From 41015839a55ca84d35313677fa1b17062b48afc3 Mon Sep 17 00:00:00 2001
From: Andrei Stepanov <astepano@redhat.com>
Date: Oct 16 2017 13:40:43 +0000
Subject: Run without the default seccomp profile


Many tests use strace/ltrace programs to proceed various tests.

By default docker run containers in confined more. As a result test for
containers fails with:

rlRun "ltrace -o ltrace.out ./test" 0 "Run the program with ltrace"

$ ltrace test
PTRACE_TRACEME: Operation not permitted
failed to initialize process 5727: No such file or directory
couldn't open program '/usr/bin/test': No such file or directory

This commit runs containers without the default seccomp profile:

https://docs.docker.com/engine/security/seccomp

Signed-off-by: Andrei Stepanov <astepano@redhat.com>

---

diff --git a/inventory/standard-inventory-docker b/inventory/standard-inventory-docker
index b8d625d..2078c92 100755
--- a/inventory/standard-inventory-docker
+++ b/inventory/standard-inventory-docker
@@ -88,6 +88,7 @@ def host(image, docker_extra_args):
     cmd = [
         "/usr/bin/docker", "run", "--detach", "--cidfile={0}".format(cidfile),
     ] + extra_arg_list + [
+        "--security-opt=seccomp:unconfined",
         "--entrypoint=/bin/sh", image, "-c", "sleep 1000000"
     ]
     try: