Add a major upgrade test - bionic to jammy

tests/bin/restore_backup.sh

@@ -0,0 +1,110 @@
+#!/bin/bash
+
+usage() {
+    echo ""
+    echo "Restore a Mail-In-A-Box user-data directory from a LOCAL backup"
+    echo ""
+    echo "usage: $0 <storage-user> <path-to-encrypted-dir> <path-to-secret-key.txt> [path-to-restore-to]"
+    echo "  storage-user:"
+    echo "     the user account that owns the miab files. eg 'user-data'"
+    echo "  path-to-encrypted-dir:"
+    echo "     a directory containing a copy of duplicity files to restore. These were in"
+    echo "     /home/user-data/backup/encrypted on the system."
+    echo ""
+    echo "  path-secret-key.txt:"
+    echo "     a copy of the encryption key file 'secret-key.txt' that was kept in"
+    echo "     /home/user-data/backup/secret-key.txt."
+    echo ""
+    echo "  path-to-restore-to:"
+    echo "     the directory where the restored files are placed. the default location is"
+    echo "     /home/<storage-user>. FILES IN THIS DIRECTORY WILL BE REPLACED. IF THIS IS A MOUNT POINT ENTER A SUBDIRECTORY OF THE MOUNT POINT THEN MANUALLY MOVE THE FILES BACK ONE LEVEL BECAUSE DUPLICITY AUTOMATICALLY UNMOUNTS IT!"
+    echo ""
+    echo "If you're using encryption-at-rest, make sure it's mounted before restoring"
+    echo "eg: run ehdd/mount.sh"
+    echo ""
+    exit 1
+}
+
+if [ $# -lt 3 ]; then
+    usage
+fi
+
+if [ $EUID -ne 0 ]; then
+    echo "Must be run as root" 1>&2
+    exit 1
+fi
+
+storage_user="$1"
+backup_files_dir="$(realpath "$2")"
+secret_key_file="$3"
+restore_to_dir="$(realpath "${4:-/home/$storage_user}")"
+
+
+PASSPHRASE="$(cat "$secret_key_file")"
+if [ $? -ne 0 ]; then
+    echo "unable to access $secret_key_file" 1>&2
+    exit 1
+fi
+export PASSPHRASE
+
+if [ ! -d "$backup_files_dir" ]; then
+    echo "Does not exist or not a directory: $backup_files_dir" 1>&2
+    exit 1
+fi
+
+echo "Shutting down services"
+ehdd/shutdown.sh || exit 1
+
+if [ ! -x /usr/bin/duplicity ]; then
+    apt-get install -y -qq duplicity
+fi
+
+if ! id openldap 2>/dev/null; then
+    # ensure there's an openldap user or duplicity assigns odd permissions
+    useradd --shell /bin/false -r -M -U -c "OpenLDAP Server Account" -d /var/lib/ldap openldap
+fi
+
+if ! id "$storage_user" 2>/dev/null; then
+    # ensure the storage user exists
+    useradd -m $storage_user
+    chmod o+x /home/$storage_user
+fi
+
+echo "Restoring with duplicity"
+opts=""
+if [ -e "$restore_to_dir" ]; then
+    opts="--force"
+fi
+duplicity restore $opts "file://$backup_files_dir" "$restore_to_dir" 2>&1 | (
+    code=0
+    while read line; do
+	echo "$line"
+	case "$line" in
+	    Error\ * )
+		code=1
+		;;
+	esac
+    done; exit $code)
+
+codes="${PIPESTATUS[0]}${PIPESTATUS[1]}"
+[ "$codes" -ne "00" ] && exit 1
+
+
+#
+# check that filesystem uid's/gid's mapped to actual users/groups
+#
+files_with_nouser="$(find "$restore_to_dir" -nouser -nogroup)"
+if [ "$files_with_nouser" != "" ]; then
+    echo ""
+    echo "WARNING: some restored file/directory ownerships are unmatched"
+    echo "They are:"
+    echo "$files_with_nouser"
+fi
+
+
+echo ""
+echo "Restore successful"
+echo ""
+
+exit 0
+