7 # REQUIRE: LOGIN FILESYSTEMS
13 desc="Secure Shell Daemon"
15 command="/usr/sbin/${name}"
16 keygen_cmd="sshd_keygen"
17 start_precmd="sshd_precmd"
18 reload_precmd="sshd_configtest"
19 restart_precmd="sshd_configtest"
20 configtest_cmd="sshd_configtest"
21 pidfile="/var/run/${name}.pid"
22 extra_commands="configtest keygen reload"
24 : ${sshd_rsa_enable:="yes"}
25 : ${sshd_dsa_enable:="no"}
26 : ${sshd_ecdsa_enable:="yes"}
27 : ${sshd_ed25519_enable:="yes"}
32 local ALG="$(echo $alg | tr a-z A-Z)"
35 if ! checkyesno "sshd_${alg}_enable" ; then
40 rsa|dsa|ecdsa|ed25519)
41 keyfile="/etc/ssh/ssh_host_${alg}_key"
48 if [ ! -x /usr/bin/ssh-keygen ] ; then
49 warn "/usr/bin/ssh-keygen does not exist."
53 if [ -f "${keyfile}" ] ; then
54 info "$ALG host key exists."
56 echo "Generating $ALG host key."
57 /usr/bin/ssh-keygen -q -t $alg -f "$keyfile" -N ""
58 /usr/bin/ssh-keygen -l -f "$keyfile.pub"
67 sshd_keygen_alg ed25519
72 echo "Performing sanity check on ${name} configuration."
73 eval ${command} ${sshd_flags} -t
79 run_rc_command configtest