-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathcloud-set-guest-password-configdrive.in
130 lines (105 loc) · 3.39 KB
/
cloud-set-guest-password-configdrive.in
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
#!/bin/bash
#
# Init file for Password Download Client
#
# chkconfig: 345 98 02
# description: Password Download Client
# Licensed to the Apache Software Foundation (ASF) under one
# or more contributor license agreements. See the NOTICE file
# distributed with this work for additional information
# regarding copyright ownership. The ASF licenses this file
# to you under the Apache License, Version 2.0 (the
# "License"); you may not use this file except in compliance
# with the License. You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing,
# software distributed under the License is distributed on an
# "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
# KIND, either express or implied. See the License for the
# specific language governing permissions and limitations
# under the License.
# Modify this line to specify the user (default is root)
user=root
mountdir=$(mktemp -d)
# If lable name is other than config, please change the below line as required
DefaultDisk=/dev/disk/by-label/config-2
Password_File=$mountdir/cloudstack/password/vm_password.txt
password_received=0
function prepare_mount
{
if [ ! -e $mountdir ]; then
mkdir $mountdir
chmod 700 $mountdir
fi
if [ -e $DefaultDisk ]; then
Disk=$DefaultDisk
else
BLOCK_DEVICE=$(blkid -t LABEL='config' /dev/hd? /dev/sd? /dev/xvd? /dev/vd? -o device)
if [ -n $BLOCK_DEVICE ]; then
Disk=$BLOCK_DEVICE
else
logger -t "cloud" "Unable to set password to VM: Config drive not found"
exit 1
fi
fi
mount -r $Disk $mountdir
if [ $? -ne 0 ]; then
echo "Failed mounting $Disk to /mnt/configdrive"
exit 1
fi
}
function remove_mount
{
umount $mountdir
}
prepare_mount
if [ -f $Password_File ]
then
password=$(cat $Password_File)
password=$(echo $password | tr -d '\r')
remove_mount
case $password in
"") logger -t "cloud" "Config drive did not have any password for the VM"
exit 0
;;
"saved_password") logger -t "cloud" "VM has already saved a password"
exit 0
;;
*) logger -t "cloud" "VM got a valid password"
password_received=1
;;
esac
else
remove_mount
logger -t "cloud" "Password set failed on VM: password file not found in config drive"
exit 0
fi
if [ "$password_received" = "1" ]; then
newmd5sum=$(echo $password | md5sum | awk '{print $1}')
if [ -f /var/vmpasswordmd5sum ]
then
oldsum=$(cat /var/vmpasswordmd5sum)
if [ "$newmd5sum" == "$oldsum" ]
then
logger -t "cloud" "There is no update of VM password from cloudstack, returning true"
exit 0
fi
fi
logger -t "cloud" "Changing password ..."
echo $user:$password | chpasswd
if [ $? -gt 0 ]
then
usermod -p `mkpasswd -m SHA-512 $password` $user
if [ $? -gt 0 ]
then
logger -t "cloud" "Failed to change password for user $user"
exit 1
else
logger -t "cloud" "Successfully changed password for user $user"
fi
fi
fi
echo $newmd5sum > /var/vmpasswordmd5sum
exit 0