diff options
author | Naïm Favier <n@monade.li> | 2022-12-28 17:09:20 +0100 |
---|---|---|
committer | Naïm Favier <n@monade.li> | 2022-12-28 17:09:20 +0100 |
commit | d5d2f50ebbe5ec2b8a9777d4184eb3e604a1f8c7 (patch) | |
tree | a9012e7d32815a8004b38e268f67492431016f68 /src/libstore | |
parent | 3dbf9b5af5950b615ec685c1f4155b1c8698bb78 (diff) |
doc: sandbox-paths computes closures
Diffstat (limited to 'src/libstore')
-rw-r--r-- | src/libstore/globals.hh | 5 |
1 files changed, 4 insertions, 1 deletions
diff --git a/src/libstore/globals.hh b/src/libstore/globals.hh index 274a15dd7..f4d53757c 100644 --- a/src/libstore/globals.hh +++ b/src/libstore/globals.hh @@ -329,7 +329,7 @@ public: Whether to execute builds inside cgroups. This is only supported on Linux. - Cgroups are required and enabled automatically for derivations + Cgroups are required and enabled automatically for derivations that require the `uid-range` system feature. > **Warning** @@ -491,6 +491,9 @@ public: for example, `/dev/nvidiactl?` specifies that `/dev/nvidiactl` will only be mounted in the sandbox if it exists in the host filesystem. + If the source is in the Nix store, then its closure will be added to + the sandbox as well. + Depending on how Nix was built, the default value for this option may be empty or provide `/bin/sh` as a bind-mount of `bash`. )", |