Skip to content

[XPU][CI]add xpu env vars in CI scripts #22946

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
bigPYJ1151 merged 4 commits into from
Aug 18, 2025
Merged

[XPU][CI]add xpu env vars in CI scripts #22946

bigPYJ1151 merged 4 commits into from
Aug 18, 2025

Conversation

@jikunshang
Copy link
Collaborator

@jikunshang jikunshang commented Aug 15, 2025
edited by github-actions bot
Loading

Purpose

some env vars are not passed to container in ci scirpts. so add them

Test Plan

CI test

Test Result

(Optional) Documentation Update

Essential Elements of an Effective PR Description Checklist
  • The purpose of the PR, such as "Fix some issue (link existing issues this PR will resolve)".
  • The test plan, such as providing test command.
  • The test results, such as pasting the results comparison before and after, or e2e results
  • (Optional) The necessary documentation update, such as updating supported_models.md and examples for a new model.

@github-actions
Copy link

github-actions bot commented Aug 15, 2025

👋 Hi! Thank you for contributing to the vLLM project.

💬 Join our developer Slack at https://slack.vllm.ai to discuss your PR in #pr-reviews, coordinate on features in #feat- channels, or join special interest groups in #sig- channels.

Just a reminder: PRs would not trigger full CI run by default. Instead, it would only run fastcheck CI which starts running only a small and essential subset of CI tests to quickly catch errors. You can run other CI tests on top of those by going to your fastcheck build on Buildkite UI (linked in the PR checks section) and unblock them. If you do not have permission to unblock, ping simon-mo or khluu to add you in our Buildkite org.

Once the PR is approved and ready to go, your PR reviewer(s) can run CI to test the changes comprehensively before merging.

To run CI, PR reviewers can either: Add ready label to the PR or enable auto-merge.

🚀

@mergify mergify bot added the ci/build label Aug 15, 2025
gemini-code-assist[bot]
gemini-code-assist bot reviewed Aug 15, 2025
View reviewed changes
Copy link
Contributor

@gemini-code-assist gemini-code-assist bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Code Review

This pull request adds the HF_TOKEN and ZE_AFFINITY_MASK environment variables to the Docker container in the XPU CI test script. This change is intended to ensure the tests have the necessary environment to run correctly, particularly for accessing gated models and controlling GPU affinity. The change also includes a debug statement to print the value of ZE_AFFINITY_MASK. While the overall change is beneficial, the new debug statement introduces a critical command injection vulnerability by not quoting the environment variable. My review includes a specific comment and a code suggestion to address this security risk.

.buildkite/scripts/hardware_ci/run-xpu-test.sh Outdated
Copy link
Contributor

@gemini-code-assist gemini-code-assist bot Aug 15, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

critical

The ZE_AFFINITY_MASK variable is unquoted in the echo command. This is a command injection vulnerability. If an attacker can control the value of ZE_AFFINITY_MASK, they could execute arbitrary commands inside the container. For example, if ZE_AFFINITY_MASK is set to $(reboot), the container would attempt to reboot. Always quote variables that might contain user-controllable or unexpected data to prevent shell expansion and command substitution.1

Suggested change
echo $ZE_AFFINITY_MASK
echo "$ZE_AFFINITY_MASK"

Style Guide References

Footnotes

  1. Unquoted variables in shell scripts can lead to command injection and other unexpected behavior due to word splitting, pathname expansion, and command substitution. It is a security best practice to always double-quote variables unless you specifically need the shell to perform these expansions.

@jikunshang jikunshang force-pushed the kunshang/ci_env branch 2 times, most recently from 37b34c6 to ba9d202 Compare August 18, 2025 08:17
@bigPYJ1151 bigPYJ1151 enabled auto-merge (squash) August 18, 2025 08:21
@github-actions github-actions bot added the ready ONLY add when PR is ready to merge/full CI is needed label Aug 18, 2025
@bigPYJ1151 bigPYJ1151 merged commit 5c79b0d into vllm-project:main Aug 18, 2025
22 of 25 checks passed
@jikunshang
add xpu env vars in CI scripts
247ecd4 
Signed-off-by: Kunshang Ji <kunshang.ji@intel.com>
@jikunshang
typo
967dfa5 
Signed-off-by: Kunshang Ji <kunshang.ji@intel.com>
@jikunshang
add set -e in ci test script.
94d67de 
Signed-off-by: Kunshang Ji <kunshang.ji@intel.com>
@jikunshang
ignore failed tests
ba9d202 
Signed-off-by: Kunshang Ji <kunshang.ji@intel.com>
princepride pushed a commit to princepride/vllm that referenced this pull request Aug 20, 2025
@jikunshang @princepride
[XPU][CI]add xpu env vars in CI scripts (vllm-project#22946)
0f613f7 
Signed-off-by: Kunshang Ji <kunshang.ji@intel.com>
divakar-amd pushed a commit to divakar-amd/vllm_upstream that referenced this pull request Aug 20, 2025
@jikunshang @divakar-amd
[XPU][CI]add xpu env vars in CI scripts (vllm-project#22946)
b2ca8af 
Signed-off-by: Kunshang Ji <kunshang.ji@intel.com>
cyang49 pushed a commit to cyang49/vllm that referenced this pull request Aug 20, 2025
@jikunshang @cyang49
[XPU][CI]add xpu env vars in CI scripts (vllm-project#22946)
6339406 
Signed-off-by: Kunshang Ji <kunshang.ji@intel.com>
djmmoss pushed a commit to djmmoss/vllm that referenced this pull request Aug 21, 2025
@jikunshang @djmmoss
[XPU][CI]add xpu env vars in CI scripts (vllm-project#22946)
2c46786 
Signed-off-by: Kunshang Ji <kunshang.ji@intel.com>
Signed-off-by: Duncan Moss <djm.moss@gmail.com>
epwalsh pushed a commit to epwalsh/vllm that referenced this pull request Aug 28, 2025
@jikunshang @epwalsh
[XPU][CI]add xpu env vars in CI scripts (vllm-project#22946)
f6cf423 
Signed-off-by: Kunshang Ji <kunshang.ji@intel.com>
xiao-llm pushed a commit to xiao-llm/vllm that referenced this pull request Aug 28, 2025
@jikunshang @amd-xiaoyu12
[XPU][CI]add xpu env vars in CI scripts (vllm-project#22946)
8641401 
Signed-off-by: Kunshang Ji <kunshang.ji@intel.com>
Signed-off-by: Xiao Yu <xiao.yu@amd.com>
zhewenl pushed a commit to zhewenl/vllm that referenced this pull request Aug 28, 2025
@jikunshang @zhewenl
[XPU][CI]add xpu env vars in CI scripts (vllm-project#22946)
2fc546a 
Signed-off-by: Kunshang Ji <kunshang.ji@intel.com>
zhewenl pushed a commit to zhewenl/vllm that referenced this pull request Sep 3, 2025
@jikunshang @zhewenl
[XPU][CI]add xpu env vars in CI scripts (vllm-project#22946)
bd051ce 
Signed-off-by: Kunshang Ji <kunshang.ji@intel.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@bigPYJ1151 bigPYJ1151 bigPYJ1151 approved these changes

+1 more reviewer

@gemini-code-assist gemini-code-assist[bot] gemini-code-assist[bot] left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

ci/build ready ONLY add when PR is ready to merge/full CI is needed

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@jikunshang @bigPYJ1151