#!/bin/sh
# PROVIDE: sshd443
# REQUIRE: LOGIN

$_rc_subr_loaded . /etc/rc.subr

name="sshd443"
rcvar="sshd443"
command="/usr/sbin/sshd"
pidfile="/var/run/sshd443.pid"
required_files="/etc/ssh/ssh443/sshd_config"
extra_commands="keygen reload"

sshd_keygen()
{
	(
	umask 022
	if [ -f /etc/ssh/ssh443/ssh_host_key ]; then
		echo "You already have an RSA host key" \
		    "in /etc/ssh/ssh443/ssh_host_key"
		echo "Skipping protocol version 1 RSA Key Generation"
	else
		/usr/bin/ssh-keygen -t rsa1 ${ssh_keygen_flags} \
		    -f /etc/ssh/ssh443/ssh_host_key -N ''
	fi

	if [ -f /etc/ssh/ssh443/ssh_host_dsa_key ]; then
		echo "You already have a DSA host key" \
		    "in /etc/ssh/ssh443/ssh_host_dsa_key"
		echo "Skipping protocol version 2 DSA Key Generation"
	else
		/usr/bin/ssh-keygen -t dsa ${ssh_keygen_flags} \
		    -f /etc/ssh/ssh443/ssh_host_dsa_key -N ''
	fi

	if [ -f /etc/ssh/ssh443/ssh_host_rsa_key ]; then
		echo "You already have a RSA host key" \
		    "in /etc/ssh/ssh443/ssh_host_rsa_key"
		echo "Skipping protocol version 2 RSA Key Generation"
	else
		/usr/bin/ssh-keygen -t rsa ${ssh_keygen_flags} \
		    -f /etc/ssh/ssh443/ssh_host_rsa_key -N ''
	fi
	)
}

sshd_precmd()
{
	if [ ! -f /etc/ssh/ssh443/ssh_host_key -o \
	    ! -f /etc/ssh/ssh443/ssh_host_dsa_key -o \
	    ! -f /etc/ssh/ssh443/ssh_host_rsa_key ]; then
		run_rc_command keygen
	fi
}

keygen_cmd=sshd_keygen
start_precmd=sshd_precmd

load_rc_config $name
run_rc_command "$1"