trilium/src/services/backup.js

"use strict";

const dateUtils = require('./date_utils');
const optionService = require('./options');
const fs = require('fs-extra');
const dataDir = require('./data_dir');
const log = require('./log');
const sqlInit = require('./sql_init');
const syncMutexService = require('./sync_mutex');
const attributeService = require('./attributes');
const cls = require('./cls');
const utils = require('./utils');

function regularBackup() {
    periodBackup('lastDailyBackupDate', 'daily', 24 * 3600);

    periodBackup('lastWeeklyBackupDate', 'weekly', 7 * 24 * 3600);

    periodBackup('lastMonthlyBackupDate', 'monthly', 30 * 24 * 3600);
}

function periodBackup(optionName, fileName, periodInSeconds) {
    const now = new Date();
    const lastDailyBackupDate = dateUtils.parseDateTime(optionService.getOption(optionName));

    if (now.getTime() - lastDailyBackupDate.getTime() > periodInSeconds * 1000) {
        backupNow(fileName);

        optionService.setOption(optionName, dateUtils.utcNowDateTime());
    }
}

const COPY_ATTEMPT_COUNT = 50;

function copyFile(backupFile) {
    const sql = require('./sql');

    try {
        fs.unlinkSync(backupFile);
    } catch (e) {
    } // unlink throws exception if the file did not exist

    let success = false;
    let attemptCount = 0

    for (; attemptCount < COPY_ATTEMPT_COUNT && !success; attemptCount++) {
        try {
            sql.executeWithoutTransaction(`VACUUM INTO '${backupFile}'`);

            success = true;
        } catch (e) {
            log.info(`Copy DB attempt ${attemptCount + 1} failed with "${e.message}", retrying...`);
        }
        // we re-try since VACUUM is very picky and it can't run if there's any other query currently running
        // which is difficult to guarantee so we just re-try
    }

    return attemptCount !== COPY_ATTEMPT_COUNT;
}

async function backupNow(name) {
    // we don't want to backup DB in the middle of sync with potentially inconsistent DB state
    return await syncMutexService.doExclusively(() => {
        const backupFile = `${dataDir.BACKUP_DIR}/backup-${name}.db`;

        const success = copyFile(backupFile);

        if (success) {
            log.info("Created backup at " + backupFile);
        }
        else {
            log.error(`Creating backup ${backupFile} failed`);
        }

        return backupFile;
    });
}

function anonymize() {
    if (!fs.existsSync(dataDir.ANONYMIZED_DB_DIR)) {
        fs.mkdirSync(dataDir.ANONYMIZED_DB_DIR, 0o700);
    }

    const anonymizedFile = dataDir.ANONYMIZED_DB_DIR + "/" + "anonymized-" + dateUtils.getDateTimeForFile() + ".db";

    const success = copyFile(anonymizedFile);

    if (!success) {
        return { success: false };
    }

    const db = sqlite.open({
        filename: anonymizedFile,
        driver: sqlite3.Database
    });

    db.run("UPDATE api_tokens SET token = 'API token value'");
    db.run("UPDATE notes SET title = 'title'");
    db.run("UPDATE note_contents SET content = 'text' WHERE content IS NOT NULL");
    db.run("UPDATE note_revisions SET title = 'title'");
    db.run("UPDATE note_revision_contents SET content = 'text' WHERE content IS NOT NULL");

    // we want to delete all non-builtin attributes because they can contain sensitive names and values
    // on the other hand builtin/system attrs should not contain any sensitive info
    const builtinAttrs = attributeService.getBuiltinAttributeNames().map(name => "'" + utils.sanitizeSql(name) + "'").join(', ');

    db.run(`UPDATE attributes SET name = 'name', value = 'value' WHERE type = 'label' AND name NOT IN(${builtinAttrs})`);
    db.run(`UPDATE attributes SET name = 'name' WHERE type = 'relation' AND name NOT IN (${builtinAttrs})`);
    db.run("UPDATE branches SET prefix = 'prefix' WHERE prefix IS NOT NULL");
    db.run(`UPDATE options SET value = 'anonymized' WHERE name IN 
                    ('documentId', 'documentSecret', 'encryptedDataKey', 
                     'passwordVerificationHash', 'passwordVerificationSalt', 
                     'passwordDerivedKeySalt', 'username', 'syncServerHost', 'syncProxy') 
                      AND value != ''`);
    db.run("VACUUM");

    db.close();

    return {
        success: true,
        anonymizedFilePath: anonymizedFile
    };
}

if (!fs.existsSync(dataDir.BACKUP_DIR)) {
    fs.mkdirSync(dataDir.BACKUP_DIR, 0o700);
}

sqlInit.dbReady.then(() => {
    setInterval(cls.wrap(regularBackup), 4 * 60 * 60 * 1000);

    // kickoff first backup soon after start up
    setTimeout(cls.wrap(regularBackup), 5 * 60 * 1000);
});

module.exports = {
    backupNow,
    anonymize
};
use strict in all JS files 2017-10-22 09:10:33 +08:00			`"use strict";`

split out dateUtils on the backend 2018-04-03 08:46:46 +08:00			`const dateUtils = require('./date_utils');`
refactored backend to use new naming convention for modules 2018-04-02 09:27:46 +08:00			`const optionService = require('./options');`
backend ported to node.js (work in progress) 2017-10-15 11:31:44 +08:00			`const fs = require('fs-extra');`
all user files are now stored in one directory, by default trilium-data in users home directory 2017-10-24 11:30:23 +08:00			`const dataDir = require('./data_dir');`
more logging 2017-10-25 10:17:48 +08:00			`const log = require('./log');`
separated DB initialization methods into sql_init 2018-04-03 09:25:20 +08:00			`const sqlInit = require('./sql_init');`
refactored backend to use new naming convention for modules 2018-04-02 09:27:46 +08:00			`const syncMutexService = require('./sync_mutex');`
futrther improvements to anonymization 2020-06-07 16:20:48 +08:00			`const attributeService = require('./attributes');`
added basic CLS support with re-entrant transactions 2018-03-29 11:41:22 +08:00			`const cls = require('./cls');`
futrther improvements to anonymization 2020-06-07 16:20:48 +08:00			`const utils = require('./utils');`
backend ported to node.js (work in progress) 2017-10-15 11:31:44 +08:00
syncification 2020-06-20 18:31:38 +08:00			`function regularBackup() {`
			`periodBackup('lastDailyBackupDate', 'daily', 24 * 3600);`
changed backup to simple scheme with one daily, one weekly and one monthly backup, fixes #15 2018-07-30 22:40:50 +08:00
syncification 2020-06-20 18:31:38 +08:00			`periodBackup('lastWeeklyBackupDate', 'weekly', 7 * 24 * 3600);`
changed backup to simple scheme with one daily, one weekly and one monthly backup, fixes #15 2018-07-30 22:40:50 +08:00
syncification 2020-06-20 18:31:38 +08:00			`periodBackup('lastMonthlyBackupDate', 'monthly', 30 * 24 * 3600);`
changed backup to simple scheme with one daily, one weekly and one monthly backup, fixes #15 2018-07-30 22:40:50 +08:00			`}`

syncification 2020-06-20 18:31:38 +08:00			`function periodBackup(optionName, fileName, periodInSeconds) {`
converted all timestamps to string representation 2017-12-11 01:56:59 +08:00			`const now = new Date();`
syncification 2020-06-20 18:31:38 +08:00			`const lastDailyBackupDate = dateUtils.parseDateTime(optionService.getOption(optionName));`
backend ported to node.js (work in progress) 2017-10-15 11:31:44 +08:00
changed backup to simple scheme with one daily, one weekly and one monthly backup, fixes #15 2018-07-30 22:40:50 +08:00			`if (now.getTime() - lastDailyBackupDate.getTime() > periodInSeconds * 1000) {`
syncification 2020-06-20 18:31:38 +08:00			`backupNow(fileName);`
converted all timestamps to string representation 2017-12-11 01:56:59 +08:00
syncification 2020-06-20 18:31:38 +08:00			`optionService.setOption(optionName, dateUtils.utcNowDateTime());`
backend ported to node.js (work in progress) 2017-10-15 11:31:44 +08:00			`}`
			`}`

fix db anonymization 2020-06-03 05:13:55 +08:00			`const COPY_ATTEMPT_COUNT = 50;`
better error logging in backup 2020-05-31 16:24:59 +08:00
syncification 2020-06-20 18:31:38 +08:00			`function copyFile(backupFile) {`
safer backup to file using VACUUM INTO + possibility to explicitly ask for backup now 2020-05-30 03:55:08 +08:00			`const sql = require('./sql');`

fix db anonymization 2020-06-03 05:13:55 +08:00			`try {`
			`fs.unlinkSync(backupFile);`
			`} catch (e) {`
			`} // unlink throws exception if the file did not exist`

			`let success = false;`
			`let attemptCount = 0`

			`for (; attemptCount < COPY_ATTEMPT_COUNT && !success; attemptCount++) {`
			`try {`
syncification 2020-06-20 18:31:38 +08:00			sql.executeWithoutTransaction(`VACUUM INTO '${backupFile}'`);
fix db anonymization 2020-06-03 05:13:55 +08:00
			`success = true;`
			`} catch (e) {`
			log.info(`Copy DB attempt ${attemptCount + 1} failed with "${e.message}", retrying...`);
			`}`
			`// we re-try since VACUUM is very picky and it can't run if there's any other query currently running`
			`// which is difficult to guarantee so we just re-try`
			`}`

			`return attemptCount !== COPY_ATTEMPT_COUNT;`
			`}`

			`async function backupNow(name) {`
added sync mutex for consistency checks and backup 2018-01-05 10:37:36 +08:00			`// we don't want to backup DB in the middle of sync with potentially inconsistent DB state`
syncification 2020-06-20 18:31:38 +08:00			`return await syncMutexService.doExclusively(() => {`
changed backup to simple scheme with one daily, one weekly and one monthly backup, fixes #15 2018-07-30 22:40:50 +08:00			const backupFile = `${dataDir.BACKUP_DIR}/backup-${name}.db`;
more logging 2017-10-25 10:17:48 +08:00
syncification 2020-06-20 18:31:38 +08:00			`const success = copyFile(backupFile);`
safer backup to file using VACUUM INTO + possibility to explicitly ask for backup now 2020-05-30 03:55:08 +08:00
fix db anonymization 2020-06-03 05:13:55 +08:00			`if (success) {`
fix backup 2020-06-03 18:16:16 +08:00			`log.info("Created backup at " + backupFile);`
safer backup to file using VACUUM INTO + possibility to explicitly ask for backup now 2020-05-30 03:55:08 +08:00			`}`
			`else {`
fix backup 2020-06-03 18:16:16 +08:00			log.error(`Creating backup ${backupFile} failed`);
safer backup to file using VACUUM INTO + possibility to explicitly ask for backup now 2020-05-30 03:55:08 +08:00			`}`
backend ported to node.js (work in progress) 2017-10-15 11:31:44 +08:00
safer backup to file using VACUUM INTO + possibility to explicitly ask for backup now 2020-05-30 03:55:08 +08:00			`return backupFile;`
backend ported to node.js (work in progress) 2017-10-15 11:31:44 +08:00			`});`
			`}`

syncification 2020-06-20 18:31:38 +08:00			`function anonymize() {`
fix db anonymization 2020-06-03 05:13:55 +08:00			`if (!fs.existsSync(dataDir.ANONYMIZED_DB_DIR)) {`
			`fs.mkdirSync(dataDir.ANONYMIZED_DB_DIR, 0o700);`
			`}`

			`const anonymizedFile = dataDir.ANONYMIZED_DB_DIR + "/" + "anonymized-" + dateUtils.getDateTimeForFile() + ".db";`

syncification 2020-06-20 18:31:38 +08:00			`const success = copyFile(anonymizedFile);`
fix db anonymization 2020-06-03 05:13:55 +08:00
			`if (!success) {`
			`return { success: false };`
			`}`

syncification 2020-06-20 18:31:38 +08:00			`const db = sqlite.open({`
fix db anonymization 2020-06-03 05:13:55 +08:00			`filename: anonymizedFile,`
			`driver: sqlite3.Database`
			`});`

syncification 2020-06-20 18:31:38 +08:00			`db.run("UPDATE api_tokens SET token = 'API token value'");`
			`db.run("UPDATE notes SET title = 'title'");`
			`db.run("UPDATE note_contents SET content = 'text' WHERE content IS NOT NULL");`
			`db.run("UPDATE note_revisions SET title = 'title'");`
			`db.run("UPDATE note_revision_contents SET content = 'text' WHERE content IS NOT NULL");`
futrther improvements to anonymization 2020-06-07 16:20:48 +08:00
			`// we want to delete all non-builtin attributes because they can contain sensitive names and values`
			`// on the other hand builtin/system attrs should not contain any sensitive info`
			`const builtinAttrs = attributeService.getBuiltinAttributeNames().map(name => "'" + utils.sanitizeSql(name) + "'").join(', ');`

syncification 2020-06-20 18:31:38 +08:00			db.run(`UPDATE attributes SET name = 'name', value = 'value' WHERE type = 'label' AND name NOT IN(${builtinAttrs})`);
			db.run(`UPDATE attributes SET name = 'name' WHERE type = 'relation' AND name NOT IN (${builtinAttrs})`);
			`db.run("UPDATE branches SET prefix = 'prefix' WHERE prefix IS NOT NULL");`
			db.run(`UPDATE options SET value = 'anonymized' WHERE name IN
fix import 2020-06-08 05:55:55 +08:00			`('documentId', 'documentSecret', 'encryptedDataKey',`
			`'passwordVerificationHash', 'passwordVerificationSalt',`
			`'passwordDerivedKeySalt', 'username', 'syncServerHost', 'syncProxy')`
			AND value != ''`);
syncification 2020-06-20 18:31:38 +08:00			`db.run("VACUUM");`
fix db anonymization 2020-06-03 05:13:55 +08:00
syncification 2020-06-20 18:31:38 +08:00			`db.close();`
fix db anonymization 2020-06-03 05:13:55 +08:00
			`return {`
			`success: true,`
			`anonymizedFilePath: anonymizedFile`
			`};`
			`}`

backup is now triggered after start of the app and with timer 2017-10-29 00:23:11 +08:00			`if (!fs.existsSync(dataDir.BACKUP_DIR)) {`
			`fs.mkdirSync(dataDir.BACKUP_DIR, 0o700);`
			`}`

fix DB setup 2020-06-21 03:42:41 +08:00			`sqlInit.dbReady.then(() => {`
			`setInterval(cls.wrap(regularBackup), 4 * 60 * 60 * 1000);`
backup is now triggered after start of the app and with timer 2017-10-29 00:23:11 +08:00
fix DB setup 2020-06-21 03:42:41 +08:00			`// kickoff first backup soon after start up`
			`setTimeout(cls.wrap(regularBackup), 5 * 60 * 1000);`
			`});`
backup is now triggered after start of the app and with timer 2017-10-29 00:23:11 +08:00
backend ported to node.js (work in progress) 2017-10-15 11:31:44 +08:00			`module.exports = {`
fix db anonymization 2020-06-03 05:13:55 +08:00			`backupNow,`
			`anonymize`
safer backup to file using VACUUM INTO + possibility to explicitly ask for backup now 2020-05-30 03:55:08 +08:00			`};`