gvisor icon indicating copy to clipboard operation
gvisor copied to clipboard

Published 20 hours ago verified publisher icon google

nvproxy: support Nvidia H100 and confidential mode

Open derpsteb opened this issue 1 year ago • 1 comments

The changes in this PR enable Nvidia H100 support in gVisor, including the H100's confidential compute mode. We have tested these patches by running examples from cuda-samples(vectorAdd, vectorAddDrv, matrixMul) and by running a llama based tensorrt-llm engine inside gVisor. We also successfully ran Nvidia's Triton inference server. For the tensorrt-llm engines you also need to disable calls (example) to open-mpi. For Triton one also needs to stub hostnet's SIOCGIFADDR ioctl implementation. We can add the SIOCGIFADDR stub (it just returns 0), but this didn't seem appropriate for upstream.

I want to highlight the change in bfe2eb7ab838c73767a0906a1b509bc67f75e276. I am not sure what implications it has. Could someone familiar with that flag explain? We have mainly observed that is disables merging of memory mappings inside sentry. Which is the behavior we were looking for.

I am not sure if this requires more unittests to be merged. Happy to add something if you could tell me where/what.

Fixes https://github.com/google/gvisor/issues/9846 Requires https://github.com/google/gvisor/pull/10008

derpsteb avatar Feb 12 '24 16:02 derpsteb

We have tested these patches by running examples from cuda-samples(vectorAdd, vectorAddDrv, matrixMul) I am not sure if this requires more unittests to be merged. Happy to add something if you could tell me where/what.

Awesome, would be nice to add those CUDA samples to our GPU test suite as well! Feel free to do this in a separate PR. Our GPU tests here: https://github.com/google/gvisor/tree/master/test/gpu. Those tests reference images defined here: https://github.com/google/gvisor/tree/master/images/gpu.

ayushr2 avatar Feb 12 '24 18:02 ayushr2

@ayushr2 can this merge?

thundergolfer avatar Mar 26 '24 12:03 thundergolfer

Ah whoops! I forgot the "internal safe review approval" thing. @derpsteb could you rebase and fix the merge conflicts and I will get this merged.

ayushr2 avatar Mar 26 '24 14:03 ayushr2

@ayushr2 we're keen on this so could one of us do the rebase and merge conflict fix? 🙂

thundergolfer avatar Apr 01 '24 16:04 thundergolfer

I have fixed it up in #10234. Will submit that.

ayushr2 avatar Apr 01 '24 18:04 ayushr2

Thanks! 🙏

thundergolfer avatar Apr 01 '24 19:04 thundergolfer

Hey. Thanks for rebasing this. I was on holidays. Seems like there is no todo for me here atm.

derpsteb avatar Apr 02 '24 08:04 derpsteb

@ayushr2 is https://github.com/google/gvisor/pull/10234 queued and will merge on it own?

thundergolfer avatar Apr 02 '24 19:04 thundergolfer

Urgh that is blocked on an internal test breakage... If it is urgent, I can bypass those breakages and submit.

ayushr2 avatar Apr 02 '24 20:04 ayushr2

Thanks @ayushr2! Wasn't urgent, but having gVisor support for H100s will let us better fight off cryptominer pests!

thundergolfer avatar Apr 03 '24 21:04 thundergolfer