Skip to content
tests

Properly fix podman.socket permissions in tasks containers #592

Sign in to view logs

Properly fix podman.socket permissions in tasks containers

Properly fix podman.socket permissions in tasks containers #592

Workflow file for this run

.github/workflows/tests.yml at f95744d
name: tests
on: [pull_request]
jobs:
unit-tests:
runs-on: ubuntu-22.04
steps:
- name: Clone repository
uses: actions/checkout@v4
- name: Install dependencies
run: |
sudo apt-get update
sudo apt-get install -y make python3-pyflakes python3-pycodestyle
- name: Run unit tests
run: make check
tasks:
runs-on: ubuntu-22.04
permissions:
# enough permissions for tests-scan to work
pull-requests: read
statuses: write
timeout-minutes: 30
steps:
- name: Clone repository
uses: actions/checkout@v4
with:
# need this to get origin/main for git diff
fetch-depth: 0
- name: Rebase to current main
run: |
git config user.name github-actions
git config user.email github-actions@github.com
git rebase origin/main
# HACK: Ubuntu 22.04 has podman 3.4, which isn't compatible with podman-remote 4 in our tasks container
# This PPA is a backport of podman 4.3 from Debian 12; drop this when moving `runs-on:` to ubuntu-24.04
- name: Update to newer podman
run: |
sudo add-apt-repository -y ppa:quarckster/containers
sudo apt install -y podman
systemctl --user daemon-reload
- name: Check which containers changed
id: containers_changed
run: |
tasks=$(git diff --name-only origin/main..HEAD -- tasks/ | grep -Ev 'run-local.sh|openssl.cnf|install-service|README|mock-|.yaml' || true)
# print for debugging
echo "tasks: $tasks"
[ -z "$tasks" ] || echo "tasks=true" >> "$GITHUB_OUTPUT"
- name: Build tasks container if it changed
if: steps.containers_changed.outputs.tasks
run: make tasks-container
- name: Test local deployment
run: |
echo '${{ secrets.GITHUB_TOKEN }}' > ~/.config/github-token
PRN=$(echo "$GITHUB_REF" | cut -f3 -d '/')
tasks/run-local.sh -p $PRN -t ~/.config/github-token