From 1063dfe74d3cb1cafd90a92f84dcd5885eb82168 Mon Sep 17 00:00:00 2001
From: Jeremy Lecour <jlecour@evolix.fr>
Date: Wed, 19 Aug 2020 13:57:18 +0200
Subject: [PATCH] bkctld: don't replace SSH host keys when creating/updating a
 jail

---
 CHANGELOG.md |  1 +
 lib/includes | 11 ++++++++++-
 2 files changed, 11 insertions(+), 1 deletion(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 69694d4..ad6af39 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -13,6 +13,7 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 ### Changed
 
 * bkctld-update: start jail after upgrade if it was started before
+* bkctld: don't replace SSH host keys when creating/updating a jail
 * Split check into check-jails and check-setup
 * bkctld-check-jails checks if jails 
 * bkctld-check-setup checks if the partition is mounted and writable, if firewall is configured and if all jails are started
diff --git a/lib/includes b/lib/includes
index 0c0f297..745f477 100755
--- a/lib/includes
+++ b/lib/includes
@@ -226,7 +226,16 @@ setup_jail_chroot() {
     umask 077
 
     info "1 - Creating the chroot"
-    rm -rf ./bin ./lib ./lib64 ./run ./usr ./var/run ./etc/ssh/*key
+
+    rm -rf ./bin
+    rm -rf ./lib
+    rm -rf ./lib64
+    rm -rf ./run
+    rm -rf ./usr
+    rm -rf ./var/run
+    # Let's not delete the existing SSH host keys,
+    # otherwise the clients will have to accept the new keys
+
     mkdir -p ./dev
     mkdir -p ./proc
     mkdir -p ./usr/bin