabled, so make sure to add a custom user with `ssh_authorized_keys` to your `user-data`.

    ```bash

    ssh your-user@your-pi

    less /var/log/cloud-init-output.log

    ```



## Next steps :running:



### Play around with user-data :video_game:



Find some more user-data examples under [examples](./examples):



- [Simple user-data](./examples/simple)

- [Static IPv4](./examples/static-ip)



## More fun :tada:



### Spin up a Kubernetes cluster :nerd_face:



[examples/k3s-cluster](./examples/k3s-cluster) contains some user-data files for spinning up a Kubernetes cluster using [k3s](https://github.com/k3s-io/k3s). Use the set of user-data files in `raspberry-0` for bootstrapping your cluster (i.e. for the first Pi). After that, join any number of servers and agents using the user-data files in `raspberry-1`.



The examples already include configuration for:



- [kube-vip](https://kube-vip.io/) in layer 2 mode (ARP) for API server load balancing

  - provides an HA control plane endpoint to perform rolling updates on k3s servers (drain, install, reboot one by one)

  - only used for control plane load balancing

- [MetalLB](https://metallb.universe.tf/) in layer 2 mode (ARP) for LoadBalancer Services

  - also includes LoadBalancer IP allocation address ranges specified in configuration ConfigMap (built-in and easier to configure than kube-vip)

  - not used for control plane load balancing (not supported, ref [metallb/metallb#168](https://github.com/metallb/metallb/issues/168))

  - [klipper-lb](https://github.com/k3s-io/klipper-lb) is disabled, as it can't provide a dedicated LoadBalancer IP on your local network (just uses host ports to make LoadBalancer services accessible)



Get the kubeconfig from `raspberry-0` and modify it to use the API server LoadBalancer IP:



```bash

mkdir -p $HOME/.kube/configs/home && \

ssh [email protected] sudo cat /etc/rancher/k3s/k3s.yaml > $HOME/.kube/configs/home/pi-cluster.yaml && \

export KUBECONFIG=$HOME/.kube/configs/home/pi-cluster.yaml && \

kubectl config rename-context default pi-cluster && \

kubectl config set clusters.default.server https://192.168.0.30:6443

```



Check if all Nodes were bootstrapped and got ready:



```bash

$ kubectl get no -owide

NAME          STATUS   ROLES                       AGE     VERSION        INTERNAL-IP    EXTERNAL-IP   OS-IMAGE                       KERNEL-VERSION   CONTAINER-RUNTIME

raspberry-0   Ready    control-plane,etcd,master   18m     v1.20.5+k3s1   192.168.0.20           Debian GNU/Linux 10 (buster)   5.10.17-v8+      containerd://1.4.4-k3s1

raspberry-1   Ready    control-plane,etcd,master   11m     v1.20.5+k3s1   192.168.0.21           Debian GNU/Linux 10 (buster)   5.10.17-v8+      containerd://1.4.4-k3s1

raspberry-2   Ready    control-plane,etcd,master   9m13s   v1.20.5+k3s1   192.168.0.22           Debian GNU/Linux 10 (buster)   5.10.17-v8+      containerd://1.4.4-k3s1

```