Page MenuHomeSolus
Create Task
Maniphest T9942

nvidia-docker : not working due to cgroups v2
Closed, ResolvedPublic
Actions

Description

Problem:

Starting a nvidia-docker container results in the error message

docker: Error response from daemon: OCI runtime create failed: container_linux.go:380: starting container process caused: process_linux.go:545: container init caused: Running hook #0:: error running hook: exit status 1, stdout: , stderr: nvidia-container-cli: container error: cgroup subsystem devices not found: unknown.

The root of the problem seems to be that current kernel uses cgroups v2 which libnvidia-container does not currently support.
See discussion in an issue posted in the nvidia-docker github repo.

To make nvidia-docker working I followed the instruction given by user "Zethson", commented on 10 Apr in the link given above:

Edit the file

/usr/share/nvidia-container-runtime/config.toml

and change the line

# no-cgroups = false

to

no-cgroups = true

After

systemctl restart docker

everything works fine. My proposal would be to make this change in post build step when package is build and installed.

Revisions and Commits

R4899 nvidia-container-toolkit
D12085R4899:9645e33a5ce7 Update to 1.5.1 and fix cgroups. Resolves T9942.

Event Timeline

saitam created this task.Oct 9 2021, 10:54 AM
Herald added a project: Lacks Project. · View Herald TranscriptOct 9 2021, 10:54 AM
JoshStrobl renamed this task from nvidia-docker : not working due to cgroups v2 used by current linux kernel and proposal for solving to nvidia-docker : not working due to cgroups v2.Oct 10 2021, 1:57 PM
JoshStrobl assigned this task to xulongwu4.
JoshStrobl triaged this task as Low priority.
JoshStrobl edited projects, added Software; removed Lacks Project.
JoshStrobl moved this task from Backlog to System and Configuration Fixes on the Software board.
xulongwu4 added a comment.Oct 11 2021, 5:28 PM

@saitam, the nvidia-container-runtime supports stateless configuration. Before we modify the packaging scripts to adopt your suggestion, you can copy /usr/share/nvidia-container-runtime/config.toml to /etc/nvidia-container-runtime/config.toml and make your desired changes. The file /etc/nvidia-container-runtime/config.toml takes precedence.

In the discussion you linked to above, people mentioned that changing no-cgroups = false to no-cgroups = true does not resolve the issue completely, as the nvidia devices are not accessible from inside docker. They have to add the extra boot parameter systemd.unified_cgroup_hierarchy=0 to make things work. See this comment. Does that align with your observation?

saitam added a comment.Oct 11 2021, 6:55 PM

@xulongwu4 , in the discussion I also read that for some people the change in config.toml was not sufficient. But for me it resolved the issue and I was able to use GPU within a docker container.

xulongwu4 added a revision: D12085: Update to 1.5.1 and fix cgroups. Resolves T9942..Oct 24 2021, 1:18 PM
JoshStrobl closed this task as Resolved by committing R4899:9645e33a5ce7: Update to 1.5.1 and fix cgroups. Resolves T9942..Oct 29 2021, 3:19 PM
JoshStrobl added a commit: R4899:9645e33a5ce7: Update to 1.5.1 and fix cgroups. Resolves T9942..
Copyright © 2015-2021 Solus Project. The Solus logo is Copyright © 2016-2021 Solus Project. All Rights Reserved.