etc/rc.d/sshd

1.1Slukem#!/bin/sh
1.1Slukem#
1.23Schristos# $NetBSD: sshd,v 1.23 2014/10/19 16:33:01 christos Exp $
1.5Sjwise#
1.1Slukem
1.6Slukem# PROVIDE: sshd
1.6Slukem# REQUIRE: LOGIN
1.1Slukem
1.20Smycroft$_rc_subr_loaded . /etc/rc.subr
1.1Slukem
1.1Slukemname="sshd"
1.8Slukemrcvar=$name
1.6Slukemcommand="/usr/sbin/${name}"
1.7Slukempidfile="/var/run/${name}.pid"
1.18Slukemrequired_files="/etc/ssh/sshd_config"
1.7Slukemextra_commands="keygen reload"
1.3Sjwise
1.6Slukemsshd_keygen()
1.6Slukem{
1.23Schristos(
1.23Schristos	keygen="/usr/bin/ssh-keygen"
1.11Slukem	umask 022
1.23Schristos	while read type bits filename version name;  do
1.23Schristos		f="/etc/ssh/$filename"
1.23Schristos		if [ -f "$f" ]; then
1.23Schristos			echo "You already have an $name host key in $f"
1.23Schristos			echo "Skipping protocol version $version $name" \
1.23Schristos			    "Key Generation"
1.23Schristos		else
1.23Schristos			case "${bits}" in
1.23Schristos			-1)	bitarg=;;
1.23Schristos			0)	bitarg="${ssh_keygen_flags}";;
1.23Schristos			*)	bitarg="-b ${bits}";;
1.23Schristos			esac
1.23Schristos			"${keygen}" -t "${type}" ${bitarg} -f "${f}" -N ''
1.23Schristos		fi
1.23Schristos	done << _EOF
1.23Schristosrsa1	0	ssh_host_key		1	RSA
1.23Schristosdsa	1024	ssh_host_dsa_key	2	DSA
1.23Schristosecdsa	521	ssh_host_ecdsa_key	1	ECDSA
1.23Schristosed25519	-1	ssh_host_ed25519_key	1	ED25519
1.23Schristosrsa	0	ssh_host_rsa_key	2	RSA
1.23Schristos_EOF
1.23Schristos)
1.3Sjwise}
1.3Sjwise
1.6Slukemsshd_precmd()
1.6Slukem{
1.17Slukem	if [ ! -f /etc/ssh/ssh_host_key -o \
1.17Slukem	    ! -f /etc/ssh/ssh_host_dsa_key -o \
1.21Schristos	    ! -f /etc/ssh/ssh_host_ecdsa_key -o \
1.23Schristos	    ! -f /etc/ssh/ssh_host_ed25519_key -o \
1.17Slukem	    ! -f /etc/ssh/ssh_host_rsa_key ]; then
1.16Senami		run_rc_command keygen
1.3Sjwise	fi
1.3Sjwise}
1.3Sjwise
1.3Sjwisekeygen_cmd=sshd_keygen
1.5Sjwisestart_precmd=sshd_precmd
1.3Sjwise
1.3Sjwiseload_rc_config $name
1.3Sjwiserun_rc_command "$1"