src/sftp.js

'use strict';

exports = module.exports = {
    start,
    rebuild,

    DEFAULT_MEMORY_LIMIT: 256 * 1024 * 1024
};

const apps = require('./apps.js'),
    assert = require('assert'),
    BoxError = require('./boxerror.js'),
    debug = require('debug')('box:sftp'),
    hat = require('./hat.js'),
    infra = require('./infra_version.js'),
    paths = require('./paths.js'),
    safe = require('safetydance'),
    shell = require('./shell.js'),
    system = require('./system.js'),
    volumes = require('./volumes.js');

async function rebuild(serviceConfig, options) {
    assert.strictEqual(typeof serviceConfig, 'object');
    assert.strictEqual(typeof options, 'object');

    debug('rebuilding container');

    const tag = infra.images.sftp.tag;
    const memoryLimit = serviceConfig.memoryLimit || exports.DEFAULT_MEMORY_LIMIT;
    const memory = system.getMemoryAllocation(memoryLimit);
    const cloudronToken = hat(8 * 128);

    let dataDirs = [];

    const stat = safe.fs.lstatSync(paths.APPS_DATA_DIR);
    if (!stat) throw new BoxError(BoxError.FS_ERROR, safe.error);

    const resolvedAppDataDir = stat.isSymbolicLink() ? safe.fs.readlinkSync(paths.APPS_DATA_DIR) : paths.APPS_DATA_DIR;

    dataDirs.push({ hostDir: resolvedAppDataDir, mountDir: '/mnt/appsdata' });

    const result = await apps.list();

    result.forEach(function (app) {
        if (!app.manifest.addons['localstorage'] || !app.dataDir) return;

        const hostDir = apps.getDataDir(app, app.dataDir), mountDir = `/mnt/${app.id}`;
        if (!safe.fs.existsSync(hostDir)) { // this can fail if external mount does not have permissions for yellowtent user
            // do not create host path when cloudron is restoring. this will then create dir with root perms making restore logic fail
            debug(`Ignoring app data dir ${hostDir} for ${app.id} since it does not exist`);
            return;
        }

        dataDirs.push({ hostDir, mountDir });
    });

    let allVolumes = await volumes.list();

    dataDirs.push({ hostDir: '/mnt/volumes', mountDir: '/mnt/volumes' });

    allVolumes.forEach(function (volume) {
        if (volume.hostPath.startsWith('/mnt/volumes/')) return;

        if (!safe.fs.existsSync(volume.hostPath)) {
            debug(`Ignoring volume host path ${volume.hostPath} since it does not exist`);
            return;
        }

        dataDirs.push({ hostDir: volume.hostPath, mountDir: `/mnt/${volume.id}` });
    });

    const mounts = dataDirs.map(function (v) { return `-v "${v.hostDir}:${v.mountDir}"`; }).join(' ');
    const cmd = `docker run --restart=always -d --name="sftp" \
                --hostname sftp \
                --net cloudron \
                --net-alias sftp \
                --log-driver syslog \
                --log-opt syslog-address=udp://127.0.0.1:2514 \
                --log-opt syslog-format=rfc5424 \
                --log-opt tag=sftp \
                -m ${memory} \
                --memory-swap ${memoryLimit} \
                --dns 172.18.0.1 \
                --dns-search=. \
                -p 222:22 \
                ${mounts} \
                -e CLOUDRON_SFTP_TOKEN="${cloudronToken}" \
                -v "${paths.SFTP_KEYS_DIR}:/etc/ssh:ro" \
                --label isCloudronManaged=true \
                --read-only -v /tmp -v /run "${tag}"`;

    // ignore error if container not found (and fail later) so that this code works across restarts
    await shell.promises.exec('stopSftp', 'docker stop sftp || true');
    await shell.promises.exec('removeSftp', 'docker rm -f sftp || true');
    await shell.promises.exec('startSftp', cmd);
}

async function start(existingInfra, serviceConfig) {
    assert.strictEqual(typeof existingInfra, 'object');
    assert.strictEqual(typeof serviceConfig, 'object');

    await rebuild(serviceConfig, { force: true }); // force rebuild when infra changed
}
containerize sftp 2019-04-04 20:46:01 -07:00			`'use strict';`

			`exports = module.exports = {`
Fixes to service configuration restart service does not rebuild automatically, we should add a route for that. we need to figure where to scale services etc if we randomly create containers like that. 2021-01-21 12:53:38 -08:00			`start,`
sftp: force rebuild when infra changes 2021-02-09 22:57:21 -08:00			`rebuild,`
Fixes to service configuration restart service does not rebuild automatically, we should add a route for that. we need to figure where to scale services etc if we randomly create containers like that. 2021-01-21 12:53:38 -08:00
			`DEFAULT_MEMORY_LIMIT: 256 * 1024 * 1024`
containerize sftp 2019-04-04 20:46:01 -07:00			`};`

volumes: async'ify 2021-05-11 17:50:48 -07:00			`const apps = require('./apps.js'),`
Mount data custom app data location specifically into sftp addon Fixes #722 2020-07-24 14:44:41 +02:00			`assert = require('assert'),`
sftp: rework appdata and volume mounting logic this tries to solve two issues: * the current approach mounts the data directories of apps/volumes individually. this causes a problem with volume mounts that mount after the container is started i.e not network time/delay but systemd ordering. With CIFS, the mount is a hostname. This requires unbound to be running but unbound can only start after docker because it wants to bind to the docker network. one way to fix is to not start sftp automatically and only start sftp container in the box code. This results in the sftp container attaching itself of the directory before mounting and it appears empty. (on the host, the directory will appear to have mount data!) * every time apptask runs we keep rebuilding this sftp container. this results in much race. the fix is: mount the parent directory of apps and volumes. in addition, then any specialized appdata paths and volume paths are mounted individually. this greatly minimized rebuilding and also since we don't rely on binding to the mount point itself. the child directories can mount in leisure. this limits the race issue to only no-op volume mounts. part of #789 2021-06-24 16:19:30 -07:00			`BoxError = require('./boxerror.js'),`
Mount data custom app data location specifically into sftp addon Fixes #722 2020-07-24 14:44:41 +02:00			`debug = require('debug')('box:sftp'),`
sftp: init and access API with a token 2020-10-19 17:26:20 -07:00			`hat = require('./hat.js'),`
containerize sftp 2019-04-04 20:46:01 -07:00			`infra = require('./infra_version.js'),`
sftp: ubuntu 20 requires keys in legacy format 2020-11-26 11:45:43 -08:00			`paths = require('./paths.js'),`
sftp: only mount data dirs that exist when restoring, the platform starts first and the sftp container goes and creates app data dirs with root permission. this prevents the app restore logic from downloading the backup since it expects yellowtent perm 2020-08-09 12:10:20 -07:00			`safe = require('safetydance'),`
Only rebuild sftp is something has changed 2020-08-20 11:04:31 +02:00			`shell = require('./shell.js'),`
Fixes to service configuration restart service does not rebuild automatically, we should add a route for that. we need to figure where to scale services etc if we randomly create containers like that. 2021-01-21 12:53:38 -08:00			`system = require('./system.js'),`
sftp: rework appdata and volume mounting logic this tries to solve two issues: * the current approach mounts the data directories of apps/volumes individually. this causes a problem with volume mounts that mount after the container is started i.e not network time/delay but systemd ordering. With CIFS, the mount is a hostname. This requires unbound to be running but unbound can only start after docker because it wants to bind to the docker network. one way to fix is to not start sftp automatically and only start sftp container in the box code. This results in the sftp container attaching itself of the directory before mounting and it appears empty. (on the host, the directory will appear to have mount data!) * every time apptask runs we keep rebuilding this sftp container. this results in much race. the fix is: mount the parent directory of apps and volumes. in addition, then any specialized appdata paths and volume paths are mounted individually. this greatly minimized rebuilding and also since we don't rely on binding to the mount point itself. the child directories can mount in leisure. this limits the race issue to only no-op volume mounts. part of #789 2021-06-24 16:19:30 -07:00			`volumes = require('./volumes.js');`
containerize sftp 2019-04-04 20:46:01 -07:00
docker.js and services.js: async'ify 2021-08-25 19:41:46 -07:00			`async function rebuild(serviceConfig, options) {`
Fixes to service configuration restart service does not rebuild automatically, we should add a route for that. we need to figure where to scale services etc if we randomly create containers like that. 2021-01-21 12:53:38 -08:00			`assert.strictEqual(typeof serviceConfig, 'object');`
sftp: force rebuild when infra changes 2021-02-09 22:57:21 -08:00			`assert.strictEqual(typeof options, 'object');`
Mount data custom app data location specifically into sftp addon Fixes #722 2020-07-24 14:44:41 +02:00
			`debug('rebuilding container');`

containerize sftp 2019-04-04 20:46:01 -07:00			`const tag = infra.images.sftp.tag;`
Fixes to service configuration restart service does not rebuild automatically, we should add a route for that. we need to figure where to scale services etc if we randomly create containers like that. 2021-01-21 12:53:38 -08:00			`const memoryLimit = serviceConfig.memoryLimit \|\| exports.DEFAULT_MEMORY_LIMIT;`
			`const memory = system.getMemoryAllocation(memoryLimit);`
sftp: init and access API with a token 2020-10-19 17:26:20 -07:00			`const cloudronToken = hat(8 * 128);`
containerize sftp 2019-04-04 20:46:01 -07:00
sftp: rework appdata and volume mounting logic this tries to solve two issues: * the current approach mounts the data directories of apps/volumes individually. this causes a problem with volume mounts that mount after the container is started i.e not network time/delay but systemd ordering. With CIFS, the mount is a hostname. This requires unbound to be running but unbound can only start after docker because it wants to bind to the docker network. one way to fix is to not start sftp automatically and only start sftp container in the box code. This results in the sftp container attaching itself of the directory before mounting and it appears empty. (on the host, the directory will appear to have mount data!) * every time apptask runs we keep rebuilding this sftp container. this results in much race. the fix is: mount the parent directory of apps and volumes. in addition, then any specialized appdata paths and volume paths are mounted individually. this greatly minimized rebuilding and also since we don't rely on binding to the mount point itself. the child directories can mount in leisure. this limits the race issue to only no-op volume mounts. part of #789 2021-06-24 16:19:30 -07:00			`let dataDirs = [];`

			`const stat = safe.fs.lstatSync(paths.APPS_DATA_DIR);`
docker.js and services.js: async'ify 2021-08-25 19:41:46 -07:00			`if (!stat) throw new BoxError(BoxError.FS_ERROR, safe.error);`
sftp: rework appdata and volume mounting logic this tries to solve two issues: * the current approach mounts the data directories of apps/volumes individually. this causes a problem with volume mounts that mount after the container is started i.e not network time/delay but systemd ordering. With CIFS, the mount is a hostname. This requires unbound to be running but unbound can only start after docker because it wants to bind to the docker network. one way to fix is to not start sftp automatically and only start sftp container in the box code. This results in the sftp container attaching itself of the directory before mounting and it appears empty. (on the host, the directory will appear to have mount data!) * every time apptask runs we keep rebuilding this sftp container. this results in much race. the fix is: mount the parent directory of apps and volumes. in addition, then any specialized appdata paths and volume paths are mounted individually. this greatly minimized rebuilding and also since we don't rely on binding to the mount point itself. the child directories can mount in leisure. this limits the race issue to only no-op volume mounts. part of #789 2021-06-24 16:19:30 -07:00
			`const resolvedAppDataDir = stat.isSymbolicLink() ? safe.fs.readlinkSync(paths.APPS_DATA_DIR) : paths.APPS_DATA_DIR;`

			`dataDirs.push({ hostDir: resolvedAppDataDir, mountDir: '/mnt/appsdata' });`

docker.js and services.js: async'ify 2021-08-25 19:41:46 -07:00			`const result = await apps.list();`

			`result.forEach(function (app) {`
			`if (!app.manifest.addons['localstorage'] \|\| !app.dataDir) return;`

			const hostDir = apps.getDataDir(app, app.dataDir), mountDir = `/mnt/${app.id}`;
			`if (!safe.fs.existsSync(hostDir)) { // this can fail if external mount does not have permissions for yellowtent user`
			`// do not create host path when cloudron is restoring. this will then create dir with root perms making restore logic fail`
			debug(`Ignoring app data dir ${hostDir} for ${app.id} since it does not exist`);
			`return;`
			`}`

			`dataDirs.push({ hostDir, mountDir });`
			`});`

			`let allVolumes = await volumes.list();`

			`dataDirs.push({ hostDir: '/mnt/volumes', mountDir: '/mnt/volumes' });`

			`allVolumes.forEach(function (volume) {`
			`if (volume.hostPath.startsWith('/mnt/volumes/')) return;`

			`if (!safe.fs.existsSync(volume.hostPath)) {`
			debug(`Ignoring volume host path ${volume.hostPath} since it does not exist`);
			`return;`
			`}`

			dataDirs.push({ hostDir: volume.hostPath, mountDir: `/mnt/${volume.id}` });
Mount data custom app data location specifically into sftp addon Fixes #722 2020-07-24 14:44:41 +02:00			`});`
docker.js and services.js: async'ify 2021-08-25 19:41:46 -07:00
			const mounts = dataDirs.map(function (v) { return `-v "${v.hostDir}:${v.mountDir}"`; }).join(' ');
			const cmd = `docker run --restart=always -d --name="sftp" \
			`--hostname sftp \`
			`--net cloudron \`
			`--net-alias sftp \`
			`--log-driver syslog \`
			`--log-opt syslog-address=udp://127.0.0.1:2514 \`
			`--log-opt syslog-format=rfc5424 \`
			`--log-opt tag=sftp \`
			`-m ${memory} \`
			`--memory-swap ${memoryLimit} \`
			`--dns 172.18.0.1 \`
			`--dns-search=. \`
			`-p 222:22 \`
			`${mounts} \`
			`-e CLOUDRON_SFTP_TOKEN="${cloudronToken}" \`
			`-v "${paths.SFTP_KEYS_DIR}:/etc/ssh:ro" \`
			`--label isCloudronManaged=true \`
			--read-only -v /tmp -v /run "${tag}"`;

			`// ignore error if container not found (and fail later) so that this code works across restarts`
			`await shell.promises.exec('stopSftp', 'docker stop sftp \|\| true');`
			`await shell.promises.exec('removeSftp', 'docker rm -f sftp \|\| true');`
			`await shell.promises.exec('startSftp', cmd);`
containerize sftp 2019-04-04 20:46:01 -07:00			`}`
Fixes to service configuration restart service does not rebuild automatically, we should add a route for that. we need to figure where to scale services etc if we randomly create containers like that. 2021-01-21 12:53:38 -08:00
docker.js and services.js: async'ify 2021-08-25 19:41:46 -07:00			`async function start(existingInfra, serviceConfig) {`
Fixes to service configuration restart service does not rebuild automatically, we should add a route for that. we need to figure where to scale services etc if we randomly create containers like that. 2021-01-21 12:53:38 -08:00			`assert.strictEqual(typeof existingInfra, 'object');`
			`assert.strictEqual(typeof serviceConfig, 'object');`

docker.js and services.js: async'ify 2021-08-25 19:41:46 -07:00			`await rebuild(serviceConfig, { force: true }); // force rebuild when infra changed`
Fixes to service configuration restart service does not rebuild automatically, we should add a route for that. we need to figure where to scale services etc if we randomly create containers like that. 2021-01-21 12:53:38 -08:00			`}`