picnoir/Nix
1
0
Fork 0
Code Issues Pull requests 1 Releases Wiki Activity

doc: sandbox-paths computes closures

Browse source
This commit is contained in:
Naïm Favier 2022-12-28 17:09:20 +01:00
parent 3dbf9b5af5
commit d5d2f50ebb
No known key found for this signature in database
GPG key ID: 95AFCE8211908325
1 changed files with 4 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
src/libstore/globals.hh
View file

@ -329,7 +329,7 @@ public:
Whether to execute builds inside cgroups.
This is only supported on Linux.
Cgroups are required and enabled automatically for derivations
Cgroups are required and enabled automatically for derivations
that require the `uid-range` system feature.
> **Warning**
@ -491,6 +491,9 @@ public:
for example, `/dev/nvidiactl?` specifies that `/dev/nvidiactl` will
only be mounted in the sandbox if it exists in the host filesystem.
If the source is in the Nix store, then its closure will be added to
the sandbox as well.
Depending on how Nix was built, the default value for this option
may be empty or provide `/bin/sh` as a bind-mount of `bash`.
)",