Skip to content

A minimal toolset for running UI applications within docker isolated X11 environment

License

Notifications You must be signed in to change notification settings

matsuolab/virtual_desktop_docker

Repository files navigation

RDP Docker Image

This image offers a minimal toolset for running GUI applications within an isolated X11 environment and allowing remote access. The image is intended to be used on the machines with the NVIDIA GPU.

Features

Out of the box, it includes:

  • A lightweight desktop environment (openbox)
  • VNC server (TigerVNC)
  • NoVNC proxy server
  • VirtualGL client

Quick Start

IMPORTANT NOTICE: Breaking Changes Ahead

To set up the required helper tool on your local machine, execute the following command:

curl -sSf https://raw.githubusercontent.com/matsuolab/virtual_desktop_docker/refs/heads/master/install.sh | bash

Once installed, you can use the rdp-ssh tool on your local machine to manage remote desktop sessions. This tool can replace ssh for starting, connecting, stopping sessions, or entering a remote SSH session with a configured environment.

  1. Start a session:

    rdp-ssh -n desktop-session-name -a user@host start
  2. Stop a session:

    rdp-ssh -n desktop-session-name -a user@host stop
  3. Connect to a session:

    rdp-ssh -n desktop-session-name -a user@host connect
  4. List all sessions:

    rdp-ssh -a user@host list

After starting or connecting, the command will run a shell on the remote machine with the DISPLAY environment variable set to the virtual display. You can then run applications or Docker containers using the DISPLAY variable. Example:

docker run ... -v /tmp/.X11-unix:/tmp/.X11-unix -e DISPLAY image

For detailed information, check the rdp-ssh documentation.

How to Use

Your usage will depend on where you intend to launch the GUI application. The key idea is to share the .X11-unix folder.

There are two primary scenarios: sharing .X11-unix with the host OS or using a Docker volume to store it. Generally, the latter is recommended to avoid potential X server conflicts.

However, if you choose to share the directory with the host OS, you'll benefit from being able to run UI applications from the desktop within the virtual environment.

Additionally, running OpenGL applications currently supported only in host OS sharing scenario.

By default NoVNC uses port number 6080, however it can be modified either inside the docker-compose.yaml or afterwards with ssh port forwarding.

Before using apps with OpenGL, ensure that VirtualGL is installed. Take a look at the available packages

Steps to Run the Environment

  1. Copy .env.sample to .env file and modify DISPLAY and WEB_PORT to free X display and free TCP port.
  2. Start the desktop container with docker compose up -d desktop.
  3. Access it at http://localhost:<WEB_PORT> on your host machine.
  4. If you're using SSH, set up local port forwarding and access with http://localhost:6080.

Setting Up SSH Port Forwarding

To start a new connection, use the following command:

ssh -L 6080:localhost:<WEB_PORT> user@host

If you prefer to change the port on the fly within a single SSH connection, you can do this:

ssh -o "EnableEscapeCommandline yes" user@host

# After discovering the port:
#  Press <return>
#  Type "~C" (tilde + shift + c)
#  The "ssh>" prompt will appear
#  Enter "-L 6080:localhost:<port>" and press enter
#
#  You can then access the application via http://localhost:<port>

Embedding in the docker-compose.yaml example

Add the following piece of code to your docker-compose file

  desktop:
    image: ghcr.io/matsuolab/virtual_desktop:latest
    runtime: nvidia
    environment:
      - NVIDIA_VISIBLE_DEVICES=all
      - NVIDIA_DRIVER_CAPABILITIES=all
      - DISPLAY
    ports:
      - "${WEB_PORT}:6080"
    volumes: 
      - "/tmp/.X11-unix:/tmp/.X11-unix:rw"
    security_opt:
      - seccomp:unconfined
    deploy:
      resources:
        reservations:
          devices:
            - driver: nvidia
              count: all
              capabilities: [gpu]
  <your_service>:
    depends_on:
      - desktop
    volumes: 
      - "/tmp/.X11-unix:/tmp/.X11-unix:rw"
    environment:
      - NVIDIA_VISIBLE_DEVICES=all
      - NVIDIA_DRIVER_CAPABILITIES=all
      - DISPLAY

Connecting other services with docker-compose

Modify your docker-compose or .env file if needed.

  <your_service>:
    depends_on:
      - desktop
    volumes: 
      - "/tmp/.X11-unix:/tmp/.X11-unix:rw"
    environment:
      - NVIDIA_VISIBLE_DEVICES=all
      - NVIDIA_DRIVER_CAPABILITIES=all
      - DISPLAY

Don't forget to install VirtualGL if needed and execute your app with vglrun prefix (e.g. vglrun application).

Run with docker command

docker run ... -v /tmp/.X11-unix:/tmp/.X11-unix -e DISPLAY=... image

Run simple application from host OS

Define the DISPLAY to match the one of virtual display.

DISPLAY=... vglrun glxgears

RDP SSH Tool

TODO: documentation

About

A minimal toolset for running UI applications within docker isolated X11 environment

Resources

License

Stars

Watchers

Forks

Packages