2015-07-20 00:09:47 -07:00
|
|
|
#!/bin/bash
|
|
|
|
|
|
|
|
|
|
set -eu -o pipefail
|
|
|
|
|
|
|
|
|
|
if [[ $EUID -ne 0 ]]; then
|
|
|
|
|
echo "This script should be run as root." >&2
|
|
|
|
|
exit 1
|
|
|
|
|
fi
|
|
|
|
|
|
|
|
|
|
if [[ $# == 1 && "$1" == "--check" ]]; then
|
|
|
|
|
echo "OK"
|
|
|
|
|
exit 0
|
|
|
|
|
fi
|
|
|
|
|
|
2016-09-15 15:30:41 +02:00
|
|
|
|
|
|
|
|
# verify argument count
|
2016-12-07 10:33:16 +01:00
|
|
|
if [[ "$1" == "s3" && $# -lt 7 ]]; then
|
|
|
|
|
echo "Usage: backupbox.sh s3 <s3 url> <access key id> <access key> <region> <endpoint> <password> [session token]"
|
2016-09-15 15:30:41 +02:00
|
|
|
exit 1
|
|
|
|
|
fi
|
|
|
|
|
|
2016-09-16 14:02:29 +02:00
|
|
|
if [[ "$1" == "filesystem" && $# -lt 4 ]]; then
|
2016-09-15 15:30:41 +02:00
|
|
|
echo "Usage: backupbox.sh filesystem <backupFolder> <fileName> <password>"
|
2015-07-20 00:09:47 -07:00
|
|
|
exit 1
|
|
|
|
|
fi
|
|
|
|
|
|
2016-09-15 15:30:41 +02:00
|
|
|
# extract arguments
|
|
|
|
|
if [[ "$1" == "s3" ]]; then
|
|
|
|
|
# env vars used by the awscli
|
|
|
|
|
readonly s3_url="$2"
|
|
|
|
|
export AWS_ACCESS_KEY_ID="$3"
|
|
|
|
|
export AWS_SECRET_ACCESS_KEY="$4"
|
|
|
|
|
export AWS_DEFAULT_REGION="$5"
|
2016-12-07 10:33:16 +01:00
|
|
|
readonly endpoint_url="$6"
|
|
|
|
|
readonly password="$7"
|
2016-09-15 15:30:41 +02:00
|
|
|
|
2016-12-07 10:47:06 +01:00
|
|
|
if [ $# -gt 7 ]; then
|
2016-12-07 10:33:16 +01:00
|
|
|
export AWS_SESSION_TOKEN="$8"
|
2016-09-15 15:30:41 +02:00
|
|
|
fi
|
2017-01-23 14:03:36 -08:00
|
|
|
elif [[ "$1" == "filesystem" ]]; then
|
2016-09-15 15:30:41 +02:00
|
|
|
readonly backup_folder="$2"
|
|
|
|
|
readonly backup_fileName="$3"
|
|
|
|
|
readonly password="$4"
|
2016-06-13 19:10:08 +02:00
|
|
|
fi
|
|
|
|
|
|
2016-09-15 15:30:41 +02:00
|
|
|
# perform backup
|
2017-01-24 10:09:05 -08:00
|
|
|
BOX_DATA_DIR="${HOME}/boxdata"
|
2017-01-20 15:51:01 -08:00
|
|
|
MAIL_DATA_DIR="${HOME}/data/mail"
|
2017-01-24 10:09:05 -08:00
|
|
|
mail_snapshot_dir="${HOME}/data/snapshots/mail"
|
2015-07-20 00:09:47 -07:00
|
|
|
|
|
|
|
|
echo "Creating MySQL dump"
|
|
|
|
|
mysqldump -u root -ppassword --single-transaction --routines --triggers box > "${BOX_DATA_DIR}/box.mysqldump"
|
|
|
|
|
|
2017-01-21 23:40:41 -08:00
|
|
|
echo "Snapshotting mail"
|
2017-01-24 10:09:05 -08:00
|
|
|
btrfs subvolume delete "${mail_snapshot_dir}" &> /dev/null || true
|
2017-01-20 15:51:01 -08:00
|
|
|
btrfs subvolume snapshot -r "${MAIL_DATA_DIR}" "${mail_snapshot_dir}"
|
2015-07-20 00:09:47 -07:00
|
|
|
|
2016-09-16 16:58:15 +02:00
|
|
|
# will be checked at the end
|
|
|
|
|
try=0
|
|
|
|
|
|
2016-09-15 15:30:41 +02:00
|
|
|
if [[ "$1" == "s3" ]]; then
|
|
|
|
|
for try in `seq 1 5`; do
|
|
|
|
|
echo "Uploading backup to ${s3_url} (try ${try})"
|
|
|
|
|
error_log=$(mktemp)
|
2015-08-25 12:13:11 -07:00
|
|
|
|
2016-12-07 10:33:16 +01:00
|
|
|
# may be empty
|
|
|
|
|
optional_args=""
|
|
|
|
|
if [ -n "${endpoint_url}" ]; then
|
|
|
|
|
optional_args="--endpoint-url ${endpoint_url}"
|
|
|
|
|
fi
|
|
|
|
|
|
2016-09-15 15:30:41 +02:00
|
|
|
# use aws instead of curl because curl will always read entire stream memory to set Content-Length
|
|
|
|
|
# aws will do multipart upload
|
2017-01-24 10:09:05 -08:00
|
|
|
if tar -czf - -C "${HOME}" --transform="s,^boxdata/\?,box/," --transform="s,^data/mail/\?,mail/," --show-transformed-names boxdata data/mail \
|
2016-09-15 15:30:41 +02:00
|
|
|
| openssl aes-256-cbc -e -pass "pass:${password}" \
|
2016-12-07 10:33:16 +01:00
|
|
|
| aws ${optional_args} s3 cp - "${s3_url}" 2>"${error_log}"; then
|
2016-09-15 15:30:41 +02:00
|
|
|
break
|
|
|
|
|
fi
|
|
|
|
|
cat "${error_log}" && rm "${error_log}"
|
|
|
|
|
done
|
2017-01-04 13:23:19 -08:00
|
|
|
elif [[ "$1" == "filesystem" ]]; then
|
2016-09-15 15:30:41 +02:00
|
|
|
echo "Storing backup to ${backup_folder}/${backup_fileName}"
|
|
|
|
|
|
2017-01-09 16:06:25 -08:00
|
|
|
mkdir -p $(dirname "${backup_folder}/${backup_fileName}")
|
2016-09-15 15:30:41 +02:00
|
|
|
|
2017-01-24 10:09:05 -08:00
|
|
|
tar -czf - -C "${HOME}" --transform="s,^boxdata/\?,box/," --transform="s,^data/mail/\?,mail/," --show-transformed-names boxdata data/mail \
|
|
|
|
|
| openssl aes-256-cbc -e -pass "pass:${password}" > "${backup_folder}/${backup_fileName}"
|
2016-09-15 15:30:41 +02:00
|
|
|
fi
|
2015-07-20 00:09:47 -07:00
|
|
|
|
|
|
|
|
echo "Deleting backup snapshot"
|
2017-01-20 15:51:01 -08:00
|
|
|
btrfs subvolume delete "${mail_snapshot_dir}"
|
2015-07-20 00:09:47 -07:00
|
|
|
|
|
|
|
|
if [[ ${try} -eq 5 ]]; then
|
|
|
|
|
echo "Backup failed"
|
2016-08-19 21:53:52 -07:00
|
|
|
exit 3
|
2015-07-20 00:09:47 -07:00
|
|
|
else
|
|
|
|
|
echo "Backup successful"
|
|
|
|
|
fi
|
