From ee4ce076fb7eadd7f354dd6d6d346f45bd8d4a66 Mon Sep 17 00:00:00 2001
From: Aaron Dewes <aaron.dewes@web.de>
Date: Sat, 13 Feb 2021 17:25:20 +0100
Subject: [PATCH] Fix

---
 stage2/00-sys-tweaks/01-run.sh                     |  1 +
 .../files/regenerate_ssh_host_keys.service         | 14 ++++++++++++++
 2 files changed, 15 insertions(+)
 create mode 100644 stage2/00-sys-tweaks/files/regenerate_ssh_host_keys.service

diff --git a/stage2/00-sys-tweaks/01-run.sh b/stage2/00-sys-tweaks/01-run.sh
index 84ec12a..c339570 100755
--- a/stage2/00-sys-tweaks/01-run.sh
+++ b/stage2/00-sys-tweaks/01-run.sh
@@ -6,6 +6,7 @@ install -m 755 files/resize2fs_once	"${ROOTFS_DIR}/etc/init.d/"
 
 install -d				"${ROOTFS_DIR}/etc/systemd/system/rc-local.service.d"
 install -m 644 files/ttyoutput.conf	"${ROOTFS_DIR}/etc/systemd/system/rc-local.service.d/"
+install -m 644 files/regenerate_ssh_host_keys.service	"${ROOTFS_DIR}/etc/systemd/system/"
 
 install -m 644 files/50raspi		"${ROOTFS_DIR}/etc/apt/apt.conf.d/"
 
diff --git a/stage2/00-sys-tweaks/files/regenerate_ssh_host_keys.service b/stage2/00-sys-tweaks/files/regenerate_ssh_host_keys.service
new file mode 100644
index 0000000..0154b14
--- /dev/null
+++ b/stage2/00-sys-tweaks/files/regenerate_ssh_host_keys.service
@@ -0,0 +1,14 @@
+[Unit]
+Description=Regenerate SSH host keys
+Before=ssh.service
+ConditionFileIsExecutable=/usr/bin/ssh-keygen
+
+[Service]
+Type=oneshot
+ExecStartPre=-/bin/dd if=/dev/hwrng of=/dev/urandom count=1 bs=4096
+ExecStartPre=-/bin/sh -c "/bin/rm -f -v /etc/ssh/ssh_host_*_key*"
+ExecStart=/usr/bin/ssh-keygen -A -v
+ExecStartPost=/bin/systemctl disable regenerate_ssh_host_keys
+
+[Install]
+WantedBy=multi-user.target
\ No newline at end of file