ref(rootfs): reference ssh host keys from kubernetes secret

Matthew Fisher · Matthew Fisher · commit 0ca7225177aa · 2016-04-22T13:30:47.000-07:00
diff --git a/pkg/sshd/sshd.go b/pkg/sshd/sshd.go
@@ -31,7 +31,7 @@ const (
 func ParseHostKeys(c cookoo.Context, p *cookoo.Params) (interface{}, cookoo.Interrupt) {
 	log.Debugf(c, "Parsing ssh host keys")
 	hostKeyTypes := p.Get("keytypes", []string{"rsa", "dsa", "ecdsa"}).([]string)
-	pathTpl := p.Get("path", "/etc/ssh/ssh_host_%s_key").(string)
+	pathTpl := p.Get("path", "/var/run/secrets/deis/builder/ssh/ssh-host-%s-key").(string)
 	hostKeys := make([]ssh.Signer, 0, len(hostKeyTypes))
 	for _, t := range hostKeyTypes {
 		path := fmt.Sprintf(pathTpl, t)
diff --git a/rootfs/etc/ssh/sshd_config b/rootfs/etc/ssh/sshd_config
@@ -1,8 +1,8 @@
 Port 2223
 Protocol 2
-HostKey /etc/ssh/ssh_host_rsa_key
-HostKey /etc/ssh/ssh_host_dsa_key
-HostKey /etc/ssh/ssh_host_ecdsa_key
+HostKey /var/run/secrets/deis/builder/ssh/ssh-host-rsa-key
+HostKey /var/run/secrets/deis/builder/ssh/ssh-host-dsa-key
+HostKey /var/run/secrets/deis/builder/ssh/ssh-host-ecdsa-key
 UsePrivilegeSeparation yes
 KeyRegenerationInterval 3600
 ServerKeyBits 768
