From 6dbecabf406e3df94d9cc67ff9405fe19bcf9830 Mon Sep 17 00:00:00 2001
From: Daniel Siepmann <coding@daniel-siepmann.de>
Date: Wed, 24 May 2023 19:54:41 +0200
Subject: [PATCH] Use KeepassXC as SSH Agent

This replaces the configuration of files per ssh match block,
as well as the need for keychain.

See: https://keepassxc.org/docs/KeePassXC_UserGuide#_ssh_agent
---
 home/files/keepassxc-ini.nix       |   4 ++++
 home/programs.nix                  |   4 ----
 home/programs/keychain.nix         |  10 ----------
 home/programs/ssh-match-blocks.nix | Bin 2319 -> 1860 bytes
 home/programs/ssh.nix              |  11 ++---------
 5 files changed, 6 insertions(+), 23 deletions(-)
 delete mode 100644 home/programs/keychain.nix

diff --git a/home/files/keepassxc-ini.nix b/home/files/keepassxc-ini.nix
index edb2da3..69e59d0 100644
--- a/home/files/keepassxc-ini.nix
+++ b/home/files/keepassxc-ini.nix
@@ -45,4 +45,8 @@
     LockDatabaseIdleSeconds = 120;
     Security_HideNotes = true;
   };
+
+  SSHAgent = {
+    Enabled = true;
+  };
 }
diff --git a/home/programs.nix b/home/programs.nix
index d998179..7c42cf0 100644
--- a/home/programs.nix
+++ b/home/programs.nix
@@ -40,10 +40,6 @@ in {
     inherit config pkgs;
   };
 
-  keychain = import ./programs/keychain.nix {
-    inherit config pkgs ownLib;
-  };
-
   gpg = import ./programs/gpg.nix {
     inherit config;
   };
diff --git a/home/programs/keychain.nix b/home/programs/keychain.nix
deleted file mode 100644
index 90ecb77..0000000
--- a/home/programs/keychain.nix
+++ /dev/null
@@ -1,10 +0,0 @@
-{ config, pkgs, ownLib }:
-
-{
-  enable = true;
-  keys = if ownLib.onHikari {} then ["id_ed25519"] else ["id_rsa" "id_ed25519"];
-  enableBashIntegration = false;
-  enableFishIntegration = false;
-  enableZshIntegration = true;
-  enableXsessionIntegration = false;
-}
diff --git a/home/programs/ssh-match-blocks.nix b/home/programs/ssh-match-blocks.nix
index 37e8a7bd9fc2c4350f8e70257a238c8818a9c724..55d9900936927babee6c01f6c25cb088ceb8107b 100644
GIT binary patch
literal 1860
zcmV-K2fO$HM@dveQdv+`02nw-`I*9Qn*~OTJDu3z=3mT@TelWucTP88?sRD!PRDNs
z)>f}}_I6G(M!9@$ZbGl3TJMYr1d*@T;sRUCSMj)Rx(`QSk(2P2Lc`y`67sb=sRLRY
zn^XFo^ZtA9rYH7gh%4T;8_J`5hhq@?APr^xLsslb$0P7oZszIqLrph}0*OuKXG-7<
zfk3bNl`s*yh0#O>iJ*Pf|GMo=D#f=VXZBB~&4VV#I`vgZmQ%>Eaz;Yi?Y<-zX4E$_
zQHyni$nIWP;iGJY-BnmM3!IV<oBEw1ES=k?9#6-zID?bNiacDZ6SGlt;-dsF@wJ-Z
zfF9S3w`r`y+*1&4aSrKKvy}^hyye!&eU2K-v*w{O!66@Q9Lp|63rk^oGvbSg5{;yS
z^D8orsV-0}jL9y9N651&7&eqJ*zVev)5ONVkowD@m6UC>Jvckq+XJ<pnKni7&zg1M
zuiHs4iBE(z)GkA2MmgB-l9E~^iOI9OCBZK_i%G7sds>FDG+=0rC41-3Dlk5Y&&0k4
z5#om(3!}L{C57yD82B)DQO#<zQ(nV}o?N1}z{GuP&Eh!r5$Tkhr#RZGIzx*h+%E{_
zG*kvV^Y2=DbslxzreVL|<@P`|uCkyykV>e@Q3vUjibk<9Z`SlkdM?%kHBo6rlmRtx
zxCe|4Y^8Q~;ttVJ1+278Xvzj|1c4lNxg+V)2qyvL9;IVNM<f*M1lgA-Nd7|E*?Dco
zz6P?<FL8;AtmCV6?D}?GB@xu)vTb2c_7svGyR-eJpc&@P@dTbU`wuj*Sm#6&vX&J6
zQ9hAA|DrcI!RHw>+;8l%@FHz6#QNWHVcN&Q(uK<{EQ16cu7FLAn)Ao;VXq$04LSZq
zUn8^2ETEq|&$Q_~^9y^3%Pd<!Yj2eJCm85LU*ENGdOR+PVkeOEFYrs(&H7(5fRMM4
zS&06adb`8{N`yG2GYtecU@kbBQj(y}qHq<)Yf)ds@aGagYkCgo?f-SUlEm=&*b3{d
z3o}kz-6a)$j&wUT^yY<M_si>EB^q_>j!s5%X2SLEP#>}6w6v7rCxlbBS3c8^Yj1~@
zIs{R6VsXQ?@}KfP%tnlpsJjKdq1RF2m|vr^6d|-~Cfo1(2(l{i8Uk#fTko0P0kG#^
z%y8Y6o|i*0EACp}?0=C!v%w*i(;iobM3Z44V`W-?y=Za}tCc7WT*s~6u$jMbvL!5|
zGK5R=!2+#i(Zz%A$&`bab?zrlv6qm_8E6k3zp9-v@#FY~<VF@p|4u-q4eFV1{?*}R
zzBg}@0gL;_5kU$s=dbS!E~&3PQXV9)$5Q$%gEOi*$a85Iu{l_Szh0sfwnZ<+l(#u;
z6o>mJCV54(<ZRT8E9~Mp1|a$ylZE1jl)9}Y%QYRqa6b9oMv=Tmk}(pYr<k(GJ<`10
zNV4f9$iEHA973HDCQA#Usepf4iVpqA=<G6&hrkn-$#vB&zPHcyb^fi8j?UavkvKFg
zb-hp6EoE4Hvrp5}`2r|cszRZYWBpt=nJ1KMMV*S3;~J|lUh24eb{)q0w*){*CQ=l?
zN5_`a3<LB-NVnnjP0Xq`Pv`ho4o7%UghL98r7%s9Ks25ISM8{b0cLe?()Lc+S6vt&
znWi5~kkJ5%<&iLgvHkxZGZR{4fhud!Y7$b5zvCIHu7A}bkeA+0zeccY_(VFF_y4fr
zft4ab_q`!yOJQG9ckReMVCANNsIij}Ri?e=JC>>o6--l*Rn}*h$J0XfN`oSSEAWd3
z<*79+YsQDx{EpcJq7-uEBCT+Ywj)IoyOrONAq|O0J-TXhXHAzTgI|g!1I1X)ofTvg
ziP`(noDwOf-NzeX8MIk6N9tEq&uy3&B+|mM&$q2sI7>Q9JbDTbi|BYCn`i=+x33ee
zn~%N&cj@!o-iJ!%IQCVO1N82t%nW&iD<DjIV68LIf?c?hV@tWhQKk9NN^GofCY@GZ
z4#=rL_vAqRM0Q97jt#%z^_b~qWR;nMH1nndDM^o5@n%D~FDkGlCGE?n{pAH}<+#a9
z?AxPVwBg(Vs!5<>YY-eoxFEkfLaSQJHoV!<#WBWobd0M$absB@Q0KqileMGHWt%@Z
z4uH1M3@8#39(va>nOTpyuJl*WA%6aboqZ$QX(V}+IH;L7@zcS%ZpUNzJVELcQ&-}y
z?d3A7eq}ZKrIASvby`tms-4@ZN10Cp3d8K*mcDyipAxJ(zY|BH#CPt9FPk^iuac@%
zm;m$fqNdii9YSdp0~tP3#<H_`Go3qdNsfn9Pz>qkxV88qg25olh(-x$!k;ey8+9+R
zMwVIiRCi~dPc4r^50R4;S$l~#Q0UA#YZ^|VshcO;R5Ji$ZZB@U`NcOD?pRWCKrf?v
y+^hBa0z>b0dmsAIN4^+I6vF*15HmDvO&K@TGup5G@J6UZY>)tfrGxkXf-@RWu%Q3|

literal 2319
zcmV+q3Gns+M@dveQdv+`03pUq9F^o&2)uDFM^=E?otM>6#{rtG<o|{01re|J(AH(F
zwi*x{Jm026XP_Z1Af5K-b<AUF*(Q{0USSda)RBEa8G*hcmwl?&(;-}W`_n={3h;O-
z^iXbw{!nf0F`j^C>Q@VQ19}Z?p9PvU(W1^xZlfy>&mE7~F&FoAB)zCb?&l@Ay3;{v
z^C(q4BFe;Y6zcU%qb#u$=cE(b#sYr6@`6`F6100|xlYz1;;`F9Vy3|!9F`5kS9DKm
zI>J!dq19T?=0|-<NR|}>fL5~AsbwcyzfSt!WzUaDLP1JI#(CBbf%PrGT<3#7Kr9g4
zi5E&1f1r+)L9Wb|liAK%6`Cc*e+tSZ!>`Ip1&Uch;D3JlUt{yz9qLm8^Rtg%HB;{l
z&|Bqp?Bp8C3!-%?NLAztj}<XHrEbs|f8os@)o{Kf?-?;rx#O{lsfx#j5cwu1h<!5W
z<^FkZ-H_>~K(M<RC8}EqnYRg7`K^1(?o`$<xlA3>*5T9IJ{#DkfM24vGRxN2I`8ZG
z<2Z{_ENm(tH2o$bnJrl(l!5Ss>e<`uC-#w(Wb&y`&Mwu<#i&p0(>$_L54BA5$h@F4
zzQ&KR@xP@R&ie|wb;(i5oQnl!+6yy5bsnZ1ejM(X!qz7!Wkt<O6`^Q;Uv>W`D~3ba
z9*|Nr;WFcu6!_)ZSNlDmwmB0+sJE=@`|tbFapBkJ*NR*-`XLP8Q(f91T*A~Kc#kR2
zpv5s)YLcuvSa<bJ2;qfKtnf9{D$%&lY$eTV)8em@oj-p!1t|z;?m#o#^kl~ev@Fb`
zHQbHP@q3}^e}9-8?=7n!5h!1oaX6BaSaR!Ug?Vx59W>Lc`$GTpC&rSshix>2l@-Hx
z_DSM?LFd;z7i75DB&HWeDeuso*qGH6_2l?of%{6w%5I}tfJ7ex9YrwG;^u2^Hl&$F
zhP_v;{{@XtXC)0L2TF+%gHJgbA;%nuGsvxRiLoqku-BSw#7FK5*Z>EyiLRNcEd3X$
z?dU$Y{<q@8{n}-JT}bLaF0agpmQ^Zb3qUfokFONZ5D=Z(Y=8&H$vKsUe7+*1MTz5+
zO;{7Lt1!|OS5T}TEBSE4gV|SX_4Ac5+^k4G9{XNs1s5=ptIrBtS26bc!<7jpk8zB?
zHLUbiEpwuizUiyyyS3v*3-sK@$}H!m%uz%F*5A^pqgww%#U6&*T(S#}r?7CIA#kYA
zdL8&}$aQP3sy;<-#>?bSG^G4k=dU90TqGW>cBjoJ`bqk>;0TO-Kg@AZ$IX6si8B-w
zHsE-#Bx0a9uS{JLL=O>?@RZ9#tmrn`!(5ODwo3=a-;jExcgff|cIdT8Lzcc~y$T>N
zzio>Q${so{4>$sZxDs~noKO>61Q+-jh=Tje_BnmVyN2r#)<(OIWG$xN-8ZJm02_vw
zjefzeF0dt?gi5Ui^+@>-u9m8PS4-;G*=uaN^XQ7?PlN~|kUlt9CkQsbW6OO}k4TG)
zHS4<E_rp@?DX`-m>6CoRQK0)ZqW9A>A$89hu*vB~?ADpB95MW7aI1h>{tiAj0Y6K=
znHsM;X5@jikPKGWeYwQ_z>x;;mMgHNR4@NYf_003Z;dN`;Ym*-OETB`${lbe?J*DF
z30;<M2ST3PD&#vPL$`PITBhf-IA(Nr(^Y5qqeIh}Dj2-D^a{(8ecu*6ivTbNAEB`0
zONXw?WUTu*-ICrk$gtvjL+k_hCnea|^fe7L1ZBl!IiHq959$MbK)0<@);-wz*Bo#G
zkV!rHl-opR62uns{7)Q5DKcBTcwf7xmd01GNLYiYRXPXRpx|V51H@_yKF_>5v7`~v
zyK(XU6&T@7ffKen_BF>32kv{y@qo6xrYeuzQq8?({ufbKHoDFVtCzr^_c53|S9&d=
zys^lkHuur|GZhdQ5o$L11=%=;NYG}Wf;#=NDT{xvu?K>zJ@4Q?Jm$m>_?TL2j^+_{
z%31V@7HKR<m0fWTRd)NTRP=JJ>jXe5uby@jC*8X!cbc}G+E{4Jw*FF5<Sqp7h7i3}
zE4UkErd&)GXR&ySBx96wEf_a+&9^yr?N{Z^mKi{A!R@RF8PtFCEptg1VsM@s_qp|)
zM+ABCdQUpZz`fSeS^c*|2vZD*zbiMhgM{(~Z-ei<f-!w?4cZooWAc55X;knT*1e@p
zjSgbKSu<UcT5yXWNFLZ2myRQ_4WtPUhJj*o$h+^@>&igB1K7O5kyVIS_~)wr&cyxE
zvUw%P!ST0C_qQoCnFcxW<pYoboqnktxqd>oN>B-vSu~OPmFcy*sdD5@=1n$HG;<ND
zNmEfX3m&zHjuSw|E23GyAO?@u<$@0(MMEI;Sj6fh8{?iDwk7#t2w9;!%=229j_uH&
z7EA<~3+q-;HCB*Hl79B-hp|P&%Kp%MhE=jgHZm@LNFIGzg@Q8XC*3OyH6EoKis$e)
zM<sV0Lw*gSF{<#g(7LB-y~F9WS=!??J_1e>wH6yJq8zqeAsbOP?@!#cw<wt!O3Iv!
zDQ{Wo$)z`8FeAu=(pvN%7qdW*NS1LC+G+Y%dXrc|q;QH&-pv>8sRXz<%;u7|y(`S-
z?n}*8_(@GiSu=WrULJ)kle<jptCULCZLDGIwUT^2Vq?#cZ~sM5is0yYel~mkII7$q
z8vmFNFiYJzHPOr)M!tnJLVbMG=>71vlWQ)uU4&Biaab%QKDxgrnD)pIw}XG{P93v`
z)3@}e%t4O8xhyBc;{{%Wl!ukR9(Un9KMbq{U54fe8=x6{-h@(n39s6V<=Vc(rF`N5
zru{1rCS<+bJZrm>zLub9PzE=iR7>ic5kF5RM;V=|6>{Fs@D)e?R?E7h-Ur1MGm0QT
zzU<@^PtfaC@kWo#W(ddI9#IKqzUZ`P(oYwi)1Ss>?PE4=ct#G5um%6Rk)O11&je9P
zx|8hiw&_q>m2jn?ZCXog96CQXNRBqFk(6pVO*tAw1~>tdb8uvWCcHuat@OzN;=*4c
pSKlWzQS&e8c}6C|&g6I?ST~o0dqHb~<dQ240-LgAo&_rbx6lMkhg|>w

diff --git a/home/programs/ssh.nix b/home/programs/ssh.nix
index e457779..d171fb1 100644
--- a/home/programs/ssh.nix
+++ b/home/programs/ssh.nix
@@ -1,10 +1,6 @@
 _:
 
-let
-  oldKey = "~/.ssh/id_rsa";
-  newKey = "~/.ssh/id_ed25519";
-
-in {
+{
   enable = true;
   matchBlocks = {
 
@@ -17,10 +13,7 @@ in {
     "github.com" = {
         user = "git";
         hostname = "github.com";
-        identityFile = "${newKey}";
     };
 
-  } // import ./ssh-match-blocks.nix {
-    inherit oldKey newKey;
-  };
+  } // import ./ssh-match-blocks.nix { };
 }