pidOf trusted any live PID from the pidfile. After a VM is killed (e.g. an
agent-restart cgroup kill) its stale pidfile can hold a PID the kernel has
reused for an unrelated process, so the VM falsely reported "running" —
Recover then skipped it and it stayed dead in drift. pidOf now confirms
/proc/<pid>/cmdline references the VM's state dir before trusting it.
Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
fd88ccb9d6