docker: Use unconfined security profile Some by default blocked syscalls are required to run tests for example userfaultfd. Reviewed-by: Kashyap Chamarthy <kchamart@redhat.com> Signed-off-by: Fam Zheng <famz@redhat.com> Message-Id: <20170905025614.579-4-famz@redhat.com> Reviewed-by: Stefan Hajnoczi <stefanha@redhat.com> Based-on: 20170905021201.25684-1-famz@redhat.com

commit: 447074918652e7a72daf0875a97351cad10581b6 [log] [tgz]
author: Fam Zheng <famz@redhat.com> Tue Sep 05 10:56:11 2017 +0800
committer: Fam Zheng <famz@redhat.com> Fri Sep 22 10:20:34 2017 +0800
tree: 22f2a3fd01cc2bed02464b1a444861c73988bc49
parent: 82659e844a0cdf5e250f9cdaa31780a5a2dfc781 [diff] [blame]
diff --git a/tests/docker/Makefile.include b/tests/docker/Makefile.include
index 2c49930..2bed4c0 100644
--- a/tests/docker/Makefile.include
+++ b/tests/docker/Makefile.include

@@ -145,6 +145,7 @@
 	$(call quiet-command,						\
 		$(SRC_PATH)/tests/docker/docker.py run 			\
 			$(if $(NOUSER),,-u $(shell id -u)) -t 		\
+			--security-opt seccomp=unconfined		\
 			$(if $V,,--rm) 					\
 			$(if $(DEBUG),-i,)				\
 			$(if $(NETWORK),$(if $(subst $(NETWORK),,1),--net=$(NETWORK)),--net=none) \
commit	447074918652e7a72daf0875a97351cad10581b6	[log] [tgz]
author	Fam Zheng <famz@redhat.com>	Tue Sep 05 10:56:11 2017 +0800
committer	Fam Zheng <famz@redhat.com>	Fri Sep 22 10:20:34 2017 +0800
tree	22f2a3fd01cc2bed02464b1a444861c73988bc49
parent	82659e844a0cdf5e250f9cdaa31780a5a2dfc781 [diff] [blame]