Skip to content

Fix sync_pipe_fd validation to include file descriptor 0 #622

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
jnovy wants to merge 1 commit into
base: main
Choose a base branch
from
Draft

Fix sync_pipe_fd validation to include file descriptor 0 #622

jnovy wants to merge 1 commit into from

Conversation

@jnovy
Copy link
Collaborator

@jnovy jnovy commented Oct 29, 2025

Change sync_pipe_fd checks from > 0 to >= 0 to properly handle the case where file descriptor 0 is used for the sync pipe.

Fixes: containers/podman#27335

@jnovy jnovy mentioned this pull request Oct 29, 2025
Open
@jnovy jnovy marked this pull request as draft October 30, 2025 09:01
@jnovy
Fix sync_pipe_fd validation and add missing error reporting
aa8a5cd 
This commit addresses multiple issues related to sync_pipe_fd handling:

1. Change sync_pipe_fd checks from > 0 to >= 0 to properly handle
   the case where file descriptor 0 is used for the sync pipe.

2. Add missing error reporting in terminal_accept_cb() when receiving
   the console file descriptor fails. Previously, conmon would call
   pexit() directly, exiting without writing to sync_pipe_fd. This
   caused podman to receive empty data and show JSON parse errors.

3. Add missing error reporting when pidfile read fails. Previously,
   if g_file_get_contents() failed to read the container pidfile,
   conmon would exit(1) without writing to sync_pipe_fd, causing
   podman to receive empty data and show JSON parse errors.

This fix ensures that when the runtime fails (e.g., due to missing
cgroup controllers), conmon properly reports the error to podman
instead of silently closing the pipe.

Fixes: containers/podman#27335

Signed-off-by: Jindrich Novy <jnovy@redhat.com>
samifruit514
samifruit514 approved these changes Nov 12, 2025
View reviewed changes
Copy link

@samifruit514 samifruit514 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

lgtm

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@samifruit514 samifruit514 samifruit514 approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

rootless podman with runc gives inconsistent error messages when using options that depend on missing cgroup v2 controllers

2 participants

@jnovy @samifruit514