OCI Runtime error from starting GPU containers on Nvidia Jetson Xavier NX using Podman

braytho29 · April 20, 2023, 1:44am

Hello

I have to use Podman on the Nvidia Jetson Xavier NX and I am trying to pass through the onboard GPU via Nvidia Container Runtime and Hook. However, I am having issues trying to start any containers which include ubuntu arm64 and L4T.

The run command and resulting error is shown below:

$ podman run -it --security-opt=label=disable --hooks-dir=/usr/share/containers/oci/hooks.d/ nvcr.io/nvidia/l4t-tensorrt:r8.5.2-runtime

Error: OCI runtime error: error executing hook `/usr/bin/nvidia-container-runtime-hook` (exit code: 1)

The error does not provide any more detail sorry.

I have installed all packages as shown below:

$ sudo dpkg --get-selections | grep nvidia

libnvidia-container-tools			install
libnvidia-container0:arm64			install
libnvidia-container1:arm64			install
nvidia-container-runtime			install
nvidia-container-toolkit			install
nvidia-docker2					install

After I installed nvidia-container-toolkit and nvdia-container-runtime it did not install nvidia-container-runtime-hook as shown by the list above. Has this package been archived or is it meant to be installed? I manually created the oci-nvidia-hook.json file within the /oci/hooks.d/ directory.

I have used podman on a Centos 8 stream machine and managed to pass through the GPU into numerous containers. I also do not know how to create the nvidia runtime within the podman configuration file (containers.conf) [I have searched and found no implementation in podman] and am not sure if it is needed for the hook to work, as there was no nvidia runtime within the containers.conf file on the Centos 8 machine.

Any ideas on how to resolve this issue?

Cheers,
Brayth

AastaLLL · April 20, 2023, 2:50am

Hi,

We want to give it a try to get more information about the issue.
But there is no podman package available on apt.

Are you building it from the source with the instructions below?
https://podman.io/getting-started/installation#building-from-scratch

Thanks.

braytho29 · April 20, 2023, 3:02am

I did not build it from source, I installed Podman by following this Ubuntu 20.04 guide: How to Install and Use Podman on Ubuntu 20.04 | Atlantic.Net

I am using Jetpack5.1 (Ubuntu 20.04) and the apt install for Podman is only supported on 22.04 to my knowledge. However, the guide successfully installs Podman onto the Nvidia Jetson Xavier NX.

braytho29 · April 24, 2023, 1:28am

I have managed to fix the OCI runtime error and pass through the Xavier GPU into the Podman container. However, I now get a permission issue in regards to using the GPU if I start the container as a non-root user. When executing the deviceQuery sample I get the following error:

NvRmMemInitNvmap failed with Permission denied
549: Memory Manager Not supported
****NvRmMemInit failed**** error type: 196626
*** NvRmMemInit failed NvRmMemConstructor

I do not get permission denied if I run the Podman container as root, but I need to run the container as a user with non-root privileges. I have tried adding $USER to video,i2c groups and it did not solve the issue.

Are there files on the host that link to the gpu which I can change the permissions of?

AastaLLL · April 24, 2023, 5:51am

Hi,

Which JetPack do you use?
There is a similar issue in JetPack 5.0DP but is fixed already.

Thanks.

braytho29 · April 25, 2023, 10:54pm

I am running JetPack 5.1.

I have tried this fix with podman but it did not work. Any other ideas?

AastaLLL · May 4, 2023, 5:48am

Hi,

Sorry for the late update.

After adding the $USER to video group, have you run the restart command like below?

Thanks.

braytho29 · May 4, 2023, 5:56am

yes I did, still didn’t work

AastaLLL · May 4, 2023, 7:49am

Hi,

Could you try if the non-root user can work with docker?
Thanks.

braytho29 · May 4, 2023, 10:52pm

Hi,
My issue is that I am trying to run the podman container as a non-root user on the host, not a non-root user within the container. eg. “podman run -it …”, not “sudo podman run -it …”.

I have ran podman as a root user using sudo and it does have the permissions to use the GPU within the container which is equivalent to docker (I have tried docker and it also worked). However, I am required to use podman as a non-root user on the host.

AastaLLL · May 5, 2023, 5:14am

Hi,

Thanks for the reply.
We would need to check with our internal team about this.

Just want to confirm.
The error shows up when the container is launched or appears after running a CUDA app?
Thanks.

braytho29 · May 5, 2023, 5:18am

The error appears when I run a CUDA application within the container.

AastaLLL · May 5, 2023, 5:37am

Hi,

Thanks.
Could you also try if this command can help?

Thanks.

braytho29 · May 5, 2023, 5:42am

I have tried this and it did not work.

AastaLLL · May 18, 2023, 7:00am

Hi,

Sorry for the late update.

It looks like there are some extra settings required by Podman.
Have you checked the tutorial below?

github.com

containers/podman/blob/main/docs/tutorials/rootless_tutorial.md

![PODMAN logo](https://raw.githubusercontent.com/containers/common/main/logos/podman-logo-full-vert.png)

# Basic Setup and Use of Podman in a Rootless environment.

Prior to allowing users without root privileges to run Podman, the administrator must install or build Podman and complete the following configurations.

## cgroup V2 support

The cgroup V2  Linux kernel feature allows the user to limit the amount of resources a rootless container can use.  If the Linux distribution that you are running Podman on is enabled with  cgroup V2 then you might need to change the default OCI Runtime. Some older versions of `runc` do not work with cgroup V2, you might have to switch to the alternative OCI runtime `crun`.

The alternative OCI runtime support for cgroup V2 can also be turned on at the command line by using the `--runtime` option:

```
podman --runtime crun
```
or for all commands by changing the value for the "Default OCI runtime" in the `containers.conf` file either at the system level or at the [user level](#user-configuration-files) from `runtime = "runc"` to `runtime = "crun"`.

## Administrator Actions

### Installing Podman

This file has been truncated. show original

Thanks.

system · June 13, 2023, 2:40am

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Help with rootless podman or rootless docker and nvidia GPU CUDA Setup and Installation	2	7657	August 17, 2023
Permission issue of cuda driver in AWS RHEL 8.2 podman after restart CUDA Setup and Installation cuda , containers , linux	1	1218	September 15, 2021
Jetson AGX Xavier cannot start a basic docker Jetson AGX Xavier docker	8	1291	June 23, 2021
**NvRmMemInit failed** error type: 196626 NvRmMemInitNvmap failed with Permission denied Jetson AGX Xavier tensorrt , docker , deepstream	12	3607	January 25, 2023
Getting GPU docker passthrough working Jetson AGX Xavier docker	8	9311	July 12, 2022
Nvidia runtime fails on Jetpack 6 GA Jetson Orin NX cuda , docker	5	573	July 2, 2024
How to solve docker : error response from daemon Jetson Nano docker , nano2gb	12	2378	October 15, 2021
JetPack 6.3 containerd and kubernetes Jetson AGX Orin nvbugs , containers	12	678	August 22, 2024
Unable to run a nvidia docker on AGX Xavier Jetson AGX Xavier docker	6	3619	October 18, 2021
Error run docker image nvcr.io/nvidia/l4t-base:r32.6.1 on jetson AGX Jetson AGX Xavier docker , jetson	9	2538	November 10, 2021

OCI Runtime error from starting GPU containers on Nvidia Jetson Xavier NX using Podman

Related topics