From 8df60b4ea8fab5fd3571e55de95a4b956f0f6105 Mon Sep 17 00:00:00 2001 From: Eelco Dolstra Date: Mon, 20 Nov 2017 18:51:04 +0100 Subject: Document secret-key-files --- doc/manual/command-ref/conf-file.xml | 19 ++++++++++++++++--- 1 file changed, 16 insertions(+), 3 deletions(-) (limited to 'doc/manual/command-ref') diff --git a/doc/manual/command-ref/conf-file.xml b/doc/manual/command-ref/conf-file.xml index c3a9cc56063a..868cca1da409 100644 --- a/doc/manual/command-ref/conf-file.xml +++ b/doc/manual/command-ref/conf-file.xml @@ -408,9 +408,9 @@ false. any non-content-addressed path added or copied to the Nix store (e.g. when substituting from a binary cache) must have a valid signature, that is, be signed using one of the keys listed in - . Set to - false to disable signature - checking. + or + . Set to false + to disable signature checking. @@ -426,6 +426,19 @@ false. + secret-key-files + + A whitespace-separated list of files containing + secret (private) keys. These are used to sign locally-built + paths. They can be generated using nix-store + --generate-binary-cache-key. The corresponding public + key can be distributed to other users, who can add it to + in their + nix.conf. + + + + http-connections The maximum number of parallel TCP connections -- cgit 1.4.1