nik/FreedomBox
1
0
Fork 0
mirror of https://github.com/freedombox/FreedomBox.git synced 2026-05-27 10:44:33 +00:00
Code Issues Packages Projects Releases Wiki Activity

backups: Fix and refactor adding a new remote repository

Browse Source 
- Fix encrypted repositories getting created without encryption.

- Set verified=False by during save operation for safety.

- Handle common error scenarios and show proper messages. Such as authentication
  failure.

- Use pathlib to simplify file handling code.

- Split nested code for readability and do better function splits.

- Expand ~ only if it is at the beginning of the path.

- Allow empty repository path as allowed by SSH.

- Don't internationalize log messages.

Signed-off-by: Sunil Mohan Adapa <sunil@medhas.org>
Reviewed-by: Joseph Nuthalapati <njoseph@thoughtworks.com>
This commit is contained in:
Sunil Mohan Adapa 2019-06-24 16:53:51 -07:00 committed by Joseph Nuthalapati
parent f2ea0b9065
commit 76efccce37
No known key found for this signature in database
GPG Key ID: 5398F00A2FA43C35
2 changed files with 77 additions and 80 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
plinth/modules/backups/repository.py
View File

@ -315,7 +315,7 @@ class SshBorgRepository(BorgRepository):
self.run( self.run(
['init', '--path', self.repo_path, '--encryption', encryption]) ['init', '--path', self.repo_path, '--encryption', encryption])
def save(self, store_credentials=True, verified=True): def save(self, store_credentials=True, verified=False):
""" """
Save the repository in network_storage (kvstore). Save the repository in network_storage (kvstore).
- store_credentials: Boolean whether credentials should be stored. - store_credentials: Boolean whether credentials should be stored.

145
plinth/modules/backups/views.py
View File

@ -20,6 +20,7 @@ Views for the backups app.
import logging import logging
import os import os
import pathlib
import subprocess import subprocess
import tempfile import tempfile
from contextlib import contextmanager from contextlib import contextmanager
@ -29,7 +30,6 @@ from urllib.parse import unquote
import paramiko import paramiko
from django.contrib import messages from django.contrib import messages
from django.contrib.messages.views import SuccessMessageMixin from django.contrib.messages.views import SuccessMessageMixin
from django.forms import ValidationError
from django.http import Http404, StreamingHttpResponse from django.http import Http404, StreamingHttpResponse
from django.shortcuts import redirect from django.shortcuts import redirect
from django.urls import reverse, reverse_lazy from django.urls import reverse, reverse_lazy
@ -267,7 +267,6 @@ class AddRepositoryView(SuccessMessageMixin, FormView):
"""View to create a new remote backup repository.""" """View to create a new remote backup repository."""
form_class = forms.AddRepositoryForm form_class = forms.AddRepositoryForm
template_name = 'backups_repository_add.html' template_name = 'backups_repository_add.html'
success_url = reverse_lazy('backups:index')
def get_context_data(self, **kwargs): def get_context_data(self, **kwargs):
"""Return additional context for rendering the template.""" """Return additional context for rendering the template."""
@ -281,12 +280,18 @@ class AddRepositoryView(SuccessMessageMixin, FormView):
Present the Host key verification form if necessary. Present the Host key verification form if necessary.
""" """
super().form_valid(form)
path = form.cleaned_data.get('repository') path = form.cleaned_data.get('repository')
_, hostname, _ = split_path(path) encryption_passphrase = form.cleaned_data.get('encryption_passphrase')
credentials = _get_credentials(form.cleaned_data) if form.cleaned_data.get('encryption') == 'none':
encryption_passphrase = None
credentials = {
'ssh_password': form.cleaned_data.get('ssh_password'),
'encryption_passphrase': encryption_passphrase
}
repository = SshBorgRepository(path=path, credentials=credentials) repository = SshBorgRepository(path=path, credentials=credentials)
repository.save(verified=False) repository.save(verified=False)
messages.success(self.request, _('Added new remote SSH repository.'))
url = reverse('backups:verify-ssh-hostkey', args=[repository.uuid]) url = reverse('backups:verify-ssh-hostkey', args=[repository.uuid])
return redirect(url) return redirect(url)
@ -328,17 +333,16 @@ class VerifySshHostkeyView(SuccessMessageMixin, FormView):
Network interface information is stripped out. Network interface information is stripped out.
""" """
_, hostname, _ = split_path(self._get_repo_data()['path']) _, hostname, _ = split_path(self._get_repo_data()['path'])
return hostname.split('%')[0] return hostname.split('%')[0] # XXX: Likely incorrect to split
@staticmethod @staticmethod
def _add_ssh_hostkey(hostname, key_type): def _add_ssh_hostkey(hostname, key_type):
"""Add the given SSH key to known_hosts.""" """Add the given SSH key to known_hosts."""
known_hosts_path = cfg.known_hosts known_hosts_path = pathlib.Path(cfg.known_hosts)
if not os.path.exists(known_hosts_path): known_hosts_path.parent.mkdir(parents=True, exist_ok=True)
os.makedirs(known_hosts_path.rsplit('/', maxsplit=1)[0]) known_hosts_path.touch()
open(known_hosts_path, 'w').close()
with open(known_hosts_path, 'a') as known_hosts_file: with known_hosts_path.open('a') as known_hosts_file:
key_line = subprocess.run( key_line = subprocess.run(
['ssh-keyscan', '-t', key_type, hostname], ['ssh-keyscan', '-t', key_type, hostname],
stdout=subprocess.PIPE, stderr=subprocess.DEVNULL, stdout=subprocess.PIPE, stderr=subprocess.DEVNULL,
@ -349,20 +353,17 @@ class VerifySshHostkeyView(SuccessMessageMixin, FormView):
def get(self, *args, **kwargs): def get(self, *args, **kwargs):
"""Skip this view if host is already verified.""" """Skip this view if host is already verified."""
if is_ssh_hostkey_verified(self._get_hostname()): if is_ssh_hostkey_verified(self._get_hostname()):
self._add_remote_repository() messages.success(self.request, _('SSH host already verified.'))
messages.success(self.request, return self._add_remote_repository()
_('Added new remote ssh repository.'))
return redirect(reverse_lazy('backups:index'))
else:
return super().get(*args, **kwargs) return super().get(*args, **kwargs)
def form_valid(self, form): def form_valid(self, form):
"""Create and store the repository.""" """Create and store the repository."""
key_type = form.cleaned_data['ssh_public_key'] key_type = form.cleaned_data['ssh_public_key']
self._add_ssh_hostkey(self._get_hostname(), key_type) self._add_ssh_hostkey(self._get_hostname(), key_type)
self._add_remote_repository() messages.success(self.request, _('SSH host verified.'))
messages.success(self.request, _('Added new remote ssh repository.')) return self._add_remote_repository()
return super().form_valid(form)
def _add_remote_repository(self): def _add_remote_repository(self):
"""On successful verification of host, add repository.""" """On successful verification of host, add repository."""
@ -370,77 +371,76 @@ class VerifySshHostkeyView(SuccessMessageMixin, FormView):
path = repo_data['path'] path = repo_data['path']
credentials = repo_data['credentials'] credentials = repo_data['credentials']
uuid = self.kwargs['uuid'] uuid = self.kwargs['uuid']
encryption = 'none'
if 'encryption_passphrase' in credentials and \
credentials['encryption_passphrase']:
encryption = 'repokey'
try: try:
repository = _validate_remote_repository(path, credentials, dir_contents = _list_remote_directory(path, credentials)
uuid=uuid) repository = SshBorgRepository(uuid=uuid, path=path,
except ValidationError as err: credentials=credentials)
messages.error(self.request, err.message) repository.mount()
# If a ValidationError is thrown, delete the repository repository = _create_remote_repository(repository, encryption,
# so that the user can have another go at creating it. dir_contents)
repository.save(verified=True)
return redirect(reverse_lazy('backups:index'))
except paramiko.BadHostKeyException:
message = _('SSH host public key could not be verified.')
except paramiko.AuthenticationException:
message = _('Authentication to remote server failed.')
except paramiko.SSHException as exception:
message = _('Error establishing connection to server: {}').format(
str(exception))
except BorgRepositoryDoesNotExistError:
message = _('Repository path is neither empty nor '
'is an existing backups repository.')
except Exception as exception:
message = str(exception)
logger.exception('Error adding repository: %s', exception)
messages.error(self.request, message)
messages.error(self.request, _('Repository removed.'))
# Delete the repository so that the user can have another go at
# creating it.
network_storage.delete(uuid) network_storage.delete(uuid)
return redirect(reverse_lazy('backups:repository-add')) return redirect(reverse_lazy('backups:repository-add'))
_create_borg_repository(repository, repo_data.get(
'encryption', 'none'))
def _list_remote_directory(path, credentials):
def _create_borg_repository(repository, encryption='none'): """List a SSH remote directory. Create if it does not exist. """
if not repository.is_mounted:
repository.mount()
try:
repository.get_info()
except BorgRepositoryDoesNotExistError:
repository.create_repository(encryption)
repository.save()
def _get_credentials(data):
credentials = {}
for field_name in ["ssh_password", "encryption_passphrase"]:
field_value = data.get(field_name, None)
if field_value:
credentials[field_name] = field_value
return credentials
def _validate_remote_repository(path, credentials, uuid=None):
"""Validation of SSH remote
* Create empty directory if not exists
* Check if the directory is empty
- if not empty, check if it's an existing backup repository
- else throw an error
"""
username, hostname, dir_path = split_path(path) username, hostname, dir_path = split_path(path)
dir_path = dir_path.replace('~', '.') if dir_path == '':
dir_path = '.'
if dir_path[0] == '~':
dir_path = '.' + dir_path[1:]
password = credentials['ssh_password'] password = credentials['ssh_password']
repository = None
# Ensure remote directory exists, check contents
dir_contents = None
# TODO Test with IPv6 connection # TODO Test with IPv6 connection
with _ssh_connection(hostname, username, password) as ssh_client: with _ssh_connection(hostname, username, password) as ssh_client:
with ssh_client.open_sftp() as sftp_client: with ssh_client.open_sftp() as sftp_client:
dir_contents = None
try: try:
dir_contents = sftp_client.listdir(dir_path) dir_contents = sftp_client.listdir(dir_path)
except FileNotFoundError: except FileNotFoundError:
logger.info( logger.info('Directory %s does not exist, creating.', dir_path)
_(f"Directory {dir_path} doesn't exist. Creating..."))
sftp_client.mkdir(dir_path) sftp_client.mkdir(dir_path)
if dir_contents: return dir_contents
def _create_remote_repository(repository, encryption, dir_contents):
"""Create a Borg repository on remote server if necessary."""
try: try:
repository = SshBorgRepository(uuid=uuid, path=path,
credentials=credentials)
repository.mount()
repository.get_info() repository.get_info()
except BorgRepositoryDoesNotExistError: except BorgRepositoryDoesNotExistError:
msg = _(f'Directory {dir_path} is neither empty nor ' if dir_contents:
'is an existing backups repository.') raise
raise ValidationError(msg)
else: repository.create_repository(encryption)
repository = SshBorgRepository(uuid=uuid, path=path,
credentials=credentials)
return repository return repository
@ -454,9 +454,6 @@ def _ssh_connection(hostname, username, password):
try: try:
ssh_client.connect(hostname, username=username, password=password) ssh_client.connect(hostname, username=username, password=password)
yield ssh_client yield ssh_client
except Exception as err:
msg = _('Accessing the remote repository failed. Details: %(err)s')
raise ValidationError(msg, params={'err': str(err)})
finally: finally:
ssh_client.close() ssh_client.close()