postinstall revision d62bc4badc1c1f1549c961cfb8b420e650e1272b
#
# CDDL HEADER START
#
# The contents of this file are subject to the terms of the
# Common Development and Distribution License (the "License").
# You may not use this file except in compliance with the License.
#
# You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
# or http://www.opensolaris.org/os/licensing.
# See the License for the specific language governing permissions
# and limitations under the License.
#
# When distributing Covered Code, include this CDDL HEADER in each
# file and include the License file at usr/src/OPENSOLARIS.LICENSE.
# If applicable, add the following below this CDDL HEADER, with the
# fields enclosed by brackets "[]" replaced with your own identifying
# information: Portions Copyright [yyyy] [name of copyright owner]
#
# CDDL HEADER END
#
# Copyright 2008 Sun Microsystems, Inc. All rights reserved.
# Use is subject to license terms.
#
# ident "%Z%%M% %I% %E% SMI"
#
#
# Convert datalink configuration into a series of dladm(1M) commands and
# keep them in an upgrade script. This script will then be run in the
# network-physical service.
#
# Note that we cannot use the /var/svc/profile/upgrade script because
# that script is run during manifest-import which is too late for
# datalink configuration.
#
UPGRADE_SCRIPT=/var/svc/profile/upgrade_datalink
AGGR_CONF=/etc/aggregation.conf
ORIG=$BASEDIR/$AGGR_CONF
if [ ! -f "${ORIG}" ]; then
# Try the alternate location.
AGGR_CONF=/etc/dladm/aggregation.conf
ORIG=$BASEDIR/$AGGR_CONF
fi
# Now upgrade aggregation.conf to the new format.
if [ -f "${ORIG}" ]; then
# Strip off comments, then each remaining line defines an
# aggregation the admnistrator configured on the old system.
# Each line corresponds to one dladm command that is appended
# to the upgrade script.
cat $ORIG | grep '^[^#]' | while read line; do
echo $line | while read aggr_index rest
do
policy=`echo $rest | /usr/bin/awk '{print $1}'`
nports=`echo $rest | /usr/bin/awk '{print $2}'`
ports=`echo $rest | /usr/bin/awk '{print $3}'`
mac=`echo $rest | /usr/bin/awk '{print $4}'`
lacp_mode=`echo $rest | /usr/bin/awk '{print $5}'`
lacp_timer=`echo $rest | /usr/bin/awk '{print $6}'`
dladm_string="dladm create-aggr -P $policy -l \
$lacp_mode -T $lacp_timer"
# A fixed MAC address
if [ "${mac}" != "auto" ]; then
dladm_string="$dladm_string -u $mac"
fi
i=1
while [ $i -le "${nports}" ]; do
device=`echo $ports | cut -d, -f$i`
# Older aggregation.conf files have the format
# of device_name/port_number. We don't need
# the port number, so get rid of it if it is
# there.
device=`echo $device | cut -d/ -f1`
i=`expr $i + 1`
dladm_string="$dladm_string -d $device"
done
dladm_string="$dladm_string $aggr_index"
echo $dladm_string >> \
${PKG_INSTALL_ROOT}/$UPGRADE_SCRIPT
done
done
# no longer needed, get rid of it.
rm -f $ORIG
removef $PKGINST $AGGR_CONF > /dev/null
removef -f $PKGINST > /dev/null 2>&1
fi
# Upgrade linkprop.conf
ORIG=$BASEDIR/etc/dladm/linkprop.conf
if [ -f "${ORIG}" ]; then
# Strip off comments, then each remaining line lists properties
# the administrator configured for a particular interface.
# Each line includes several properties, but we can only set
# one property per dladm invocation.
cat $ORIG | grep '^[^#]' | while read line; do
echo $line | while read link rest
do
while [ -n "${rest}" ]; do
linkprop=`echo $rest | cut -d";" -f1`
rest=`echo $rest | cut -d";" -f2-`
echo dladm set-linkprop -p $linkprop $link >> \
${PKG_INSTALL_ROOT}/$UPGRADE_SCRIPT
done
done
done
# no longer needed, get rid of it
rm -f $ORIG
removef $PKGINST /etc/dladm/linkprop.conf > /dev/null
removef -f $PKGINST > /dev/null 2>&1
fi
#
# Change permissions of public IKE certificates and CRLs
# that may have been incorrectly created as private
# PKCS#11 hints files must be left root-only readable.
# Make sure this files starts with "30 82"
#
for file in `ls ${PKG_INSTALL_ROOT}/etc/inet/ike/crls/* \
${PKG_INSTALL_ROOT}/etc/inet/ike/publickeys/* 2>/dev/null`; do
if /bin/od -tx1 -N3 < $file | grep '30 82' >/dev/null 2>&1
then
chmod 644 $file
fi
done
exit 0