From a03b1528c732a1fe4c3f14564b77487415cf9910 Mon Sep 17 00:00:00 2001
From: Sven Velt <sven@velt.de>
Date: Wed, 10 Jul 2024 11:21:47 +0200
Subject: [PATCH] Ensure ed25519 key ist present

---
 tasks/main.yml | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/tasks/main.yml b/tasks/main.yml
index 9bd64a6..713621b 100644
--- a/tasks/main.yml
+++ b/tasks/main.yml
@@ -62,6 +62,13 @@
   notify: Restart SSH
 
 
+- name: "Ensure ED25519 hostkey is available"
+  openssh_keypair:
+    path: /etc/ssh/ssh_host_ed25519_key
+    type: ed25519
+  when: '"ed25519" in ssh_hardening_hostkeys'
+
+
 - name: "Renew RSA hostkeys if too short"
   openssh_keypair:
     path: /etc/ssh/ssh_host_rsa_key