1package main

3import (

4 "bytes"

5 "context"

6 "errors"

7 "fmt"

8 "io"

9 "io/fs"

10 "log/slog"

11 "os"

12 "path/filepath"

13 "runtime"

14 "strconv"

15 "strings"

16 "syscall"

17 "time"

19 "github.com/mjl-/bstore"

21 "github.com/mjl-/mox/dmarcdb"

22 "github.com/mjl-/mox/mox-"

23 "github.com/mjl-/mox/moxvar"

24 "github.com/mjl-/mox/mtastsdb"

25 "github.com/mjl-/mox/queue"

26 "github.com/mjl-/mox/store"

27 "github.com/mjl-/mox/tlsrptdb"

28)

30func backupctl(ctx context.Context, ctl *ctl) {

31 /* protocol:

32 > "backup"

33 > destdir

34 > "verbose" or ""

35 < stream

36 < "ok" or error

37 */

39 // Convention in this function: variables containing "src" or "dst" are file system

40 // paths that can be passed to os.Open and such. Variables with dirs/paths without

41 // "src" or "dst" are incomplete paths relative to the source or destination data

42 // directories.

44 dstDir := ctl.xread()

45 verbose := ctl.xread() == "verbose"

47 // Set when an error is encountered. At the end, we warn if set.

48 var incomplete bool

50 // We'll be writing output, and logging both to mox and the ctl stream.

51 writer := ctl.writer()

53 // Format easily readable output for the user.

54 formatLog := func(prefix, text string, err error, attrs ...slog.Attr) []byte {

55 var b bytes.Buffer

56 fmt.Fprint(&b, prefix)

57 fmt.Fprint(&b, text)

58 if err != nil {

59 fmt.Fprint(&b, ": "+err.Error())

60 }

61 for _, a := range attrs {

62 fmt.Fprintf(&b, "; %s=%v", a.Key, a.Value)

63 }

64 fmt.Fprint(&b, "\n")

65 return b.Bytes()

66 }

68 // Log an error to both the mox service as the user running "mox backup".

69 pkglogx := func(prefix, text string, err error, attrs ...slog.Attr) {

70 ctl.log.Errorx(text, err, attrs...)

72 _, werr := writer.Write(formatLog(prefix, text, err, attrs...))

73 ctl.xcheck(werr, "write to ctl")

74 }

76 // Log an error but don't mark backup as failed.

77 xwarnx := func(text string, err error, attrs ...slog.Attr) {

78 pkglogx("warning: ", text, err, attrs...)

79 }

81 // Log an error that causes the backup to be marked as failed. We typically

82 // continue processing though.

83 xerrx := func(text string, err error, attrs ...slog.Attr) {

84 incomplete = true

85 pkglogx("error: ", text, err, attrs...)

86 }

88 // If verbose is enabled, log to the cli command. Always log as info level.

89 xvlog := func(text string, attrs ...slog.Attr) {

90 ctl.log.Info(text, attrs...)

91 if verbose {

92 _, werr := writer.Write(formatLog("", text, nil, attrs...))

93 ctl.xcheck(werr, "write to ctl")

94 }

95 }

97 dstConfigDir := filepath.Join(dstDir, "config")

98 dstDataDir := filepath.Join(dstDir, "data")

100 // Warn if directories already exist, will likely cause failures when trying to

101 // write files that already exist.

102 if _, err := os.Stat(dstConfigDir); err == nil {

103 xwarnx("destination config directory already exists", nil, slog.String("configdir", dstConfigDir))

104 }

105 if _, err := os.Stat(dstDataDir); err == nil {

106 xwarnx("destination data directory already exists", nil, slog.String("datadir", dstDataDir))

107 }

108

109 os.MkdirAll(dstDir, 0770)

110 os.MkdirAll(dstConfigDir, 0770)

111 os.MkdirAll(dstDataDir, 0770)

112

113 // Copy all files in the config dir.

114 srcConfigDir := filepath.Clean(mox.ConfigDirPath("."))

115 err := filepath.WalkDir(srcConfigDir, func(srcPath string, d fs.DirEntry, err error) error {

116 if err != nil {

117 return err

118 }

119

120 if srcConfigDir == srcPath {

121 return nil

122 }

123

124 // Trim directory and separator.

125 relPath := srcPath[len(srcConfigDir)+1:]

126

127 destPath := filepath.Join(dstConfigDir, relPath)

128

129 if d.IsDir() {

130 if info, err := os.Stat(srcPath); err != nil {

131 return fmt.Errorf("stat config dir %s: %v", srcPath, err)

132 } else if err := os.Mkdir(destPath, info.Mode()&0777); err != nil {

133 return fmt.Errorf("mkdir %s: %v", destPath, err)

134 }

135 return nil

136 }

137 if d.Type()&fs.ModeSymlink != 0 {

138 linkDest, err := os.Readlink(srcPath)

139 if err != nil {

140 return fmt.Errorf("reading symlink %s: %v", srcPath, err)

141 }

142 if err := os.Symlink(linkDest, destPath); err != nil {

143 return fmt.Errorf("creating symlink %s: %v", destPath, err)

144 }

145 return nil

146 }

147 if !d.Type().IsRegular() {

148 xwarnx("skipping non-regular/dir/symlink file in config dir", nil, slog.String("path", srcPath))

149 return nil

150 }

151

152 sf, err := os.Open(srcPath)

153 if err != nil {

154 return fmt.Errorf("open config file %s: %v", srcPath, err)

155 }

156 info, err := sf.Stat()

157 if err != nil {

158 return fmt.Errorf("stat config file %s: %v", srcPath, err)

159 }

160 df, err := os.OpenFile(destPath, os.O_CREATE|os.O_EXCL|os.O_WRONLY, 0777&info.Mode())

161 if err != nil {

162 return fmt.Errorf("create destination config file %s: %v", destPath, err)

163 }

164 defer func() {

165 if df != nil {

166 err := df.Close()

167 ctl.log.Check(err, "closing file")

168 }

169 }()

170 defer func() {

171 err := sf.Close()

172 ctl.log.Check(err, "closing file")

173 }()

174 if _, err := io.Copy(df, sf); err != nil {

175 return fmt.Errorf("copying config file %s to %s: %v", srcPath, destPath, err)

176 }

177 if err := df.Close(); err != nil {

178 return fmt.Errorf("closing destination config file %s: %v", srcPath, err)

179 }

180 df = nil

181 return nil

182 })

183 if err != nil {

184 xerrx("storing config directory", err)

185 }

186

187 srcDataDir := filepath.Clean(mox.DataDirPath("."))

188

189 // When creating a file in the destination, we first ensure its directory exists.

190 // We track which directories we created, to prevent needless syscalls.

191 createdDirs := map[string]struct{}{}

192 ensureDestDir := func(dstpath string) {

193 dstdir := filepath.Dir(dstpath)

194 if _, ok := createdDirs[dstdir]; !ok {

195 err := os.MkdirAll(dstdir, 0770)

196 if err != nil {

197 xerrx("creating directory", err)

198 }

199 createdDirs[dstdir] = struct{}{}

200 }

201 }

202

203 // Backup a single file by copying (never hardlinking, the file may change).

204 backupFile := func(path string) {

205 tmFile := time.Now()

206 srcpath := filepath.Join(srcDataDir, path)

207 dstpath := filepath.Join(dstDataDir, path)

208

209 sf, err := os.Open(srcpath)

210 if err != nil {

211 xerrx("open source file (not backed up)", err, slog.String("srcpath", srcpath), slog.String("dstpath", dstpath))

212 return

213 }

214 defer sf.Close()

215

216 ensureDestDir(dstpath)

217 df, err := os.OpenFile(dstpath, os.O_WRONLY|os.O_CREATE|os.O_EXCL, 0660)

218 if err != nil {

219 xerrx("creating destination file (not backed up)", err, slog.String("srcpath", srcpath), slog.String("dstpath", dstpath))

220 return

221 }

222 defer func() {

223 if df != nil {

224 df.Close()

225 }

226 }()

227 if _, err := io.Copy(df, sf); err != nil {

228 xerrx("copying file (not backed up properly)", err, slog.String("srcpath", srcpath), slog.String("dstpath", dstpath))

229 return

230 }

231 err = df.Close()

232 df = nil

233 if err != nil {

234 xerrx("closing destination file (not backed up properly)", err, slog.String("srcpath", srcpath), slog.String("dstpath", dstpath))

235 return

236 }

237 xvlog("backed up file", slog.String("path", path), slog.Duration("duration", time.Since(tmFile)))

238 }

239

240 // Back up the files in a directory (by copying).

241 backupDir := func(dir string) {

242 tmDir := time.Now()

243 srcdir := filepath.Join(srcDataDir, dir)

244 dstdir := filepath.Join(dstDataDir, dir)

245 err := filepath.WalkDir(srcdir, func(srcpath string, d fs.DirEntry, err error) error {

246 if err != nil {

247 xerrx("walking file (not backed up)", err, slog.String("srcpath", srcpath))

248 return nil

249 }

250 if d.IsDir() {

251 return nil

252 }

253 backupFile(srcpath[len(srcDataDir)+1:])

254 return nil

255 })

256 if err != nil {

257 xerrx("copying directory (not backed up properly)", err,

258 slog.String("srcdir", srcdir),

259 slog.String("dstdir", dstdir),

260 slog.Duration("duration", time.Since(tmDir)))

261 return

262 }

263 xvlog("backed up directory", slog.String("dir", dir), slog.Duration("duration", time.Since(tmDir)))

264 }

265

266 // Backup a database by copying it in a readonly transaction.

267 // Always logs on error, so caller doesn't have to, but also returns the error so

268 // callers can see result.

269 backupDB := func(db *bstore.DB, path string) (rerr error) {

270 defer func() {

271 if rerr != nil {

272 xerrx("backing up database", rerr, slog.String("path", path))

273 }

274 }()

275

276 tmDB := time.Now()

277

278 dstpath := filepath.Join(dstDataDir, path)

279 ensureDestDir(dstpath)

280 df, err := os.OpenFile(dstpath, os.O_WRONLY|os.O_CREATE|os.O_EXCL, 0660)

281 if err != nil {

282 return fmt.Errorf("creating destination file: %v", err)

283 }

284 defer func() {

285 if df != nil {

286 df.Close()

287 }

288 }()

289 err = db.Read(ctx, func(tx *bstore.Tx) error {

290 // Using regular WriteTo seems fine, and fast. It just copies pages.

291 //

292 // bolt.Compact is slower, it writes all key/value pairs, building up new data

293 // structures. My compacted test database was ~60% of original size. Lz4 on the

294 // uncompacted database got it to 14%. Lz4 on the compacted database got it to 13%.

295 // Backups are likely archived somewhere with compression, so we don't compact.

296 //

297 // Tests with WriteTo and os.O_DIRECT were slower than without O_DIRECT, but

298 // probably because everything fit in the page cache. It may be better to use

299 // O_DIRECT when copying many large or inactive databases.

300 _, err := tx.WriteTo(df)

301 return err

302 })

303 if err != nil {

304 return fmt.Errorf("copying database: %v", err)

305 }

306 err = df.Close()

307 df = nil

308 if err != nil {

309 return fmt.Errorf("closing destination database after copy: %v", err)

310 }

311 xvlog("backed up database file", slog.String("path", path), slog.Duration("duration", time.Since(tmDB)))

312 return nil

313 }

314

315 // Try to create a hardlink. Fall back to copying the file (e.g. when on different file system).

316 warnedHardlink := false // We warn once about failing to hardlink.

317 linkOrCopy := func(srcpath, dstpath string) (bool, error) {

318 ensureDestDir(dstpath)

319

320 if err := os.Link(srcpath, dstpath); err == nil {

321 return true, nil

322 } else if os.IsNotExist(err) {

323 // No point in trying with regular copy, we would warn twice.

324 return false, err

325 } else if !warnedHardlink {

326 var hardlinkHint string

327 if runtime.GOOS == "linux" && errors.Is(err, syscall.EXDEV) {

328 hardlinkHint = " (hint: if running under systemd, ReadWritePaths in mox.service may cause multiple mountpoints; consider merging paths into a single parent directory to prevent cross-device/mountpoint hardlinks)"

329 }

330 xwarnx("creating hardlink to message failed, will be doing regular file copies and not warn again"+hardlinkHint, err, slog.String("srcpath", srcpath), slog.String("dstpath", dstpath))

331 warnedHardlink = true

332 }

333

334 // Fall back to copying.

335 sf, err := os.Open(srcpath)

336 if err != nil {

337 return false, fmt.Errorf("open source path %s: %v", srcpath, err)

338 }

339 defer func() {

340 err := sf.Close()

341 ctl.log.Check(err, "closing copied source file")

342 }()