security#mitigations: avoid http call
This commit is contained in:
parent
ad9f0d70e8
commit
4527b96ffc
|
@ -5,10 +5,9 @@ let
|
||||||
|
|
||||||
cfg = config.security.mitigations;
|
cfg = config.security.mitigations;
|
||||||
|
|
||||||
cmdline = readFile (fetchurl {
|
cmdline = ''
|
||||||
url = "https://make-linux-fast-again.com";
|
ibrs noibpb nopti nospectre_v2 nospectre_v1 l1tf=off nospec_store_bypass_disable no_stf_barrier mds=off tsx=on tsx_async_abort=off mitigations=off
|
||||||
sha256 = "sha256:10diw5xn5jjx79nvyjqcpdpcqihnr3y0756fsgiv1nq7w28ph9w6";
|
'';
|
||||||
});
|
|
||||||
in {
|
in {
|
||||||
options = {
|
options = {
|
||||||
security.mitigations.disable = mkOption {
|
security.mitigations.disable = mkOption {
|
||||||
|
|
Loading…
Reference in a new issue