More info in the capa/safe_exec/README

d0c4afb3 · Ned Batchelder · d8fed593 · d0c4afb3
Commit d0c4afb3 authored May 16, 2013 by Ned Batchelder
Hide whitespace changes
Inline Side-by-side

Showing with 19 additions and 0 deletions

common/lib/capa/capa/safe_exec/README.rst
+19 -0

No files found.
--- a/common/lib/capa/capa/safe_exec/README.rst
+++ b/common/lib/capa/capa/safe_exec/README.rst
@@ -28,5 +28,24 @@ __ https://github.com/edx/codejail/blob/master/README.rst

    <EDXPLATFORM>/common/lib/sandbox-packages/** r,

+3. You can configure resource limits in settings.py.  A CODE_JAIL setting is
+   available, a dictionary.  The "limits" key lets you adjust the limits for
+   CPU time, real time, and memory use.  Setting any of them to zero disables
+   that limit::
+
+    # in settings.py...
+    CODE_JAIL = {
+        # Configurable limits.
+        'limits': {
+            # How many CPU seconds can jailed code use?
+            'CPU': 1,
+            # How many real-time seconds will a sandbox survive?
+            'REALTIME': 1,
+            # How much memory (in bytes) can a sandbox use?
+            'VMEM': 30000000,
+        },
+    }
+
+
 That's it.  Once you've finished the CodeJail configuration instructions,
 your course-hosted Python code should be run securely.