Home Explore Help
Register Sign In
demure
/
scripts
Watch 2
Star 2
Fork 1
Files Issues 0 Pull Requests 0 Wiki
Tree: 95efafcfb5
Branches Tags
scripts
/
borg_wrap.sh

borg_wrap.sh 4.2 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163 
  1. #!/bin/sh
    2. 

  2. ##### This is my (demuredemeanor) borgbackup wrapper script.
    3. 

  3. # Blog Post: https://demu.red/blog/2017/02/backups-revisited/
    4. 

  4. # Source Code:  https://notabug.org/demure/scripts/src/master/borg_wrap.sh
    5. 

  5. # Uses tabstop=4; shiftwidth=4 tabs; foldmarker={{{,}}};
    6. 

  6. #
    7. 

  7. # This is a script to run my borg backups.
    8. 

  8. # It has basic config error checking, and verifies I am on my home network.
    9. 

  9. # Usage: borg_wrap.sh [-q|--quiet]
    10. 

  10. #
    11. 

  11. # Note: I run this as root, and have a /etc/sudoers.d/ file granting permissions.
    12. 

  12. #
    13. 

  13. # Note: I run this via crontab
    14. 

  14. # 0 */1 * * * sudo /usr/local/sbin/borg_wrap.sh -q
    15. 

  15. #
    16. 

  16. # Note: pruning:
    17. 

  17. # borg prune -v --list --dry-run -d=7 -w=4 -m=12 -y=-1 --keep-within=1d /media/store/backups/doom/
    18. 

  18. 

  19. ### Conf ### {{{
    20. 

  20. ## Set Repo location
    21. 

  21. #export BORG_REPO='/media/store/backups/doom/'
    22. 

  22. export BORG_REPO='ssh://demure@10.0.0.10:500/mnt/borg/doom'
    23. 

  23. 

  24. ## Set the right ssh key
    25. 

  25. ## Note, use with the following in the destination ssh authorized_keys
    26. 

  26. ## command="borg serve --restrict-to-path /path/to/repo",no-pty,no-agent-forwarding,no-port-forwarding,no-X11-forwarding,no-user-rc ssh-rsa AAAAB3[...]
    27. 

  27. export BORG_RSH="ssh -i $HOME/.ssh/borg_id_ed25519"
    28. 

  28. 

  29. ## Pull Repo passwd
    30. 

  30. export BORG_PASSPHRASE="$(pass cli/borg 2>/dev/null)"
    31. 

  31. 

  32. ## Path to log file
    33. 

  33. Log_Path="$HOME/.config/borg/log"
    34. 

  34. 

  35. ## Temp file for log pruning
    36. 

  36. Log_tmp="/tmp/borg_log.tmp"
    37. 

  37. 

  38. ## Define home routers MAC addr.
    39. 

  39. MAC_addr="10:FE:ED:E9:63:04"
    40. 

  40. 

  41. ## Define remote address, for testing.
    42. 

  42. Host="10.0.0.10"
    43. 

  43. ### End Conf ### }}}
    44. 

  44. 

  45. ### Conf Check ### {{{
    46. 

  46. ## Exit if BORG_REPO not specified.
    47. 

  47. if [ "${BORG_REPO}" = "" ]; then
    48. 

  48. 	echo 'No repo specified.'
    49. 

  49. 	exit 78
    50. 

  50. fi
    51. 

  51. 

  52. ## Exit if no log file specified.
    53. 

  53. if [ "${Log_Path}" = "" ]; then
    54. 

  54. 	echo 'No log file specified.'
    55. 

  55. 	exit 78
    56. 

  56. fi
    57. 

  57. 

  58. ## Exit if no router MAC specified.
    59. 

  59. if [ "${MAC_addr}" = "" ]; then
    60. 

  60. 	echo 'No router MAC specified.'
    61. 

  61. 	exit 78
    62. 

  62. fi
    63. 

  63. 

  64. ## Exit if storage address specified.
    65. 

  65. if [ "${Host}" = "" ]; then
    66. 

  66. 	echo 'No storage address specified.'
    67. 

  67. 	exit 78
    68. 

  68. fi
    69. 

  69. ### End Conf Check ### }}}
    70. 

  70. 

  71. ### Startup Check ### {{{
    72. 

  72. 	### Augment Check ### {{{
    73. 

  73. 	if [ $# -gt 1 ]; then
    74. 

  74. 		echo 'Too many augments.'
    75. 

  75. 		exit 1
    76. 

  76. 	fi
    77. 

  77. 

  78. 	if [ ! -z "$1" ]; then
    79. 

  79. 		if [ "$1" = '-q' ] || [ "$1" = '--Quiet' ]; then
    80. 

  80. 			VERBOSE=""
    81. 

  81. 			Quiet=1
    82. 

  82. 		else
    83. 

  83. 			echo 'Bad augments.'
    84. 

  84. 			exit 1
    85. 

  85. 		fi
    86. 

  86. 	  else
    87. 

  87. 		VERBOSE='-v --stats -p'
    88. 

  88. 		Quiet=0
    89. 

  89. 	fi
    90. 

  90. 	### End Augment Check ### }}}
    91. 

  91. 

  92. 	### Network Check ### {{{
    93. 

  93. 	check_mac="$(/bin/ip neigh | awk '/router/ {} END {print $5}')"
    94. 

  94. 	if [ ! "$MAC_addr" = "$check_mac" ]; then
    95. 

  95. 		if [ $Quiet -eq 0 ]; then
    96. 

  96. 			echo "Not on home network."
    97. 

  97. 		fi
    98. 

  98. 		Error='BadNet'
    99. 

  99. 	  else
    100. 

  100. 		ping -c 3 $Host 1>/dev/null
    101. 

  101. 		if [ ! $? = 0 ]; then
    102. 

  102. 			if [ $Quiet -eq 0 ]; then
    103. 

  103. 				echo "Can't reach host."
    104. 

  104. 			fi
    105. 

  105. 			Error='NoPing'
    106. 

  106. 		fi
    107. 

  107. 	fi
    108. 

  108. 	### End Network Check ### }}}
    109. 

  109. 

  110. 	### Passwd Load Check ### {{{
    111. 

  111. 	if [ -z "$BORG_PASSPHRASE" ]; then
    112. 

  112. 		if [ $Quiet -eq 0 ]; then
    113. 

  113. 			echo "Password failed to load."
    114. 

  114. 		fi
    115. 

  115. 		Error='NoPass'
    116. 

  116. 	fi
    117. 

  117. 	### End Passed Load Check ### }}}
    118. 

  118. ### End Startup Check ### }}}
    119. 

  119. 

  120. ## If no errors, run.
    121. 

  121. if [ -z $Error ]; then
    122. 

  122. 	borg create ${VERBOSE} -C lz4 \
    123. 

  123. 				::'{hostname}_{now:%Y-%m-%d_%H%M}' \
    124. 

  124. 				/ \
    125. 

  125. 				--exclude-caches \
    126. 

  126. 				-e /dev \
    127. 

  127. 				-e /media/ \
    128. 

  128. 				-e /mnt/ \
    129. 

  129. 				-e /proc \
    130. 

  130. 				-e /run \
    131. 

  131. 				-e /sys \
    132. 

  132. 				-e /tmp \
    133. 

  133. 				-e /var/cache \
    134. 

  134. 				-e '/var/tmp/*' \
    135. 

  135. 				-e '/home/*/Downloads/' \
    136. 

  136. 				-e '/home/*/temp/' \
    137. 

  137. 				-e '/home/*/vault' \
    138. 

  138. 				-e '/home/*/.config/chromium' \
    139. 

  139. 				-e '/home/*/.local/share/mana/updates' \
    140. 

  140. 				-e '*.cache' \
    141. 

  141. 				-e '*.mail' \
    142. 

  142. 				-e '*.thumbnails'
    143. 

  143. 

  144. 	## Catch exit code
    145. 

  145. 	Error=$?
    146. 

  146. fi
    147. 

  147. 

  148. ## Log pass/fail state
    149. 

  149. if [ ! $Error = "0" ]; then
    150. 

  150. 	echo "$(date '+%F %T')\tfailed\t${Error}" | cat >> ${Log_Path}
    151. 

  151.   else
    152. 

  152. 	echo "$(date '+%F %T')\tpassed" | cat >> ${Log_Path}
    153. 

  153. fi
    154. 

  154. 

  155. ## This prunes the log, leaving last 30 days.
    156. 

  156. ## If no passed backups in 30 days, also leaves lasted passed entry.
    157. 

  157. ## You can comment out to disable
    158. 

  158. awk -v cutoff="$(date -d"-30 days" +%F)" 'BEGIN{pchk=0} {a[i++]=$0} END{for(j=i-1;j>=0;j--) if(a[j] >= cutoff || pchk==0 && a[j] ~ /passed/){if(a[j] ~ /passed/){pchk=1}; b[k++]=a[j]};{for(l=k-1;l>=0;l--) print b[l]}}' ${Log_Path} > ${Log_tmp} && mv ${Log_tmp} ${Log_Path}
    159. 

  159. 

  160. ## Fix borg permissions so that things like `borg list` work without sudo
    161. 

  161. ## This assumes that sudo preserves envars.
    162. 

  162. chown -R ${USER}:${USER} ${HOME}/.config/borg ${HOME}/.cache/borg
    163. 

  163.