starlingx
/
config
Code Issues Proposed changes

Migration script to delete encrypted-fs attribute 

Previous release contains attribute ’encrypted-fs’ in the
’platform config’ service parameter, which is used to enable
and disable the luks file system. Upgrade activity need to
delete this unused attribute from the database.

This change adds a new migration script to delete 'encrypted-fs'
attribute. The script will run only when from release is 22.12
and during upgrade-activate.

Test Plan:
PASS: build-pkgs -c controllerconfig
PASS: build-image
PASS: AIO-SX upgrade to 24.xx from previous release with luks
      file system disabled. After upgrade activate encrypted-fs
      attribute should be deleted from DB.
PASS: AIO-SX upgrade to 24.xx from previous release with luks
      file system enabled. After upgrade activate encrypted-fs
      attribute should be deleted from DB.
PASS: AIO-DX upgrade to 24.xx from previous release with luks
      file system disabled. After upgrading controller-1(upgraded/
      active controller), script execution should delete
      encrypted-fs attribute from the DB.

Story: 2010873
Task: 49663

Change-Id: I96ed9bf572f20e64419763eb285f4997c37ddf9b
Signed-off-by: Jagatguru Prasad Mishra <jagatguruprasad.mishra@windriver.com>
This commit is contained in:
Jagatguru Prasad Mishra 2024-03-05 05:53:36 -05:00
parent 25d58ebcf8
commit 2274dfb942
1 changed files with 39 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

39
controllerconfig/controllerconfig/upgrade-scripts/07-delete-encrypted-fs-service-parameter.sh Normal file
View File

@ -0,0 +1,39 @@
#!/bin/bash
#
# Copyright (c) 2024 Wind River Systems, Inc.
#
# SPDX-License-Identifier: Apache-2.0
#
#
# This migration script is used for deleting the encrypted-fs attribute
# of 'platform config' service parameter during the activate stage of
# platform upgrade if it is present.
# The migration scripts are passed these parameters:
NAME=$(basename $0)
FROM_RELEASE=$1
TO_RELEASE=$2
ACTION=$3
# This will log to /var/log/platform.log
function log {
logger -p local1.info $1
}
# Only run this script during upgrade-activate and from release 22.12
if [[ "$ACTION" != "activate" || "$FROM_RELEASE" != "22.12" ]]; then
log "$NAME: skipping encryption-fs service parameter deletion."
exit 0
fi
source /etc/platform/openrc
# Get the UUID of the encrypted-fs attribute
ENCRYPTED_FS_UUID=$( system service-parameter-list --service platform --section config | grep " encrypted-fs " | awk -F '|' '{print $2}'| xargs );
# Check if ENCRYPTED_FS_UUID is not empty
if [ -n "$ENCRYPTED_FS_UUID" ]; then
# If ENCRYPTED_FS_UUID is not empty, delete the parameter
system service-parameter-delete $ENCRYPTED_FS_UUID
fi