fix: validate Linux spec early to prevent nil dereference panics

[rishi-jat]

Description

Validate the OCI Linux spec early during container initialization and retrieval to prevent nil dereference panics caused by unsafe access to Spec.Linux.

This change establishes the Linux spec invariant once in:

• New()
• Get()

and returns an explicit error when the Linux section is missing.

Additionally, Exec() now guards access to Spec.Linux.Resources.Memory since Resources remains optional even when the Linux spec is present.

Related issues

• Fixes fix: add nil checks for optional Linux spec fields to prevent panics #409

How was this tested?

gofmt -w pkg/unikontainers/unikontainers.go
go test $(go list ./... | grep -v /tests/e2e)

LLM usage

N/A

Checklist

• I have read the contribution guide.
• The linter passes locally (make lint).
• The e2e tests of at least one tool pass locally (make test_ctr, make test_nerdctl, make test_docker, make test_crictl).
• If LLMs were used: I have read the llm policy.

[netlify]

✅ Deploy Preview for urunc ready!

Name	Link
🔨 Latest commit	3eff01d
🔍 Latest deploy log	https://app.netlify.com/projects/urunc/deploys/6a023342cc3e060008968ad7
😎 Deploy Preview	https://deploy-preview-650--urunc.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.

---

To edit notification comments on pull requests, go to your Netlify project configuration.

[rishi-jat]

/cc @cmainas

[Copilot]

Copilot encountered an error and was unable to review this pull request. You can try again by re-requesting a review.

[cmainas]

Hello @rishi-jat ,

I have added a small comment regarding the new error. Other than it looks ok.

[rishi-jat]

Hello @rishi-jat ,

I have added a small comment regarding the new error. Other than it looks ok.

PTAL