regenerate ssh keys on first boot

2016-10-31 08:41:56 +01:00 · 2016-10-31 08:41:56 +01:00 · dd5d5d9d36
parent 7229f49ab7
commit dd5d5d9d36
1 changed files with 39 additions and 0 deletions
--- a/zlibs/helpers
+++ b/zlibs/helpers
@ -53,11 +53,13 @@ build_iso_dist() {
 	notice "building complete iso image"

 	bootstrap_complete_base || zerr
+	[[ $BLEND = 1 ]] && blend_preinst || zerr
 	iso_prepare_strap       || zerr
 	build_kernel_${arch}    || zerr
 	iso_setup_isolinux      || zerr
 	iso_write_isolinux_cfg  || zerr
 	[[ $INSTALLER = 1 ]] && iso_setup_installer
+	[[ $BLEND = 1 ]] && blend_postinst || zerr
 	iso_squash_strap        || zerr
 	iso_xorriso_build       || zerr
 }
@ -181,6 +183,43 @@ enablessh() {
 #!/bin/sh
 sed -i -e 's/PermitRootLogin without-password/PermitRootLogin yes/' /etc/ssh/sshd_config
 update-rc.d ssh enable
+chmod +x /etc/init.d/regensshkeys
+update-rc.d regensshkeys defaults
+update-rc.d regensshkeys enable
+EOF
+
+	cat <<EOF | sudo tee ${strapdir}/etc/init.d/regensshkeys
+#!/bin/sh
+#
+### BEGIN INIT INFO
+# Provides:       something
+# Required-Start: $syslog
+# Required-Stop:  $syslog
+# Default-Start:  2 3 4 5
+# Default-Stop:   0 1 6
+# Short-Description: Regenerate openssh-server keys
+# Description:    Regenerate openssh-server keys
+### END INIT INFO
+#
+set -e
+set -u
+
+genkeys() {
+	/usr/sbin/service ssh stop
+	/usr/sbin/dpkg-reconfigure openssh-server
+	/usr/sbin/service ssh start
+	/usr/sbin/update-rc.d regensshkeys disable
+}
+
+case "$1" in
+	start)
+		genkeys
+	stop)
+		;;
+	*)
+		echo "usage: $(basename $0) {start}"
+		;;
+esac
 EOF

 	dpkgdivert on $strapdir