Track internal backup package for CI builds

Author: whoisYoges

.gitignore

@@ -27,7 +27,7 @@ go.work.sum
 # Credentials (never commit)
 *.enc
 credentials.enc
-backup/
+/backup/
 
 # OS
 .DS_Store

internal/backup/transfer.go

@@ -0,0 +1,162 @@
+package backup
+
+import (
+	"encoding/json"
+	"errors"
+	"fmt"
+	"os"
+	"path/filepath"
+	"time"
+
+	"github.com/managedssh/managedssh/internal/vault"
+)
+
+const (
+	bundleVersion = 1
+	bundleName    = "managedssh-export.json"
+)
+
+type bundle struct {
+	Version   int             `json:"version"`
+	CreatedAt string          `json:"created_at"`
+	VaultJSON json.RawMessage `json:"vault_json"`
+	HostsJSON json.RawMessage `json:"hosts_json"`
+}
+
+func DefaultPath() (string, error) {
+	home, err := os.UserHomeDir()
+	if err != nil {
+		return "", err
+	}
+	return filepath.Join(home, bundleName), nil
+}
+
+func ExportPathForDir(dir string) string {
+	return filepath.Join(dir, bundleName)
+}
+
+func Export(path string) error {
+	dir, err := vault.Dir()
+	if err != nil {
+		return err
+	}
+
+	vaultPath := filepath.Join(dir, "vault.json")
+	hostsPath := filepath.Join(dir, "hosts.json")
+
+	vaultData, err := os.ReadFile(vaultPath)
+	if err != nil {
+		return fmt.Errorf("reading vault metadata: %w", err)
+	}
+
+	hostsData, err := os.ReadFile(hostsPath)
+	if err != nil {
+		return fmt.Errorf("reading hosts data: %w", err)
+	}
+
+	b := bundle{
+		Version:   bundleVersion,
+		CreatedAt: time.Now().UTC().Format(time.RFC3339),
+		VaultJSON: json.RawMessage(vaultData),
+		HostsJSON: json.RawMessage(hostsData),
+	}
+
+	out, err := json.MarshalIndent(b, "", "  ")
+	if err != nil {
+		return fmt.Errorf("encoding export bundle: %w", err)
+	}
+
+	if err := os.MkdirAll(filepath.Dir(path), 0700); err != nil {
+		return fmt.Errorf("creating export directory: %w", err)
+	}
+
+	tmp := path + ".tmp"
+	if err := os.WriteFile(tmp, out, 0600); err != nil {
+		return fmt.Errorf("writing export bundle: %w", err)
+	}
+	if err := os.Rename(tmp, path); err != nil {
+		return fmt.Errorf("finalizing export bundle: %w", err)
+	}
+	return nil
+}
+
+func Import(path string) error {
+	b, err := loadBundle(path)
+	if err != nil {
+		return err
+	}
+
+	dir, err := vault.Dir()
+	if err != nil {
+		return err
+	}
+	if err := os.MkdirAll(dir, 0700); err != nil {
+		return fmt.Errorf("creating config directory: %w", err)
+	}
+
+	if err := atomicWrite(filepath.Join(dir, "vault.json"), b.VaultJSON, 0600); err != nil {
+		return fmt.Errorf("writing vault metadata: %w", err)
+	}
+	if err := atomicWrite(filepath.Join(dir, "hosts.json"), b.HostsJSON, 0600); err != nil {
+		return fmt.Errorf("writing hosts data: %w", err)
+	}
+
+	return nil
+}
+
+func VerifyMasterPassword(path, password string) error {
+	b, err := loadBundle(path)
+	if err != nil {
+		return err
+	}
+
+	key, err := vault.UnlockWithMetaJSON(password, b.VaultJSON)
+	if err != nil {
+		if errors.Is(err, vault.ErrWrongPassword) {
+			return vault.ErrWrongPassword
+		}
+		return fmt.Errorf("verifying backup master key: %w", err)
+	}
+	vault.ZeroKey(key)
+	return nil
+}
+
+func loadBundle(path string) (*bundle, error) {
+	data, err := os.ReadFile(path)
+	if err != nil {
+		return nil, fmt.Errorf("reading import bundle: %w", err)
+	}
+
+	var b bundle
+	if err := json.Unmarshal(data, &b); err != nil {
+		return nil, fmt.Errorf("decoding import bundle: %w", err)
+	}
+	if b.Version != bundleVersion {
+		return nil, fmt.Errorf("unsupported bundle version: %d", b.Version)
+	}
+	if len(b.VaultJSON) == 0 {
+		return nil, fmt.Errorf("import bundle is missing vault data")
+	}
+	if len(b.HostsJSON) == 0 {
+		return nil, fmt.Errorf("import bundle is missing hosts data")
+	}
+
+	var vaultDoc map[string]any
+	if err := json.Unmarshal(b.VaultJSON, &vaultDoc); err != nil {
+		return nil, fmt.Errorf("invalid vault data in import bundle: %w", err)
+	}
+	var hostsDoc map[string]any
+	if err := json.Unmarshal(b.HostsJSON, &hostsDoc); err != nil {
+		return nil, fmt.Errorf("invalid hosts data in import bundle: %w", err)
+	}
+
+	return &b, nil
+}
+
+func atomicWrite(path string, data []byte, perm os.FileMode) error {
+	tmp := path + ".tmp"
+	if err := os.WriteFile(tmp, data, perm); err != nil {
+		return err
+	}
+	return os.Rename(tmp, path)
+}

internal/backup/transfer_test.go

@@ -0,0 +1,115 @@
+package backup
+
+import (
+	"encoding/json"
+	"os"
+	"path/filepath"
+	"reflect"
+	"testing"
+
+	"github.com/managedssh/managedssh/internal/vault"
+)
+
+func TestExportImportRoundTrip(t *testing.T) {
+	home := t.TempDir()
+	t.Setenv("HOME", home)
+
+	configDir := filepath.Join(home, ".config", "managedssh")
+	if err := os.MkdirAll(configDir, 0700); err != nil {
+		t.Fatalf("mkdir config dir: %v", err)
+	}
+
+	originalVault := []byte(`{"salt":"abc","nonce":"def","verifier":"ghi"}`)
+	originalHosts := []byte(`{"hosts":[{"id":"1","alias":"demo"}]}`)
+	if err := os.WriteFile(filepath.Join(configDir, "vault.json"), originalVault, 0600); err != nil {
+		t.Fatalf("write vault: %v", err)
+	}
+	if err := os.WriteFile(filepath.Join(configDir, "hosts.json"), originalHosts, 0600); err != nil {
+		t.Fatalf("write hosts: %v", err)
+	}
+
+	bundlePath, err := DefaultPath()
+	if err != nil {
+		t.Fatalf("default path: %v", err)
+	}
+
+	if err := Export(bundlePath); err != nil {
+		t.Fatalf("export failed: %v", err)
+	}
+
+	if err := os.WriteFile(filepath.Join(configDir, "vault.json"), []byte(`{"corrupt":true}`), 0600); err != nil {
+		t.Fatalf("overwrite vault: %v", err)
+	}
+	if err := os.WriteFile(filepath.Join(configDir, "hosts.json"), []byte(`{"hosts":[]}`), 0600); err != nil {
+		t.Fatalf("overwrite hosts: %v", err)
+	}
+
+	if err := Import(bundlePath); err != nil {
+		t.Fatalf("import failed: %v", err)
+	}
+
+	gotVault, err := os.ReadFile(filepath.Join(configDir, "vault.json"))
+	if err != nil {
+		t.Fatalf("read vault: %v", err)
+	}
+	if !jsonEqual(originalVault, gotVault) {
+		t.Fatalf("vault mismatch\nwant: %s\ngot:  %s", originalVault, gotVault)
+	}
+
+	gotHosts, err := os.ReadFile(filepath.Join(configDir, "hosts.json"))
+	if err != nil {
+		t.Fatalf("read hosts: %v", err)
+	}
+	if !jsonEqual(originalHosts, gotHosts) {
+		t.Fatalf("hosts mismatch\nwant: %s\ngot:  %s", originalHosts, gotHosts)
+	}
+
+	if err := VerifyMasterPassword(bundlePath, "backup-master-key"); err == nil {
+		t.Fatalf("expected verification to fail with wrong password")
+	}
+}
+
+func TestVerifyMasterPassword(t *testing.T) {
+	home := t.TempDir()
+	t.Setenv("HOME", home)
+
+	configDir := filepath.Join(home, ".config", "managedssh")
+	if err := os.MkdirAll(configDir, 0700); err != nil {
+		t.Fatalf("mkdir config dir: %v", err)
+	}
+
+	master := "correct horse battery staple"
+	if _, err := vault.Create(master); err != nil {
+		t.Fatalf("create vault: %v", err)
+	}
+	if err := os.WriteFile(filepath.Join(configDir, "hosts.json"), []byte(`{"hosts":[]}`), 0600); err != nil {
+		t.Fatalf("write hosts: %v", err)
+	}
+
+	bundlePath, err := DefaultPath()
+	if err != nil {
+		t.Fatalf("default path: %v", err)
+	}
+	if err := Export(bundlePath); err != nil {
+		t.Fatalf("export failed: %v", err)
+	}
+
+	if err := VerifyMasterPassword(bundlePath, master); err != nil {
+		t.Fatalf("expected verification success: %v", err)
+	}
+	if err := VerifyMasterPassword(bundlePath, "wrong-password"); err == nil {
+		t.Fatalf("expected wrong password failure")
+	}
+}
+
+func jsonEqual(a, b []byte) bool {
+	var va any
+	if err := json.Unmarshal(a, &va); err != nil {
+		return false
+	}
+	var vb any
+	if err := json.Unmarshal(b, &vb); err != nil {
+		return false
+	}
+	return reflect.DeepEqual(va, vb)
+}