From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from aws-us-west-2-korg-lkml-1.web.codeaurora.org (localhost.localdomain [127.0.0.1]) by smtp.lore.kernel.org (Postfix) with ESMTP id C8D27C43334 for ; Fri, 3 Jun 2022 21:45:15 +0000 (UTC) Subject: Re: Forced password change in first login To: openembedded-core@lists.openembedded.org From: "Livius" X-Originating-Location: =?utf-8?q?Fegyvernek=2C_J=C3=A1sz-Nagykun-Szolnok=2C?= =?utf-8?q?_HU_=28178=2E48=2E208=2E198=29?= X-Originating-Platform: Windows Chrome 102 User-Agent: GROUPS.IO Web Poster MIME-Version: 1.0 Date: Fri, 03 Jun 2022 14:45:12 -0700 References: In-Reply-To: Message-ID: <11484.1654292712146430411@lists.openembedded.org> Content-Type: multipart/alternative; boundary="98pSkTMgl8RAmr1761ZR" List-Id: X-Webhook-Received: from li982-79.members.linode.com [45.33.32.79] by aws-us-west-2-korg-lkml-1.web.codeaurora.org with HTTPS for ; Fri, 03 Jun 2022 21:45:15 -0000 X-Groupsio-URL: https://lists.openembedded.org/g/openembedded-core/message/166530 --98pSkTMgl8RAmr1761ZR Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable Finaly, i found the problem and i could solve it. SHA-256 is too weak to ma= ke a password hash, this is why on first login we need to change password a= lways. Please fix it in Yocto manual ( https://docs.yoctoproject.org/singleindex.h= tml#term-EXTRA_USERS_PARAMS ). When i set it to generate=C2=A0sha512crypt h= ash it works fine, there are no any change request on first login. --98pSkTMgl8RAmr1761ZR Content-Type: text/html; charset="utf-8" Content-Transfer-Encoding: quoted-printable

Finaly, i found the problem and i could solve it. SHA-256 is too weak to= make a password hash, this is why on first login we need to change passwor= d always.

Please fix it in