feat: Setup HAOS using Kubevirt

[mvgijssel]

ref #632

TODO

• Install multus
• Add haos vm to the lan
• Figure out a way to store haos disk image on zfs
• Setup haos
• Install matter server
• Add static ip to haos vm
• Install esphome
• Connect Skyconnect to server
• Fix ZFS version suddenly being lower resulting in error. Might be related to how we update nixos (from macOS). See Pinning nixpkgs in configuration.nix? NixOS/nixpkgs#62832:

   pool: new_data
     id: 2724641472561338930
  state: UNAVAIL
status: The pool uses the following feature(s) not supported on this system:
	com.klarasystems:vdev_zaps_v2
action: The pool cannot be imported. Access the pool on a system that supports
	the required feature(s), or recreate the pool from backup.

• Upgrade Kubevirt to 1.1.1 to usb permission issue (Permissions denied error during USB pass through kubevirt/kubevirt#10727 (comment))
• Configure Kubevirt cr to pass through USB device
• Install ZHA
• Configure multi protocol in Skyconnect to also support Thread + Matter
• Merge the Skyconnect Thread and Apple border router networks (https://www.reddit.com/r/homeassistant/comments/11pkmpu/obtain_apple_thread_network_credentials/)
• Setup Philips Hue
• Register all esphome devices in HAOS (multiple HA clients can connect to single Esphome node! https://community.home-assistant.io/t/good-practice-switching-an-esphome-device-between-2-home-assistant-instances-test-and-prod/371408/6)
• Setup Unifi Protect
• Setup Tado
• Setup SSH on HAOS
• Configure Mutagen to sync between HAOS and local
• Enable ESPHome devices to call Home Assistant services
• Configure homekit bridge updating configuration.yaml
• Setup syncing all esphome files into haos
• Terminate old esphome
• Import slimmelezer
• Import hallway-epo
• Install HACS (https://hacs.xyz/docs/setup/download)
• Setup adaptive lighting
• Install variables custom component
• Configure necessary variables custom component
• Install illuminance custom component
• Setup automation for supply closet
• Join Skyconnect (again) to the Apple TV thread network
• Enable advanced mode in the user profile to make renaming devices easier
• Setup automation for toilet
• Setup automation for driveway
• Setup automation for hallway
• Setup automation for laundry room
• Fix Woonkamer home hub not responding
• Setup automation garden
• Setup automation for living room
• Configure Nabu Casa integration
• Configure Google Home integration
• Terminate old home assistant
• Terminate old zigbee2mqtt
• Remove old setup from mutagen setup
• Setup energy dashboard
• Move kubernetes manifests into haos/cloud
• Rename testvm to haos
• Rename bridge-test to bridge
• IPv6 enabled in Ziggo + updated Unifi router settings (https://tomasmcguinness.com/2023/02/10/matter-unifi-and-mdns/)
• Generate changesets

[mvgijssel]

Create zfs dataset for the k3s kubevirt storage

systemctl stop k3s
zfs create new_data/apps/k3s_storage
cat /var/lib/rancher/k3s/server/manifests/local-storage.yaml # find the storage location
zfs set mountpoint=/var/lib/rancher/k3s/storage new_data/apps/k3s_storage
systemctl start k3s

[mvgijssel]

The vm boots, but doesn't get an IP and using virtctl console testvm does not result in anything. Maybe try using VNC? Or try enable more debug logs for kubevirt. Try using strace to debug!

[mvgijssel]

Good article for debugging https://groups.google.com/g/kubevirt-dev/c/Ezd3ZtxcxLI. Maybe the qcow is for uefi?

[mvgijssel]

Find the Skyconnect USB dongle running usb-devices inside the hypervisor.

[mvgijssel]

Pin nixpkgs version in nixos by using a flake https://gist.github.com/m1cr0man/8cae16037d6e779befa898bfefd36627

[mvgijssel]

Upgrade to version 1.1.1 (pre-release according to https://github.com/kubevirt/kubevirt/releases)

export VERSION=v1.1.1
kubectl apply -f https://github.com/kubevirt/kubevirt/releases/download/${VERSION}/kubevirt-operator.yaml
kubectl apply -f https://github.com/kubevirt/kubevirt/releases/download/${VERSION}/kubevirt-cr.yaml
kubectl get all -n kubevirt # poll until ready
kubectl apply -f kubevirt_cr.yml

[mvgijssel]

Using this script from https://www.reddit.com/r/homeassistant/comments/11pkmpu/obtain_apple_thread_network_credentials/ to create TLV to make the Apple border router the default network.

import python_otbr_api
from python_otbr_api import PENDING_DATASET_DELAY_TIMER, tlv_parser
from python_otbr_api.pskc import compute_pskc
from python_otbr_api.tlv_parser import MeshcopTLVType, MeshcopTLVItem

# Apple
CHANNEL = <Channel Number>
PANID = "<YourPanID>"
EXTPANID = "<YourExtPanID>"
NETWORK_KEY = "<Your Network Key>"
TIMESTAMP = b'\x00\x00\x00\x00\x00\x03\x00\x00'

channel = MeshcopTLVItem(tag=0, data=CHANNEL.to_bytes(length=3, byteorder='big'))
pan_id= MeshcopTLVItem(tag=1, data=bytes.fromhex(PANID))
ext_pan_id = MeshcopTLVItem(tag=2, data=bytes.fromhex(EXTPANID))
network_key = MeshcopTLVItem(tag=5, data=bytes.fromhex(NETWORK_KEY))
timestamp = MeshcopTLVItem(tag=14, data=TIMESTAMP)

tlv_new = {0: channel, 1: pan_id, 2:ext_pan_id, 4: network_key, 14: timestamp}
tlv  = tlv_parser.encode_tlv(tlv_new)
print(tlv)

Afterwards merge the Apple and Skyconnect border routers and wait for 5 minutes.

[mvgijssel]

To improve Thread + Matter performance and potentially fix Apple Home Hub not responding updated the following network settings in Unify:

Updated Unify WAN settings to enable IPv6 for WAN with delegation size from Ziggo (https://community.ziggo.nl/t5/Archief/Eindelijk-IPv6-in-Bridge-modus/td-p/869035)

Updated LAN settings (https://community.ziggo.nl/t5/Internet/IPV6-Ziggo-Zakelijk-icm-Unifi-USG/td-p/894411)

Updated WiFi settings to include multicast enhancement:

[mvgijssel]

• Setup static ips for the Apple TVs
• Restart Apple TV Woonkamer
• Remove from homekit and add back in
• Sign back into iCloud (apparently this was necessary when opening the TV+ app?)

[mvgijssel]

Waiting a couple of hours has recovered the home hub and associated sensors.

[mvgijssel]

Ideas to improve thread performance:

• Enabled IGMP snooping done, didn't help
• Disable home hub slaapkamer tv done, didn't help
• Disable mDNS in Unifi and disable multicast enhancements done, didn't help
• Checking the Unifi logs it seems that the hypervisor is disconnecting really often, maybe fix this first?
  • started a screen session on provisioner, let's see what that does
• disable mDNS esphome devices
• Try using a separate pci / usb network dongle for haos
• Turn off haos and see responsiveness thread network
• Turn of Apple tv and see responsiveness thread network
• Use Skyconnect in USB only mode
• Disable skyconnect in home assistant

Articles

• https://www.derekseaman.com/2023/10/part-3-smart-home-matter-and-thread-deep-dive.html
• https://tomasmcguinness.com/2023/02/10/matter-unifi-and-mdns/
• NanoLeaf Thread Bulbs drop offline home-assistant/core#89331