[libvirt-users] limit memory and CPU when using libvirt-sandbox
Daniel P. Berrange
berrange at redhat.com
Mon Jan 28 14:44:22 UTC 2013
On Mon, Jan 28, 2013 at 04:38:13PM +0200, pablo platt wrote:
> I'm considering using virt-sandbox with lxc to sandbox and execute
> untrusted code like python scripts and compiled C code.
> Is it possible to limit CPU and Memory like is possible with lxc-execute
> and a config file?
At this time, we've not wired up resource limits via the libvirt sandbox
package. Currently the focus has been on securing the containers to prevent
them doing bad things to the host. Resource constraints as a todo item.
> What's the difference between lxc-execute and libvirt-sandbox?
LXC execute is a standalone tool from the LXC sf.net project which
has nothing todo with libvirt. libvirt-sandbox is a sandbox technology
built ontop of libvirt, which is able to create sandboxes across various
virtualization technologies, currently LXC, KVM and QEMU.
Daniel
--
|: http://berrange.com -o- http://www.flickr.com/photos/dberrange/ :|
|: http://libvirt.org -o- http://virt-manager.org :|
|: http://autobuild.org -o- http://search.cpan.org/~danberr/ :|
|: http://entangle-photo.org -o- http://live.gnome.org/gtk-vnc :|
More information about the libvirt-users
mailing list