fort-nix/nix-bitcoin
1
1
Fork 0
mirror of https://github.com/fort-nix/nix-bitcoin.git synced 2024-11-27 02:12:45 +03:00
Code Issues Packages Projects Releases Wiki Activity
4c96a8deba
nix-bitcoin/modules/presets/hardened.nix

16 lines
433 B
Nix
Raw Normal View History

profiles/hardened: support pure eval mode
2022-10-22 20:37:48 +03:00
{ modulesPath, ... }: {
fix 'hardened' profile for NixOS 20.09 The 'scudo' memory allocator set by the 'hardened' profile breaks some services on 20.09. The fix for NixOS unstable (https://github.com/NixOS/nixpkgs/pull/104052) is ineffective on 20.09. As a workaround, add a custom 'hardened' preset that uses the default allocator.
2020-12-16 20:57:57 +03:00
imports = [
profiles/hardened: support pure eval mode
2022-10-22 20:37:48 +03:00
# Source:
# https://github.com/NixOS/nixpkgs/blob/master/nixos/modules/profiles/hardened.nix
(modulesPath + "/profiles/hardened.nix")
fix 'hardened' profile for NixOS 20.09 The 'scudo' memory allocator set by the 'hardened' profile breaks some services on 20.09. The fix for NixOS unstable (https://github.com/NixOS/nixpkgs/pull/104052) is ineffective on 20.09. As a workaround, add a custom 'hardened' preset that uses the default allocator.
2020-12-16 20:57:57 +03:00
];
## Reset some options set by the hardened profile
# Needed for sandboxed builds and services
security.allowUserNamespaces = true;
update to NixOS 21.05
2021-08-05 01:48:56 +03:00
# The "scudo" allocator is broken on NixOS >= 20.09
fix 'hardened' profile for NixOS 20.09 The 'scudo' memory allocator set by the 'hardened' profile breaks some services on 20.09. The fix for NixOS unstable (https://github.com/NixOS/nixpkgs/pull/104052) is ineffective on 20.09. As a workaround, add a custom 'hardened' preset that uses the default allocator.
2020-12-16 20:57:57 +03:00
environment.memoryAllocator.provider = "libc";
}
Reference in New Issue Copy Permalink