ci: add conmon tests run by kolyshkin · Pull Request #5159 · opencontainers/runc

kolyshkin · 2026-03-10T17:29:34Z

Related to issue #5151, PR #5153.

kolyshkin · 2026-03-10T21:01:42Z

Added backport/1.4-todo as I think 1.4 branch will also benefit from running those tests (by avoiding conmon-related regressions).

cyphar · 2026-03-11T03:44:30Z

.github/workflows/test.yml

+
+    - name: build conmon
+      run: |
+        git clone --depth 1 https://github.com/containers/conmon


Would it be less fragile to use the latest release of conmon instead?

That would be nice, but is there a simple way to do it? That's what I hate about GHA.

If dependabot can update the conmon version here, great. But otherwise, if we don't have an automated way to update it, I think I'd start with this and if it's noisy, we can always fall back to releases.

I can checkout conmon via actions/checkout, like this:

- name: checkout conmon uses: actions/checkout@v6 with: repository: containers/conmon path: conmon ref: v2.2.1

but even in that case dependabot won't be able to update it (unless I miss something).

Let's settle on latest released version (and the need to update it manually, which is probably better than random CI failures).

I was thinking you could use https://github.com/containers/conmon/releases/latest but this works fine too.

rata

Awesome, thanks @kolyshkin ! This mostly LGTM, left some simple comments.

.github/workflows/test.yml

rata · 2026-03-11T10:07:35Z

.github/workflows/test.yml

+
+    - name: build conmon
+      run: |
+        git clone --depth 1 https://github.com/containers/conmon


That would be nice, but is there a simple way to do it? That's what I hate about GHA.

If dependabot can update the conmon version here, great. But otherwise, if we don't have an automated way to update it, I think I'd start with this and if it's noisy, we can always fall back to releases.

rata

LGTM. I'm fine if someone wants to do more improvements too, but I think this is good enough to merge. All the tests run in about 1min, that is great :)

This adds a CI job to run conmon tests with runc. Related to issue 5151, PR 5153. Signed-off-by: Kir Kolyshkin <kolyshkin@gmail.com>

rata

Awesome, thank you very much for this improvement! LGTM

Copilot

Pull request overview

Adds CI coverage in the validate GitHub Actions workflow to build runc and run the upstream conmon test suite against it, ensuring validate gates on these results.

Changes:

Introduce a new conmon job that installs deps, builds runc, checks out containers/conmon, builds it, and runs its tests.
Wire the new conmon job into the all-done aggregator via needs.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

.github/workflows/validate.yml

lifubang · 2026-03-12T11:18:35Z

Nice! Do you think we should also add a test for containerd?

cyphar · 2026-03-12T11:48:22Z

Ah, this needed to be updated once #5103 was merged -- the CI fails. #5170 fixes this.

lifubang · 2026-03-12T11:53:07Z

Ah, this needed to be updated once #5103 was merged -- the CI fails. #5170 fixes this.

👍
I realized it in #5103,
But I forgot it in here!
Let's discuss in #5103 (comment)

kolyshkin · 2026-03-19T23:59:19Z

1.4 backport: #5187
1.3 backport: #5188

kolyshkin · 2026-03-20T00:00:13Z

Nice! Do you think we should also add a test for containerd?

Makes sense! Perhaps podman and docker, too.

kolyshkin force-pushed the add-conmon branch 4 times, most recently from fba6385 to 9def035 Compare March 10, 2026 20:01

kolyshkin marked this pull request as ready for review March 10, 2026 20:01

kolyshkin added the backport/1.4-todo A PR in main branch which needs to backported to release-1.4 label Mar 10, 2026

kolyshkin mentioned this pull request Mar 10, 2026

Revert "Preventing containers from being unable to be deleted" #5153

Merged

cyphar reviewed Mar 11, 2026

View reviewed changes

rata reviewed Mar 11, 2026

View reviewed changes

rata approved these changes Mar 11, 2026

View reviewed changes

kolyshkin force-pushed the add-conmon branch from 9def035 to ec4418b Compare March 11, 2026 22:02

kolyshkin requested a review from cyphar March 11, 2026 22:19

ci: add conmon tests run

192e3d4

This adds a CI job to run conmon tests with runc. Related to issue 5151, PR 5153. Signed-off-by: Kir Kolyshkin <kolyshkin@gmail.com>

kolyshkin force-pushed the add-conmon branch from ec4418b to 192e3d4 Compare March 11, 2026 23:43

rata approved these changes Mar 12, 2026

View reviewed changes

lifubang approved these changes Mar 12, 2026

View reviewed changes

lifubang requested a review from Copilot March 12, 2026 11:14

Copilot started reviewing on behalf of lifubang March 12, 2026 11:15 View session

Copilot AI reviewed Mar 12, 2026

View reviewed changes

.github/workflows/validate.yml Show resolved Hide resolved

lifubang merged commit 7837689 into opencontainers:main Mar 12, 2026
47 checks passed

kolyshkin added the backport/1.3-todo A PR in main branch which needs to be backported to release-1.3 label Mar 19, 2026

This was referenced Mar 19, 2026

[1.4] ci: add conmon tests run #5187

Merged

[1.3] ci: add conmon tests run #5188

Merged

kolyshkin removed backport/1.3-todo A PR in main branch which needs to be backported to release-1.3 backport/1.4-todo A PR in main branch which needs to backported to release-1.4 labels Mar 19, 2026

kolyshkin added backport/1.3-done A PR in main branch which has been backported to release-1.3 backport/1.4-done A PR in main branch which has been backported to release-1.4 area/ci labels Mar 19, 2026

kolyshkin added this to the 1.5.0-rc.1 milestone Mar 20, 2026

Conversation

kolyshkin commented Mar 10, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

kolyshkin commented Mar 10, 2026

Uh oh!

cyphar Mar 11, 2026

Choose a reason for hiding this comment

Uh oh!

rata Mar 11, 2026

Choose a reason for hiding this comment

Uh oh!

kolyshkin Mar 11, 2026

Choose a reason for hiding this comment

Uh oh!

kolyshkin Mar 11, 2026

Choose a reason for hiding this comment

Uh oh!

rata Mar 12, 2026

Choose a reason for hiding this comment

Uh oh!

cyphar Mar 12, 2026

Choose a reason for hiding this comment

Uh oh!

rata left a comment • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Uh oh!

rata Mar 11, 2026

Choose a reason for hiding this comment

Uh oh!

rata left a comment

Choose a reason for hiding this comment

Uh oh!

rata left a comment

Choose a reason for hiding this comment

Uh oh!

Copilot AI left a comment

Choose a reason for hiding this comment

Pull request overview

Uh oh!

Uh oh!

Uh oh!

lifubang commented Mar 12, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

cyphar commented Mar 12, 2026

Uh oh!

lifubang commented Mar 12, 2026

Uh oh!

kolyshkin commented Mar 19, 2026

Uh oh!

kolyshkin commented Mar 20, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

5 participants

kolyshkin commented Mar 10, 2026 •

edited

Loading

rata left a comment •

edited

Loading

lifubang commented Mar 12, 2026 •

edited

Loading