From 008aed0854661f566336bbc7c41bfa0771293671 Mon Sep 17 00:00:00 2001
From: Daniel Lundin <dln@arity.se>
Date: Thu, 15 Aug 2024 22:36:19 +0200
Subject: [PATCH] nemo: disable pam_rssh for now as rust 1.80 broke some pkgs

---
 hosts/nemo/default.nix | 30 ++++++++++++++++--------------
 1 file changed, 16 insertions(+), 14 deletions(-)

diff --git a/hosts/nemo/default.nix b/hosts/nemo/default.nix
index 0ca8655..40e97b4 100644
--- a/hosts/nemo/default.nix
+++ b/hosts/nemo/default.nix
@@ -115,20 +115,22 @@
     linkConfig.RequiredForOnline = "routable";
   };
 
-  security = {
-    pam.services.doas =
-      { config, ... }:
-      {
-        rules.auth.rssh = {
-          order = config.rules.auth.ssh_agent_auth.order - 1;
-          control = "sufficient";
-          modulePath = "${pkgs.pam_rssh}/lib/libpam_rssh.so";
-          settings.authorized_keys_command = pkgs.writeShellScript "get-authorized-keys" ''
-            cat "/etc/ssh/authorized_keys.d/$1"
-          '';
-        };
-      };
-  };
+  # FIXME: pam_rssh is broken from rust 1.80 upgrade
+  # environment.systemPackages = [ pkgs.pam_rssh ];
+  # security = {
+  #   pam.services.doas =
+  #     { config, ... }:
+  #     {
+  #       rules.auth.rssh = {
+  #         order = config.rules.auth.ssh_agent_auth.order - 1;
+  #         control = "sufficient";
+  #         modulePath = "${pkgs.pam_rssh}/lib/libpam_rssh.so";
+  #         settings.authorized_keys_command = pkgs.writeShellScript "get-authorized-keys" ''
+  #           cat "/etc/ssh/authorized_keys.d/$1"
+  #         '';
+  #       };
+  #     };
+  # };
 
   services.resolved = {
     enable = true;