mirror of
https://github.com/mjl-/mox.git
synced 2025-07-10 08:34:40 +03:00
add a "backup" subcommand to make consistent backups, and a "verifydata" subcommand to verify a backup before restoring, and add tests for future upgrades
the backup command will make consistent snapshots of all the database files. i had been copying the db files before, and it usually works. but if the file is modified during the backup, it is inconsistent and is likely to generate errors when reading (can be at any moment in the future, when reading some db page). "mox backup" opens the database file and writes out a copy in a transaction. it also duplicates the message files. before doing a restore, you could run "mox verifydata" on the to-be-restored "data" directory. it check the database files, and compares the message files with the database. the new "gentestdata" subcommand generates a basic "data" directory, with a queue and a few accounts. we will use it in the future along with "verifydata" to test upgrades from old version to the latest version. both when going to the next version, and when skipping several versions. the script test-upgrades.sh executes these tests and doesn't do anything at the moment, because no releases have this subcommand yet. inspired by a failed upgrade attempt of a pre-release version.
This commit is contained in:
Mechiel Lukkien
65
doc.go
65
doc.go
@ -29,6 +29,8 @@ low-maintenance self-hosted email.
|
||||
mox export mbox dst-dir account-path [mailbox]
|
||||
mox localserve
|
||||
mox help [command ...]
|
||||
mox backup dest-dir
|
||||
mox verifydata data-dir
|
||||
mox config test
|
||||
mox config dnscheck domain
|
||||
mox config dnsrecords domain
|
||||
@ -331,6 +333,69 @@ If a single command matches, its usage and full help text is printed.
|
||||
|
||||
usage: mox help [command ...]
|
||||
|
||||
# mox backup
|
||||
|
||||
Creates a backup of the data directory.
|
||||
|
||||
Backup creates consistent snapshots of the databases and message files and
|
||||
copies other files in the data directory. Empty directories are not copied.
|
||||
These files can then be stored elsewhere for long-term storage, or used to fall
|
||||
back to should an upgrade fail. Simply copying files in the data directory
|
||||
while mox is running can result in unusable database files.
|
||||
|
||||
Message files never change (they are read-only, though can be removed) and are
|
||||
hardlinked so they don't consume additional space. If hardlinking fails, for
|
||||
example when the backup destination directory is on a different file system, a
|
||||
regular copy is made. Using a destination directory like "data/tmp/backup"
|
||||
increases the odds hardlinking succeeds: the default systemd service file
|
||||
specifically mounts the data directory, causing attempts to hardlink outside it
|
||||
to fail with an error about cross-device linking.
|
||||
|
||||
All files in the data directory that aren't recognized (i.e. other than known
|
||||
database files, message files, an acme directory, etc), are stored, but with a
|
||||
warning.
|
||||
|
||||
A clean successful backup does not print any output by default. Use the
|
||||
-verbose flag for details, including timing.
|
||||
|
||||
To restore a backup, first shut down mox, move away the old data directory and
|
||||
move an earlier backed up directory in its place, run "mox verifydata",
|
||||
possibly with the "-fix" option, and restart mox. After the restore, you may
|
||||
also want to run "mox bumpuidvalidity" for each account for which messages in a
|
||||
mailbox changed, to force IMAP clients to synchronize mailbox state.
|
||||
|
||||
Before upgrading, to check if the upgrade will likely succeed, first make a
|
||||
backup, then use the new mox binary to run "mox verifydata" on the backup. This
|
||||
can change the backup files (e.g. upgrade database files, move away
|
||||
unrecognized message files), so you should make a new backup before actually
|
||||
upgrading.
|
||||
|
||||
usage: mox backup dest-dir
|
||||
-verbose
|
||||
print progress
|
||||
|
||||
# mox verifydata
|
||||
|
||||
Verify the contents of a data directory, typically of a backup.
|
||||
|
||||
Verifydata checks all database files to see if they are valid BoltDB/bstore
|
||||
databases. It checks that all messages in the database have a corresponding
|
||||
on-disk message file and there are no unrecognized files. If option -fix is
|
||||
specified, unrecognized message files are moved away. This may be needed after
|
||||
a restore, because messages enqueued or delivered in the future may get those
|
||||
message sequence numbers assigned and writing the message file would fail.
|
||||
|
||||
Because verifydata opens the database files, schema upgrades may automatically
|
||||
be applied. This can happen if you use a new mox release. It is useful to run
|
||||
"mox verifydata" with a new binary before attempting an upgrade, but only on a
|
||||
copy of the database files, as made with "mox backup". Before upgrading, make a
|
||||
new backup again since "mox verifydata" may have upgraded the database files,
|
||||
possibly making them potentially no longer readable by the previous version.
|
||||
|
||||
usage: mox verifydata data-dir
|
||||
-fix
|
||||
fix fixable problems, such as moving away message files not referenced by their database
|
||||
|
||||
# mox config test
|
||||
|
||||
Parses and validates the configuration files.
|
||||
|
||||
Reference in New Issue
Block a user