From 12e097d8e0bcd75a3b54549d2c49e7fd21b7438d Mon Sep 17 00:00:00 2001
From: Petru Paler <petru@paler.net>
Date: Mon, 4 Nov 2024 13:39:01 +0000
Subject: [PATCH] Point to the persistent paths for SSH keys to make sops work.

---
 common/global/sops.nix | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/common/global/sops.nix b/common/global/sops.nix
index 8560b89..ba0d2b6 100644
--- a/common/global/sops.nix
+++ b/common/global/sops.nix
@@ -1,5 +1,10 @@
 {
   sops = {
     defaultSopsFile = ./../../secrets/secrets.yaml;
+    # sometimes the impermanence bind mount is stopped when sops needs these
+    age.sshKeyPaths = [
+      "/persist/etc/ssh/ssh_host_ed25519_key"
+      "/persist/etc/ssh/ssh_host_rsa_key"
+    ];
   };
 }