Skip to content

runc: gracefully handle low RLIMIT_NOFILE instead of crashing#5097

Closed
arnavgogia20 wants to merge 2 commits intoopencontainers:mainfrom
arnavgogia20:fix/low-rlimit-crash
Closed

runc: gracefully handle low RLIMIT_NOFILE instead of crashing#5097
arnavgogia20 wants to merge 2 commits intoopencontainers:mainfrom
arnavgogia20:fix/low-rlimit-crash

Conversation

@arnavgogia20
Copy link
Copy Markdown

@arnavgogia20 arnavgogia20 commented Feb 2, 2026

Summary

This PR fixes a crash in runc that occurs when creating a container with a very small
RLIMIT_NOFILE value.

Instead of triggering a Go runtime panic (e.g. eventfd failed), runc now detects the
resource exhaustion scenario and returns a clear, user-facing error.

Background

When RLIMIT_NOFILE is set too low, runc may fail to create internal resources such as
eventfd / epoll. In recent versions this results in a runtime panic and stack trace,
which is unexpected and difficult for users to diagnose.

Earlier versions of runc returned a controlled error in this scenario.

Changes

  • Add defensive handling for low RLIMIT_NOFILE during container creation
  • Convert runtime panic conditions into a clean, actionable error
  • Add a regression test to ensure runc fails gracefully under low file-descriptor limits

Testing

  • Added a new test that sets a very small RLIMIT_NOFILE and verifies runc exits with a
    controlled error instead of panicking
  • Existing unit tests and CI checks pass

Compatibility & Risk

  • No behavior change for normal RLIMIT_NOFILE values
  • No changes to Go runtime internals
  • Fix is limited to error handling for resource exhaustion

Related Issue

Closes #5082

@arnavgogia20
libcontainer: prevent crash with low RLIMIT_NOFILE
a0014e3 
When a container is started with a very low RLIMIT_NOFILE (e.g. < 14),
runc may crash with a Go runtime panic ('runtime: eventfd failed') when
attempting to initialize the network poller lazily.

This patch adds a defensive check in setupRlimits to enforce a safe
minimum (32) for the soft RLIMIT_NOFILE. This ensures that runc explicitly
errors out with a clear message instead of panicking deep in the runtime.

Fixes: opencontainers#5082
Signed-off-by: arnavgogia20 <arnavgogia404@gmail.com>
@arnavgogia20
tests: add regression test for low RLIMIT_NOFILE (opencontainersgh-5082)
caf1809 
Adds an integration test verifying that starting a container with a very
low RLIMIT_NOFILE (10) results in a graceful error message rather than a
runtime crash.

Signed-off-by: arnavgogia20 <arnavgogia404@gmail.com>
@kolyshkin
Copy link
Copy Markdown
Contributor

kolyshkin commented Feb 2, 2026

This was obviously written/aided by an LLM without much understanding of the underlying issue. Tests are failing as well.

While we don't have a LLM policy yet (just a discussion at #4990), let me be bold and close this now to spare other maintainers' time.

@arnavgogia20 feel free to keep contributing to runc, but try to engage your own mental abilities rather than merely use LLM for everything. As for the issue, I will add a comment to #5082.

@kolyshkin kolyshkin closed this Feb 2, 2026
This was referenced Feb 2, 2026
Closed
Closed
@arnavgogia20
Copy link
Copy Markdown
Author

arnavgogia20 commented Feb 3, 2026

Thanks for the direct feedback...... and sorry for the noise caused here.
I’m actively trying to deepen my understanding of the runc codebase and will take this as a learning experience. If you’re open to it, I’d really appreciate any pointers to suitable issues or areas where a contributor ramping up can be most helpful......thankyouu

@arnavgogia20 arnavgogia20 deleted the fix/low-rlimit-crash branch February 3, 2026 04:26
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

runc crashes when creating a container with a small enough unix.RLIMIT_NOFILE

2 participants

@arnavgogia20 @kolyshkin