Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix nvidia container toolkit docker contamination #336626

Open
wants to merge 3 commits into
base: release-24.05
Choose a base branch
from
Open

Fix nvidia container toolkit docker contamination #336626

wants to merge 3 commits into from

Conversation

ereslibre
Copy link
Member

@ereslibre ereslibre commented Aug 22, 2024
edited
Loading

Description of changes

Backport #331071

Things done

  • Built on platform(s)
    • x86_64-linux
    • aarch64-linux
    • x86_64-darwin
    • aarch64-darwin
  • For non-Linux: Is sandboxing enabled in nix.conf? (See Nix manual)
    • sandbox = relaxed
    • sandbox = true
  • Tested, as applicable:
  • Tested compilation of all packages that depend on this change using nix-shell -p nixpkgs-review --run "nixpkgs-review rev HEAD". Note: all changes have to be committed, also see nixpkgs-review usage
  • Tested basic functionality of all binary files (usually in ./result/bin/)
  • 24.11 Release Notes (or backporting 23.11 and 24.05 Release notes)
    • (Package updates) Added a release notes entry if the change is major or breaking
    • (Module updates) Added a release notes entry if the change is significant
    • (Module addition) Added a release notes entry if adding a new NixOS module
  • Fits CONTRIBUTING.md.

Add a 👍 reaction to pull requests you find important.

@ereslibre
nvidia-container-toolkit: do not shadow docker executable
1cd89ed 
At this time, the nvidia-container-toolkit derivation installs a
docker executable that shadows the main one, and that is not thought
to forward commands to the original docker command, causing issues to
users when the `nvidia-container-toolkit` is in scope and they try to
call to `docker`.

(cherry picked from commit df2df4c)
@ereslibre
virtualisation/docker: fix nvidia wrapper
50e7e13 
Although CDI should be used in order to not require container runtime
wrappers anymore, fix the nvidia-container-runtime integration with
Docker for cases when Docker < 25.

(cherry picked from commit f7b4d57)
@ereslibre
nvidia-podman: remove nvidia wrapper
9cff87c 
Since version 4.1.0, podman has support for CDI, and is the
recommended way to expose GPU's for containers for podman.

More information: https://web.archive.org/web/20240729183805/https://docs.nvidia.com/datacenter/cloud-native/container-toolkit/latest/install-guide.html#configuring-podman

(cherry picked from commit 058e8f5)
@SomeoneSerge
Copy link
Contributor

This is, technically, a breaking change which we normally do not backport. The original state of things is sufficiently sad though maybe we make an exception (would need a note in release notes)... idk hard to know what people depend on and what they don't

@ofborg ofborg bot requested a review from cpcloud August 22, 2024 23:27
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@SomeoneSerge SomeoneSerge Awaiting requested review from SomeoneSerge

@cpcloud cpcloud Awaiting requested review from cpcloud

Assignees
No one assigned
Labels
6.topic: nixos 8.has: clean-up 8.has: module (update) 10.rebuild-darwin: 0 10.rebuild-linux: 1-10
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@ereslibre @SomeoneSerge