From 91a19876073a2ed8fef2139fba906cfac1e96f83 Mon Sep 17 00:00:00 2001 From: Eelco Dolstra Date: Mon, 20 Nov 2017 17:44:07 +0100 Subject: signed-binary-caches -> require-sigs Unlike signed-binary-caches (which could only be '*' or ''), require-sigs is a proper Boolean option. The default is true. --- doc/manual/command-ref/conf-file.xml | 13 ++++++++----- 1 file changed, 8 insertions(+), 5 deletions(-) (limited to 'doc') diff --git a/doc/manual/command-ref/conf-file.xml b/doc/manual/command-ref/conf-file.xml index a28f70899141..c3a9cc56063a 100644 --- a/doc/manual/command-ref/conf-file.xml +++ b/doc/manual/command-ref/conf-file.xml @@ -402,12 +402,15 @@ false. - signed-binary-caches + require-sigs - If set to * (the default), Nix - will only download binaries if they are signed using one of the - keys listed in . Set to - the empty string to disable signature checking. + If set to true (the default), + any non-content-addressed path added or copied to the Nix store + (e.g. when substituting from a binary cache) must have a valid + signature, that is, be signed using one of the keys listed in + . Set to + false to disable signature + checking. -- cgit 1.4.1