As we can see from the changelog: https://github.com/NVIDIA/nvidia-container-toolkit/releases/tag/v1.17.4 there are options that have been added required for it to work. When you start a docker that requires it you get this error: Error response from daemon: failed to create task for container: failed to create shim task: OCI runtime create failed: runc create failed: unable to start container process: error during container init: error running prestart hook #0: exit status 1, stdout: , stderr: Auto-detected mode as 'legacy' nvidia-container-cli configure: unrecognized option '--no-cntlibs' Try `nvidia-container-cli configure --help' or `nvidia-container-cli configure --usage' for more information.: unknown
> To set the feature flag ensure that the NVIDIA Container Toolkit config file at /etc/nvidia-container-runtime/config.toml includes:[features] allow-cuda-compat-libs-from-container = true
https://github.com/NVIDIA/nvidia-container-toolkit/commit/ed3b52eb8d9bc5d001d1fda5d206f5765947bed2 https://nvidia.custhelp.com/app/answers/detail/a_id/5616/~/security-bulletin%3A-nvidia-container-toolkit---11-february-2025
> [features] > allow-cuda-compat-libs-from-container = true please try add config above to /etc/nvidia-container-runtime/config.toml but for security reason, maybe it's not a good idea to add it in ebuild?
Fixed by bump sys-libs/libnvidia-container to 1.17.4
(In reply to Zhixu Liu from comment #3) > > [features] > > allow-cuda-compat-libs-from-container = true > > please try add config above to /etc/nvidia-container-runtime/config.toml > > but for security reason, maybe it's not a good idea to add it in ebuild? No need to add this config, just bump sys-libs/libnvidia-container to match 1.17.4
The bug has been closed via the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=1b88ed6e58afe7edff73502ae7dec8d549cd6b48 commit 1b88ed6e58afe7edff73502ae7dec8d549cd6b48 Author: Huang Rui <vowstar@gmail.com> AuthorDate: 2025-02-25 08:45:52 +0000 Commit: Yixun Lan <dlan@gentoo.org> CommitDate: 2025-02-26 10:50:30 +0000 sys-libs/libnvidia-container: add 1.17.4 Closes: https://bugs.gentoo.org/950233 Signed-off-by: Huang Rui <vowstar@gmail.com> Signed-off-by: Yixun Lan <dlan@gentoo.org> sys-libs/libnvidia-container/Manifest | 1 + .../libnvidia-container-1.17.4.ebuild | 131 +++++++++++++++++++++ 2 files changed, 132 insertions(+) Additionally, it has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=3302465d6063f3f0e5b301103f3b34b1b2683ed0 commit 3302465d6063f3f0e5b301103f3b34b1b2683ed0 Author: Huang Rui <vowstar@gmail.com> AuthorDate: 2025-02-25 09:17:52 +0000 Commit: Yixun Lan <dlan@gentoo.org> CommitDate: 2025-02-26 10:50:34 +0000 app-containers/nvidia-container-toolkit: fix version dependency version should not be newer than libnvidia-container Bug: https://bugs.gentoo.org/950233 Closes: https://github.com/gentoo/gentoo/pull/40749 Signed-off-by: Huang Rui <vowstar@gmail.com> Signed-off-by: Yixun Lan <dlan@gentoo.org> ...toolkit-1.17.3.ebuild => nvidia-container-toolkit-1.17.3-r1.ebuild} | 2 ++ ...toolkit-1.17.4.ebuild => nvidia-container-toolkit-1.17.4-r1.ebuild} | 3 ++- 2 files changed, 4 insertions(+), 1 deletion(-)
