-
Notifications
You must be signed in to change notification settings - Fork 108
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
bad idea to have make-linux-fast-again by default? #6
Comments
Yeah, your probably right. I was thinking as much. Perhaps removing it from misc and renaming it to something like
|
nrdxp
added a commit
that referenced
this issue
Jan 8, 2020
Resolves #6 by breaking out the disabling of mitigations into it's own module. Now users must explicitly accept the risk of disabling Spectre and Meltdown mitigations with `security.mitigations.acceptRisk` in addtion to actually disabling them with `security.mitigations.disable`.
nrdxp
added a commit
that referenced
this issue
Jan 8, 2020
Resolves #6 by breaking out the disabling of mitigations into it's own module. Now users must explicitly accept the risk of disabling Spectre and Meltdown mitigations with security.mitigations.acceptRisk in addtion to actually disabling them with security.mitigations.disable.# Please enter the commit message for your changes. Lines starting
nrdxp
added a commit
that referenced
this issue
Jan 8, 2020
Resolves #6 by breaking out the disabling of mitigations into it's own module. Now users must explicitly accept the risk of disabling Spectre and Meltdown mitigations with `security.mitigations.acceptRisk` in addition to actually disabling them with `security.mitigations.disable`.
Thanks 👍 |
Pacman99
pushed a commit
that referenced
this issue
Feb 26, 2022
6: test mkFlake with a full flake similar to devos r=Pacman99 a=Pacman99 Starting point for tests, so you can mostly trust a `nix flake check` success. To test more things, we can add more "checks" in fullFlake/default.nix. So you could test if `ourlib` works right, or see if other outputs are evaluated right in mkFlake/evalArgs by forcing those things to be evaluated in a module or overlay. But this PR is just to get that framework setup. Co-authored-by: Pacman99 <pachum99@gmail.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
I don't know if it's possible to import
imports = [ ../profiles ]
directly but someone importing../profiles/misc
might not realize that it will disable the meltdown/spectre mitigations.Maybe it should only be importable directly with the path containing something like:
DISABLE_SECURITY_I_KNOW_THE_RISK
.The text was updated successfully, but these errors were encountered: