From 452b17eaca4fc458c420e2cb94ee84a32cf8a292 Mon Sep 17 00:00:00 2001
From: Daniil Baturin <daniil@baturin.org>
Date: Mon, 17 Mar 2025 17:58:33 +0000
Subject: hooks: T7217: remove Dropbear SSH host keys that may be generated by
 postinstall scripts to prevent accidental use of non-unique keys baked into
 images

---
 data/live-build-config/hooks/live/100-remove-dropbear-keys.chroot | 7 +++++++
 1 file changed, 7 insertions(+)
 create mode 100644 data/live-build-config/hooks/live/100-remove-dropbear-keys.chroot

(limited to 'data')

diff --git a/data/live-build-config/hooks/live/100-remove-dropbear-keys.chroot b/data/live-build-config/hooks/live/100-remove-dropbear-keys.chroot
new file mode 100644
index 00000000..20d8a670
--- /dev/null
+++ b/data/live-build-config/hooks/live/100-remove-dropbear-keys.chroot
@@ -0,0 +1,7 @@
+#!/bin/sh
+
+# Delete Dropbear SSH keys that might be generated
+# by postinst scripts
+# to prevent non-unique keys from appearing in images
+
+rm -f /etc/dropbear/dropbear_*_host_key
-- 
cgit v1.2.3