diff options
Diffstat (limited to 'doc/manual/advanced-topics/diff-hook.xml')
| -rw-r--r-- | doc/manual/advanced-topics/diff-hook.xml | 12 |
1 files changed, 5 insertions, 7 deletions
diff --git a/doc/manual/advanced-topics/diff-hook.xml b/doc/manual/advanced-topics/diff-hook.xml index d2613f6df227..fb4bf819f94b 100644 --- a/doc/manual/advanced-topics/diff-hook.xml +++ b/doc/manual/advanced-topics/diff-hook.xml @@ -46,17 +46,15 @@ file containing: #!/bin/sh exec >&2 echo "For derivation $3:" -/run/current-system/sw/bin/runuser -u nobody -- /run/current-system/sw/bin/diff -r "$1" "$2" +/run/current-system/sw/bin/diff -r "$1" "$2" </programlisting> -<warning> - <para>The diff hook can be run as root. Take care to run as little - as possible as root, for this example we use <command>runuser</command> - to drop privileges. - </para> -</warning> </para> +<para>The diff hook is executed by the same user and group who ran the +build. However, the diff hook does not have write access to the store +path just built.</para> + <section> <title> Spot-Checking Build Determinism |