Skip to content

Vcauxbrisebo/vm gpu support#851

Draft
vince-brisebois wants to merge 2 commits intomainfrom
vcauxbrisebo/vm-gpu-support
Draft

Vcauxbrisebo/vm gpu support#851
vince-brisebois wants to merge 2 commits intomainfrom
vcauxbrisebo/vm-gpu-support

Conversation

@vince-brisebois
Copy link
Copy Markdown
Collaborator

@vince-brisebois vince-brisebois commented Apr 15, 2026

Summary

Adds VFIO GPU passthrough support to openshell-vm using cloud-hypervisor as a second VMM backend alongside libkrun. Includes a full GPU bind/unbind lifecycle with safety checks, nvidia driver deadlock hardening (subprocess isolation with timeout, pre-unbind module cleanup, post-timeout verification), and an RAII guard that restores the original driver on exit.

Related Issue

N/A

Changes

  • VMM backend abstraction: Extract VmBackend trait with LibkrunBackend and CloudHypervisorBackend implementations; auto-select CHV when --gpu is set, reject --backend libkrun --gpu at the CLI level
  • GPU bind lifecycle (gpu_passthrough.rs): Probe sysfs for NVIDIA GPUs, check VFIO/IOMMU readiness, fail-closed safety checks (display outputs, /dev/nvidia* handles, IOMMU groups, VFIO modules, permissions), RAII GpuBindGuard for driver restoration
  • nvidia unbind deadlock hardening: Pre-unbind prep (disable persistence mode, unload nvidia_uvm/nvidia_drm/nvidia_modeset), all sysfs writes and prep commands in subprocesses with timeout (10s/15s), drop(child) without wait() to prevent parent D-state, post-timeout verification that continues if device is actually unbound
  • Cloud-hypervisor backend: Direct kernel boot with virtiofsd, TAP networking with NAT/port forwarding, vsock exec bridge, ACPI shutdown wrapper for --exec mode
  • Kernel kconfig: Add CONFIG_VIRTIO_PCI, CONFIG_SERIAL_8250, CONFIG_SERIAL_8250_CONSOLE, CONFIG_ACPI, CONFIG_PCI, CONFIG_PCI_MSI, CONFIG_DRM, CONFIG_MODULES, CONFIG_MODULE_UNLOAD
  • Guest rootfs: NVIDIA driver install support, device plugin and runtime class manifests, init script GPU detection and module loading
  • CI: gpu-ci.yml workflow on self-hosted GPU runners with OPENSHELL_VM_GPU_E2E=1
  • Architecture docs: Update custom-vm-runtime.md for dual-backend architecture, add vm-gpu-passthrough.md, add both to architecture/README.md index
  • Pre-commit fixes: rustfmt corrections, clippy ptr_arg fix in build.rs, test race condition fix in image.rs

Testing

  • mise run pre-commit passes
  • Unit tests added/updated
  • E2E tests added/updated (if applicable)

Checklist

  • Follows Conventional Commits
  • Commits are signed off (DCO)
  • Architecture docs updated (if applicable)

@copy-pr-bot
Copy link
Copy Markdown

copy-pr-bot bot commented Apr 15, 2026

This pull request requires additional validation before any workflows can run on NVIDIA's runners.

Pull request vetters can view their responsibilities here.

Contributors can view more details about this message here.

@vince-brisebois
GPU support design and implementation plan
5fb51ac 
Signed-off-by: Vincent Caux-Brisebois <vcauxbrisebo@nvidia.com>
@vince-brisebois
feat(vm): add GPU passthrough with cloud-hypervisor backend and nvidi…
199a712 
…a unbind hardening

Signed-off-by: Vincent Caux-Brisebois <vcauxbrisebo@nvidia.com>
@vince-brisebois vince-brisebois force-pushed the vcauxbrisebo/vm-gpu-support branch from 6ab54d1 to 199a712 Compare April 15, 2026 18:25
drew
drew reviewed Apr 17, 2026
View reviewed changes
Copy link
Copy Markdown
Collaborator

@drew drew left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

this looks good. couple questions around deps and some approaches to bundling.

once those are resolved we can land this pr, or try to apply it on top of #858 which starts the new driver implementation for the vm.

Comment thread .github/workflows/branch-checks.yml
Comment on lines +77 to +79
vm:
name: VM Checks
runs-on: build-amd64
Copy link
Copy Markdown
Collaborator

@drew drew Apr 17, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

maybe for now we can leave these out. we'll add tests once we get things over to the driver architecture.

Comment thread .github/workflows/gpu-ci.yml
Copy link
Copy Markdown
Collaborator

@drew drew Apr 17, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

same as above. i think we stash this. once we land the initial implementation lets add the vm to our e2e tests.

Comment thread vm-gpu-passthrough.md
Copy link
Copy Markdown
Collaborator

@drew drew Apr 17, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

nit: we dont want to check this in. i capture the plan for posterity under OS-53.

Comment thread crates/openshell-vm/scripts/build-rootfs.sh
Comment on lines -25 to +30
# ./build-rootfs.sh [--base] [--arch aarch64|x86_64] [output_dir]
# ./build-rootfs.sh [--base] [--gpu] [--arch aarch64|x86_64] [output_dir]
Copy link
Copy Markdown
Collaborator

@drew drew Apr 17, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Will we need to publish two rootfs'?

Comment thread crates/openshell-vm/runtime/kernel/openshell.kconfig
Copy link
Copy Markdown
Collaborator

@drew drew Apr 17, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

plan here is to ship a single kernel for both gpu and cpu? (i think this makes sense for now, just checking)

Comment thread crates/openshell-core/src/image.rs
Copy link
Copy Markdown
Collaborator

@drew drew Apr 17, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

is this change necessary?

Comment thread crates/openshell-cli/Cargo.toml
Copy link
Copy Markdown
Collaborator

@drew drew Apr 17, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

we want to avoid adding the whole vm dep here if possible. lets talk about this more since i don't know if it's straightforward to remove or not.

@drew
Copy link
Copy Markdown
Collaborator

drew commented Apr 17, 2026
edited
Loading

Also ran this through codex review, its feedback looks pretty good:

The patch introduces two functional blockers in the new GPU path: the gateway CLI drops the VFIO bind guard as soon as deployment returns, and openshell-vm --gpu still boots the non-GPU rootfs by default. It also leaves host IPv4
forwarding enabled after cloud-hypervisor VMs stop.

Full review comments:

  • [P1] Keep the VFIO bind alive for the gateway VM lifetime — /Users/anewberry/dev/openshell/crates/openshell-cli/src/run.rs:1438-1438
    On the local microVM gateway path (OPENSHELL_GATEWAY_BACKEND=vm), prepare_gateway_deploy_gpu returns a GpuBindGuard that is scoped only to gateway_admin_deploy. This function returns as soon as the gateway becomes healthy, so the guard
    drops immediately and rebinds the passed-through GPU back to the host driver while the gateway VM is still running. In practice, openshell gateway start --gpu tears down its own VFIO assignment right after startup instead of keeping
    the device attached for the VM lifetime.
  • [P1] Select a GPU-capable rootfs when --gpu is requested — /Users/anewberry/dev/openshell/crates/openshell-vm/src/main.rs:236-238
    When --gpu is used without an explicit --rootfs, this still resolves the normal named/embedded rootfs. The new guest init path only succeeds on a rootfs built with build-rootfs.sh --gpu (it now requires NVIDIA userspace tools and /opt/
    openshell/gpu-manifests), so the default packaged openshell-vm --gpu flow boots the wrong image and exits during init. Today the GPU path only works if the caller manually points --rootfs at a separately built GPU image.
  • [P2] Restore host IPv4 forwarding after CHV teardown — /Users/anewberry/dev/openshell/crates/openshell-vm/src/backend/cloud_hypervisor.rs:882-883
    Any Linux cloud-hypervisor launch with TAP networking (--backend cloud-hypervisor or the automatic --gpu path) now writes /proc/sys/net/ipv4/ip_forward=1, but teardown_chv_host_networking only removes the iptables rules. After the VM
    exits, the host remains in forwarding mode until the user changes it back or reboots, which is a persistent host-networking side effect introduced by this command.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@drew drew drew left review comments

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@vince-brisebois @drew