From 20f4507c29cb947d119dc341f16bf4fd14581248 Mon Sep 17 00:00:00 2001
From: Kostas Kyrimis <kostas@dragonflydb.io>
Date: Wed, 12 Jun 2024 16:38:02 +0300
Subject: [PATCH] fix(ci): docker not using iouring (#3169)

* fix(ci): docker not using iouring

* fix errors
---
 .github/workflows/benchmark.yml        | 1 +
 .github/workflows/bullmq-tests.yml     | 1 +
 .github/workflows/ci.yml               | 3 ++-
 .github/workflows/daily-builds.yml     | 1 +
 .github/workflows/daily-sanitizers.yml | 1 +
 .github/workflows/release.yml          | 2 +-
 6 files changed, 7 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/benchmark.yml b/.github/workflows/benchmark.yml
index 91f65f06b..e1b2b2d67 100644
--- a/.github/workflows/benchmark.yml
+++ b/.github/workflows/benchmark.yml
@@ -37,6 +37,7 @@ jobs:
 
     container:
       image: ghcr.io/romange/benchmark-dev:latest
+      options: --security-opt seccomp=unconfined
 
     permissions:
       id-token: write
diff --git a/.github/workflows/bullmq-tests.yml b/.github/workflows/bullmq-tests.yml
index 868e8361b..f47b31d13 100644
--- a/.github/workflows/bullmq-tests.yml
+++ b/.github/workflows/bullmq-tests.yml
@@ -11,6 +11,7 @@ jobs:
     timeout-minutes: 60
     container:
       image: ghcr.io/romange/alpine-dev:latest
+      options: --security-opt seccomp=unconfined
       credentials:
         username: ${{ github.repository_owner }}
         password: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index 24db5c607..25f61aba5 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -57,9 +57,10 @@ jobs:
 
     container:
       image: ghcr.io/romange/${{ matrix.container }}
+      # Seems that docker by default prohibits running iouring syscalls
+      options: --security-opt seccomp=unconfined --sysctl "net.ipv6.conf.all.disable_ipv6=0"
       volumes:
         - /:/hostroot
-      options: --sysctl "net.ipv6.conf.all.disable_ipv6=0"
       credentials:
         username: ${{ github.repository_owner }}
         password: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/daily-builds.yml b/.github/workflows/daily-builds.yml
index e7813f393..ca03b563e 100644
--- a/.github/workflows/daily-builds.yml
+++ b/.github/workflows/daily-builds.yml
@@ -28,6 +28,7 @@ jobs:
 
     container:
       image: ghcr.io/romange/${{ matrix.container }}
+      options: --security-opt seccomp=unconfined
       credentials:
         username: ${{ github.repository_owner }}
         password: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/daily-sanitizers.yml b/.github/workflows/daily-sanitizers.yml
index 33e63aaac..0c6afe581 100644
--- a/.github/workflows/daily-sanitizers.yml
+++ b/.github/workflows/daily-sanitizers.yml
@@ -22,6 +22,7 @@ jobs:
 
     container:
       image: ghcr.io/romange/${{ matrix.container }}
+      options: --security-opt seccomp=unconfined
       credentials:
         username: ${{ github.repository_owner }}
         password: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index 52558e436..c75f24d0c 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -99,7 +99,7 @@ jobs:
             container: fedora:30
     container:
       image: ghcr.io/romange/${{ matrix.container }}
-      options: --sysctl "net.ipv6.conf.all.disable_ipv6=0"
+      options: --security-opt seccomp=unconfined --sysctl "net.ipv6.conf.all.disable_ipv6=0"
     steps:
     - uses: actions/checkout@v4
       with: