Gvisor doesn't inject the icd file for nvidia, as is done by nvidia container toolkit

### Description

Currently, gVisor does not inject `nvidia_icd.json` even when `nvproxy-allowed-driver-capabilities = "all"` is set.

When running with the nvidia container toolkit, this file injection is handled automatically, which allows vulkan to correctly detect the graphics card, instead of falling back to the CPU pipeline.

### Steps to reproduce

Run a workload with gVisor, such as `ubuntu:latest`.
Install `vulkan-tools`, and run `vulkaninfo --summary 2>/dev/null | grep -E "deviceName|deviceType|driverName"`, see that it outputs:
```
        deviceType         = PHYSICAL_DEVICE_TYPE_CPU
        deviceName         = llvmpipe (LLVM 15.0.7, 256 bits)
        driverName         = llvmpipe
```
Try `find / -name "nvidia_icd.json"` which returns no results.

### runsc version

```shell
release-20260309.0
```

### docker version (if using docker)

```shell

```

### uname

_No response_

### kubectl (if using Kubernetes)

```shell

```

### repo state (if built from source)

_No response_

### runsc debug logs (if available)

```shell

```

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Gvisor doesn't inject the icd file for nvidia, as is done by nvidia container toolkit #12752

Description

Steps to reproduce

runsc version

docker version (if using docker)

uname

kubectl (if using Kubernetes)

repo state (if built from source)

runsc debug logs (if available)

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Gvisor doesn't inject the icd file for nvidia, as is done by nvidia container toolkit #12752

Description

Description

Steps to reproduce

runsc version

docker version (if using docker)

uname

kubectl (if using Kubernetes)

repo state (if built from source)

runsc debug logs (if available)

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions