jjkiers/cloudron-box
1
0
Fork 0
Code Issues Pull Requests 1 Actions Packages Projects Releases Wiki Activity

Add filesystem backend encryption support

Browse Source 
We will probably remove this but lets keep this for now
just to keep changes low in the next release.
This commit is contained in:
Johannes Zellner
2017-04-14 17:46:25 +02:00
parent 5e1ad4ad93
commit 6d8cf8456e
1 changed files with 14 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

16
src/storage/filesystem.js
View File

@@ -30,6 +30,7 @@ var assert = require('assert'),
shell = require('../shell.js'),
tar = require('tar-fs'),
zlib = require('zlib'),
crypto = require('crypto'),
archiver = require('archiver');
var FALLBACK_BACKUP_FOLDER = '/var/backups';
@@ -53,11 +54,16 @@ function backup(apiConfig, backupId, sourceDirectories, callback) {
var fileStream = fs.createWriteStream(backupFilePath);
var archive = archiver('tar', { gzip: true });
var cipher = crypto.createCipher('aes-256-cbc', apiConfig.key || '');
fileStream.on('error', function (error) {
console.error('[%s] backup: out stream error.', error);
});
cipher.on('error', function (error) {
console.error('[%s] backup: cipher stream error.', error);
});
archive.on('error', function (error) {
console.error('[%s] backup: archive stream error.', error);
});
@@ -67,7 +73,7 @@ function backup(apiConfig, backupId, sourceDirectories, callback) {
callback();
});
archive.pipe(fileStream);
archive.pipe(cipher).pipe(fileStream);
sourceDirectories.forEach(function (directoryMap) {
archive.directory(directoryMap.source, directoryMap.destination);
});
@@ -94,6 +100,7 @@ function restore(apiConfig, backupId, destinationDirectories, callback) {
if (error) return callback(error);
var fileStream = fs.createReadStream(sourceFilePath);
var decipher = crypto.createDecipher('aes-256-cbc', apiConfig.key || '');
var gunzipStream = zlib.createGunzip({});
var extract = tar.extract(directory.destination);
@@ -102,6 +109,11 @@ function restore(apiConfig, backupId, destinationDirectories, callback) {
callback(new BackupsError(BackupsError.INTERNAL_ERROR, error));
});
decipher.on('error', function (error) {
console.error('[%s] restore: decipher stream error.', error);
callback(new BackupsError(BackupsError.INTERNAL_ERROR, error));
});
gunzipStream.on('error', function (error) {
console.error('[%s] restore: gunzip stream error.', error);
callback(new BackupsError(BackupsError.INTERNAL_ERROR, error));
@@ -117,7 +129,7 @@ function restore(apiConfig, backupId, destinationDirectories, callback) {
callback();
});
fileStream.pipe(gunzipStream).pipe(extract);
fileStream.pipe(decipher).pipe(gunzipStream).pipe(extract);
});
}, function (error) {
if (error) return callback(error);