From 612db13f313222707d1a63ae7078d5dbeeb0633a Mon Sep 17 00:00:00 2001
From: Ali <gth@sunmail.uk>
Date: Mon, 7 Jul 2025 19:09:41 +0100
Subject: [PATCH] fix test_backup()

---
 du_setup.sh | 107 +++++++++++++++-------------------------------------
 1 file changed, 31 insertions(+), 76 deletions(-)

diff --git a/du_setup.sh b/du_setup.sh
index 0eb76c0..02dbe0c 100644
--- a/du_setup.sh
+++ b/du_setup.sh
@@ -1,8 +1,9 @@
 #!/bin/bash
 
 # Debian 12 and Ubuntu Server Hardening Interactive Script
-# Version: 0.56 | 2025-07-04
+# Version: 0.57 | 2025-07-07
 # Changelog:
+# - v0.57: Fix for silent failure at test_backup()
 # - v0.56: Make tailscale config optional
 # - v0.55: Improving setup_user() - ssh-keygen replaced the option to skip ssh key
 # - v0.54: Fix for rollback_ssh_changes() - more reliable on newer Ubuntu
@@ -109,7 +110,7 @@ print_header() {
     echo -e "${CYAN}╔═════════════════════════════════════════════════════════════════╗${NC}"
     echo -e "${CYAN}║                                                                 ║${NC}"
     echo -e "${CYAN}║       DEBIAN/UBUNTU SERVER SETUP AND HARDENING SCRIPT           ║${NC}"
-    echo -e "${CYAN}║                      v0.56 | 2025-07-04                         ║${NC}"
+    echo -e "${CYAN}║                      v0.57 | 2025-07-07                         ║${NC}"
     echo -e "${CYAN}║                                                                 ║${NC}"
     echo -e "${CYAN}╚═════════════════════════════════════════════════════════════════╝${NC}"
     echo
@@ -1658,30 +1659,19 @@ test_backup() {
     if [[ $(id -u) -ne 0 ]]; then
         print_error "Backup test must be run as root. Re-run with 'sudo -E' or as root."
         log "Backup test failed: Script not run as root (UID $(id -u))."
-        print_info "Action: Run the script with 'sudo -E ./du_setup.sh' or as the root user."
         return 0
     fi
 
-    # Check if backup script exists and is readable
     local BACKUP_SCRIPT_PATH="/root/run_backup.sh"
-    if [[ ! -f "$BACKUP_SCRIPT_PATH" ]]; then
-        print_error "Backup script not found at $BACKUP_SCRIPT_PATH."
-        log "Backup test failed: $BACKUP_SCRIPT_PATH not found."
-        print_info "Action: Ensure the backup script exists at $BACKUP_SCRIPT_PATH and is accessible."
-        return 0
-    fi
-    if [[ ! -r "$BACKUP_SCRIPT_PATH" ]]; then
-        print_error "Cannot read backup script at $BACKUP_SCRIPT_PATH. Check permissions."
-        log "Backup test failed: $BACKUP_SCRIPT_PATH not readable."
-        print_info "Action: Run 'chmod u+r $BACKUP_SCRIPT_PATH' as root to fix permissions."
+    if [[ ! -f "$BACKUP_SCRIPT_PATH" || ! -r "$BACKUP_SCRIPT_PATH" ]]; then
+        print_error "Backup script not found or not readable at $BACKUP_SCRIPT_PATH."
+        log "Backup test failed: Script not found or not readable."
         return 0
     fi
 
-    # Check if timeout command is available
     if ! command -v timeout >/dev/null 2>&1; then
         print_error "The 'timeout' command is not available. Please install coreutils."
         log "Backup test failed: 'timeout' command not found."
-        print_info "Action: Install coreutils with 'apt install coreutils' or equivalent."
         return 0
     fi
 
@@ -1691,69 +1681,39 @@ test_backup() {
         return 0
     fi
 
-    # Extract backup configuration from script
-    local BACKUP_DEST REMOTE_BACKUP_PATH BACKUP_PORT SSH_COPY_ID_FLAGS
+    # Extract backup configuration from the generated backup script
+    local BACKUP_DEST REMOTE_BACKUP_PATH BACKUP_PORT
     BACKUP_DEST=$(grep "^REMOTE_DEST=" "$BACKUP_SCRIPT_PATH" | cut -d'"' -f2 2>/dev/null || echo "unknown")
     BACKUP_PORT=$(grep "^SSH_PORT=" "$BACKUP_SCRIPT_PATH" | cut -d'"' -f2 2>/dev/null || echo "22")
     REMOTE_BACKUP_PATH=$(grep "^REMOTE_PATH=" "$BACKUP_SCRIPT_PATH" | cut -d'"' -f2 2>/dev/null || echo "unknown")
-    SSH_COPY_ID_FLAGS=$(grep "^SSH_COPY_ID_FLAGS=" "$BACKUP_SCRIPT_PATH" | cut -d'"' -f2 2>/dev/null || echo "")
     local BACKUP_LOG="/var/log/backup_rsync.log"
 
     if [[ "$BACKUP_DEST" == "unknown" || "$REMOTE_BACKUP_PATH" == "unknown" ]]; then
-        print_error "Invalid backup configuration in $BACKUP_SCRIPT_PATH."
+        print_error "Could not parse backup configuration from $BACKUP_SCRIPT_PATH."
         log "Backup test failed: Invalid configuration in $BACKUP_SCRIPT_PATH."
-        print_info "Action: Check $BACKUP_SCRIPT_PATH for valid REMOTE_DEST and REMOTE_PATH variables."
         return 0
     fi
 
-    # Ensure backup log is writable
-    if ! touch "$BACKUP_LOG" 2>/dev/null || ! chmod 600 "$BACKUP_LOG" 2>/dev/null; then
-        print_error "Cannot create or write to $BACKUP_LOG."
-        log "Backup test failed: Cannot write to $BACKUP_LOG."
-        print_info "Action: Ensure /var/log/ is writable by root and try again."
-        return 0
-    fi
-
-    # Check SSH key existence
-    local SSH_KEY="/root/.ssh/id_ed25519"
-    if [[ ! -f "$SSH_KEY" || ! -r "$SSH_KEY" ]]; then
-        print_error "SSH key $SSH_KEY not found or not readable."
-        log "Backup test failed: SSH key not found or not readable."
-        print_info "Action: Create or fix permissions for $SSH_KEY with 'chmod 600 $SSH_KEY'."
-        return 0
-    fi
-
-    # Create a temporary test directory
+    # Create a temporary directory and file for the test
     local TEST_DIR="/root/test_backup_$(date +%Y%m%d_%H%M%S)"
-    if ! mkdir -p "$TEST_DIR" 2>/dev/null; then
-        print_error "Failed to create test directory $TEST_DIR."
-        log "Backup test failed: Cannot create $TEST_DIR."
-        print_info "Action: Ensure /root/ is writable by root and try again."
-        return 0
-    fi
-    if ! echo "Test file for backup verification" > "$TEST_DIR/test.txt" 2>/dev/null; then
-        print_error "Failed to create test file in $TEST_DIR."
-        log "Backup test failed: Cannot create test file in $TEST_DIR."
-        print_info "Action: Ensure /root/ is writable by root and try again."
-        rm -rf "$TEST_DIR" 2>/dev/null
-        return 0
-    fi
-    if ! chmod 600 "$TEST_DIR/test.txt" 2>/dev/null; then
-        print_error "Failed to set permissions on $TEST_DIR/test.txt."
-        log "Backup test failed: Cannot set permissions on $TEST_DIR/test.txt."
-        print_info "Action: Ensure /root/ is writable by root and try again."
+    if ! mkdir -p "$TEST_DIR" || ! echo "Test file for backup verification" > "$TEST_DIR/test.txt"; then
+        print_error "Failed to create test directory or file in /root/."
+        log "Backup test failed: Cannot create test directory/file."
         rm -rf "$TEST_DIR" 2>/dev/null
         return 0
     fi
 
     print_info "Running test backup to $BACKUP_DEST:$REMOTE_BACKUP_PATH..."
     local RSYNC_OUTPUT RSYNC_EXIT_CODE TIMEOUT_DURATION=120
+    local SSH_KEY="/root/.ssh/id_ed25519"
     local SSH_COMMAND="ssh -p $BACKUP_PORT -i $SSH_KEY -o BatchMode=yes -o StrictHostKeyChecking=no"
-    if [[ -n "$SSH_COPY_ID_FLAGS" ]]; then
-        SSH_COMMAND="sftp -P $BACKUP_PORT -i $SSH_KEY -o BatchMode=yes -o StrictHostKeyChecking=no"
-    fi
+
+    # Temporarily disable 'exit on error' to capture rsync's exit code without crashing
+    set +e
     RSYNC_OUTPUT=$(timeout "$TIMEOUT_DURATION" rsync -avz --delete -e "$SSH_COMMAND" "$TEST_DIR/" "${BACKUP_DEST}:${REMOTE_BACKUP_PATH}test_backup/" 2>&1)
     RSYNC_EXIT_CODE=$?
+    set -e # Re-enable 'exit on error'
+
     echo "--- Test Backup at $(date) ---" >> "$BACKUP_LOG"
     echo "$RSYNC_OUTPUT" >> "$BACKUP_LOG"
 
@@ -1761,30 +1721,25 @@ test_backup() {
         print_success "Test backup successful! Check $BACKUP_LOG for details."
         log "Test backup successful."
     else
+        # If the test fails, print a helpful message and continue the script
+        print_warning "The backup test failed. This is not critical, and the script will continue."
+        print_info "You can troubleshoot this after the server setup is complete."
+        
         if [[ $RSYNC_EXIT_CODE -eq 124 ]]; then
-            print_error "Test backup timed out after $TIMEOUT_DURATION seconds. Check network connectivity or increase timeout."
+            print_error "Test backup timed out after $TIMEOUT_DURATION seconds."
             log "Test backup failed: Timeout after $TIMEOUT_DURATION seconds."
-            print_info "Action: Verify network connectivity to $BACKUP_DEST and retry."
         else
-            print_error "Test backup failed (exit code: $RSYNC_EXIT_CODE). Check $BACKUP_LOG for details."
+            print_error "Test backup failed (exit code: $RSYNC_EXIT_CODE). See $BACKUP_LOG for details."
             log "Test backup failed with exit code $RSYNC_EXIT_CODE."
-            print_info "Troubleshooting steps:"
-            print_info "  - Verify SSH key: cat $SSH_KEY.pub"
-            print_info "  - Copy key: ssh-copy-id -p \"$BACKUP_PORT\" -i $SSH_KEY.pub $SSH_COPY_ID_FLAGS \"$BACKUP_DEST\""
-            print_info "  - Test SSH: ssh -p \"$BACKUP_PORT\" -i $SSH_KEY \"$BACKUP_DEST\" true"
-            if [[ -n "$SSH_COPY_ID_FLAGS" ]]; then
-                print_info "  - For Hetzner, ensure ~/.ssh/ exists: ssh -p \"$BACKUP_PORT\" \"$BACKUP_DEST\" \"mkdir -p ~/.ssh && chmod 700 ~/.ssh\""
-            fi
         fi
+
+        print_info "Common troubleshooting steps:"
+        print_info "  - Ensure the root SSH key is copied to the destination: ssh-copy-id -p \"$BACKUP_PORT\" -i \"$SSH_KEY.pub\" \"$BACKUP_DEST\""
+        print_info "  - Verify the destination allows rsync over SSH. Some hosts (like Hetzner Storage Boxes) only allow SFTP."
     fi
 
-    # Clean up test directory
-    if ! rm -rf "$TEST_DIR" 2>/dev/null; then
-        print_warning "Failed to clean up test directory $TEST_DIR."
-        log "Cleanup of $TEST_DIR failed."
-        print_info "Action: Manually remove $TEST_DIR with 'rm -rf $TEST_DIR' as root."
-    fi
-
+    # Clean up the temporary test directory
+    rm -rf "$TEST_DIR" 2>/dev/null
     print_success "Backup test completed."
     log "Backup test completed."
     return 0