Comment by superb_dev Comment by superb_dev a day ago 2 replies Copy Link View on Hacker News Why do they disable io_uring?
Copy Link alpb 25 minutes ago Next Collapse Comment - Security reasons. https://news.ycombinator.com/item?id=44632240 There are also other edge cases around cgroups accounting that renders some isolation/throttling mechanisms not fully effective. Reply View | 0 replies
Copy Link arianvanp a day ago Prev Collapse Comment - Sandboxing like gvisor is based on syscalls and iouring makes your code syscallless Reply View | 0 replies
Security reasons. https://news.ycombinator.com/item?id=44632240 There are also other edge cases around cgroups accounting that renders some isolation/throttling mechanisms not fully effective.