From c2530b0bc9d620cc1bb396f044045858b0cb4d02 Mon Sep 17 00:00:00 2001
From: John Klug <john.klug@multitech.com>
Date: Thu, 16 Feb 2017 13:10:26 -0600
Subject: Eliminate default password

---
 setup.sh | 27 +++++++++++++++++++++++++++
 1 file changed, 27 insertions(+)

diff --git a/setup.sh b/setup.sh
index d601f46..9e6efb3 100755
--- a/setup.sh
+++ b/setup.sh
@@ -34,6 +34,33 @@ if [ "$1" != "--update" ]; then
   else
     echo "Leaving existing conf/local.conf alone."
   fi
+  ex_version=$(egrep '^PR[[:space:]]*=' layers/meta-multitech/recipes-kernel/linux/linux_*.bb)
+  if ((${#ex_version})) && [[ $ex_version =~ =[[:space:]]*([^[:space:]#]*) ]] ; then
+    MLINUX_KERNEL_EXTRA_VERSION="${BASH_REMATCH[1]}"
+    sed -ri '/^MLINUX_KERNEL_EXTRA_VERSION[[:space:]]*=/d' conf/local.conf
+    echo "MLINUX_KERNEL_EXTRA_VERSION = ${MLINUX_KERNEL_EXTRA_VERSION}" >>conf/local.conf
+  fi
+  krecipe=$(echo $(cd layers/meta-multitech/recipes-kernel/linux;echo linux_*.bb))
+  if ((${#krecipe})) && [[ $krecipe =~ linux_(.*).bb$ ]] ; then
+    MLINUX_KERNEL_VERSION="${BASH_REMATCH[1]}"
+    sed -ri '/^MLINUX_KERNEL_VERSION[[:space:]]*=/d' conf/local.conf
+    echo "MLINUX_KERNEL_VERSION = \"${MLINUX_KERNEL_VERSION}\"" >>conf/local.conf
+  fi
+  root_pwd_hash=$(egrep '^ROOT_PASSWORD_HASH[[:space:]]*=' conf/local.conf || true)
+  if ((${#root_pwd_hash} == 0)) ; then
+    if [[ "$ROOT_PASSWORD" ]] ; then
+      pass=$ROOT_PASSWORD
+    else
+      pass=$(< /dev/urandom tr -dc _A-Z-a-z-0-9 2>/dev/null | head -c${1:-8};echo)
+    fi
+    salt="$(openssl rand -base64 128 2>/dev/null)"
+    hash="$(openssl passwd -1 -salt "$salt" "$pass")"
+    echo "ROOT_PASSWORD = \"$pass\"" >password.txt
+    echo "HASH = \"$hash\"" >>password.txt
+    echo "ROOT_PASSWORD_HASH = \"$hash\"" >>conf/local.conf
+    sed -ri "d/ROOT_PASSWORD[[:space:]]=/" conf/local.conf || true
+    echo "ROOT_PASSWORD = \"$pass\"" >>conf/local.conf
+  fi
 
   echo ""
   echo "Creating user-layer..."
-- 
cgit v1.2.3