github/workflows: disable seccomp for linux native CI

This CI builder bases on openSUSE Tumbleweed, and recently had its glibc updated. This led to new syscalls such as 'clone3' not being allowed through the security layer. Can be reverted after Github Actions updates their security policy. actions/virtual-environments#3812
author: Jan Ekström <jeebjp@gmail.com> 2021-10-02 19:20:36 +0300
committer: Jan Ekström <jeebjp@gmail.com> 2021-10-02 19:20:36 +0300
commit: 64fa440c697b9b8e96e14e33f7e79c6674c5b1a3 (patch)
tree: cf245172db61ed9f0406b0be5190874c89c5ef1c
parent: 0862664ac952d21fef531a8923a58ae575268fc5 (diff)
download: mpv-64fa440c697b9b8e96e14e33f7e79c6674c5b1a3.tar.bz2
mpv-64fa440c697b9b8e96e14e33f7e79c6674c5b1a3.tar.xz
1 files changed, 4 insertions, 0 deletions
diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
index b643f5e3ba..aaafa02757 100644
--- a/.github/workflows/build.yml
+++ b/.github/workflows/build.yml
@@ -72,6 +72,10 @@ jobs:
     runs-on: "ubuntu-20.04"
     container:
       image: "registry.cirno.systems/kiwi/containers/mpv-ci:stable-deps"
+      # Disable seccomp until a container manager in GitHub recognizes
+      # clone3() syscall,
+      # <https://github.com/actions/virtual-environments/issues/3812>.
+      options: --security-opt seccomp=unconfined
       env:
         CC: "${{ matrix.cc }}"
     strategy:
author	Jan Ekström <jeebjp@gmail.com>	2021-10-02 19:20:36 +0300
committer	Jan Ekström <jeebjp@gmail.com>	2021-10-02 19:20:36 +0300
commit	64fa440c697b9b8e96e14e33f7e79c6674c5b1a3 (patch)
tree	cf245172db61ed9f0406b0be5190874c89c5ef1c
parent	0862664ac952d21fef531a8923a58ae575268fc5 (diff)
download	mpv-64fa440c697b9b8e96e14e33f7e79c6674c5b1a3.tar.bz2 mpv-64fa440c697b9b8e96e14e33f7e79c6674c5b1a3.tar.xz