Labels Milestones

New Issue

Errno 2 for symlinks of nspawn containers #596

Closed

opened 5 months ago by nachfuellbar · 9 comments

nachfuellbar commented 5 months ago

What I'm trying to do and why

Steps to reproduce (if a bug)

Create nspawn container and backup from underlying host
Symlinks for "/run/lock", "/etc/mtab", etc are to tmpfs folders which aren't visible to the host running the containers.

Alternatively you could create a broken symlink manually

Actual behavior (if a bug)

ssh:/XXX/./backups: Collecting special file paths
borg create --exclude-from /tmp/tmp1_az7fgy --compression zstd --one-file-system --read-special --remote-path /XXX/bin/borg ssh:/XXX/./backups::{hostname}-{now:%Y-%m-%dT%H:%M:%S.%f} /var/lib/machines/XXX --dry-run --list
ssh://XXX/./backups: Error running actions for repository
[Errno 2] No such file or directory: '/var/lib/machines/XXX/var/lock'

After createing the folder /var/lib/machines/XXX/run/lock on host i got the next issue with mtab

ssh://XXX/./backups: Error running actions for repository
[Errno 2] No such file or directory: '/var/lib/machines/XXX/etc/mtab'

Expected behavior (if a bug)

Same as with Version 1.7.1 - just backup the symlink like before the last update ;)

Other notes / implementation ideas

Environment

borgmatic version: 1.7.2

borgmatic installation method: pacman

Borg version: 12.2.2

Python version: 3.10.8

operating system and version: Arch Linux

#### What I'm trying to do and why #### Steps to reproduce (if a bug) Create nspawn container and backup from underlying host Symlinks for "/run/lock", "/etc/mtab", etc are to tmpfs folders which aren't visible to the host running the containers. Alternatively you could create a broken symlink manually #### Actual behavior (if a bug) ssh:/XXX/./backups: Collecting special file paths borg create --exclude-from /tmp/tmp1_az7fgy --compression zstd --one-file-system --read-special --remote-path /XXX/bin/borg ssh:/XXX/./backups::{hostname}-{now:%Y-%m-%dT%H:%M:%S.%f} /var/lib/machines/XXX --dry-run --list ssh://XXX/./backups: Error running actions for repository [Errno 2] No such file or directory: '/var/lib/machines/XXX/var/lock' After createing the folder /var/lib/machines/XXX/run/lock on host i got the next issue with mtab ssh://XXX/./backups: Error running actions for repository [Errno 2] No such file or directory: '/var/lib/machines/XXX/etc/mtab' #### Expected behavior (if a bug) Same as with Version 1.7.1 - just backup the symlink like before the last update ;) #### Other notes / implementation ideas #### Environment **borgmatic version:** 1.7.2 **borgmatic installation method:** pacman **Borg version:** 12.2.2 **Python version:** 3.10.8 **operating system and version:** Arch Linux

witten commented 5 months ago

Owner

Thank you for taking the time to report this! I just confirmed this behavior with a manually created broken symlink.

Thank you for taking the time to report this! I just confirmed this behavior with a manually created broken symlink.

witten added the

bug

label 5 months ago

witten referenced this issue from a commit 5 months ago

Fix special file detection when broken symlinks are encountered (#596).

witten commented 5 months ago

Owner

Okay, this is fixed in master by treating broken symlinks as non-special files. The fix will be part of the next release (hopefully soon). Thanks again!

Okay, this is fixed in master by treating broken symlinks as non-special files. The fix will be part of the next release (hopefully soon). Thanks again!

witten closed this issue 5 months ago

witten referenced this issue 5 months ago

Please add option to dump databases without streaming #587

witten commented 5 months ago

Owner

Fix released in borgmatic 1.7.4. Please give it a shot and let me know if it works for you. Thanks!

Fix released in borgmatic 1.7.4. Please give it a shot and let me know if it works for you. Thanks!

nachfuellbar commented 5 months ago

Poster

Looks pretty good - "pretty" because the file exclusion triggered for a masked systemd service file in my nspawn container

ssh://XXX/./backups: Excluding special files to prevent Borg from hanging: /var/lib/machines/XXX/etc/systemd/system/dnsmasq.service

ls -ln /var/lib/machines/XXX/etc/systemd/system/dnsmasq.service
lrwxrwxrwx 1 1398865920 1398865920 9 Apr 11 2022 /var/lib/machines/XXX/etc/systemd/system/dnsmasq.service -> /dev/null

Looks pretty good - "pretty" because the file exclusion triggered for a masked systemd service file in my nspawn container ssh://XXX/./backups: Excluding special files to prevent Borg from hanging: /var/lib/machines/XXX/etc/systemd/system/dnsmasq.service ls -ln /var/lib/machines/XXX/etc/systemd/system/dnsmasq.service lrwxrwxrwx 1 1398865920 1398865920 9 Apr 11 2022 /var/lib/machines/XXX/etc/systemd/system/dnsmasq.service -> /dev/null

witten commented 5 months ago

Owner

Yeah, I think that's due to the symlink's destination—/dev/null, a character device.. which would cause Borg to hang if not excluded. Is it a problem for you that it does get excluded? For instance, did you want/expect the symlink itself to get backed up?

Yeah, I think that's due to the symlink's destination—`/dev/null`, a character device.. which would cause Borg to hang if not excluded. Is it a problem for you that it does get excluded? For instance, did you want/expect the symlink itself to get backed up?

nachfuellbar commented 5 months ago

Poster

For everything in /etc/systemd/system/ i'd expect the symlink to be backed up.
Same for the /var/lib/machines/XXX/etc/systemd/system/ because that's the default location for systmed-nspawn containers.

For me personally it wouldn't amount to too much of an issue because i use nagios and would be notified when bind could not start because dnsmasq is already using the port. BUT it would lead to issues when i restore this container until I get the nagios notification ;)

Theoretically the same could happen for others who store their containers somewhere else. So maybe regex for everything with /etc/systemd/system - with and without prefix path - to backup symlinks instead of the destination?

For everything in /etc/systemd/system/ i'd expect the symlink to be backed up. Same for the /var/lib/machines/XXX/etc/systemd/system/ because that's the default location for systmed-nspawn containers. For me personally it wouldn't amount to too much of an issue because i use nagios and would be notified when bind could not start because dnsmasq is already using the port. BUT it would lead to issues when i restore this container until I get the nagios notification ;) Theoretically the same could happen for others who store their containers somewhere else. So maybe regex for everything with /etc/systemd/system - with and without prefix path - to backup symlinks instead of the destination?

witten commented 5 months ago

Owner

Hmm.. I'm not sure of a way to do this! When --read-special is used with Borg (which borgmatic implictly enables when database hooks are configured), Borg follows all symlinks that point to special files. Meaning it tries to read those special files and will hang on them unless they're excluded. The only way I can think of to back up those symlinks instead of their destinations would be to avoid using --read-special. Maybe I should just document this as another limitation of the database hooks?

Hmm.. I'm not sure of a way to do this! When `--read-special` is used with Borg (which borgmatic implictly enables when database hooks are configured), Borg *follows* all symlinks that point to special files. Meaning it tries to read those special files and will hang on them unless they're excluded. The only way I can think of to back up those symlinks instead of their destinations would be to avoid using `--read-special`. Maybe I should just document this as another limitation of the database hooks?

nachfuellbar commented 5 months ago

Poster

That would be one possible solution.

I've got another idea but please take it as something from someone without knowledge of borg itself.

Would it be possible to append to an existing archive?
If yes, it could be possible to separate the filesystem and db part in their own backup processes and just write them in the same archive

That would be one possible solution. I've got another idea but please take it as something from someone without knowledge of borg itself. Would it be possible to append to an existing archive? If yes, it could be possible to separate the filesystem and db part in their own backup processes and just write them in the same archive

witten commented 5 months ago

Owner

Would it be possible to append to an existing archive? If yes, it could be possible to separate the filesystem and db part in their own backup processes and just write them in the same archive

If only Borg supported that! With Borg's current feature set, you'd have to make two separate archives, one for the databases and one for everything else. You could achieve that today with two separate borgmatic configuration files.

> Would it be possible to append to an existing archive? If yes, it could be possible to separate the filesystem and db part in their own backup processes and just write them in the same archive If only Borg supported that! With Borg's current feature set, you'd have to make two separate archives, one for the databases and one for everything else. You could achieve that today with two separate borgmatic configuration files.

witten referenced this issue from a commit 5 months ago

Document that special file exclusion also excludes symlinks to special files (#596).

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

master

check-instrumentation

0.0.2

0.0.3

0.0.4

0.0.5

0.0.6

0.0.7

0.1.0

0.1.1

0.1.2

0.1.3

0.1.4

0.1.5

0.1.6

0.1.7

0.1.8

1.0.0

1.0.1

1.0.2

1.0.3

1.1.0

1.1.1

1.1.10

1.1.11

1.1.12

1.1.13

1.1.14

1.1.15

1.1.2

1.1.3

1.1.4

1.1.5

1.1.6

1.1.7

1.1.9

1.2.0

1.2.1

1.2.10

1.2.11

1.2.12

1.2.13

1.2.14

1.2.15

1.2.16

1.2.17

1.2.18

1.2.2

1.2.3

1.2.4

1.2.5

1.2.6

1.2.7

1.2.8

1.2.9

1.3.0

1.3.1

1.3.10

1.3.11

1.3.12

1.3.13

1.3.14

1.3.15

1.3.16

1.3.17

1.3.18

1.3.19

1.3.2

1.3.20

1.3.21

1.3.22

1.3.23

1.3.24

1.3.25

1.3.26

1.3.3

1.3.4

1.3.5

1.3.6

1.3.7

1.3.8

1.3.9

1.4.0

1.4.1

1.4.10

1.4.11

1.4.12

1.4.13

1.4.14

1.4.15

1.4.16

1.4.17

1.4.18

1.4.19

1.4.2

1.4.20

1.4.21

1.4.22

1.4.3

1.4.4

1.4.5

1.4.6

1.4.7

1.4.8

1.4.9

1.5.0

1.5.1

1.5.10

1.5.11

1.5.12

1.5.13

1.5.14

1.5.15

1.5.16

1.5.17

1.5.18

1.5.19

1.5.2

1.5.20

1.5.21

1.5.22

1.5.23

1.5.24

1.5.3

1.5.4

1.5.5

1.5.6

1.5.7

1.5.7.dev0

1.5.8

1.5.9

1.6.0

1.6.1

1.6.2

1.6.3

1.6.4

1.6.5

1.6.6

1.7.0

1.7.1

1.7.2

1.7.3

1.7.4

1.7.5

1.7.6

1.7.7

1.7.8

1.7.9

Labels

Apply labels

Clear labels   

bug

  

data loss

  

design finalized

  

good first issue

  

question / support

  

security

  

waiting for response

No Label

bug

data loss

design finalized

good first issue

question / support

security

waiting for response

Milestone

Set milestone

Clear milestone

No items

No Milestone

Assignees

Assign users

Clear assignees

No Assignees

2 Participants

Notifications

Subscribe

Due Date

The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: borgmatic-collective/borgmatic#596

Write Preview

Loading…

Cancel

Save

There is no content yet.