Skip to content

Align with runc: use user's HOME when HOME is empty string #3269

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
bells17 wants to merge 2 commits into
base: main
Choose a base branch
from
Open

Align with runc: use user's HOME when HOME is empty string #3269

Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
1f64f04
Align with runc: use user's HOME when HOME is empty string
bells17 Oct 5, 2025
dd0e822
Edit the commented content
bells17 Oct 17, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
114 changes: 108 additions & 6 deletions crates/libcontainer/src/process/init/process.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -366,12 +366,7 @@ pub fn container_init_process(
}

// add HOME into envs if not exists
if !ctx.envs.contains_key("HOME") {
if let Some(dir_home) = utils::get_user_home(ctx.process.user().uid()) {
ctx.envs
.insert("HOME".to_owned(), dir_home.to_string_lossy().to_string());
}
}
set_home_env_if_not_exists(&mut ctx.envs, ctx.process.user().uid().into());

args.executor.validate(ctx.spec)?;
args.executor.setup_envs(ctx.envs)?;
Expand Down Expand Up @@ -901,13 +896,33 @@ fn verify_cwd() -> Result<()> {
Ok(())
}

/// Set the HOME environment variable if it is not already set or is empty.
fn set_home_env_if_not_exists(envs: &mut HashMap<String, String>, uid: Uid) {
if envs.get("HOME").is_none_or(|v| v.is_empty()) {
if let Some(dir_home) = utils::get_user_home(uid.into()) {
set_home_from_path(envs, &dir_home);
}
}
}

/// Set the HOME environment variable if dir_home string is valid UTF-8
fn set_home_from_path(envs: &mut HashMap<String, String>, dir_home: &Path) {
if let Some(home_str) = dir_home.to_str() {
envs.insert("HOME".to_owned(), home_str.to_owned());
}
}

#[cfg(test)]
mod tests {
use std::ffi::OsStr;
use std::fs;
use std::os::unix::ffi::OsStrExt;
use std::path::PathBuf;

use anyhow::Result;
#[cfg(feature = "libseccomp")]
use nix::unistd;
use nix::unistd::{Uid, User as NixUser};
use oci_spec::runtime::{LinuxNamespaceBuilder, SpecBuilder, UserBuilder};
#[cfg(feature = "libseccomp")]
use serial_test::serial;
Expand Down Expand Up @@ -1192,4 +1207,91 @@ mod tests {
let set_io_prioritys = test_command.get_io_priority_args();
assert_eq!(set_io_prioritys[0], want_io_priority);
}

#[test]
fn test_set_home_env_if_not_exists_already_exists() {
let mut envs = HashMap::new();
envs.insert("HOME".to_owned(), "/existing/home".to_owned());

set_home_env_if_not_exists(&mut envs, Uid::from_raw(0));
assert_eq!(envs.get("HOME"), Some(&"/existing/home".to_string()));
}

#[test]
fn test_set_home_env_if_not_exists_already_exists_non_root() {
let mut envs = HashMap::new();
envs.insert("HOME".to_owned(), "/existing/home".to_owned());

set_home_env_if_not_exists(&mut envs, Uid::current());
assert_eq!(envs.get("HOME"), Some(&"/existing/home".to_string()));
}

#[test]
fn test_set_home_env_if_not_exists_already_exists_but_empty_value() {
let mut envs = HashMap::new();
envs.insert("HOME".to_owned(), "".to_owned());

set_home_env_if_not_exists(&mut envs, Uid::from_raw(0));
assert_eq!(envs.get("HOME"), Some(&"/root".to_string()));
}

#[test]
fn test_set_home_env_if_not_exists_already_exists_but_empty_value_non_root() {
let mut envs = HashMap::new();
envs.insert("HOME".to_owned(), "".to_owned());

let current_uid = Uid::current();
let expected = NixUser::from_uid(current_uid)
.ok()
.flatten()
.and_then(|user| user.dir.to_str().map(|s| s.to_owned()))
.unwrap_or_default();

set_home_env_if_not_exists(&mut envs, current_uid);
assert_eq!(envs.get("HOME"), Some(&expected));
}

#[test]
fn test_set_home_env_if_not_exists_not_set() {
let mut envs = HashMap::new();

set_home_env_if_not_exists(&mut envs, Uid::from_raw(0));
Copy link
Collaborator

@YJDoc2 YJDoc2 Oct 7, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Can we add one more test for non-zero uid?

Copy link
Contributor Author

@bells17 bells17 Oct 17, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I've added it. Can you check it again, please?
dd0e822

assert_eq!(envs.get("HOME"), Some(&"/root".to_string()));
}

#[test]
fn test_set_home_env_if_not_exists_not_set_non_root() {
let mut envs = HashMap::new();

let current_uid = Uid::current();
let expected = NixUser::from_uid(current_uid)
.ok()
.flatten()
.and_then(|user| user.dir.to_str().map(|s| s.to_owned()))
.unwrap_or_default();

set_home_env_if_not_exists(&mut envs, current_uid);
assert_eq!(envs.get("HOME"), Some(&expected));
}

#[test]
fn test_set_home_from_path_valid_utf8() {
let mut envs = HashMap::new();
let valid_path = PathBuf::from("/home/user");

set_home_from_path(&mut envs, &valid_path);
assert_eq!(envs.get("HOME"), Some(&"/home/user".to_string()));
}

#[test]
fn test_set_home_from_path_invalid_utf8() {
let mut envs = HashMap::new();

let invalid_bytes = b"/home/user/\xFF\xFE";
let invalid_path = PathBuf::from(OsStr::from_bytes(invalid_bytes));
assert!(invalid_path.to_str().is_none());

set_home_from_path(&mut envs, &invalid_path);
assert_eq!(envs.get("HOME"), None);
}
}
Loading