borgmatic-collective/borgmatic
borgmatic-collective
/
borgmatic
14
57
Fork 41
Code Issues 54 Pull Requests 2 Actions Packages Releases 122 Activity

Unmount FS before backup to avoid failure due to lock #845

New Issue
Open
opened 2024-03-30 12:06:27 +00:00 by knedlyk · 9 comments
knedlyk commented 2024-03-30 12:06:27 +00:00
Copy Link

Hi! I use systemd to regularly backup the system with the help of bormgatic.
Sometimes I mount it and sometimes forget to unmount :/ This, of course, blocks from running next backups.
Would you help to find out how to forcedly unmount the FS before starting the backup procedure? Eg via hook.

Additionally, it may be added to the configuration as an option: if mounted:

  1. warn and not to proceed with any operation
  2. unmount FS and proceed

What do you think?

Hi! I use systemd to regularly backup the system with the help of bormgatic. Sometimes I mount it and sometimes forget to unmount :/ This, of course, blocks from running next backups. Would you help to find out how to forcedly unmount the FS before starting the backup procedure? Eg via hook. Additionally, it may be added to the configuration as an option: if mounted: 1) warn and not to proceed with any operation 2) unmount FS and proceed What do you think?
knedlyk changed title from Unmount FS before backup to Unmount FS before backup to avoid failure due to lock 2024-03-30 12:07:39 +00:00
witten commented 2024-04-01 16:27:25 +00:00
Owner
Copy Link

I haven't tested it, but you might be able to just do something like:

before_backup:
    umount /your/mount/point

I would recommend trying it both with the filesystem mounted and unmounted to make sure it doesn't error.

Or if you'd prefer you can put that in before_actions or even before_everything. See the hook documentation for more information.

As for a configuration option, I'm not necessarily averse to it, but it does seem a little specialized and I'm not sure how it would figure out which mount point paths to use (unless that's also part of the configuration). I'd recommend trying the hook approach first and seeing how that goes!

I haven't tested it, but you might be able to just do something like: ``` before_backup: umount /your/mount/point ``` I would recommend trying it both with the filesystem mounted and unmounted to make sure it doesn't error. Or if you'd prefer you can put that in `before_actions` or even `before_everything`. See [the hook documentation](https://torsion.org/borgmatic/docs/how-to/add-preparation-and-cleanup-steps-to-backups/) for more information. As for a configuration option, I'm not necessarily averse to it, but it does seem a little specialized and I'm not sure how it would figure out which mount point paths to use (unless that's also part of the configuration). I'd recommend trying the hook approach first and seeing how that goes!
witten added the
question / support
 label 2024-04-01 16:27:31 +00:00
knedlyk commented 2024-04-01 17:48:29 +00:00
Author
Copy Link

I haven't tested it, but you might be able to just do something like:

before_backup:
    umount /your/mount/point

I would recommend trying it both with the filesystem mounted and unmounted to make sure it doesn't error.

Or if you'd prefer you can put that in before_actions or even before_everything. See the hook documentation for more information.

As for a configuration option, I'm not necessarily averse to it, but it does seem a little specialized and I'm not sure how it would figure out which mount point paths to use (unless that's also part of the configuration). I'd recommend trying the hook approach first and seeing how that goes!

Hi! The command should rather look like:

borgmatic umount --mount-point /my/mount-point

But, in case it is already unmounted it will return non-zero exit status, what will influence negatively on the next steps of borgmatic process.

borgmatic umount --mount-point /mnt/backup
Starting actions.
Finished actions.
Error unmounting mount point
Command 'borg umount /mnt/backup' returned non-zero exit status 1.

summary:
Error unmounting mount point
fusermount: failed to unmount /mnt/backup: Invalid argument
Command 'borg umount /mnt/backup' returned non-zero exit status 1.

Need some help? https://torsion.org/borgmatic/#issues

UPD: my suggestion:

borgmatic umount --mount-point /mnt/backup 2> /dev/null || true
> I haven't tested it, but you might be able to just do something like: > > ``` > before_backup: > umount /your/mount/point > ``` > > I would recommend trying it both with the filesystem mounted and unmounted to make sure it doesn't error. > > Or if you'd prefer you can put that in `before_actions` or even `before_everything`. See [the hook documentation](https://torsion.org/borgmatic/docs/how-to/add-preparation-and-cleanup-steps-to-backups/) for more information. > > As for a configuration option, I'm not necessarily averse to it, but it does seem a little specialized and I'm not sure how it would figure out which mount point paths to use (unless that's also part of the configuration). I'd recommend trying the hook approach first and seeing how that goes! Hi! The command should rather look like: ``` borgmatic umount --mount-point /my/mount-point ``` But, in case it is already unmounted it will return non-zero exit status, what will influence negatively on the next steps of borgmatic process. ``` borgmatic umount --mount-point /mnt/backup Starting actions. Finished actions. Error unmounting mount point Command 'borg umount /mnt/backup' returned non-zero exit status 1. summary: Error unmounting mount point fusermount: failed to unmount /mnt/backup: Invalid argument Command 'borg umount /mnt/backup' returned non-zero exit status 1. Need some help? https://torsion.org/borgmatic/#issues ``` UPD: my suggestion: ``` borgmatic umount --mount-point /mnt/backup 2> /dev/null || true ```
witten commented 2024-04-01 17:58:28 +00:00
Owner
Copy Link

I generally don't recommend running borgmatic from borgmatic, just to avoid the risk of infinite recursion. And borgmatic umount is really a thin wrapper around umount, so you're not losing much of anything by running umount directly.

But to prevent umount's non-zero exit status from causing an error when nothing is mounted, you can try this:

before_backup:
    umount /your/mount/point || true
I generally don't recommend running borgmatic from borgmatic, just to avoid the risk of infinite recursion. And `borgmatic umount` is really a thin wrapper around `umount`, so you're not losing much of anything by running `umount` directly. But to prevent umount's non-zero exit status from causing an error when nothing is mounted, you can try this: ``` before_backup: umount /your/mount/point || true ```
👍 1
knedlyk commented 2024-04-12 05:48:27 +00:00
Author
Copy Link

I generally don't recommend running borgmatic from borgmatic, just to avoid the risk of infinite recursion. And borgmatic umount is really a thin wrapper around umount, so you're not losing much of anything by running umount directly.

But to prevent umount's non-zero exit status from causing an error when nothing is mounted, you can try this:

before_backup:
    umount /your/mount/point || true

should be:

sudo umount /your/mount/point || true
> I generally don't recommend running borgmatic from borgmatic, just to avoid the risk of infinite recursion. And `borgmatic umount` is really a thin wrapper around `umount`, so you're not losing much of anything by running `umount` directly. > > But to prevent umount's non-zero exit status from causing an error when nothing is mounted, you can try this: > > ``` > before_backup: > umount /your/mount/point || true > ``` should be: ``` sudo umount /your/mount/point || true ```
witten commented 2024-04-12 14:37:21 +00:00
Owner
Copy Link

Yes, sudo would be needed if you're running as a non-root user. But be aware that sudo can prompt for a password, which would be problematic if used non-interactively.

Yes, `sudo` would be needed if you're running as a non-root user. But be aware that `sudo` can prompt for a password, which would be problematic if used non-interactively.
knedlyk commented 2024-04-13 00:02:24 +00:00
Author
Copy Link

Yes, sudo would be needed if you're running as a non-root user. But be aware that sudo can prompt for a password, which would be problematic if used non-interactively.

strangely, this didn't work:

кві 13 02:56:02 hostname borgmatic[651697]: INFO /etc/borgmatic/config.yaml: Running 2 commands for pre-everything hook
кві 13 02:56:02 hostname systemd-inhibit[651697]: Starting actions.
кві 13 02:56:02 hostname borgmatic[651697]: WARNING Starting actions.
кві 13 02:56:02 hostname sudo[651718]:     root : PWD=/ ; USER=root ; COMMAND=/usr/bin/umount /mnt/backup
кві 13 02:56:02 hostname sudo[651718]: pam_unix(sudo:session): session opened for user root(uid=0) by (uid=0)
кві 13 02:56:02 hostname systemd-inhibit[651697]: umount: /mnt/backup: must be superuser to unmount.
кві 13 02:56:02 hostname borgmatic[651697]: WARNING umount: /mnt/backup: must be superuser to unmount.
> Yes, `sudo` would be needed if you're running as a non-root user. But be aware that `sudo` can prompt for a password, which would be problematic if used non-interactively. strangely, this didn't work: ``` кві 13 02:56:02 hostname borgmatic[651697]: INFO /etc/borgmatic/config.yaml: Running 2 commands for pre-everything hook кві 13 02:56:02 hostname systemd-inhibit[651697]: Starting actions. кві 13 02:56:02 hostname borgmatic[651697]: WARNING Starting actions. кві 13 02:56:02 hostname sudo[651718]: root : PWD=/ ; USER=root ; COMMAND=/usr/bin/umount /mnt/backup кві 13 02:56:02 hostname sudo[651718]: pam_unix(sudo:session): session opened for user root(uid=0) by (uid=0) кві 13 02:56:02 hostname systemd-inhibit[651697]: umount: /mnt/backup: must be superuser to unmount. кві 13 02:56:02 hostname borgmatic[651697]: WARNING umount: /mnt/backup: must be superuser to unmount. ```
witten commented 2024-04-13 01:02:00 +00:00
Owner
Copy Link

Are you running borgmatic as the root user? If so, then you don't need sudo at all.

Are you running borgmatic as the root user? If so, then you don't need `sudo` at all.
knedlyk commented 2024-04-13 05:47:24 +00:00
Author
Copy Link

Are you running borgmatic as the root user? If so, then you don't need sudo at all.

I run borgmatic as a root, but it doesn't work without sudo the same.

This is my borgmatic.service unit file

# cat borgmatic.service
[Unit]
Description=borgmatic backup
Wants=network-online.target
After=network-online.target
ConditionACPower=true

[Service]
Type=oneshot

LockPersonality=true
MemoryDenyWriteExecute=no
NoNewPrivileges=yes
PrivateDevices=yes
PrivateTmp=yes
ProtectClock=yes
ProtectControlGroups=yes
ProtectHostname=yes
ProtectKernelLogs=yes
ProtectKernelModules=yes
ProtectKernelTunables=yes
RestrictAddressFamilies=AF_UNIX AF_INET AF_INET6 AF_NETLINK
RestrictNamespaces=yes
RestrictRealtime=yes
RestrictSUIDSGID=yes
SystemCallArchitectures=native
SystemCallFilter=@system-service
SystemCallErrorNumber=EPERM
ProtectSystem=full

ReadWritePaths=/media/backup/system

#CapabilityBoundingSet=CAP_DAC_READ_SEARCH CAP_NET_RAW

Nice=19
CPUSchedulingPolicy=batch
IOSchedulingClass=best-effort
IOSchedulingPriority=7
IOWeight=100

Restart=no
LogRateLimitIntervalSec=0

ExecStartPre=sleep 1m
ExecStart=systemd-inhibit --who="borgmatic" --why="Prevent interrupting scheduled backup" borgmatic --syslog-verbosity 1
> Are you running borgmatic as the root user? If so, then you don't need `sudo` at all. I run borgmatic as a root, but it doesn't work without sudo the same. This is my borgmatic.service unit file ``` # cat borgmatic.service [Unit] Description=borgmatic backup Wants=network-online.target After=network-online.target ConditionACPower=true [Service] Type=oneshot LockPersonality=true MemoryDenyWriteExecute=no NoNewPrivileges=yes PrivateDevices=yes PrivateTmp=yes ProtectClock=yes ProtectControlGroups=yes ProtectHostname=yes ProtectKernelLogs=yes ProtectKernelModules=yes ProtectKernelTunables=yes RestrictAddressFamilies=AF_UNIX AF_INET AF_INET6 AF_NETLINK RestrictNamespaces=yes RestrictRealtime=yes RestrictSUIDSGID=yes SystemCallArchitectures=native SystemCallFilter=@system-service SystemCallErrorNumber=EPERM ProtectSystem=full ReadWritePaths=/media/backup/system #CapabilityBoundingSet=CAP_DAC_READ_SEARCH CAP_NET_RAW Nice=19 CPUSchedulingPolicy=batch IOSchedulingClass=best-effort IOSchedulingPriority=7 IOWeight=100 Restart=no LogRateLimitIntervalSec=0 ExecStartPre=sleep 1m ExecStart=systemd-inhibit --who="borgmatic" --why="Prevent interrupting scheduled backup" borgmatic --syslog-verbosity 1 ```
witten commented 2024-04-13 18:30:58 +00:00
Owner
Copy Link

My guess is that some of the systemd security settings (something from LockPersonality to ReadWritePaths) are interfering with your umount command. So my recommendation is to try removing some or all of these settings and then reloading the systemd daemon (systemctl daemon-reload) to make those changes take effect.

My guess is that some of the systemd security settings (something from `LockPersonality` to `ReadWritePaths`) are interfering with your `umount` command. So my recommendation is to try removing some or all of these settings and then reloading the systemd daemon (`systemctl daemon-reload`) to make those changes take effect.
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
main
spot-check
1.8.11
1.8.10
1.8.9
1.8.8
1.8.7
1.8.6
1.8.5
1.8.4
1.8.3
1.8.2
1.8.1
1.8.0
1.7.15
1.7.14
1.7.13
1.7.12
1.7.11
1.7.10
1.7.9
1.7.8
1.7.7
1.7.6
1.7.5
1.7.4
1.7.3
1.7.2
1.7.1
1.7.0
1.6.6
1.6.5
1.6.4
1.6.3
1.6.2
1.6.1
1.6.0
1.5.24
1.5.23
1.5.22
1.5.21
1.5.20
1.5.19
1.5.18
1.5.17
1.5.16
1.5.15
1.5.14
1.5.13
1.5.12
1.5.11
1.5.10
1.5.9
1.5.8
1.5.7
1.5.7.dev0
1.5.6
1.5.5
1.5.4
1.5.3
1.5.2
1.5.1
1.5.0
1.4.22
1.4.21
1.4.20
1.4.19
1.4.18
1.4.17
1.4.16
1.4.15
1.4.14
1.4.13
1.4.12
1.4.11
1.4.10
1.4.9
1.4.8
1.4.7
1.4.6
1.4.5
1.4.4
1.4.3
1.4.2
1.4.1
1.4.0
1.3.26
1.3.25
1.3.24
1.3.23
1.3.22
1.3.21
1.3.20
1.3.19
1.3.18
1.3.17
1.3.16
1.3.15
1.3.14
1.3.13
1.3.12
1.3.11
1.3.10
1.3.9
1.3.8
1.3.7
1.3.6
1.3.5
1.3.4
1.3.3
1.3.2
1.3.1
1.3.0
1.2.18
1.2.17
1.2.16
1.2.15
1.2.14
1.2.13
1.2.12
1.2.11
1.2.10
1.2.9
1.2.8
1.2.7
1.2.6
1.2.5
1.2.4
1.2.3
1.2.2
1.2.1
1.2.0
1.1.15
1.1.14
1.1.13
1.1.12
1.1.11
1.1.10
1.1.9
1.1.7
1.1.6
1.1.5
1.1.4
1.1.3
1.1.2
1.1.1
1.1.0
1.0.3
1.0.2
1.0.1
1.0.0
0.1.8
0.1.7
0.1.6
0.1.5
0.1.4
0.1.3
0.1.2
0.1.1
0.1.0
0.0.7
0.0.6
0.0.5
0.0.4
0.0.3
0.0.2
Labels
Clear labels   
bug

   
data loss

   
design finalized

   
good first issue

   
new feature area

   
question / support

   
security

   
waiting for response
No Label
bug
data loss
design finalized
good first issue
new feature area
question / support
security
waiting for response
Milestone
Clear milestone
No items
No Milestone
Assignees
Clear assignees
No Assignees
2 Participants
Notifications
Due Date
The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: borgmatic-collective/borgmatic#845
No description provided.
Delete Branch "%!s(<nil>)"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?