fix(surgat): ssh initrd unlock

nixos/modules/profiles/cloud.nix

@@ -1,7 +1,7 @@
 { config, lib, ... }:
 let
   secretsPath = config.dadada.secrets.path;
-  initrdHostKey = "${config.networking.hostName}-ssh_host_ed25519_key";
+  initrdHostKey = "${config.networking.hostName}-initrd-ssh_host_ed25519_key";
 in
 {
   boot.initrd.availableKernelModules = [ "virtio-pci" ];
@@ -9,7 +9,7 @@ in
     enable = true;
     ssh = {
       enable = true;
-      port = 22;
+      port = 2223;
       hostKeys = [
         config.age.secrets."${initrdHostKey}".path
       ];

secrets/secrets.nix

@@ -21,6 +21,7 @@ in
   "miniflux-admin-credentials.age".publicKeys = [ systems.surgat dadada ];
   "gorgon-backup-passphrase-gs.age".publicKeys = [ systems.gorgon dadada ];
   "paperless.age".publicKeys = [ systems.gorgon dadada ];
+  "surgat-initrd-ssh_host_ed25519_key.age".publicKeys = [ systems.surgat dadada ];
   "surgat-ssh_host_ed25519_key.age".publicKeys = [ systems.surgat dadada ];
   "ninurta-initrd-ssh-key.age".publicKeys = [ systems.ninurta dadada ];
   "ddns-credentials.age".publicKeys = [ systems.agares systems.ninurta dadada ];