Mirrors/home-manager
1
0
Fork 0
Code Issues Pull requests Actions Packages Projects Releases Wiki Activity

ssh: don't install a client by default (#4016)

Browse source 
Make use of the recently added nullable `mkPackageOption` feature
to disable installing an SSH client by default: most people should use
the client provided by their system.
This commit is contained in:
Naïm Favier 2023-05-27 14:11:50 +02:00 committed by GitHub
parent 6a19225683
commit 2d963854ae
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
12 changed files with 8 additions and 24 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
modules/misc/news.nix
View file

@ -1028,9 +1028,9 @@ in
time = "2023-05-13T14:34:21+00:00"; time = "2023-05-13T14:34:21+00:00";
condition = config.programs.ssh.enable; condition = config.programs.ssh.enable;
message = '' message = ''
The module 'programs.ssh' now installs an SSH client. The installed The module 'programs.ssh' can now install an SSH client. The installed
client is controlled by the 'programs.ssh.package` option, which client is controlled by the 'programs.ssh.package` option, which
defaults to 'pkgs.openssh'. defaults to 'null'.
''; '';
} }
{ {

8
modules/programs/ssh.nix
View file

@ -361,7 +361,11 @@ in
options.programs.ssh = { options.programs.ssh = {
enable = mkEnableOption "SSH client configuration"; enable = mkEnableOption "SSH client configuration";
package = mkPackageOption pkgs "openssh" { }; package = mkPackageOption pkgs "openssh" {
nullable = true;
default = null;
extraDescription = "By default, the client provided by your system is used.";
};
forwardAgent = mkOption { forwardAgent = mkOption {
default = false; default = false;
@ -527,7 +531,7 @@ in
} }
]; ];
home.packages = [ cfg.package ]; home.packages = optional (cfg.package != null) cfg.package;
home.file.".ssh/config".text = home.file.".ssh/config".text =
let let

2
tests/modules/programs/ssh/default-config.nix
View file

@ -6,8 +6,6 @@ with lib;
config = { config = {
programs.ssh = { enable = true; }; programs.ssh = { enable = true; };
test.stubs.openssh = { };
home.file.assertions.text = builtins.toJSON home.file.assertions.text = builtins.toJSON
(map (a: a.message) (filter (a: !a.assertion) config.assertions)); (map (a: a.message) (filter (a: !a.assertion) config.assertions));

2
tests/modules/programs/ssh/forwards-dynamic-bind-path-with-port-asserts.nix
View file

@ -17,8 +17,6 @@ with lib;
}; };
}; };
test.stubs.openssh = { };
test.asserts.assertions.expected = [ "Forwarded paths cannot have ports." ]; test.asserts.assertions.expected = [ "Forwarded paths cannot have ports." ];
}; };
} }

2
tests/modules/programs/ssh/forwards-dynamic-valid-bind-no-asserts.nix
View file

@ -27,8 +27,6 @@ with lib;
home.file.result.text = builtins.toJSON home.file.result.text = builtins.toJSON
(map (a: a.message) (filter (a: !a.assertion) config.assertions)); (map (a: a.message) (filter (a: !a.assertion) config.assertions));
test.stubs.openssh = { };
nmt.script = '' nmt.script = ''
assertFileExists home-files/.ssh/config assertFileExists home-files/.ssh/config
assertFileContent \ assertFileContent \

2
tests/modules/programs/ssh/forwards-local-bind-path-with-port-asserts.nix
View file

@ -21,8 +21,6 @@ with lib;
}; };
}; };
test.stubs.openssh = { };
test.asserts.assertions.expected = [ "Forwarded paths cannot have ports." ]; test.asserts.assertions.expected = [ "Forwarded paths cannot have ports." ];
}; };
} }

2
tests/modules/programs/ssh/forwards-local-host-path-with-port-asserts.nix
View file

@ -21,8 +21,6 @@ with lib;
}; };
}; };
test.stubs.openssh = { };
test.asserts.assertions.expected = [ "Forwarded paths cannot have ports." ]; test.asserts.assertions.expected = [ "Forwarded paths cannot have ports." ];
}; };
} }

2
tests/modules/programs/ssh/forwards-remote-bind-path-with-port-asserts.nix
View file

@ -21,8 +21,6 @@ with lib;
}; };
}; };
test.stubs.openssh = { };
test.asserts.assertions.expected = [ "Forwarded paths cannot have ports." ]; test.asserts.assertions.expected = [ "Forwarded paths cannot have ports." ];
}; };
} }

2
tests/modules/programs/ssh/forwards-remote-host-path-with-port-asserts.nix
View file

@ -21,8 +21,6 @@ with lib;
}; };
}; };
test.stubs.openssh = { };
test.asserts.assertions.expected = [ "Forwarded paths cannot have ports." ]; test.asserts.assertions.expected = [ "Forwarded paths cannot have ports." ];
}; };
} }

2
tests/modules/programs/ssh/includes.nix
View file

@ -7,8 +7,6 @@
includes = [ "config.d/*" "other/dir" ]; includes = [ "config.d/*" "other/dir" ];
}; };
test.stubs.openssh = { };
nmt.script = '' nmt.script = ''
assertFileExists home-files/.ssh/config assertFileExists home-files/.ssh/config
assertFileContains home-files/.ssh/config "Include config.d/* other/dir" assertFileContains home-files/.ssh/config "Include config.d/* other/dir"

2
tests/modules/programs/ssh/match-blocks-attrs.nix
View file

@ -51,8 +51,6 @@ with lib;
home.file.assertions.text = builtins.toJSON home.file.assertions.text = builtins.toJSON
(map (a: a.message) (filter (a: !a.assertion) config.assertions)); (map (a: a.message) (filter (a: !a.assertion) config.assertions));
test.stubs.openssh = { };
nmt.script = '' nmt.script = ''
assertFileExists home-files/.ssh/config assertFileExists home-files/.ssh/config
assertFileContent \ assertFileContent \

2
tests/modules/programs/ssh/match-blocks-match-and-hosts.nix
View file

@ -21,8 +21,6 @@ with lib;
home.file.assertions.text = builtins.toJSON home.file.assertions.text = builtins.toJSON
(map (a: a.message) (filter (a: !a.assertion) config.assertions)); (map (a: a.message) (filter (a: !a.assertion) config.assertions));
test.stubs.openssh = { };
nmt.script = '' nmt.script = ''
assertFileExists home-files/.ssh/config assertFileExists home-files/.ssh/config
assertFileContent \ assertFileContent \