Damien Miller | 0623076 | 1999-10-28 14:03:14 +1000 | [diff] [blame] | 1 | #!/bin/bash |
Damien Miller | cfe4a89 | 2002-05-10 12:19:23 +1000 | [diff] [blame] | 2 | # |
Damien Miller | 0623076 | 1999-10-28 14:03:14 +1000 | [diff] [blame] | 3 | # Init file for OpenSSH server daemon |
| 4 | # |
| 5 | # chkconfig: 2345 55 25 |
| 6 | # description: OpenSSH server daemon |
| 7 | # |
Damien Miller | a37010e | 1999-10-29 09:18:29 +1000 | [diff] [blame] | 8 | # processname: sshd |
| 9 | # config: /etc/ssh/ssh_host_key |
| 10 | # config: /etc/ssh/ssh_host_key.pub |
| 11 | # config: /etc/ssh/ssh_random_seed |
| 12 | # config: /etc/ssh/sshd_config |
| 13 | # pidfile: /var/run/sshd.pid |
Damien Miller | 0623076 | 1999-10-28 14:03:14 +1000 | [diff] [blame] | 14 | |
| 15 | # source function library |
| 16 | . /etc/rc.d/init.d/functions |
| 17 | |
Damien Miller | cfe4a89 | 2002-05-10 12:19:23 +1000 | [diff] [blame] | 18 | # pull in sysconfig settings |
Ben Lindstrom | 26f3389 | 2001-04-27 00:46:17 +0000 | [diff] [blame] | 19 | [ -f /etc/sysconfig/sshd ] && . /etc/sysconfig/sshd |
| 20 | |
Damien Miller | 0623076 | 1999-10-28 14:03:14 +1000 | [diff] [blame] | 21 | RETVAL=0 |
Damien Miller | cfe4a89 | 2002-05-10 12:19:23 +1000 | [diff] [blame] | 22 | prog="sshd" |
Damien Miller | 0623076 | 1999-10-28 14:03:14 +1000 | [diff] [blame] | 23 | |
Damien Miller | ab8d192 | 2000-08-08 16:53:28 +1000 | [diff] [blame] | 24 | # Some functions to make the below more readable |
| 25 | KEYGEN=/usr/bin/ssh-keygen |
Damien Miller | cfe4a89 | 2002-05-10 12:19:23 +1000 | [diff] [blame] | 26 | SSHD=/usr/sbin/sshd |
Damien Miller | 0bc1bd8 | 2000-11-13 22:57:25 +1100 | [diff] [blame] | 27 | RSA1_KEY=/etc/ssh/ssh_host_key |
| 28 | RSA_KEY=/etc/ssh/ssh_host_rsa_key |
Damien Miller | ab8d192 | 2000-08-08 16:53:28 +1000 | [diff] [blame] | 29 | DSA_KEY=/etc/ssh/ssh_host_dsa_key |
| 30 | PID_FILE=/var/run/sshd.pid |
Damien Miller | cfe4a89 | 2002-05-10 12:19:23 +1000 | [diff] [blame] | 31 | |
Damien Miller | 0bc1bd8 | 2000-11-13 22:57:25 +1100 | [diff] [blame] | 32 | do_rsa1_keygen() { |
Damien Miller | cfe4a89 | 2002-05-10 12:19:23 +1000 | [diff] [blame] | 33 | if [ ! -s $RSA1_KEY ]; then |
| 34 | echo -n $"Generating SSH1 RSA host key: " |
Damien Miller | 0bc1bd8 | 2000-11-13 22:57:25 +1100 | [diff] [blame] | 35 | if $KEYGEN -q -t rsa1 -f $RSA1_KEY -C '' -N '' >&/dev/null; then |
Damien Miller | cfe4a89 | 2002-05-10 12:19:23 +1000 | [diff] [blame] | 36 | chmod 600 $RSA1_KEY |
| 37 | chmod 644 $RSA1_KEY.pub |
Damien Miller | 73b42d2 | 2006-04-22 21:26:08 +1000 | [diff] [blame] | 38 | if [ -x /sbin/restorecon ]; then |
| 39 | /sbin/restorecon $RSA1_KEY.pub |
| 40 | fi |
Damien Miller | cfe4a89 | 2002-05-10 12:19:23 +1000 | [diff] [blame] | 41 | success $"RSA1 key generation" |
Damien Miller | 0bc1bd8 | 2000-11-13 22:57:25 +1100 | [diff] [blame] | 42 | echo |
| 43 | else |
Damien Miller | cfe4a89 | 2002-05-10 12:19:23 +1000 | [diff] [blame] | 44 | failure $"RSA1 key generation" |
Damien Miller | 0bc1bd8 | 2000-11-13 22:57:25 +1100 | [diff] [blame] | 45 | echo |
| 46 | exit 1 |
| 47 | fi |
| 48 | fi |
| 49 | } |
Damien Miller | ba6f9f9 | 2001-09-15 21:03:10 +1000 | [diff] [blame] | 50 | |
Damien Miller | cfe4a89 | 2002-05-10 12:19:23 +1000 | [diff] [blame] | 51 | do_rsa_keygen() { |
| 52 | if [ ! -s $RSA_KEY ]; then |
| 53 | echo -n $"Generating SSH2 RSA host key: " |
| 54 | if $KEYGEN -q -t rsa -f $RSA_KEY -C '' -N '' >&/dev/null; then |
| 55 | chmod 600 $RSA_KEY |
| 56 | chmod 644 $RSA_KEY.pub |
Damien Miller | 73b42d2 | 2006-04-22 21:26:08 +1000 | [diff] [blame] | 57 | if [ -x /sbin/restorecon ]; then |
| 58 | /sbin/restorecon $RSA_KEY.pub |
| 59 | fi |
Damien Miller | cfe4a89 | 2002-05-10 12:19:23 +1000 | [diff] [blame] | 60 | success $"RSA key generation" |
| 61 | echo |
| 62 | else |
| 63 | failure $"RSA key generation" |
| 64 | echo |
| 65 | exit 1 |
| 66 | fi |
| 67 | fi |
| 68 | } |
| 69 | |
| 70 | do_dsa_keygen() { |
| 71 | if [ ! -s $DSA_KEY ]; then |
| 72 | echo -n $"Generating SSH2 DSA host key: " |
| 73 | if $KEYGEN -q -t dsa -f $DSA_KEY -C '' -N '' >&/dev/null; then |
| 74 | chmod 600 $DSA_KEY |
| 75 | chmod 644 $DSA_KEY.pub |
Damien Miller | 73b42d2 | 2006-04-22 21:26:08 +1000 | [diff] [blame] | 76 | if [ -x /sbin/restorecon ]; then |
| 77 | /sbin/restorecon $DSA_KEY.pub |
| 78 | fi |
Damien Miller | cfe4a89 | 2002-05-10 12:19:23 +1000 | [diff] [blame] | 79 | success $"DSA key generation" |
| 80 | echo |
| 81 | else |
| 82 | failure $"DSA key generation" |
| 83 | echo |
| 84 | exit 1 |
| 85 | fi |
| 86 | fi |
| 87 | } |
| 88 | |
| 89 | do_restart_sanity_check() |
| 90 | { |
| 91 | $SSHD -t |
| 92 | RETVAL=$? |
| 93 | if [ ! "$RETVAL" = 0 ]; then |
| 94 | failure $"Configuration file or keys are invalid" |
| 95 | echo |
| 96 | fi |
| 97 | } |
| 98 | |
| 99 | start() |
| 100 | { |
| 101 | # Create keys if necessary |
| 102 | do_rsa1_keygen |
| 103 | do_rsa_keygen |
| 104 | do_dsa_keygen |
| 105 | |
| 106 | echo -n $"Starting $prog:" |
| 107 | initlog -c "$SSHD $OPTIONS" && success || failure |
| 108 | RETVAL=$? |
| 109 | [ "$RETVAL" = 0 ] && touch /var/lock/subsys/sshd |
| 110 | echo |
| 111 | } |
| 112 | |
| 113 | stop() |
| 114 | { |
| 115 | echo -n $"Stopping $prog:" |
| 116 | killproc $SSHD -TERM |
| 117 | RETVAL=$? |
| 118 | [ "$RETVAL" = 0 ] && rm -f /var/lock/subsys/sshd |
| 119 | echo |
| 120 | } |
| 121 | |
| 122 | reload() |
| 123 | { |
| 124 | echo -n $"Reloading $prog:" |
| 125 | killproc $SSHD -HUP |
| 126 | RETVAL=$? |
| 127 | echo |
| 128 | } |
Damien Miller | ab8d192 | 2000-08-08 16:53:28 +1000 | [diff] [blame] | 129 | |
Damien Miller | 0623076 | 1999-10-28 14:03:14 +1000 | [diff] [blame] | 130 | case "$1" in |
Damien Miller | ab8d192 | 2000-08-08 16:53:28 +1000 | [diff] [blame] | 131 | start) |
Damien Miller | cfe4a89 | 2002-05-10 12:19:23 +1000 | [diff] [blame] | 132 | start |
Damien Miller | ab8d192 | 2000-08-08 16:53:28 +1000 | [diff] [blame] | 133 | ;; |
| 134 | stop) |
Damien Miller | cfe4a89 | 2002-05-10 12:19:23 +1000 | [diff] [blame] | 135 | stop |
Damien Miller | ab8d192 | 2000-08-08 16:53:28 +1000 | [diff] [blame] | 136 | ;; |
| 137 | restart) |
Damien Miller | cfe4a89 | 2002-05-10 12:19:23 +1000 | [diff] [blame] | 138 | stop |
| 139 | start |
| 140 | ;; |
| 141 | reload) |
| 142 | reload |
Damien Miller | ab8d192 | 2000-08-08 16:53:28 +1000 | [diff] [blame] | 143 | ;; |
Damien Miller | 2b2cf52 | 2000-10-16 12:25:17 +1100 | [diff] [blame] | 144 | condrestart) |
| 145 | if [ -f /var/lock/subsys/sshd ] ; then |
Damien Miller | ba6f9f9 | 2001-09-15 21:03:10 +1000 | [diff] [blame] | 146 | do_restart_sanity_check |
Damien Miller | cfe4a89 | 2002-05-10 12:19:23 +1000 | [diff] [blame] | 147 | if [ "$RETVAL" = 0 ] ; then |
| 148 | stop |
| 149 | # avoid race |
| 150 | sleep 3 |
| 151 | start |
| 152 | fi |
Damien Miller | 2b2cf52 | 2000-10-16 12:25:17 +1100 | [diff] [blame] | 153 | fi |
| 154 | ;; |
Damien Miller | ab8d192 | 2000-08-08 16:53:28 +1000 | [diff] [blame] | 155 | status) |
Damien Miller | cfe4a89 | 2002-05-10 12:19:23 +1000 | [diff] [blame] | 156 | status $SSHD |
Damien Miller | ab8d192 | 2000-08-08 16:53:28 +1000 | [diff] [blame] | 157 | RETVAL=$? |
| 158 | ;; |
| 159 | *) |
Damien Miller | cfe4a89 | 2002-05-10 12:19:23 +1000 | [diff] [blame] | 160 | echo $"Usage: $0 {start|stop|restart|reload|condrestart|status}" |
| 161 | RETVAL=1 |
Damien Miller | 0623076 | 1999-10-28 14:03:14 +1000 | [diff] [blame] | 162 | esac |
Damien Miller | 0623076 | 1999-10-28 14:03:14 +1000 | [diff] [blame] | 163 | exit $RETVAL |