Sops based on ssh keys

nixos/hosts/andrej-pc/configuration.nix

@@ -295,7 +295,6 @@
     settings.PasswordAuthentication = false;
     settings.KbdInteractiveAuthentication = false;
     settings.PermitRootLogin = "no";
-    #extraConfig = "HostKey ${config.sops.secrets."ssh_keys/${hwconfig.hostname}".path}";
   };
 
   # Open ports in the firewall.

nixos/hosts/andrej-pc/default.nix

@@ -31,6 +31,5 @@
 
   hardware.nvidia.open = lib.mkForce false;
   #hardware.nvidia.package = lib.mkForce config.boot.kernelPackages.nvidiaPackages.latest;
-  #sops.secrets."ssh_keys/${hwconfig.hostname}" = {};
   systemd.network.wait-online.enable = lib.mkForce false;
 }

nixos/hosts/kylekrein-framework12/default.nix

@@ -23,7 +23,9 @@
     ./hibernation.nix
   ];
 
-  sops.secrets."ssh_keys/${hwconfig.hostname}" = {};
+  boot.kernelPackages = lib.mkForce pkgs.linuxPackages_cachyos;
+  services.scx.enable = true; # by default uses scx_rustland scheduler
+
   services.fwupd.enable = true; #fwupdmgr update
   nixpkgs.overlays = [
     # Fixes java crash because of bind mount with impermanence when loading too many mods(ex. All The Mods 9)

nixos/hosts/kylekrein-homepc/default.nix

@@ -23,7 +23,6 @@
 
   boot.kernelPackages = lib.mkForce pkgs.linuxPackages_cachyos;
   services.scx.enable = true; # by default uses scx_rustland scheduler
-  sops.secrets."ssh_keys/${hwconfig.hostname}" = {};
   nixpkgs.overlays = [
     # Fixes java crash because of bind mount with impermanence when loading too many mods(ex. All The Mods 9)
     (self: super: {

nixos/hosts/kylekrein-mac/default.nix

@@ -16,7 +16,6 @@
 
     ../../users/kylekrein
   ];
-  sops.secrets."ssh_keys/${hwconfig.hostname}" = {};
   facter.reportPath = lib.mkForce null; #fails to generate
   boot.binfmt.emulatedSystems = ["x86_64-linux"];
   nix.settings.extra-platforms = config.boot.binfmt.emulatedSystems;

nixos/hosts/kylekrein-server/default.nix

@@ -25,7 +25,6 @@
   config = {
     home-manager.users = lib.mkForce {};
     stylix.image = ../../modules/hyprland/wallpaper.jpg;
-    #sops.secrets."ssh_keys/${hwconfig.hostname}" = {};
     boot.tmp.cleanOnBoot = true;
     boot.loader.grub.enable = true;
     boot.loader.grub.device = "/dev/sda";
@@ -56,7 +55,6 @@
       settings.PasswordAuthentication = false;
       settings.KbdInteractiveAuthentication = false;
       settings.PermitRootLogin = "no";
-      #extraConfig = "HostKey ${config.sops.secrets."ssh_keys/${hwconfig.hostname}".path}";
     };
 
     zramSwap = {