FAQ/Pinning Nixpkgs: Difference between revisions
imported>Legendofmiracles m Add note about https://lazamar.co.uk/nix-versions/ |
mNo edit summary |
||
| (7 intermediate revisions by 4 users not shown) | |||
| Line 1: | Line 1: | ||
{{FAQ/breadcrumb}} | |||
It is possible (and indeed, fairly easy) to pin a specific version of | It is possible (and indeed, fairly easy) to pin a specific version of | ||
Nixpkgs. This can be used to upgrade individual applications | Nixpkgs. This can be used to upgrade individual applications | ||
| Line 157: | Line 158: | ||
How to upgrade a single package and service to an unstable version | How to upgrade a single package and service to an unstable version | ||
There is probably a better way, especially once flakes | There is probably a better way, especially once flakes come around. Some packages let you specify which <code>package</code> to run as an option but most don't. The following is a generic way that also works for those which don't. | ||
add to configuration.nix a set allowing unstable packages. | add to configuration.nix a set allowing unstable packages. | ||
| Line 183: | Line 184: | ||
<syntaxhighlight lang="nix"> | <syntaxhighlight lang="nix"> | ||
environment.systemPackages = with pkgs; [ | |||
unstable.bind | |||
unstable.dnsutils | |||
vim | |||
]; | |||
</syntaxhighlight> | </syntaxhighlight> | ||
| Line 195: | Line 196: | ||
<syntaxhighlight lang="nix"> | <syntaxhighlight lang="nix"> | ||
services.bind.enable = true; | |||
... | |||
</syntaxhighlight> | </syntaxhighlight> | ||
| Line 204: | Line 205: | ||
<syntaxhighlight lang="nix"> | <syntaxhighlight lang="nix"> | ||
users.users.named = { | |||
uid = config.ids.uids.bind; | |||
description = "BIND daemon user"; | |||
}; | |||
systemd.services.mybind = { | |||
description = "BIND Domain Name Server"; | |||
unitConfig.Documentation = "man:named(8)"; | |||
after = [ "network.target" ]; | |||
wantedBy = [ "multi-user.target" ]; | |||
preStart = '' | |||
mkdir -m 0755 -p /etc/bind | |||
if ! [ -f "/etc/bind/rndc.key" ]; then | |||
${pkgs.unstable.bind.out}/sbin/rndc-confgen -c /etc/bind/rndc.key -u named -a -A hmac-sha256 2>/dev/null | |||
fi | |||
${pkgs.coreutils}/bin/mkdir -p /run/named | |||
chown named /run/named | |||
''; | |||
serviceConfig = { | |||
ExecStart = "${pkgs.unstable.bind.out}/sbin/named -u named -4 -c /etc/bind/named.conf -f"; | |||
ExecReload = "${pkgs.unstable.bind.out}/sbin/rndc -k '/etc/bind/rndc.key' reload"; | |||
ExecStop = "${pkgs.unstable.bind.out}/sbin/rndc -k '/etc/bind/rndc.key' stop"; | |||
}; | |||
}; | }; | ||
</syntaxhighlight> | </syntaxhighlight> | ||
| Line 232: | Line 232: | ||
where all the stuff just comes from the bind services definition(which you can get from the source link on the nixos options page.) | where all the stuff just comes from the bind services definition(which you can get from the source link on the nixos options page.) | ||
Just replace named variables, and replace <code>${pkgs.bind.out</code> with <code>${pkgs.unstable.bind.out}</code> | Just replace named variables, and replace <code>${pkgs.bind.out</code> with <code>${pkgs.unstable.bind.out}</code> | ||
== See also == | |||
* [https://nix.dev/reference/pinning-nixpkgs Pinning Nixpkgs] | |||
* [https://nix.dev/tutorials/first-steps/towards-reproducibility-pinning-nixpkgs Towards Reproducibility: Pinning Nixpkgs] | |||
* [https://nix.dev/guides/recipes/dependency-management.html Dependency Management] | |||