Generate new key on every startup.

rgrunber · rgrunber · commit 335a0d888300 · 2025-10-24T12:36:12.000-04:00
Signed-off-by: Roland Grunberg &lt;rgrunber@redhat.com&gt;
diff --git a/build/dockerfiles/dev.sshd.Dockerfile b/build/dockerfiles/dev.sshd.Dockerfile
@@ -44,10 +44,6 @@ RUN sed -i \
 -e 's|#HostKey /etc/ssh/ssh_host_ed25519_key|HostKey /opt/ssh/ssh_host_ed25519_key|' \
   /opt/ssh/sshd_config
 
-# Prepare SSH Keys
-RUN ssh-keygen -q -N "" -t ed25519 -f /opt/ssh/ssh_client_ed25519_key
-RUN chmod 644 /opt/ssh/ssh_client_*
-
 # Add script to start and stop the service
 COPY --chown=0:0 /build/scripts/sshd.start /
 
diff --git a/build/scripts/server.js b/build/scripts/server.js
@@ -29,7 +29,7 @@ const server = http.createServer((req, res) => {
 
     let genKey = "PRIVATE KEY NOT FOUND";
     try {
-      genKey = fs.readFileSync('/opt/ssh/ssh_client_ed25519_key', 'utf8');
+      genKey = fs.readFileSync(`${process.env["HOME"]}/.ssh/ssh_client_ed25519_key`, 'utf8');
     } catch (err) {
      // continue
     }
diff --git a/build/scripts/sshd.start b/build/scripts/sshd.start
@@ -12,7 +12,8 @@ mkdir -p $HOME/.ssh
 if [ -f /etc/ssh/dwo_ssh_key.pub ]; then
   cp /etc/ssh/dwo_ssh_key.pub $HOME/.ssh/authorized_keys
 else
-  cp /opt/ssh/ssh_client_ed25519_key.pub $HOME/.ssh/authorized_keys
+  ssh-keygen -q -N "" -t ed25519 -f $HOME/.ssh/ssh_client_ed25519_key
+  cp $HOME/.ssh/ssh_client_ed25519_key.pub $HOME/.ssh/authorized_keys
 fi
 
 # start

Original file line number	Diff line number	Diff line change
`@@ -29,7 +29,7 @@ const server = http.createServer((req, res) => {`
`29`	`29`
`30`	`30`	`let genKey = "PRIVATE KEY NOT FOUND";`
`31`	`31`	`try {`
`32`		`- genKey = fs.readFileSync('/opt/ssh/ssh_client_ed25519_key', 'utf8');`
	`32`	+ genKey = fs.readFileSync(`${process.env["HOME"]}/.ssh/ssh_client_ed25519_key`, 'utf8');
`33`	`33`	`} catch (err) {`
`34`	`34`	`// continue`
`35`	`35`	`}`