MatX Containers (#892)

tylera-nvidia · web-flow · commit 106632e39df2 · 2025-03-03T11:42:11.000-08:00
* initial commit with a standalone docker for production and a devcontainer
diff --git a/.devcontainer/dev.Dockerfile b/.devcontainer/dev.Dockerfile
@@ -0,0 +1,25 @@
+# Use the base image
+FROM ghcr.io/nvidia/matx/production:latest
+
+ARG REMOTE_USER
+ARG REMOTE_UID
+ARG REMOTE_GID
+
+# Create the user
+RUN groupadd --gid $REMOTE_GID $REMOTE_USER \
+    && useradd --uid $REMOTE_UID --gid $REMOTE_GID -m $REMOTE_USER \
+    #
+    # [Optional] Add sudo support. Omit if you don't need to install software after connecting.
+    && apt-get update \
+    && apt-get install -y sudo \
+    && echo $REMOTE_USER ALL=\(root\) NOPASSWD:ALL > /etc/sudoers.d/$REMOTE_USER \
+    && chmod 0440 /etc/sudoers.d/$REMOTE_USER
+
+# Set user
+USER $REMOTE_USER
+
+# Copy all files in the current folder to the container
+COPY --chown=$REMOTE_USER:$REMOTE_USER . /workspaces/MatX
+
+# Set the working directory
+WORKDIR /workspaces/MatX
diff --git a/.devcontainer/devcontainer.json b/.devcontainer/devcontainer.json
@@ -0,0 +1,57 @@
+// For format details, see https://aka.ms/devcontainer.json. For config options, see the
+// README at: https://github.com/devcontainers/templates/tree/main/src/docker-existing-dockerfile
+{
+  "name": "MatX Development Container",
+  "build": {
+    // Sets the run context to one level up instead of the .devcontainer folder.
+    "context": "..",
+    // Update the 'dockerFile' property to correct location of production Dockerfile
+    "dockerfile": "./dev.Dockerfile",
+    "args": {
+      "REMOTE_USER": "${localEnv:USER}",
+      "REMOTE_UID": "${localEnv:REMOTE_UID:1000}",
+      "REMOTE_GID": "${localEnv:REMOTE_GID:1000}"
+    }
+  },
+  "privileged": true,
+  "capAdd": [
+    "SYS_NICE",
+    "SYS_PTRACE"
+  ],
+  "hostRequirements": {
+    "gpu": "optional"
+  },
+  "securityOpt": [
+    "seccomp=unconfined"
+  ],
+  // Features to add to the dev container. More info: https://containers.dev/features.
+  // "features": {},
+  // Use 'forwardPorts' to make a list of ports inside the container available locally.
+  "forwardPorts": [
+    3000,
+    8888,
+    6006
+  ],
+  // Uncomment the next line to run commands after the container is created.
+  // "postCreateCommand": "cat /etc/os-release",
+  "runArgs": [
+    "--ipc=host",
+    "--gpus=all",
+    "--entrypoint",
+    "fixuid"
+  ],
+  // Configure tool-specific properties.
+  "customizations": {
+    "vscode": {
+      "extensions": [
+        "ms-python.python",
+        "ms-toolsai.jupyter",
+        "eamodio.gitlens",
+        "ms-vscode.cpptools",
+        "ms-vscode.cmake-tools"
+      ]
+    }
+  }
+  // Uncomment to connect as an existing user other than the container default. More info: https://aka.ms/dev-containers-non-root.
+  // "remoteUser": "${localEnv:USER}"
+}
diff --git a/.gitignore b/.gitignore
@@ -1,4 +1,4 @@
 .vscode
 .cache
-build*
+build
 *.pyc
diff --git a/docker/dli_lab/build_lab.sh b/docker/dli_lab/build_lab.sh
@@ -0,0 +1,3 @@
+cp ../../docs_input/notebooks/gtc_lab/run_matx.py ./
+docker build -f lab.Dockerfile -t ghcr.io/nvidia/matx/lab:latest .
+rm run_matx.py
diff --git a/docker/dli_lab/lab.Dockerfile b/docker/dli_lab/lab.Dockerfile
@@ -0,0 +1,57 @@
+FROM ghcr.io/nvidia/matx/production:latest AS devel
+
+
+
+# Prevent interactive prompts during package installation
+ENV DEBIAN_FRONTEND=noninteractive
+
+# Install system dependencies
+RUN apt-get update && apt-get install -y \
+  build-essential \
+  cmake \
+  git \
+  python3 \
+  python3-pip \
+  python3-dev \
+  python3-venv \
+  nodejs \
+  npm \
+  libpugixml-dev \
+  lsb-release \
+  wget \
+  software-properties-common \
+  gnupg \
+  && rm -rf /var/lib/apt/lists/*
+
+# Create and activate virtual environment
+RUN python3 -m venv /opt/venv
+ENV PATH="/opt/venv/bin:$PATH"
+
+RUN mkdir /root/.ipython/profile_default
+RUN mkdir /root/.ipython/extensions
+RUN echo c.InteractiveShellApp.extensions = ['run_matx'] >> /root/.ipython/profile_default/ipython_config.py
+RUN cp ./run_matx.py /root/.ipython/extensions/
+
+# Install Python packages
+RUN pip3 install --no-cache-dir \
+  jupyter \
+  jupyterlab \
+  cmake \
+  nlohmann-json==3.11.2 \
+  xtl \
+  pugixml
+
+RUN pip install bash_kernel
+RUN python -m bash_kernel.install
+
+# Create jupyter config directory
+RUN mkdir -p ~/.jupyter
+
+# Expose Jupyter port
+EXPOSE 8888
+
+# Set working directory for Jupyter
+WORKDIR /notebooks
+
+# Start Jupyter Lab
+CMD ["jupyter", "lab", "--ip=0.0.0.0", "--port=8888", "--no-browser", "--allow-root"]
diff --git a/docker/production/README.md b/docker/production/README.md
@@ -0,0 +1,37 @@
+# MatX Container Generation and Usage scripts
+
+## Steps for running a Matx container
+
+1. Run the run_matx.sh script, optionally specifying a version tag
+
+`./run_matx.sh # defaults to latest tag in setup.sh`
+
+or
+
+`MATX_VERSION_TAG="12.6.314_ubuntu22.04" ./run_matx.sh`
+
+Note: architecture (`-amd64` or `-arm64`) is automatically added to the tag by the scripts
+
+
+## Steps for building a new 'build' container
+
+1. Make your changes to the container recipe
+
+2. Build the container
+
+`MATX_VERSION_TAG="someNewTag" create_build_container.sh`
+
+The MATX_VERSION_TAG must be different than the current value in setup.sh, to avoid accidentally overwriting the working container.
+Example: MATX_VERSION_TAG="12.6.314_ubuntu22.04"
+
+Note: architecture (`-amd64` or `-arm64`) is automatically added to the tag by the scripts
+
+3. Test the container
+
+4. Retag the container as latest and push it
+
+Exercise left to the reader, to prevent accidentally pushing the latest tag.
+We should have a CICD step that does this...
+
+5. Modify setup.sh to update the MATX_VERSION_TAG and commit your updates to setup.sh and recipe.py
+
diff --git a/docker/production/build_production.sh b/docker/production/build_production.sh
@@ -0,0 +1,61 @@
+#!/bin/bash
+# Switch to SCRIPT_DIR directory
+SCRIPT=$(readlink -f $0)
+SCRIPT_DIR=$(dirname $SCRIPT)
+echo $SCRIPT starting...
+cd $SCRIPT_DIR
+
+
+if [ ! -v MATX_VERSION_TAG ]; then
+   MATX_VERSION=$(git describe --tags "$(git rev-list --tags --max-count=1)")
+   MATX_VERSION_TAG="${MATX_VERSION}_ubuntu22.04"
+fi
+
+if [ ! -v MATX_REPO ]; then
+   MATX_REPO=" ghcr.io/nvidia/matx/"
+fi
+
+if [ ! -v MATX_IMAGE_NAME ]; then
+   MATX_IMAGE_NAME="production"
+fi
+
+if [ -z "$MATX_PLATFORM" ]; then
+    case "$(arch)" in
+        "x86_64")
+            MATX_PLATFORM="linux/amd64"
+            ;;
+        "aarch64")
+            MATX_PLATFORM="linux/arm64"
+            ;;
+        *)
+            echo "Unsupported arch type"
+            exit 1
+            ;;
+    esac
+fi
+
+# add the architecture name to the tag
+TARGETARCH=$(basename $MATX_PLATFORM)
+case "$TARGETARCH" in
+    "amd64")
+        CPU_TARGET=x86_64
+        ;;
+    "arm64")
+        CPU_TARGET=aarch64
+        ;;
+    *)
+        echo "Unsupported target architecture"
+        exit 1
+        ;;
+esac
+# create the Dockerfile
+hpccm  --recipe matx-production.py --cpu-target $CPU_TARGET --format docker > production.Dockerfile
+
+# build the container
+DOCKER_BUILDKIT=1 docker  build -f production.Dockerfile --platform $MATX_PLATFORM -t $MATX_REPO$MATX_IMAGE_NAME:$MATX_VERSION_TAG-$TARGETARCH .
+
+
+docker tag $MATX_REPO$MATX_IMAGE_NAME:$MATX_VERSION_TAG-$TARGETARCH ghcr.io/nvidia/matx/production:latest
+
+# push the container to the repository
+# docker push $MATX_REPO$MATX_IMAGE_NAME:$MATX_VERSION_TAG-$TARGETARCH
diff --git a/docker/production/matx-production.py b/docker/production/matx-production.py
@@ -0,0 +1,97 @@
+#!/usr/bin/env python
+
+import hpccm
+from hpccm.building_blocks import gnu, mlnx_ofed, nvshmem, cmake
+from hpccm.primitives import baseimage
+
+DOXYGEN_VER = "1.9.6"
+GDRCOPY_HOME = "/usr/local/gdrcopy"
+PYBIND11_VER = "2.7.1"
+FFTW_VER="3.3.10"
+OPENBLAS_VER="0.3.27"
+BLIS_VER="1.0"
+
+if cpu_target == 'x86_64':
+    TARGETARCH='amd64'
+elif cpu_target == 'aarch64':
+    TARGETARCH='arm64'
+else:
+    raise RuntimeError("Unsupported platform")
+
+Stage0 = hpccm.Stage()
+Stage0 += baseimage(image='nvidia/cuda:12.6.2-devel-ubuntu22.04', _as='devel', _distro="ubuntu22")
+
+Stage0 += packages(ospackages=[
+    'bison',
+    'clang-tidy',
+    'curl',
+    'flex',
+    'ghostscript',
+    'git',
+    'libjs-mathjax',
+    'liblapacke-dev',    
+    'libopenblas64-openmp-dev',
+    'lcov',
+    'ninja-build',
+    'numactl',
+    'python3-pip',
+    'python3-dev',
+    'sudo',
+    'texlive-font-utils',
+    'valgrind',
+    'vim',
+])
+
+#Stage0 += shell(commands=["mv /usr/lib/python3.12/EXTERNALLY-MANAGED /usr/lib/python3.12/EXTERNALLY-MANAGED.old"])
+Stage0 += pip(pip="pip3", upgrade=True, packages=[
+    'breathe',
+    'cupy-cuda12x',
+    'hpccm',
+    'numpy',
+    'pandas',
+    'plotly==5.2.1',
+    'pybind11',
+    'scipy',
+    'sphinx',
+    'sphinx_book_theme',
+    'sphinx-rtd-theme',
+])
+
+Stage0 += gnu()
+Stage0 += cmake(eula=True, version="3.26.4")
+Stage0 += nsight_compute(eula=True)
+Stage0 += nsight_systems()
+
+Stage0 += shell(commands=["wget https://doxygen.nl/files/doxygen-{}.src.tar.gz".format(DOXYGEN_VER),
+                          "tar -zxf doxygen-{}.src.tar.gz".format(DOXYGEN_VER),
+                          "cd doxygen-{} && mkdir build && cd build && cmake .. && make -j && make install".format(DOXYGEN_VER)])
+Stage0 += shell(commands=["python3 --version"])
+
+Stage0 += shell(commands=[f"wget https://www.fftw.org/fftw-{FFTW_VER}.tar.gz && tar -xzf fftw-{FFTW_VER}.tar.gz",
+                          f"cd fftw-{FFTW_VER} && ./configure --enable-sse2 --enable-avx2 --enable-shared --enable-avx512 --enable-openmp --enable-float && make && make install",
+                          "./configure --enable-sse2 --enable-avx2 --enable-avx512 --enable-openmp && make && sudo make install"])
+
+# Stage0 += shell(commands=[f"cd /tmp && wget https://github.com/OpenMathLib/OpenBLAS/releases/download/v{OPENBLAS_VER}/OpenBLAS-{OPENBLAS_VER}.tar.gz && tar -zxvf OpenBLAS-{OPENBLAS_VER}.tar.gz && cd OpenBLAS-{OPENBLAS_VER}",
+#                          "make -j && sudo make USE_OPENMP=1 INTERFACE64=1 install"])
+
+Stage0 += shell(commands=["curl -L https://coveralls.io/coveralls-linux.tar.gz | tar -xz -C /usr/local/bin"])
+
+Stage0 += shell(commands=[f"cd /tmp && wget https://github.com/flame/blis/archive/refs/tags/{BLIS_VER}.tar.gz && tar -zxvf {BLIS_VER}.tar.gz && cd blis-{BLIS_VER}",
+                         "./configure --enable-threading=openmp --enable-cblas -b 64 auto && sudo make -j install"])
+
+
+# # Install fixuid
+# Stage0 += shell(commands=[
+#     'addgroup --gid 1000 matx',
+#     'adduser --uid 1000 --ingroup matx --home /home/matx --shell /bin/sh --disabled-password --gecos "" matx',
+#     'USER=matx',
+#     'GROUP=matx',
+#     f'curl -SsL https://github.com/boxboat/fixuid/releases/download/v0.5/fixuid-0.5-linux-{TARGETARCH}.tar.gz | tar -C /usr/local/bin -xzf -',
+#     'chown root:root /usr/local/bin/fixuid',
+#     'chmod 4755 /usr/local/bin/fixuid',
+#     'mkdir -p /etc/fixuid',
+#     'printf "user: $USER\\ngroup: $GROUP\\n" > /etc/fixuid/config.yml',
+#     '/bin/echo "matx ALL = (root) NOPASSWD: ALL" >> /etc/sudoers',
+#    ])
+
+print(Stage0)
diff --git a/docker/production/production.Dockerfile b/docker/production/production.Dockerfile
diff --git a/docker/production/run_matx.sh b/docker/production/run_matx.sh

-Original file line number
+Diff line change
@@ @@ -1,4 +1,4 @@ @@
 .vscode
 .cache
 -build*
 +build
 *.pyc
Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,3 @@`
	`1`	`+cp ../../docs_input/notebooks/gtc_lab/run_matx.py ./`
	`2`	`+docker build -f lab.Dockerfile -t ghcr.io/nvidia/matx/lab:latest .`
	`3`	`+rm run_matx.py`