From e7b5b938f043a5fddc74c70f46711e283c53b0dd Mon Sep 17 00:00:00 2001
From: Klemens Starybrat <klemens.starybrat@gmail.com>
Date: Thu, 26 Sep 2024 17:50:28 +0200
Subject: [PATCH] Fix sshd handlers for Debian 12.

Debian 12, Ubuntu 22 and above need to re-run systemd generators
to pull the updated sshd port config.

https://discourse.ubuntu.com/t/sshd-now-uses-socket-based-activation-ubuntu-22-10-and-later/30189/14
---
 handlers/main.yml | 4 ++++
 tasks/ssh.yml     | 4 +++-
 2 files changed, 7 insertions(+), 1 deletion(-)

diff --git a/handlers/main.yml b/handlers/main.yml
index beb4e62..42a1940 100644
--- a/handlers/main.yml
+++ b/handlers/main.yml
@@ -1,4 +1,8 @@
 ---
+- name: reload systemd
+  systemd_service:
+    daemon_reload: true
+
 - name: restart ssh
   service:
     name: "{{ security_sshd_name }}"
diff --git a/tasks/ssh.yml b/tasks/ssh.yml
index 75d1f4e..01b50e9 100644
--- a/tasks/ssh.yml
+++ b/tasks/ssh.yml
@@ -29,7 +29,9 @@
       line: "GSSAPIAuthentication {{ security_ssh_gss_api_authentication }}"
     - regexp: "^X11Forwarding"
       line: "X11Forwarding {{ security_ssh_x11_forwarding }}"
-  notify: restart ssh
+  notify:
+    - reload systemd
+    - restart ssh
 
 - name: Add configured users allowed to connect over ssh
   lineinfile: