Building a Deep Learning Development Environment with NVIDIA Container Toolkit and Docker (1) - Installing NVIDIA Container Toolkit & Docker Engine
This series covers how to set up a local deep learning development environment based on NVIDIA Container Toolkit and Docker, and configure SSH and Jupyter Lab for remote server use. This post is the first in the series, introducing the installation method for NVIDIA Container Toolkit.
Overview
This series covers the process of installing NVIDIA Container Toolkit and Docker, and building a deep learning development environment by writing a Dockerfile based on CUDA and cuDNN images provided by the nvidia/cuda repository on Docker Hub. For those who need it, I share the Dockerfile and image completed through this process on GitHub and Docker Hub for free use, and additionally provide a guide for SSH and Jupyter Lab setup for remote server use.
The series will consist of 3 posts, and this post you’re reading is the first in the series.
- Part 1: Installing NVIDIA Container Toolkit & Docker Engine (current post)
- Part 2: Configuring Container Runtime for GPU Utilization, Writing Dockerfile and Building Docker Image
- Part 3 (upcoming)
We proceed assuming an x86_64 Linux environment with an NVIDIA graphics card supporting CUDA installed. Some specific details may differ slightly for distributions other than Ubuntu or Fedora, as I haven’t directly tested them.
Development Environment Configuration
- Host OS and Architecture: x86_64, Linux environment (Ubuntu 18.04/20.04/22.04 LTS, RHEL/Centos, Fedora, openSUSE/SLES 15.x, etc.)
- Technology Stack to Build (Languages and Libraries)
- Python 3
- NVIDIA Container Toolkit
- Docker CE
- CUDA 12.4
- cuDNN
- JupyterLab
- NumPy & SciPy
- CuPy (optional, NumPy/SciPy-compatible Array Library for GPU-accelerated Computing with Python)
- pandas
- cuDF (optional, to accelerate pandas with zero code changes with the GPU accelerator)
- Matplotlib & Seaborn
- DALI (optional, high-performance alternative to built-in data loaders and data iterators using GPU)
- scikit-learn
- cuML (optional, to execute machine learning algorithms on GPUs with an API that closely follows the scikit-learn API)
- PyTorch
- OpenSSH
- tqdm
Depending on the situation and personal preference, you might consider using the Polars DataFrame library instead of pandas. Written in Rust, it shows quite impressive performance compared to the vanilla pandas package, although it falls behind the cuDF + pandas combination when processing large-scale data, and provides a more query-specialized syntax. According to the Polars official blog, they plan to support integration with cuDF in the near future in collaboration with the NVIDIA RAPIDS team.
Comparison with Previously Written Machine Learning Development Environment Setup Guide
There’s already a machine learning development environment setup guide uploaded to this blog which is still mostly valid, but I wrote this new post due to some changes. The differences are as follows:
| Difference | Previous Post (2021 Version) | Current Post (2024 Version) |
|---|---|---|
| Linux Distribution | Based on Ubuntu | Applicable to Fedora/RHEL/Centos, Debian, openSUSE/SLES, etc., besides Ubuntu |
| Development Environment Setup Method | Python virtual environment using venv | Docker container-based environment using NVIDIA Container Toolkit |
| NVIDIA Graphics Driver Installation | O | O |
| Direct Installation of CUDA and cuDNN on Host System | O (Using Apt package manager) | X (No need for direct work as we use pre-installed images provided by NVIDIA on Docker Hub) |
| Portability | Need to rebuild development environment every time when moving to a different system | Being Docker-based, can easily build new images with prepared Dockerfile when needed or port existing images (excluding additional volumes or network settings) |
| Utilization of Additional GPU Acceleration Libraries besides cuDNN | X | Introduction of CuPy, cuDF, cuML, DALI |
| Jupyter Notebook Interface | Jupyter Notebook (classic) | JupyterLab (Next-Generation) |
| SSH Server Configuration | Not covered separately | Includes basic SSH server configuration setup in Part 3 |
If you want to use Python virtual environments like venv instead of Docker, I recommend referring to the previous post which is still valid.
0. Prerequisites
- NVIDIA Container Toolkit is available on Linux distributions that support Apt, Yum or Dnf, Zypper package managers. You can check the list of supported Linux distributions on the linked page. Although not specifically listed in the official support table, Fedora can also be used without issues as it’s based on Red Hat Linux like RHEL. If you’re not familiar with Linux environments and unsure which distribution to use, using the Ubuntu LTS version is the most straightforward option. It’s relatively convenient for beginners as non-open source proprietary drivers are automatically installed, and most technical documentation is written based on Ubuntu due to its large user base.
- You can check your system architecture and Linux distribution version by running the
uname -m && cat /etc/*releasecommand in the terminal.
- You can check your system architecture and Linux distribution version by running the
- First, you need to check if the graphics card installed in your system supports the CUDA and cuDNN versions you want to use.
- You can check the GPU model name installed in your current computer with the
lspci | grep -i nvidiacommand in the terminal. - Check the supported NVIDIA graphics driver versions, required CUDA Compute Capability conditions, and supported NVIDIA hardware list for each cuDNN version on the https://docs.nvidia.com/deeplearning/cudnn/latest/reference/support-matrix.html page.
- Find the corresponding model name in the GPU list at https://developer.nvidia.com/cuda-gpus, and check the Compute Capability value. This value must meet the CUDA Compute Capability condition checked earlier to use CUDA and cuDNN without issues.
- You can check the GPU model name installed in your current computer with the
If you’re planning to purchase a new graphics card for deep learning tasks, the following article well summarizes the GPU selection criteria. It’s an article that the author continuously updates.
Which GPU(s) to Get for Deep Learning
Another article by the same author, A Full Hardware Guide to Deep Learning, is also very informative.
If you meet all the conditions mentioned above, let’s start setting up the work environment.
1. Installing NVIDIA Graphics Driver
First, you need to install the NVIDIA graphics driver on your host system. You can download and use the .run installer from the NVIDIA driver download page, but it’s better to use your system’s package manager for installation in terms of version management and maintenance. Refer to the https://docs.nvidia.com/cuda/cuda-installation-guide-linux/#driver-installation official document to install the graphics driver suitable for your system environment.
Proprietary module vs Open-source module
NVIDIA Linux drivers consist of several kernel modules, and from driver version 515 and later releases, NVIDIA provides two types of driver kernel modules.
- Proprietary: The proprietary software driver that NVIDIA has been providing.
- Open-source: Open-source driver provided under MIT/GPLv2 dual license. Source code is published through https://github.com/NVIDIA/open-gpu-kernel-modules.
Proprietary drivers are provided for GPUs based on architectures from Maxwell to pre-Blackwell, and will be discontinued from the Blackwell architecture. On the other hand, open-source drivers are supported for Turing and later architectures.
NVIDIA recommends using the open-source kernel module if possible. You can check if your GPU is compatible with the open-source driver at this link.
This article assumes installing the open-source driver.
Debian & Ubuntu
For Ubuntu or Debian, enter the following commands in the terminal to install:
1
2
sudo apt update
sudo apt install nvidia-open
Fedora
Based on Fedora 40, we introduce the method of downloading and installing pre-built packages provided by RPM Fusion.
1-Fedora-1. Configuring RPM Fusion Repository
Proceed by referring to the RPM Fusion official guide.
Execute the following command in the terminal:
1
sudo dnf install https://mirrors.rpmfusion.org/free/fedora/rpmfusion-free-release-$(rpm -E %fedora).noarch.rpm https://mirrors.rpmfusion.org/nonfree/fedora/rpmfusion-nonfree-release-$(rpm -E %fedora).noarch.rpm
1-Fedora-2. Installing akmod-nvidia-open Package
Referring to the NVIDIA driver installation guide provided by RPM Fusion, activate the rpmfusion-nonfree-tainted repository and then install the akmod-nvidia-open package.
1
2
3
4
sudo dnf update --refresh
sudo dnf install rpmfusion-nonfree-release-tainted
sudo dnf install akmod-nvidia-open
sudo dnf mark install akmod-nvidia-open
1-Fedora-3. Registering Key for Normal Driver Loading during Secure Boot
By following the additional procedure explained below, you can normally use the NVIDIA graphics driver while using the secure boot function, and it is recommended not to disable secure boot as the system’s security becomes quite vulnerable when it is disabled. There’s hardly any reason to disable secure boot at least since entering the 2020s.
First, install the following tools:
1
sudo dnf install kmodtool akmods mokutil openssl
Next, run the command below to generate a key:
1
sudo kmodgenca -a
Now you need to register the generated key in the MOK of the UEFI firmware.
1
sudo mokutil --import /etc/pki/akmods/certs/public_key.der
When you run the above command, you will be prompted to enter a password for key registration. We’re going to reboot soon to complete the key registration procedure, so enter something you can remember as it will be a one-time password to use then.
Now run the following command to reboot the system:
1
systemctl reboot
As the system boots, the MOK management window will automatically appear. Select “Enroll MOK”, then select “Continue” and “Yes” in succession, and a window will appear asking for the password you set earlier. Enter the password you set earlier, and the key registration procedure will be completed. Now if you enter reboot to boot again, the NVIDIA driver will be loaded normally.
Verifying NVIDIA Driver Installation
You can check the currently loaded NVIDIA kernel module by running the following command in the terminal:
1
cat /proc/driver/nvidia/version
If a message similar to the one below is output, it means you have installed it correctly:
1
2
NVRM version: NVIDIA UNIX Open Kernel Module for x86_64 555.58.02 Release Build (dvs-builder@U16-I3-B03-4-3) Tue Jun 25 01:26:03 UTC 2024
GCC version: gcc version 14.2.1 20240801 (Red Hat 14.2.1-1) (GCC)
2. Installing NVIDIA Container Toolkit
Now you need to install the NVIDIA Container Toolkit. Proceed with the installation by referring to the NVIDIA Container Toolkit official installation guide, but for Fedora, there are precautions during the installation process, so please check the contents of this section to the end before proceeding.
For Apt users (Ubuntu, Debian, etc.)
2-Apt-1. Configuring Repository for Package Download
1
2
3
4
curl -fsSL https://nvidia.github.io/libnvidia-container/gpgkey | sudo gpg --dearmor -o /usr/share/keyrings/nvidia-container-toolkit-keyring.gpg \
&& curl -s -L https://nvidia.github.io/libnvidia-container/stable/deb/nvidia-container-toolkit.list | \
sed 's#deb https://#deb [signed-by=/usr/share/keyrings/nvidia-container-toolkit-keyring.gpg] https://#g' | \
sudo tee /etc/apt/sources.list.d/nvidia-container-toolkit.list
2-Apt-2. Updating Package List
1
sudo apt update
2-Apt-3. Installing Package
1
sudo apt install nvidia-container-toolkit
For Yum or Dnf users (Fedora, RHEL, Centos, etc.)
When tested on Fedora 40, unlike Ubuntu, the
nvidia-smicommand andnvidia-persistencedpackage were not included by default in the NVIDIA graphics driver, so thexorg-x11-drv-nvidia-cudapackage had to be additionally installed. I haven’t directly tested on RHEL and Centos, but as their system configurations are very similar to Fedora, if you encounter problems when proceeding according to the guide below, trying the same method might be helpful.
After installing
xorg-x11-drv-nvidia-cudaas described above and running a sample workload to test on Fedora 40, it worked normally on the author’s system. If you still encounter problems due to reasons like SELinux, the Fedora-specific nvidia-container-toolkit package and guide provided by Fedora’s AI-ML group might be helpful.
2-Dnf-1. Configuring Repository for Package Download
1
2
curl -s -L https://nvidia.github.io/libnvidia-container/stable/rpm/nvidia-container-toolkit.repo | \
sudo tee /etc/yum.repos.d/nvidia-container-toolkit.repo
2-Dnf-2. Installing Package
1
sudo dnf install nvidia-container-toolkit
or
1
sudo yum install nvidia-container-toolkit
For Zypper users (openSUSE, SLES)
2-Zypper-1. Configuring Repository for Package Download
1
sudo zypper ar https://nvidia.github.io/libnvidia-container/stable/rpm/nvidia-container-toolkit.repo
2-Zypper-2. Installing Package
1
sudo zypper --gpg-auto-import-keys install nvidia-container-toolkit
3. Installing Docker Engine
Next, install Docker Engine. Proceed with the installation by referring to the Docker official documentation.
For Ubuntu
3-Ubuntu-1. Removing Previous Versions or Unofficial Packages to Prevent Package Conflicts
1
for pkg in docker.io docker-doc docker-compose docker-compose-v2 podman-docker containerd runc; do sudo apt remove $pkg; done
3-Ubuntu-2. Configuring Repository
1
2
3
4
5
6
7
8
9
10
11
12
# Add Docker's official GPG key:
sudo apt update
sudo apt install ca-certificates curl
sudo install -m 0755 -d /etc/apt/keyrings
sudo curl -fsSL https://download.docker.com/linux/ubuntu/gpg -o /etc/apt/keyrings/docker.asc
sudo chmod a+r /etc/apt/keyrings/docker.asc
# Add the repository to Apt sources:
echo \
"deb [arch=$(dpkg --print-architecture) signed-by=/etc/apt/keyrings/docker.asc] https://download.docker.com/linux/ubuntu \
$(. /etc/os-release && echo "$VERSION_CODENAME") stable" | \
sudo tee /etc/apt/sources.list.d/docker.list > /dev/null
sudo apt update
3-Ubuntu-3. Installing Package
1
sudo apt install docker-ce docker-ce-cli containerd.io docker-buildx-plugin docker-compose-plugin
3-Ubuntu-4. Creating Docker Group and Registering User
To allow non-root users to manage Docker without sudo, you can create a Docker group and register the user who wants to use Docker. Run the following commands in the terminal:
1
2
sudo groupadd docker
sudo usermod -aG docker $USER
After logging out and logging back in, the changed settings will be applied. For Ubuntu or Debian, the Docker service automatically runs at system boot without any additional work.
For Fedora
3-Fedora-1. Removing Previous Versions or Unofficial Packages to Prevent Package Conflicts
1
2
3
4
5
6
7
8
9
10
sudo dnf remove docker \
docker-client \
docker-client-latest \
docker-common \
docker-latest \
docker-latest-logrotate \
docker-logrotate \
docker-selinux \
docker-engine-selinux \
docker-engine
3-Fedora-2. Configuring Repository
1
2
sudo dnf install dnf-plugins-core
sudo dnf config-manager --add-repo https://download.docker.com/linux/fedora/docker-ce.repo
3-Fedora-3. Installing Package
1
sudo dnf install docker-ce docker-ce-cli containerd.io docker-buildx-plugin docker-compose-plugin
During the package installation process, you will be prompted to approve the GPG key. If the GPG key matches 060A 61C5 1B55 8A7F 742B 77AA C52F EB6B 621E 9F35, enter y to approve.
If the GPG key does not match, you may have downloaded a forged package due to a supply chain attack, and you should stop the installation.
3-Fedora-4. Starting Docker Daemon
Now Docker is installed but not running, so you can start Docker by entering the following command:
1
sudo systemctl start docker
To have the Docker service run automatically at system boot, execute the following commands:
1
2
sudo systemctl enable docker.service
sudo systemctl enable containerd.service
3-Fedora-5. Registering User to Docker Group
To allow non-root users to manage Docker, register the user who wants to use Docker to the Docker group. For Fedora, the Docker group is automatically created during the previous package installation process, so you only need to proceed with user registration.
1
sudo usermod -aG docker $USER
After logging out and logging back in, the changed settings will be applied.
Verifying Correct Setup
Try running the following command in the terminal:
1
docker run hello-world
If you see a message like the one below, it’s successful:
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
Hello from Docker!
This message shows that your installation appears to be working correctly.
To generate this message, Docker took the following steps:
1. The Docker client contacted the Docker daemon.
2. The Docker daemon pulled the "hello-world" image from the Docker Hub.
(amd64)
3. The Docker daemon created a new container from that image which runs the
executable that produces the output you are currently reading.
4. The Docker daemon streamed that output to the Docker client, which sent it
to your terminal.
To try something more ambitious, you can run an Ubuntu container with:
$ docker run -it ubuntu bash
Share images, automate workflows, and more with a free Docker ID:
https://hub.docker.com/
For more examples and ideas, visit:
https://docs.docker.com/get-started/
Further Reading
Continued in Part 2
Comments powered by Disqus.