nvidia-container-toolkit

mirror of https://github.com/NVIDIA/nvidia-container-toolkit synced 2025-03-09 22:00:31 +00:00

Author	SHA1	Message	Date
Evan Lezar	1c13a9647c	Merge pull request #965 from elezar/bump-release-v1.17.5 Some checks are pending CI Pipeline / code-scanning (push) Waiting to run Details CI Pipeline / variables (push) Waiting to run Details CI Pipeline / golang (push) Waiting to run Details CI Pipeline / image (push) Blocked by required conditions Details CI Pipeline / e2e-test (push) Blocked by required conditions Details Bump version for v1.17.5 release	2025-03-06 12:45:33 +02:00
Evan Lezar	4e84c0dc50	Bump version for v1.17.5 release Signed-off-by: Evan Lezar <elezar@nvidia.com>	2025-03-06 11:03:44 +02:00
Evan Lezar	997f23cf11	Merge pull request #953 from elezar/backport-enable-cdi-container Add option in toolkit container to enable CDI in runtime	2025-03-06 10:50:43 +02:00
Evan Lezar	e4f8406139	Merge pull request #952 from elezar/add-disable-imex-channels-feature Add ignore-imex-channel-requests feature flag.	2025-03-06 10:49:47 +02:00
Evan Lezar	aa0d4af51a	Merge pull request #951 from elezar/add-e2e-tests Some checks are pending CI Pipeline / code-scanning (push) Waiting to run Details CI Pipeline / variables (push) Waiting to run Details CI Pipeline / golang (push) Waiting to run Details CI Pipeline / image (push) Blocked by required conditions Details CI Pipeline / e2e-test (push) Blocked by required conditions Details Add e2e tests to release-1.17 branch	2025-03-05 19:04:50 +02:00
Evan Lezar	267fb5987f	Merge pull request #950 from elezar/seal-ldconfig Some checks failed CodeQL / Analyze Go code with CodeQL (push) Has been cancelled Details Golang / check (push) Has been cancelled Details Golang / Unit test (push) Has been cancelled Details Golang / Build (push) Has been cancelled Details image / packages (${{github.event_name == 'pull_request'}}, centos7-aarch64) (push) Has been cancelled Details image / packages (${{github.event_name == 'pull_request'}}, centos7-x86_64) (push) Has been cancelled Details image / packages (${{github.event_name == 'pull_request'}}, centos8-ppc64le) (push) Has been cancelled Details image / packages (${{github.event_name == 'pull_request'}}, ubuntu18.04-amd64) (push) Has been cancelled Details image / packages (${{github.event_name == 'pull_request'}}, ubuntu18.04-arm64) (push) Has been cancelled Details image / packages (${{github.event_name == 'pull_request'}}, ubuntu18.04-ppc64le) (push) Has been cancelled Details image / image (packaging, ${{github.event_name == 'pull_request'}}) (push) Has been cancelled Details image / image (ubi8, ${{github.event_name == 'pull_request'}}) (push) Has been cancelled Details image / image (ubuntu20.04, ${{github.event_name == 'pull_request'}}) (push) Has been cancelled Details Use memfd when running ldconfig	2025-02-28 22:12:57 +02:00
Evan Lezar	eb48d2d5fd	Enable CDI in runtime if CDI_ENABLED is set This change also enables CDI in the configured runtime when the toolkit is installed with CDI enabled. Signed-off-by: Evan Lezar <elezar@nvidia.com>	2025-02-28 22:10:38 +02:00
Evan Lezar	b71bb87d91	Fix overwriting docker feature flags Signed-off-by: Evan Lezar <elezar@nvidia.com>	2025-02-28 18:33:53 +02:00
Christopher Desiniotis	cc88c554ed	Add option in toolkit container to enable CDI in runtime Signed-off-by: Christopher Desiniotis <cdesiniotis@nvidia.com>	2025-02-28 18:33:40 +02:00
Evan Lezar	ce7cea3a0d	Remove Set from engine config API Signed-off-by: Evan Lezar <elezar@nvidia.com>	2025-02-28 18:33:30 +02:00
Christopher Desiniotis	1bc9548a2f	Add EnableCDI() method to engine.Interface This change adds an EnableCDI method to the container engine config files and Updates the 'nvidia-ctk runtime configure' command to use this new method. Signed-off-by: Christopher Desiniotis <cdesiniotis@nvidia.com>	2025-02-28 18:33:21 +02:00
Evan Lezar	7c758c97b8	Add ignore-imex-channel-requests feature flag This allows the NVIDIA Container Toolkit to ignore IMEX channel requests through the NVIDIA_IMEX_CHANNELS envvar or volume mounts and ensures that the NVIDIA Container Toolkit cannot be used to provide out-of-band access to an IMEX channel by simply specifying an environment variable, possibly bypassing other checks by an orchestration system such as kubernetes. Signed-off-by: Evan Lezar <elezar@nvidia.com>	2025-02-28 17:54:11 +02:00
Evan Lezar	48d538eef9	[no-relnotes] Update makefile for images Signed-off-by: Evan Lezar <elezar@nvidia.com>	2025-02-28 17:43:01 +02:00
Evan Lezar	9848c3e985	[no-relnote] Use github actions from main Signed-off-by: Evan Lezar <elezar@nvidia.com>	2025-02-28 17:25:21 +02:00
Carlos Eduardo Arango Gutierrez	868f385a01	Rename test folder to tests Signed-off-by: Carlos Eduardo Arango Gutierrez <eduardoa@nvidia.com> Signed-off-by: Evan Lezar <elezar@nvidia.com>	2025-02-28 17:24:22 +02:00
Evan Lezar	069926e4b6	Move test to tests Signed-off-by: Evan Lezar <elezar@nvidia.com>	2025-02-28 17:21:23 +02:00
Evan Lezar	91a983a341	Merge pull request #945 from elezar/disable-nvsandboxutils Disable nvsandboxutils in nvcdi API	2025-02-28 17:10:56 +02:00
Evan Lezar	f5680dd0cd	Merge pull request #948 from elezar/add-compat-lib-hook Add CUDA forward compatibility hook	2025-02-28 17:10:31 +02:00
Evan Lezar	5bdf14b1e7	Use libcontainer execseal to run ldconfig This change copies ldconfig into a memfd before executing it from the createContainer hook. Signed-off-by: Evan Lezar <elezar@nvidia.com>	2025-02-28 14:47:31 +02:00
Evan Lezar	b598826ff2	[no-relnote] Move root to separate file Signed-off-by: Evan Lezar <elezar@nvidia.com>	2025-02-28 14:01:50 +02:00
Evan Lezar	c1bac2873b	Add disable-cuda-compat-lib-hook feature flag Signed-off-by: Evan Lezar <elezar@nvidia.com>	2025-02-27 17:35:00 +02:00
Evan Lezar	9f611a5a23	Ensure that mode hook is executed last Signed-off-by: Evan Lezar <elezar@nvidia.com>	2025-02-27 17:35:00 +02:00
Evan Lezar	e330a938fd	Add enable-cuda-compat hook to CDI spec generation Signed-off-by: Evan Lezar <elezar@nvidia.com>	2025-02-27 17:34:59 +02:00
Evan Lezar	f445d4b614	Add ldconfig hook in legacy mode Signed-off-by: Evan Lezar <elezar@nvidia.com>	2025-02-27 17:26:15 +02:00
Evan Lezar	e1ae57eef9	Add enable-cuda-compat hook if required This change adds the enable-cuda-compat hook to the incomming OCI runtime spec if the allow-cuda-compat-libs-from-container feature flag is not enabled. An update-ldcache hook is also injected to ensure that the required folders are processed. Signed-off-by: Evan Lezar <elezar@nvidia.com>	2025-02-27 17:26:15 +02:00
Evan Lezar	76040ff2ad	Add enable-cuda-compat hook to allow compat libs to be discovered This change adds an nvidia-cdi-hook enable-cuda-compat hook that checks the container for cuda compat libs and updates /etc/ld.so.conf.d to include their parent folder if their driver major version is sufficient. This allows CUDA Forward Compatibility to be used when this is not available through the libnvidia-container. Signed-off-by: Evan Lezar <elezar@nvidia.com>	2025-02-27 17:26:15 +02:00
Evan Lezar	fd865bb9e7	Disable nvsandboxutils in nvcdi API Repeated calls to nvsandboxutils.Init and Shutdown are causing segmentation violations. Here we disabled nvsandbox utils unless explicitly specified. Signed-off-by: Evan Lezar <elezar@nvidia.com>	2025-02-27 11:09:00 +02:00
Evan Lezar	6b037a0dde	Merge pull request #917 from elezar/remove-nvidia-container-runtime-hook-in-cdi-mode Some checks failed CodeQL / Analyze Go code with CodeQL (push) Has been cancelled Details Golang / check (push) Has been cancelled Details Golang / Unit test (push) Has been cancelled Details Golang / Build (push) Has been cancelled Details image / packages (${{github.event_name == 'pull_request'}}, centos7-aarch64) (push) Has been cancelled Details image / packages (${{github.event_name == 'pull_request'}}, centos7-x86_64) (push) Has been cancelled Details image / packages (${{github.event_name == 'pull_request'}}, centos8-ppc64le) (push) Has been cancelled Details image / packages (${{github.event_name == 'pull_request'}}, ubuntu18.04-amd64) (push) Has been cancelled Details image / packages (${{github.event_name == 'pull_request'}}, ubuntu18.04-arm64) (push) Has been cancelled Details image / packages (${{github.event_name == 'pull_request'}}, ubuntu18.04-ppc64le) (push) Has been cancelled Details image / image (packaging, ${{github.event_name == 'pull_request'}}) (push) Has been cancelled Details image / image (ubi8, ${{github.event_name == 'pull_request'}}) (push) Has been cancelled Details image / image (ubuntu20.04, ${{github.event_name == 'pull_request'}}) (push) Has been cancelled Details Remove nvidia container runtime hook in cdi mode	2025-02-11 10:36:54 +01:00
Evan Lezar	9eccc1659d	Allow cdi mode to work with --gpus flag This changes ensures that the cdi modifier also removes the NVIDIA Container Runtime Hook from the incoming spec. This aligns with what is done for CSV modifications and prevents an error when starting the container. Signed-off-by: Evan Lezar <elezar@nvidia.com>	2025-02-10 19:21:10 +01:00
Evan Lezar	6da7af8dfa	[no-relnote] Remove duplicate test case Signed-off-by: Evan Lezar <elezar@nvidia.com>	2025-02-10 19:20:38 +01:00
Evan Lezar	b170a35328	Merge pull request #898 from elezar/backport-quemu Some checks failed CodeQL / Analyze Go code with CodeQL (push) Has been cancelled Details Golang / check (push) Has been cancelled Details Golang / Unit test (push) Has been cancelled Details Golang / Build (push) Has been cancelled Details image / packages (${{github.event_name == 'pull_request'}}, centos7-aarch64) (push) Has been cancelled Details image / packages (${{github.event_name == 'pull_request'}}, centos7-x86_64) (push) Has been cancelled Details image / packages (${{github.event_name == 'pull_request'}}, centos8-ppc64le) (push) Has been cancelled Details image / packages (${{github.event_name == 'pull_request'}}, ubuntu18.04-amd64) (push) Has been cancelled Details image / packages (${{github.event_name == 'pull_request'}}, ubuntu18.04-arm64) (push) Has been cancelled Details image / packages (${{github.event_name == 'pull_request'}}, ubuntu18.04-ppc64le) (push) Has been cancelled Details image / image (packaging, ${{github.event_name == 'pull_request'}}) (push) Has been cancelled Details image / image (ubi8, ${{github.event_name == 'pull_request'}}) (push) Has been cancelled Details image / image (ubuntu20.04, ${{github.event_name == 'pull_request'}}) (push) Has been cancelled Details [no-relnote] switch to the newer qemu artifacts image	2025-02-05 17:57:28 +01:00
Tariq Ibrahim	2b11b7eaf2	[no-relnote] switch to the newer qemu artifacts image Signed-off-by: Tariq Ibrahim <tibrahim@nvidia.com>	2025-02-05 17:47:09 +01:00
Evan Lezar	82090b547e	Merge pull request #870 from NVIDIA/dependabot/docker/deployments/devel/release-1.17/golang-1.23.5 Bump golang from 1.23.4 to 1.23.5 in /deployments/devel	2025-02-05 16:01:16 +01:00
dependabot[bot]	f452ef4747	Bump golang from 1.23.4 to 1.23.5 in /deployments/devel Bumps golang from 1.23.4 to 1.23.5. --- updated-dependencies: - dependency-name: golang dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2025-02-03 15:39:26 +00:00
Evan Lezar	c3622abeac	Merge pull request #889 from NVIDIA/dependabot/docker/deployments/container/release-1.17/nvidia/cuda-12.8.0-base-ubuntu20.04 Some checks failed CodeQL / Analyze Go code with CodeQL (push) Has been cancelled Details Golang / check (push) Has been cancelled Details Golang / Unit test (push) Has been cancelled Details Golang / Build (push) Has been cancelled Details image / packages (${{github.event_name == 'pull_request'}}, centos7-aarch64) (push) Has been cancelled Details image / packages (${{github.event_name == 'pull_request'}}, centos7-x86_64) (push) Has been cancelled Details image / packages (${{github.event_name == 'pull_request'}}, centos8-ppc64le) (push) Has been cancelled Details image / packages (${{github.event_name == 'pull_request'}}, ubuntu18.04-amd64) (push) Has been cancelled Details image / packages (${{github.event_name == 'pull_request'}}, ubuntu18.04-arm64) (push) Has been cancelled Details image / packages (${{github.event_name == 'pull_request'}}, ubuntu18.04-ppc64le) (push) Has been cancelled Details image / image (packaging, ${{github.event_name == 'pull_request'}}) (push) Has been cancelled Details image / image (ubi8, ${{github.event_name == 'pull_request'}}) (push) Has been cancelled Details image / image (ubuntu20.04, ${{github.event_name == 'pull_request'}}) (push) Has been cancelled Details Bump nvidia/cuda from 12.6.3-base-ubuntu20.04 to 12.8.0-base-ubuntu20.04 in /deployments/container	2025-02-03 16:38:25 +01:00
dependabot[bot]	c599c6cc62	Bump nvidia/cuda in /deployments/container Bumps nvidia/cuda from 12.6.3-base-ubuntu20.04 to 12.8.0-base-ubuntu20.04. --- updated-dependencies: - dependency-name: nvidia/cuda dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2025-02-02 08:12:00 +00:00
Evan Lezar	9b69590c74	Merge pull request #878 from elezar/bump-release-v1.17.4 Some checks failed CodeQL / Analyze Go code with CodeQL (push) Has been cancelled Details Golang / check (push) Has been cancelled Details Golang / Unit test (push) Has been cancelled Details Golang / Build (push) Has been cancelled Details image / packages (${{github.event_name == 'pull_request'}}, centos7-aarch64) (push) Has been cancelled Details image / packages (${{github.event_name == 'pull_request'}}, centos7-x86_64) (push) Has been cancelled Details image / packages (${{github.event_name == 'pull_request'}}, centos8-ppc64le) (push) Has been cancelled Details image / packages (${{github.event_name == 'pull_request'}}, ubuntu18.04-amd64) (push) Has been cancelled Details image / packages (${{github.event_name == 'pull_request'}}, ubuntu18.04-arm64) (push) Has been cancelled Details image / packages (${{github.event_name == 'pull_request'}}, ubuntu18.04-ppc64le) (push) Has been cancelled Details image / image (packaging, ${{github.event_name == 'pull_request'}}) (push) Has been cancelled Details image / image (ubi8, ${{github.event_name == 'pull_request'}}) (push) Has been cancelled Details image / image (ubuntu20.04, ${{github.event_name == 'pull_request'}}) (push) Has been cancelled Details Bump version for v1.17.4 release	2025-01-23 11:51:54 +01:00
Evan Lezar	9f6970944f	Bump version for v1.17.4 release Signed-off-by: Evan Lezar <elezar@nvidia.com>	2025-01-23 11:49:27 +01:00
Evan Lezar	5ac593eac2	Merge pull request #877 from elezar/add-compatlibs-option Disable mounting of compat libs from container by default	2025-01-23 11:32:47 +01:00
Evan Lezar	07f45ea74f	Bump libnvidia-container to f23e5e55 Signed-off-by: Evan Lezar <elezar@nvidia.com>	2025-01-23 10:59:52 +01:00
Evan Lezar	2310ed76d8	Add allow-cuda-compat-libs-from-container feature flag This change adds an allow-cuda-compat-libs-from-container feature flag to the NVIDIA Container Toolkit config. This allows a user to opt-in to the previous default behaviour of overriding certain driver libraries with CUDA compat libraries from the container. Signed-off-by: Evan Lezar <elezar@nvidia.com>	2025-01-23 10:59:52 +01:00
Evan Lezar	f2b3e8d381	Disable mounting of compat libs from container This change passes the --no-cntlibs argument to the nvidia-container-cli from the nvidia-container-runtime-hook to disable overwriting host drivers with the compat libs from a container being started. Note that this may be a breaking change for some applications. Signed-off-by: Evan Lezar <elezar@nvidia.com>	2025-01-23 10:59:52 +01:00
Evan Lezar	65ef5e38dd	[no-relnote] Sort feature flags Signed-off-by: Evan Lezar <elezar@nvidia.com>	2025-01-23 10:59:00 +01:00
Evan Lezar	12367de49c	Merge pull request #875 from elezar/skip-graphics-for-csv Some checks are pending CodeQL / Analyze Go code with CodeQL (push) Waiting to run Details Golang / check (push) Waiting to run Details Golang / Unit test (push) Waiting to run Details Golang / Build (push) Waiting to run Details image / packages (${{github.event_name == 'pull_request'}}, centos7-aarch64) (push) Waiting to run Details image / packages (${{github.event_name == 'pull_request'}}, centos7-x86_64) (push) Waiting to run Details image / packages (${{github.event_name == 'pull_request'}}, centos8-ppc64le) (push) Waiting to run Details image / packages (${{github.event_name == 'pull_request'}}, ubuntu18.04-amd64) (push) Waiting to run Details image / packages (${{github.event_name == 'pull_request'}}, ubuntu18.04-arm64) (push) Waiting to run Details image / packages (${{github.event_name == 'pull_request'}}, ubuntu18.04-ppc64le) (push) Waiting to run Details image / image (packaging, ${{github.event_name == 'pull_request'}}) (push) Blocked by required conditions Details image / image (ubi8, ${{github.event_name == 'pull_request'}}) (push) Blocked by required conditions Details image / image (ubuntu20.04, ${{github.event_name == 'pull_request'}}) (push) Blocked by required conditions Details Skip graphics for csv	2025-01-22 17:30:18 +01:00
Evan Lezar	aeb82cb9a2	Skip graphics modifier in CSV mode In CSV mode the CSV files at /etc/nvidia-container-runtime/host-files-for-container.d/ should be the source of truth for container modifications. This change skips graphics modifications to a container. This prevents conflicts when handling files such as vulkan icd files which are already defined in the CSV file. Signed-off-by: Evan Lezar <elezar@nvidia.com>	2025-01-22 14:37:43 +01:00
Evan Lezar	628516a5eb	[no-relnote] Refactor oci spec modifier list Signed-off-by: Evan Lezar <elezar@nvidia.com>	2025-01-22 14:37:43 +01:00
Evan Lezar	487d07d07a	Merge pull request #867 from elezar/bump-release-v1.17.4 Some checks failed CodeQL / Analyze Go code with CodeQL (push) Has been cancelled Details Golang / check (push) Has been cancelled Details Golang / Unit test (push) Has been cancelled Details Golang / Build (push) Has been cancelled Details image / packages (${{github.event_name == 'pull_request'}}, centos7-aarch64) (push) Has been cancelled Details image / packages (${{github.event_name == 'pull_request'}}, centos7-x86_64) (push) Has been cancelled Details image / packages (${{github.event_name == 'pull_request'}}, centos8-ppc64le) (push) Has been cancelled Details image / packages (${{github.event_name == 'pull_request'}}, ubuntu18.04-amd64) (push) Has been cancelled Details image / packages (${{github.event_name == 'pull_request'}}, ubuntu18.04-arm64) (push) Has been cancelled Details image / packages (${{github.event_name == 'pull_request'}}, ubuntu18.04-ppc64le) (push) Has been cancelled Details image / image (packaging, ${{github.event_name == 'pull_request'}}) (push) Has been cancelled Details image / image (ubi8, ${{github.event_name == 'pull_request'}}) (push) Has been cancelled Details image / image (ubuntu20.04, ${{github.event_name == 'pull_request'}}) (push) Has been cancelled Details Bump version for v1.17.4 release	2025-01-16 09:49:39 +01:00
Evan Lezar	aaac4ec23e	Bump version for v1.17.4 release Signed-off-by: Evan Lezar <elezar@nvidia.com>	2025-01-16 09:48:44 +01:00
Evan Lezar	bed57fdba0	Merge pull request #864 from elezar/fix_custom_config_path_handling Some checks are pending CodeQL / Analyze Go code with CodeQL (push) Waiting to run Details Golang / check (push) Waiting to run Details Golang / Unit test (push) Waiting to run Details Golang / Build (push) Waiting to run Details image / packages (${{github.event_name == 'pull_request'}}, centos7-aarch64) (push) Waiting to run Details image / packages (${{github.event_name == 'pull_request'}}, centos7-x86_64) (push) Waiting to run Details image / packages (${{github.event_name == 'pull_request'}}, centos8-ppc64le) (push) Waiting to run Details image / packages (${{github.event_name == 'pull_request'}}, ubuntu18.04-amd64) (push) Waiting to run Details image / packages (${{github.event_name == 'pull_request'}}, ubuntu18.04-arm64) (push) Waiting to run Details image / packages (${{github.event_name == 'pull_request'}}, ubuntu18.04-ppc64le) (push) Waiting to run Details image / image (packaging, ${{github.event_name == 'pull_request'}}) (push) Blocked by required conditions Details image / image (ubi8, ${{github.event_name == 'pull_request'}}) (push) Blocked by required conditions Details image / image (ubuntu20.04, ${{github.event_name == 'pull_request'}}) (push) Blocked by required conditions Details Fix custom config path handling	2025-01-15 16:39:45 +01:00
Alexander Mikhalitsyn	4237556078	Properly pass configSearchPaths to a Driver constructor Signed-off-by: Alexander Mikhalitsyn <aleksandr.mikhalitsyn@canonical.com>	2025-01-15 16:28:09 +01:00

1 2 3 4 5 ...

2115 Commits