[LTP] [PATCH 1/1] CI: Reenable Tumbleweed
Petr Vorel
pvorel@suse.cz
Wed Oct 27 12:13:17 CEST 2021
> Hi!
> > > container:
> > > image: ${{ matrix.container }}
> > > env: ${{ matrix.env }}
> > > + options: --security-opt seccomp=unconfined
> > Alternatively 'options: --privileged' could be used (to run privileged
> > container), IMHO does not matter which of these we take.
> Looking at docker documentation it looks like --privileged disables much
> more than just the seccomp filtering. I do not think that this is a good
> idea. Let's go with just disabling seccomp for affected distros.
IMHO both are ok for just compilation (other projects use it as well for just
CI doing compilation), but sure, let's use the minimum.
FYI this disables seccomp for all machines. Is that ok for you?
IMHO that's not a big deal + we will not have to bother when Fedora also gets
new enough glibc (IMHO problem will periodically occurs on bleeding edge distros
when glibc starts to use new enough syscall).
Kind regards,
Petr
More information about the ltp
mailing list