.github/workflows: Disable apparmor

Add --security-opt apparmor=unconfined to docker cmdline. Suggested-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Leon Anavi <leon.anavi@konsulko.com>
2025-07-04 20:54:46 +02:00 · 2025-05-02 13:09:45 +03:00 · 2025-05-02 13:09:45 +03:00 · 2aa34651a7
commit 2aa34651a7
parent 48c571a537
3 changed files with 5 additions and 3 deletions
--- a/.github/workflows/compliance.yml
+++ b/.github/workflows/compliance.yml
@ -23,7 +23,8 @@ jobs:
          id: ${{ github.event.number }}
      - name: Do DCO check
        run: |
-          docker run --rm -v "$GITHUB_WORKSPACE:/work:ro" \
+          docker run --rm --security-opt apparmor=unconfined \
+            -v "$GITHUB_WORKSPACE:/work:ro" \
            --env "BASE_REF=$GITHUB_BASE_REF" \
            "dco-check-${{ github.event.number }}"
      - name: Cleanup temporary docker image
--- a/.github/workflows/yocto-builds.yml
+++ b/.github/workflows/yocto-builds.yml
@ -66,7 +66,7 @@ jobs:
        if: steps.changed-files-specific.outputs.any_changed == 'true'
      - name: Build the image
        run: |
-          docker run --rm \
+          docker run --rm --security-opt apparmor=unconfined \
            -v "$GITHUB_WORKSPACE:/work:ro" \
            -v "$DL_DIR:$DL_DIR:rw" \
            -v "$SSTATE_DIR:$SSTATE_DIR:rw" \
--- a/.github/workflows/yocto-layer.yml
+++ b/.github/workflows/yocto-layer.yml
@ -42,7 +42,8 @@ jobs:
        if: steps.changed-files-specific.outputs.any_changed == 'true'
      - name: Run yocto-check-layer
        run: |
-          docker run --rm -v "$GITHUB_WORKSPACE:/work:ro" \
+          docker run --rm --security-opt apparmor=unconfined \
+            -v "$GITHUB_WORKSPACE:/work:ro" \
            --env "BASE_REF=$GITHUB_BASE_REF" \
            "yocto-builder-${{ github.event.number }}" \
            /entrypoint-yocto-check-layer.sh