This part of the manual explains how to use the `nvidia-container-toolkit` in order to expose GPU's both for Docker and Podman, as well as for a `docker-compose` environment.
12 KiB
CUDA
CUDA-only packages are stored in the cudaPackages
packages set. This set
includes the cudatoolkit
, portions of the toolkit in separate derivations,
cudnn
, cutensor
and nccl
.
A package set is available for each CUDA version, so for example
cudaPackages_11_6
. Within each set is a matching version of the above listed
packages. Additionally, other versions of the packages that are packaged and
compatible are available as well. For example, there can be a
cudaPackages.cudnn_8_3
package.
To use one or more CUDA packages in an expression, give the expression a cudaPackages
parameter, and in case CUDA is optional
{ config
, cudaSupport ? config.cudaSupport
, cudaPackages ? { }
, ...
}: {}
When using callPackage
, you can choose to pass in a different variant, e.g.
when a different version of the toolkit suffices
{
mypkg = callPackage { cudaPackages = cudaPackages_11_5; };
}
If another version of say cudnn
or cutensor
is needed, you can override the
package set to make it the default. This guarantees you get a consistent package
set.
{
mypkg = let
cudaPackages = cudaPackages_11_5.overrideScope (final: prev: {
cudnn = prev.cudnn_8_3;
});
in callPackage { inherit cudaPackages; };
}
The CUDA NVCC compiler requires flags to determine which hardware you want to target for in terms of SASS (real hardware) or PTX (JIT kernels).
Nixpkgs tries to target support real architecture defaults based on the CUDA toolkit version with PTX support for future hardware. Experienced users may optimize this configuration for a variety of reasons such as reducing binary size and compile time, supporting legacy hardware, or optimizing for specific hardware.
You may provide capabilities to add support or reduce binary size through
config
using cudaCapabilities = [ "6.0" "7.0" ];
and
cudaForwardCompat = true;
if you want PTX support for future hardware.
Please consult GPUs supported for your specific card(s).
Library maintainers should consult NVCC Docs and release notes for their software package.
Adding a new CUDA release
Warning
This section of the docs is still very much in progress. Feedback is welcome in GitHub Issues tagging @NixOS/cuda-maintainers or on Matrix.
The CUDA Toolkit is a suite of CUDA libraries and software meant to provide a development environment for CUDA-accelerated applications. Until the release of CUDA 11.4, NVIDIA had only made the CUDA Toolkit available as a multi-gigabyte runfile installer, which we provide through the cudaPackages.cudatoolkit
attribute. From CUDA 11.4 and onwards, NVIDIA has also provided CUDA redistributables (“CUDA-redist”): individually packaged CUDA Toolkit components meant to facilitate redistribution and inclusion in downstream projects. These packages are available in the cudaPackages
package set.
All new projects should use the CUDA redistributables available in cudaPackages
in place of cudaPackages.cudatoolkit
, as they are much easier to maintain and update.
Updating CUDA redistributables
-
Go to NVIDIA's index of CUDA redistributables: https://developer.download.nvidia.com/compute/cuda/redist/
-
Make a note of the new version of CUDA available.
-
Run
nix run github:connorbaker/cuda-redist-find-features -- \ download-manifests \ --log-level DEBUG \ --version <newest CUDA version> \ https://developer.download.nvidia.com/compute/cuda/redist \ ./pkgs/development/cuda-modules/cuda/manifests
This will download a copy of the manifest for the new version of CUDA.
-
Run
nix run github:connorbaker/cuda-redist-find-features -- \ process-manifests \ --log-level DEBUG \ --version <newest CUDA version> \ https://developer.download.nvidia.com/compute/cuda/redist \ ./pkgs/development/cuda-modules/cuda/manifests
This will generate a
redistrib_features_<newest CUDA version>.json
file in the same directory as the manifest. -
Update the
cudaVersionMap
attribute set inpkgs/development/cuda-modules/cuda/extension.nix
.
Updating cuTensor
- Repeat the steps present in Updating CUDA redistributables with the following changes:
- Use the index of cuTensor redistributables: https://developer.download.nvidia.com/compute/cutensor/redist
- Use the newest version of cuTensor available instead of the newest version of CUDA.
- Use
pkgs/development/cuda-modules/cutensor/manifests
instead ofpkgs/development/cuda-modules/cuda/manifests
. - Skip the step of updating
cudaVersionMap
inpkgs/development/cuda-modules/cuda/extension.nix
.
Updating supported compilers and GPUs
- Update
nvcc-compatibilities.nix
inpkgs/development/cuda-modules/
to include the newest release of NVCC, as well as any newly supported host compilers. - Update
gpus.nix
inpkgs/development/cuda-modules/
to include any new GPUs supported by the new release of CUDA.
Updating the CUDA Toolkit runfile installer
Warning
While the CUDA Toolkit runfile installer is still available in Nixpkgs as the
cudaPackages.cudatoolkit
attribute, its use is not recommended and should it be considered deprecated. Please migrate to the CUDA redistributables provided by thecudaPackages
package set.To ensure packages relying on the CUDA Toolkit runfile installer continue to build, it will continue to be updated until a migration path is available.
-
Go to NVIDIA's CUDA Toolkit runfile installer download page: https://developer.nvidia.com/cuda-downloads
-
Select the appropriate OS, architecture, distribution, and version, and installer type.
- For example: Linux, x86_64, Ubuntu, 22.04, runfile (local)
- NOTE: Typically, we use the Ubuntu runfile. It is unclear if the runfile for other distributions will work.
-
Take the link provided by the installer instructions on the webpage after selecting the installer type and get its hash by running:
nix store prefetch-file --hash-type sha256 <link>
-
Update
pkgs/development/cuda-modules/cudatoolkit/releases.nix
to include the release.
Updating the CUDA package set
-
Include a new
cudaPackages_<major>_<minor>
package set inpkgs/top-level/all-packages.nix
.- NOTE: Changing the default CUDA package set should occur in a separate PR, allowing time for additional testing.
-
Successfully build the closure of the new package set, updating
pkgs/development/cuda-modules/cuda/overrides.nix
as needed. Below are some common failures:
Unable to ... | During ... | Reason | Solution | Note |
---|---|---|---|---|
Find headers | configurePhase or buildPhase |
Missing dependency on a dev output |
Add the missing dependency | The dev output typically contain the headers |
Find libraries | configurePhase |
Missing dependency on a dev output |
Add the missing dependency | The dev output typically contain CMake configuration files |
Find libraries | buildPhase or patchelf |
Missing dependency on a lib or static output |
Add the missing dependency | The lib or static output typically contain the libraries |
In the scenario you are unable to run the resulting binary: this is arguably the most complicated as it could be any combination of the previous reasons. This type of failure typically occurs when a library attempts to load or open a library it depends on that it does not declare in its DT_NEEDED
section. As a first step, ensure that dependencies are patched with autoAddDriverRunpath
. Failing that, try running the application with nixGL
or a similar wrapper tool. If that works, it likely means that the application is attempting to load a library that is not in the RPATH
or RUNPATH
of the binary.
Running Docker or Podman containers with CUDA support
It is possible to run Docker or Podman containers with CUDA support. The recommended mechanism to perform this task is to use the NVIDIA Container Toolkit.
The NVIDIA Container Toolkit can be enabled in NixOS like follows:
{
hardware.nvidia-container-toolkit.enable = true;
}
This will automatically enable a service that generates a CDI specification (located at /var/run/cdi/nvidia-container-toolkit.json
) based on the auto-detected hardware of your machine. You can check this service by running:
$ systemctl status nvidia-container-toolkit-cdi-generator.service
::: {.note} Depending on what settings you had already enabled in your system, you might need to restart your machine in order for the NVIDIA Container Toolkit to generate a valid CDI specification for your machine. :::
Once that a valid CDI specification has been generated for your machine on boot time, both Podman and Docker (> 25) will use this spec if you provide them with the --device
flag:
$ podman run --rm -it --device=nvidia.com/gpu=all ubuntu:latest nvidia-smi -L
GPU 0: NVIDIA GeForce RTX 4090 (UUID: <REDACTED>)
GPU 1: NVIDIA GeForce RTX 2080 SUPER (UUID: <REDACTED>)
$ docker run --rm -it --device=nvidia.com/gpu=all ubuntu:latest nvidia-smi -L
GPU 0: NVIDIA GeForce RTX 4090 (UUID: <REDACTED>)
GPU 1: NVIDIA GeForce RTX 2080 SUPER (UUID: <REDACTED>)
You can check all the identifiers that have been generated for your auto-detected hardware by checking the contents of the /var/run/cdi/nvidia-container-toolkit.json
file:
$ nix run nixpkgs#jq -- -r '.devices[].name' < /var/run/cdi/nvidia-container-toolkit.json
0
1
all
Specifying what devices to expose to the container
You can choose what devices are exposed to your containers by using the identifier on the generated CDI specification. Like follows:
$ podman run --rm -it --device=nvidia.com/gpu=0 ubuntu:latest nvidia-smi -L
GPU 0: NVIDIA GeForce RTX 4090 (UUID: <REDACTED>)
You can repeat the --device
argument as many times as necessary if you have multiple GPU's and you want to pick up which ones to expose to the container:
$ podman run --rm -it --device=nvidia.com/gpu=0 --device=nvidia.com/gpu=1 ubuntu:latest nvidia-smi -L
GPU 0: NVIDIA GeForce RTX 4090 (UUID: <REDACTED>)
GPU 1: NVIDIA GeForce RTX 2080 SUPER (UUID: <REDACTED>)
::: {.note}
By default, the NVIDIA Container Toolkit will use the GPU index to identify specific devices. You can change the way to identify what devices to expose by using the hardware.nvidia-container-toolkit.device-name-strategy
NixOS attribute.
:::
Using docker-compose
It's possible to expose GPU's to a docker-compose
environment as well. With a docker-compose.yaml
file like follows:
services:
some-service:
image: ubuntu:latest
command: sleep infinity
deploy:
resources:
reservations:
devices:
- driver: cdi
device_ids:
- nvidia.com/gpu=all
In the same manner, you can pick specific devices that will be exposed to the container:
services:
some-service:
image: ubuntu:latest
command: sleep infinity
deploy:
resources:
reservations:
devices:
- driver: cdi
device_ids:
- nvidia.com/gpu=0
- nvidia.com/gpu=1