Skip to content
/ gocryptfs-rsync Public

Helper to rsync over gocryptfs (encrypted rsync). 🪐

1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

valeriangalliat/gocryptfs-rsync

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

9 Commits
test
test
 
 
README.md
README.md
 
 
gocryptfs-rsync
gocryptfs-rsync
 
 
gocryptfs-rsync-pretty
gocryptfs-rsync-pretty
 
 

Repository files navigation

🪐 gocryptfs-rsync

Helper to rsync over gocryptfs (encrypted rsync).

Dependencies

rsync, gocryptfs and python3 are required.

apt install rsync gocryptfs python3
pacman -S rsync gocryptfs python
brew install rsync

For gocryptfs on macOS, it's a bit more complicated now it's not part of Homebrew anymore, see instructions below.

Installation

The easiest is to just clone this repo and link the commands to a directory that's in your PATH:

git clone https://github.com/valeriangalliat/gocryptfs-rsync
cd gocryptfs-rsync
ln -s "$PWD/gocryptfs-rsync" "$PWD/gocryptfs-rsync-pretty" ~/bin

Usage

gocryptfs-rsync <src> <dest> [gocryptfs_options] -- [rsync_options]

To rsync /path/to/foo to some-ssh-host:foo. Both commands will prompt for password.

gocryptfs --reverse --init /path/to/foo # Only the first time
gocryptfs-rsync /path/to/foo some-ssh-host:foo -- -ai --delete --info=progress2

Refer to rsync(1) for rsync options (here, -ai --delete --info=progress2).

To do the same thing, specifying a custom password program and an exclude file:

gocryptfs-rsync /path/to/foo some-ssh-host:foo --extpass your-program --exclude-from /path/to/foo/.rsyncignore -- -ai --delete --info=progress2

The great thing with gocryptfs is that it's exclude list syntax is the exact same as rsync, making it trivial to migrate existing exclusions.

Alternative rsync options could be using -v (--verbose) instead of -i (--itemize-changes), or not adding verbosity altogether.

In some cases other options like --no-specials and --no-devices might come in handy.

gocryptfs on macOS

First you need to install macFUSE:

brew install --cask macfuse

Then you (currently) need to build gocryptfs against my fork of go-fuse.

git clone https://github.com/valeriangalliat/go-fuse
git -C go-fuse checkout poll-hack-read-only-darwin

git clone https://github.com/rfjakob/gocryptfs
cd gocryptfs
go mod edit -replace github.com/hanwen/go-fuse/v2=../go-fuse
./build-without-openssl.bash

Then make sure that gocryptfs and gocryptfs-xray/gocryptfs-xray are in your PATH, e.g. linking them in a local bin:

ln -s "$PWD/gocryptfs" "$PWD/gocryptfs-xray/gocryptfs-xray" ~/bin

Note: if the fork is not online anymore, it probably means that the relevant PR was merged! Build from the project's main branch until it makes it to gromgit's homebrew-fuse formula (the best place to get FUSE filesystems on macOS since they've been dropped from Homebrew).

Files to ignore on macOS

As a quick note, if you're backing up the root of a macOS volume, you'll want to ignore the following special directories:

/.DocumentRevisions-V100
/.Spotlight-V100
/.TemporaryItems
/.Trashes
/.fseventsd

Typically you would put this list in a .rsyncignore and pass it to --exclude-from.

About

Helper to rsync over gocryptfs (encrypted rsync). 🪐

Resources

Readme
Activity

Stars

1 star

Watchers

2 watching

Forks

0 forks
Report repository

Languages