Merge pull request #7524 from ncfavier/sandbox-paths-closure

doc: sandbox-paths computes closures
author: Eelco Dolstra <edolstra@gmail.com> 2022-12-29 19:45:51 +0100
committer: GitHub <noreply@github.com> 2022-12-29 19:45:51 +0100
commit: 8c52f8ea9db6aba495bff7c9b7511a5a5420efab (patch)
tree: 7e380069da1ecdd4e847d989998ea8f244c3dda9 /src/libstore
parent: 8227fe819eea294c2c7ba9a51dd1b677f0aa9d95 (diff)
parent: d5d2f50ebbe5ec2b8a9777d4184eb3e604a1f8c7 (diff)
1 files changed, 4 insertions, 1 deletions
diff --git a/src/libstore/globals.hh b/src/libstore/globals.hh
index 274a15dd7..f4d53757c 100644
--- a/src/libstore/globals.hh
+++ b/src/libstore/globals.hh
@@ -329,7 +329,7 @@ public:
           Whether to execute builds inside cgroups.
           This is only supported on Linux.
 
-          Cgroups are required and enabled automatically for derivations 
+          Cgroups are required and enabled automatically for derivations
           that require the `uid-range` system feature.
 
           > **Warning**
@@ -491,6 +491,9 @@ public:
           for example, `/dev/nvidiactl?` specifies that `/dev/nvidiactl` will
           only be mounted in the sandbox if it exists in the host filesystem.
 
+          If the source is in the Nix store, then its closure will be added to
+          the sandbox as well.
+
           Depending on how Nix was built, the default value for this option
           may be empty or provide `/bin/sh` as a bind-mount of `bash`.
         )",
author	Eelco Dolstra <edolstra@gmail.com>	2022-12-29 19:45:51 +0100
committer	GitHub <noreply@github.com>	2022-12-29 19:45:51 +0100
commit	8c52f8ea9db6aba495bff7c9b7511a5a5420efab (patch)
tree	7e380069da1ecdd4e847d989998ea8f244c3dda9 /src/libstore
parent	8227fe819eea294c2c7ba9a51dd1b677f0aa9d95 (diff)
parent	d5d2f50ebbe5ec2b8a9777d4184eb3e604a1f8c7 (diff)