On Fri, Jun 30, 2023 at 5:10 PM Matteo Rizzo <matteorizzo@xxxxxxxxxx> wrote: > Introduce a new sysctl (io_uring_disabled) which can be either 0, 1, > or 2. When 0 (the default), all processes are allowed to create io_uring > instances, which is the current behavior. When 1, all calls to > io_uring_setup fail with -EPERM unless the calling process has > CAP_SYS_ADMIN. When 2, calls to io_uring_setup fail with -EPERM > regardless of privilege. > > Signed-off-by: Matteo Rizzo <matteorizzo@xxxxxxxxxx> > Reviewed-by: Jeff Moyer <jmoyer@xxxxxxxxxx> > Reviewed-by: Gabriel Krisman Bertazi <krisman@xxxxxxx> Reviewed-by: Jann Horn <jannh@xxxxxxxxxx>
