Skip to content

Please add io_uring to the list of significant syscalls blocked by the default profile #23784

Open
#24449
Open
Please add io_uring to the list of significant syscalls blocked by the default profile#23784
#24449
Labels
agent/fixAgent has opened a PR for this issueagent/triagedAgent has analyzed this issue; verdict in task filestatus/triageNeeds triage
@sitsofe

Description

@sitsofe
sitsofe
opened on Nov 27, 2025

Is this a docs issue?

  • My issue is about the documentation content or website

Type of issue

Information is incorrect

Description

The io_uring_* syscalls are missing from the significant syscalls blocked table on https://docs.docker.com/engine/security/seccomp/#significant-syscalls-blocked-by-the-default-profile .

Location

https://docs.docker.com/engine/security/seccomp/

Suggestion

Please can can you add the individual io_uring_* syscalls to the table of significant syscalls blocked by default? moby/moby#46762 is the commit that switched docker to blocking them and hopefully by listing them in the docs it will help people open things up just enough rather than reaching straight for --security-opt seccomp=unconfined if they need to use io_uring...

Metadata

Metadata

Assignees

No one assigned

    Labels

    agent/fixAgent has opened a PR for this issueagent/triagedAgent has analyzed this issue; verdict in task filestatus/triageNeeds triage

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions