Probably no need to move these lines?

It's necessary to use c in defer

Can we avoid expanding this "guess the status code" system further and return a specific http error instead?

@dnephin can you explain a little bit more for @ijrandom ?

Sure, I'd be happy to.

This code that you've added to is trying to guess which http status code to return based on an error message string. Instead of guessing based on string matching, we'd like to be explicit about the error.

The explicit error is in api/errors/errors.go NewRequestNotFoundError(). Could you return that directly from the function that causes this error, instead of adding a new string to this list?

Just to be clear. You want to return NewRequestNotFoundError from platform specific wrapper to execv/CreateProcess?

Where is the error which contains the text "cannot find"?

It come from the windows os when CreateProcess failed

Ok, is there an issue about this? I don't think we return a 404 on other platforms when the path to a binary is incorrect.

on linux message contains "not found" those producing 404

Doesn't this needs to be protected by the lock?

Only if changes to ec.Running and ec.ExitCode need to be atomic. There were no lock protection in containerd callback - so I added no lock here. Should I add the lock? Add the lock in containerd callback as well?

Sorry. There was a lock. Added lock/unlock and changed message

maybe add some context? e.g. "failed to cleanup exec %s streams: %s"?

done, also changed message in monitor.go

you can use inspectFieldJSON (https://github.com/docker/docker/blob/master/integration-cli/docker_utils_test.go#L554) instead.

The fix LGTM.

It's better to squash your commits :)