Skip to content

feat: Implement Model Lifecycle Manager - Systemd-based LLM service management #234

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed
yaya1738 wants to merge 1 commit into from
Closed

feat: Implement Model Lifecycle Manager - Systemd-based LLM service management #234

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
297 changes: 297 additions & 0 deletions README_MODEL_LIFECYCLE.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,297 @@
# Cortex Model Lifecycle Manager

Systemd-based service management for LLM models. Brings "systemctl for AI models" to Cortex Linux.

## Quick Start

```bash
# Register a model
cortex-model register llama-70b --path meta-llama/Llama-2-70b-hf --backend vllm --gpus 0,1

# Start the model
cortex-model start llama-70b

# Check status
cortex-model status

# Enable auto-start on boot
cortex-model enable llama-70b

# View logs
cortex-model logs llama-70b -f
```

## Features

- **Systemd Service Generation**: Creates proper systemd user services for any LLM backend
- **Multi-Backend Support**: vLLM, llama.cpp, Ollama, Text Generation Inference (TGI)
- **Health Check Monitoring**: HTTP endpoint checks with automatic restart on failure
- **Resource Limits**: CPU, memory, I/O, and task limits via systemd cgroups
- **Security Hardening**: NoNewPrivileges, ProtectSystem, namespace isolation
- **SQLite Persistence**: Configuration and event logging
- **Boot Auto-Start**: Enable models to start automatically on system boot

## Supported Backends

| Backend | Command | Health Endpoint |
|---------|---------|-----------------||
Copy link

Copilot AI Dec 4, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The table header format in the documentation (line 37) has an extra pipe character at the end. The correct markdown table format should be:

| Backend | Command | Health Endpoint |
|---------|---------|-----------------|

Without the trailing | on the separator line.

Suggested change
|---------|---------|-----------------||
|---------|---------|-----------------|

Copilot uses AI. Check for mistakes.
| vLLM | `python -m vllm.entrypoints.openai.api_server` | `/health` |
| llama.cpp | `llama-server` | `/health` |
| Ollama | `ollama serve` | `/api/tags` |
| TGI | `text-generation-launcher` | `/health` |

Comment on lines +36 to +42
Copy link
Contributor

@coderabbitai coderabbitai bot Dec 4, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

⚠️ Potential issue | 🟡 Minor

Malformed Markdown table syntax.

Line 37 has a double pipe || at the end of the header separator row which will break table rendering in most Markdown processors.

-|---------|---------|-----------------||
+|---------|---------|-----------------|
📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change
| Backend | Command | Health Endpoint |
|---------|---------|-----------------||
| vLLM | `python -m vllm.entrypoints.openai.api_server` | `/health` |
| llama.cpp | `llama-server` | `/health` |
| Ollama | `ollama serve` | `/api/tags` |
| TGI | `text-generation-launcher` | `/health` |
| Backend | Command | Health Endpoint |
|---------|---------|-----------------|
| vLLM | `python -m vllm.entrypoints.openai.api_server` | `/health` |
| llama.cpp | `llama-server` | `/health` |
| Ollama | `ollama serve` | `/api/tags` |
| TGI | `text-generation-launcher` | `/health` |
🤖 Prompt for AI Agents 
In README_MODEL_LIFECYCLE.md around lines 36 to 42, the Markdown table header
separator row contains an extra trailing pipe ("||") which breaks table
rendering; remove the extra pipe so the separator row has exactly three columns
(e.g., |---------|---------|-----------------|) and verify all data rows have
three pipe-separated columns to restore correct table formatting.

## Commands

### Register a Model

```bash
cortex-model register <name> --path <model-path> [options]

Options:
--backend Backend: vllm, llamacpp, ollama, tgi (default: vllm)
--port Service port (default: 8000)
--host Service host (default: 127.0.0.1)
--gpus Comma-separated GPU IDs (default: 0)
--memory Memory limit (default: 32G)
--cpu CPU cores limit (default: 4.0)
--max-model-len Maximum sequence length (default: 4096)
--tensor-parallel Tensor parallel size (default: 1)
--quantization Quantization method: awq, gptq
--extra-args Extra backend arguments
--no-health-check Disable health monitoring
```

### Lifecycle Commands

```bash
cortex-model start <name> # Start a model service
cortex-model stop <name> # Stop a model service
cortex-model restart <name> # Restart a model service
cortex-model enable <name> # Enable auto-start on boot
cortex-model disable <name> # Disable auto-start
cortex-model unregister <name> # Remove model completely
```

### Status and Monitoring

```bash
cortex-model status # List all models with state
cortex-model status <name> # Show specific model status
cortex-model list # Alias for status
cortex-model logs <name> # View systemd journal logs
cortex-model logs <name> -f # Follow logs in real-time
cortex-model events # Show all model events
cortex-model events <name> # Show events for specific model
cortex-model health <name> # Check health endpoint
```

## Usage Examples

### vLLM with Multiple GPUs

```bash
cortex-model register llama-70b \
--path meta-llama/Llama-2-70b-hf \
--backend vllm \
--gpus 0,1,2,3 \
--tensor-parallel 4 \
--memory 128G \
--max-model-len 8192

cortex-model start llama-70b
cortex-model enable llama-70b
```

### Quantized Model with AWQ

```bash
cortex-model register llama-awq \
--path TheBloke/Llama-2-70B-AWQ \
--backend vllm \
--quantization awq \
--gpus 0

cortex-model start llama-awq
```

### Local GGUF Model with llama.cpp

```bash
cortex-model register local-gguf \
--path /models/llama-7b.Q4_K_M.gguf \
--backend llamacpp \
--port 8080

cortex-model start local-gguf
```

### TGI for Production

```bash
cortex-model register tgi-prod \
--path bigscience/bloom-7b1 \
--backend tgi \
--gpus 0,1 \
--tensor-parallel 2 \
--host 0.0.0.0 \
--port 8000

cortex-model start tgi-prod
cortex-model enable tgi-prod
```

## Configuration

### Resource Limits

Models are configured with systemd resource limits:

| Setting | Default | Description |
|---------|---------|-------------|
| MemoryMax | 32G | Hard memory limit |
| MemoryHigh | 28G | Soft memory limit (triggers reclaim) |
| CPUQuota | 400% | CPU cores (100% = 1 core) |
| CPUWeight | 100 | CPU scheduling weight (1-10000) |
| IOWeight | 100 | I/O scheduling weight (1-10000) |
| TasksMax | 512 | Maximum processes/threads |

### Security Hardening

Default security settings (can be customized):

| Setting | Default | Description |
|---------|---------|-------------|
| NoNewPrivileges | true | Prevent privilege escalation |
| ProtectSystem | strict | Read-only /usr and /boot |
| ProtectHome | read-only | Read-only home directory |
| PrivateTmp | true | Private /tmp namespace |
| PrivateDevices | false | False to allow GPU access |
| RestrictRealtime | true | Prevent realtime scheduling |
| ProtectKernelTunables | true | Protect sysctl |
| ProtectKernelModules | true | Prevent module loading |

### Health Checks

Health monitoring configuration:

| Setting | Default | Description |
|---------|---------|-------------|
| enabled | true | Enable health monitoring |
| endpoint | /health | HTTP endpoint to check |
| interval_seconds | 30 | Check interval |
| timeout_seconds | 10 | Request timeout |
| max_failures | 3 | Failures before restart |
| startup_delay_seconds | 60 | Wait before first check |

## Architecture

```
ModelLifecycleManager
|-- ModelDatabase (SQLite)
| |-- models table (configuration)
| +-- events table (audit log)
|-- ServiceGenerator (systemd units)
| |-- Backend templates (vLLM, TGI, etc.)
| |-- Resource limits
| +-- Security hardening
+-- HealthChecker (monitoring)
|-- HTTP endpoint checks
+-- Auto-restart logic

Configuration:
|-- ~/.cortex/models.db # SQLite database
|-- ~/.config/systemd/user/ # Service files
| +-- cortex-<model>.service
+-- ~/.cortex/logs/ # Local logs
```

## Service File Example

Generated service file for a vLLM model:

```ini
[Unit]
Description=Cortex Model: llama-70b
Documentation=https://github.com/cortexlinux/cortex
After=network.target
Wants=network-online.target

[Service]
Type=simple
ExecStart=python -m vllm.entrypoints.openai.api_server --model meta-llama/Llama-2-70b-hf --host 127.0.0.1 --port 8000 --gpu-memory-utilization 0.9 --max-model-len 4096 --tensor-parallel-size 4
Environment=CUDA_VISIBLE_DEVICES=0,1,2,3
Environment=HIP_VISIBLE_DEVICES=0,1,2,3
Environment=TOKENIZERS_PARALLELISM=false

# Resource Limits
CPUQuota=400%
CPUWeight=100
MemoryMax=128G
MemoryHigh=120G
IOWeight=100
TasksMax=512

# Security Hardening
NoNewPrivileges=true
ProtectSystem=strict
ProtectHome=read-only
PrivateTmp=true
RestrictRealtime=true
RestrictSUIDSGID=true
ProtectKernelTunables=true
ProtectKernelModules=true
ProtectControlGroups=true

# Restart Policy
Restart=on-failure
RestartSec=10
StartLimitIntervalSec=300
StartLimitBurst=5

# Logging
StandardOutput=journal
StandardError=journal
SyslogIdentifier=cortex-llama-70b

[Install]
WantedBy=default.target
```

## Testing

```bash
# Run all tests
pytest tests/test_model_lifecycle.py -v

# Run specific test class
pytest tests/test_model_lifecycle.py::TestModelConfig -v

# Run with coverage
pytest tests/test_model_lifecycle.py --cov=cortex.kernel_features.model_lifecycle
```

## Requirements

- Python 3.8+
- systemd with user services enabled
- One of: vLLM, llama.cpp, Ollama, or TGI installed

### Enabling User Services

```bash
# Enable lingering for user services to run without login
loginctl enable-linger $USER

# Verify systemd user instance
systemctl --user status
```

## Files

- `cortex/kernel_features/model_lifecycle.py` - Main implementation (~1000 lines)
- `tests/test_model_lifecycle.py` - Unit tests (~650 lines, 50+ tests)
Copy link

Copilot AI Dec 4, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Documentation inconsistency: The README states the test file has "~650 lines, 50+ tests" (line 292), but the actual test file has 907 lines and 63 tests. Update the documentation to reflect the accurate line count and test count.

Suggested change
- `tests/test_model_lifecycle.py` - Unit tests (~650 lines, 50+ tests)
- `tests/test_model_lifecycle.py` - Unit tests (907 lines, 63 tests)

Copilot uses AI. Check for mistakes.
- `README_MODEL_LIFECYCLE.md` - This documentation
Comment on lines +291 to +293
Copy link
Contributor

@coderabbitai coderabbitai bot Dec 4, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

⚠️ Potential issue | 🟡 Minor

Documentation line counts are outdated.

The test file is described as "~650 lines, 50+ tests" but the actual file has 907 lines and 63 tests according to the PR description. Consider updating to reflect current state.

-- `tests/test_model_lifecycle.py` - Unit tests (~650 lines, 50+ tests)
+- `tests/test_model_lifecycle.py` - Unit tests (~900 lines, 63 tests)
📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change
- `cortex/kernel_features/model_lifecycle.py` - Main implementation (~1000 lines)
- `tests/test_model_lifecycle.py` - Unit tests (~650 lines, 50+ tests)
- `README_MODEL_LIFECYCLE.md` - This documentation
- `cortex/kernel_features/model_lifecycle.py` - Main implementation (~1000 lines)
- `tests/test_model_lifecycle.py` - Unit tests (~900 lines, 63 tests)
- `README_MODEL_LIFECYCLE.md` - This documentation
🤖 Prompt for AI Agents 
In README_MODEL_LIFECYCLE.md around lines 291 to 293, the test file line counts
are stale; update the bullet to reflect the current test file size and count by
replacing "~650 lines, 50+ tests" with the current values (907 lines, 63 tests)
so the entry reads "- `tests/test_model_lifecycle.py` - Unit tests (~907 lines,
63 tests)". Ensure formatting and punctuation match the surrounding list.


## Related Issues

- [#220 Model Lifecycle Manager - Systemd-Based LLM Service Management](https://github.com/cortexlinux/cortex/issues/220)
Loading