google · meetrajvala · Dec 23, 2024 · Dec 24, 2024 · Dec 24, 2024 · Dec 24, 2024
diff --git a/launcher/image/preload.sh b/launcher/image/preload.sh
@@ -3,6 +3,7 @@
 readonly OEM_PATH='/usr/share/oem'
 readonly CS_PATH="${OEM_PATH}/confidential_space"
 readonly EXPERIMENTS_BINARY="confidential_space_experiments"
+readonly GPU_INSTALLER_IMAGE_REF="cos_gpu_installer_image_reference"
 
 copy_launcher() {
   cp launcher "${CS_PATH}/cs_container_launcher"
@@ -19,6 +20,10 @@ setup_launcher_systemd_unit() {
   cp exit_script.sh "${CS_PATH}/exit_script.sh"
 }
 
+set_cos_gpu_installer_image_reference() {
+  cos-extensions list -- --gpu-installer >> "${CS_PATH}"/"${GPU_INSTALLER_IMAGE_REF}"
+}
+
 append_cmdline() {
   local arg="$1"
   if [[ ! -d /mnt/disks/efi ]]; then
@@ -116,6 +121,7 @@ main() {
   append_cmdline "cos.protected_stateful_partition=m"
   # Increase wait timeout of the protected stateful partition.
   append_cmdline "systemd.default_timeout_start_sec=900s"
+  set_cos_gpu_installer_image_reference
 
   if [[ "${IMAGE_ENV}" == "debug" ]]; then
     configure_systemd_units_for_debug

diff --git a/launcher/internal/gpu/config.go b/launcher/internal/gpu/config.go
@@ -5,4 +5,6 @@ const (
 	InstallationHostDir = "/var/lib/nvidia"
 	// InstallationContainerDir is the directory where gpu drivers will be available on the workload container.
 	InstallationContainerDir = "/usr/local/nvidia"
+	// GpuInstallerImageRefFilepath is a filename which has the container image reference of cos_gpu_installer.
+	GpuInstallerImageRefFilepath = "/usr/share/oem/confidential_space/cos_gpu_installer_image_reference"
 )
diff --git a/launcher/internal/gpu/driverinstaller.go b/launcher/internal/gpu/driverinstaller.go
@@ -4,7 +4,6 @@ package gpu
 import (
 	"context"
 	"fmt"
-	"log"
 	"os"
 	"os/exec"
 	"strings"
@@ -14,6 +13,7 @@ import (
 	"github.com/containerd/containerd/cio"
 	"github.com/containerd/containerd/namespaces"
 	"github.com/containerd/containerd/oci"
+	"github.com/google/go-tpm-tools/launcher/internal/logging"
 	"github.com/google/go-tpm-tools/launcher/spec"
 	"github.com/opencontainers/runtime-spec/specs-go"
 )
@@ -35,11 +35,11 @@ var supportedGpuTypes = []deviceinfo.GPUType{
 type DriverInstaller struct {
 	cdClient   *containerd.Client
 	launchSpec spec.LaunchSpec
-	logger     *log.Logger
+	logger     logging.Logger
 }
 
 // NewDriverInstaller instanciates an object of driver installer
-func NewDriverInstaller(cdClient *containerd.Client, launchSpec spec.LaunchSpec, logger *log.Logger) *DriverInstaller {
+func NewDriverInstaller(cdClient *containerd.Client, launchSpec spec.LaunchSpec, logger logging.Logger) *DriverInstaller {
 	return &DriverInstaller{
 		cdClient:   cdClient,
 		launchSpec: launchSpec,
@@ -69,11 +69,11 @@ func (di *DriverInstaller) InstallGPUDrivers(ctx context.Context) error {
 	ctx = namespaces.WithNamespace(ctx, namespaces.Default)
 	installerImageRef, err := getInstallerImageReference()
 	if err != nil {
-		di.logger.Printf("failed to get the installer container image reference: %v", err)
+		di.logger.Info(fmt.Sprintf("failed to get the installer container image reference: %v", err))
 		return err
 	}
 
-	di.logger.Printf("cos gpu installer version : %s", installerImageRef)
+	di.logger.Info(fmt.Sprintf("cos gpu installer version : %s", installerImageRef))
 	image, err := di.cdClient.Pull(ctx, installerImageRef, containerd.WithPullUnpack)
 	if err != nil {
 		return fmt.Errorf("failed to pull installer image: %v", err)
@@ -95,7 +95,7 @@ func (di *DriverInstaller) InstallGPUDrivers(ctx context.Context) error {
 
 	hostname, err := os.Hostname()
 	if err != nil {
-		di.logger.Printf("cannot get hostname: %v", err)
+		di.logger.Info(fmt.Sprintf("cannot get hostname: %v", err))
 	}
 
 	container, err := di.cdClient.NewContainer(
@@ -138,20 +138,20 @@ func (di *DriverInstaller) InstallGPUDrivers(ctx context.Context) error {
 	code, _, _ := status.Result()
 
 	if code != 0 {
-		di.logger.Printf("Gpu driver installation task ended and returned non-zero status code %d", code)
+		di.logger.Info(fmt.Sprintf("Gpu driver installation task ended and returned non-zero status code %d", code))
 		return fmt.Errorf("gpu driver installation task ended with non-zero status code %d", code)
 	}
 
-	di.logger.Println("Gpu driver installation task exited with status: 0")
+	di.logger.Info("Gpu driver installation task exited with status: 0")
 	return nil
 }
 
 func getInstallerImageReference() (string, error) {
-	installerImageRefBytes, err := exec.Command("cos-extensions", "list", "--", "--gpu-installer").Output()
+	imageRefBytes, err := os.ReadFile(GpuInstallerImageRefFilepath)
 	if err != nil {
 		return "", fmt.Errorf("failed to get the cos-gpu-installer version: %v", err)
 	}
-	installerImageRef := strings.TrimSpace(string(installerImageRefBytes))
+	installerImageRef := strings.TrimSpace(string(imageRefBytes))
 	return installerImageRef, nil
 }
 

diff --git a/launcher/launcher/main.go b/launcher/launcher/main.go
@@ -192,12 +192,12 @@ func startLauncher(launchSpec spec.LaunchSpec, serialConsole *os.File) error {
 	if launchSpec.InstallGpuDriver {
 		if launchSpec.Experiments.EnableGpuDriverInstallation {
 			installer := gpu.NewDriverInstaller(containerdClient, launchSpec, logger)
-			err = installer.InstallGPUDrivers(ctx)
+			err = installer.InstallGPUDrivers(context.Background())
 			if err != nil {
 				return fmt.Errorf("failed to install gpu drivers: %v", err)
 			}
 		} else {
-			logger.Println("Gpu installation experiment flag is not enabled for this project. Ensure that it is enabled when tee-install-gpu-driver is set to true")
+			logger.Info("Gpu installation experiment flag is not enabled for this project. Ensure that it is enabled when tee-install-gpu-driver is set to true")
 			return fmt.Errorf("gpu installation experiment flag is not enabled")
 		}
 	}