From 2aa34651a762b52c8e794315be8ae36be35040ea Mon Sep 17 00:00:00 2001 From: Leon Anavi Date: Fri, 2 May 2025 13:09:45 +0300 Subject: [PATCH] .github/workflows: Disable apparmor Add --security-opt apparmor=unconfined to docker cmdline. Suggested-by: Khem Raj Signed-off-by: Leon Anavi --- .github/workflows/compliance.yml | 3 ++- .github/workflows/yocto-builds.yml | 2 +- .github/workflows/yocto-layer.yml | 3 ++- 3 files changed, 5 insertions(+), 3 deletions(-) diff --git a/.github/workflows/compliance.yml b/.github/workflows/compliance.yml index ec489f0..f643c54 100644 --- a/.github/workflows/compliance.yml +++ b/.github/workflows/compliance.yml @@ -23,7 +23,8 @@ jobs: id: ${{ github.event.number }} - name: Do DCO check run: | - docker run --rm -v "$GITHUB_WORKSPACE:/work:ro" \ + docker run --rm --security-opt apparmor=unconfined \ + -v "$GITHUB_WORKSPACE:/work:ro" \ --env "BASE_REF=$GITHUB_BASE_REF" \ "dco-check-${{ github.event.number }}" - name: Cleanup temporary docker image diff --git a/.github/workflows/yocto-builds.yml b/.github/workflows/yocto-builds.yml index b135415..9be0413 100644 --- a/.github/workflows/yocto-builds.yml +++ b/.github/workflows/yocto-builds.yml @@ -66,7 +66,7 @@ jobs: if: steps.changed-files-specific.outputs.any_changed == 'true' - name: Build the image run: | - docker run --rm \ + docker run --rm --security-opt apparmor=unconfined \ -v "$GITHUB_WORKSPACE:/work:ro" \ -v "$DL_DIR:$DL_DIR:rw" \ -v "$SSTATE_DIR:$SSTATE_DIR:rw" \ diff --git a/.github/workflows/yocto-layer.yml b/.github/workflows/yocto-layer.yml index fa11815..555241b 100644 --- a/.github/workflows/yocto-layer.yml +++ b/.github/workflows/yocto-layer.yml @@ -42,7 +42,8 @@ jobs: if: steps.changed-files-specific.outputs.any_changed == 'true' - name: Run yocto-check-layer run: | - docker run --rm -v "$GITHUB_WORKSPACE:/work:ro" \ + docker run --rm --security-opt apparmor=unconfined \ + -v "$GITHUB_WORKSPACE:/work:ro" \ --env "BASE_REF=$GITHUB_BASE_REF" \ "yocto-builder-${{ github.event.number }}" \ /entrypoint-yocto-check-layer.sh