mirror of https://github.com/TZERO78/kopi-docka.git synced 2026-06-19 07:37:12 +00:00

Files

T

Markus 4a30e75b5f fix: Security hardening & documentation overhaul (Plan 0023)

Squash merge of Plan 0023 — security hardening, robustness improvements, documentation overhaul.

Phases:
- 1A–1C: S1–S10 security fixes (shell injection, SUDO_USER, hook validation, fchmod race, sensitive stderr filtering, mkdtemp, KOPIA_PASSWORD)
- 2A–2C: R1–R8 robustness (subprocess leak, JSON errors, bounds checks, SIGTERM grace)
- 3A–3D: D1–D13 documentation overhaul

Post-review fix: strip line-continuation formatting before shlex.split (Codex P1).

2026-04-11 12:51:47 +02:00

5.9 KiB

Raw Permalink Blame History

← Back to README

Development

Project Structure

kopi-docka/
├── kopi_docka/
│   ├── __init__.py              # Main exports
│   ├── __main__.py              # CLI entry point (Typer)
│   ├── types.py                 # Dataclasses (BackupUnit, etc.)
│   │
│   ├── backends/                # Storage backend implementations
│   │   ├── base.py              # BackendBase (abstract)
│   │   ├── local.py             # Local filesystem
│   │   ├── s3.py                # AWS S3 / Wasabi / MinIO
│   │   ├── b2.py                # Backblaze B2
│   │   ├── azure.py             # Azure Blob
│   │   ├── gcs.py               # Google Cloud Storage
│   │   ├── sftp.py              # SFTP/SSH
│   │   └── tailscale.py         # Tailscale P2P
│   │
│   ├── helpers/                 # Utilities
│   │   ├── config.py            # Config handling (JSON)
│   │   ├── constants.py         # Global constants
│   │   ├── logging.py           # Structured logging
│   │   └── system_utils.py      # System checks (RAM/CPU/disk)
│   │
│   ├── cores/                   # Business logic
│   │   ├── backup_manager.py    # Backup orchestration
│   │   ├── restore_manager.py   # Restore wizard
│   │   ├── docker_discovery.py  # Container detection
│   │   ├── repository_manager.py # Kopia wrapper
│   │   ├── dependency_manager.py # System deps check
│   │   ├── dry_run_manager.py   # Simulation mode
│   │   ├── disaster_recovery_manager.py # DR bundle creation
│   │   ├── kopia_policy_manager.py # Retention policies
│   │   └── service_manager.py   # Systemd integration
│   │
│   ├── commands/                # CLI command handlers
│   │   ├── backup_commands.py   # list, backup, restore
│   │   ├── config_commands.py   # Config management
│   │   ├── dependency_commands.py # Deps check/install
│   │   ├── repository_commands.py # Repo operations
│   │   ├── service_commands.py  # Systemd setup
│   │   ├── setup_commands.py    # Setup wizard
│   │   └── dry_run_commands.py  # Simulation commands
│   │
│   └── templates/               # Config templates
│       └── config_template.json # v3.0 JSON config
│
├── tests/
│   ├── conftest.py              # Pytest fixtures
│   ├── pytest.ini               # Test configuration
│   ├── unit/                    # Fast unit tests
│   └── integration/             # Slow integration tests
│
├── .github/
│   └── workflows/
│       └── publish.yml          # PyPI auto-publish on tags
│
├── pyproject.toml               # Package configuration (PEP 517/518)
├── requirements.txt             # Dependencies
├── Makefile                     # Dev tasks
├── README.md                    # This file
└── LICENSE                      # MIT License

Development

Setup Dev Environment

git clone https://github.com/TZERO78/kopi-docka.git
cd kopi-docka

# Install with dev dependencies
pip install -e ".[dev]"

# Format code
make format

# Check style
make check-style

# Run tests
make test

# Coverage
make test-coverage

Code Style

Formatter: Black (line-length: 100)
Linter: flake8
Type Hints: Recommended (not enforced yet)
Docstrings: Google style

Tests

# Fast unit tests
make test-unit

# All tests
make test

# With coverage
make test-coverage
# Opens htmlcov/index.html

Status & Development

Current Version: v6.4.0

Version 6.4.0 includes retention policy path fixes, doctor checks, and the backup history command (v6.3.0):

✅ Retention policy path fix — path mismatch resolved (v6.4.0)
✅ Doctor check — retention policy validation added (v6.4.0)
✅ Backup History — advanced snapshot history command (v6.3.0)
✅ Bypass Cleanup — all Kopia CLI calls route through KopiaRepository._run() (v6.2.3)
✅ Modular structure (helpers, cores, commands)
✅ JSON config with hooks support
✅ Production-ready systemd integration
✅ Comprehensive journald logging

Current priorities:

Security — hardening against injection, hook hijacking, credential leaks (v6.5.0)
Robustness — resource leak fixes, better error handling
Documentation — sync all docs with v6.4.0 reality

Planned Features

These features are ideas for future releases:

Extended Exclude Patterns

More granular control over excluded files
Per-unit excludes
Status: ⏳ Planned

Backup Verification

Automatic snapshot verification
Restore tests
Status: ⏳ Idea

Multi-Repository Support

Parallel backups to multiple repos
3-2-1 strategy
Status: ⏳ Idea

How You Can Help

Testing:

# Test different scenarios
kopi-docka check
kopi-docka dry-run
kopi-docka backup
kopi-docka restore

Report Bugs:

GitHub Issues
Please attach complete error logs
Describe your setup (OS, Docker version, etc.)

Give Feedback:

What works well?
What's unclear?
Which features are you missing?
GitHub Discussions

The project evolves through your feedback!

Contributing

Contributions are welcome! Please:

Fork the repository
Create feature branch: git checkout -b feature/amazing-feature
Make your changes
Add tests if applicable
Format code: make format
Run tests: make test
Commit: git commit -m "Add amazing feature"
Push: git push origin feature/amazing-feature
Open pull request

Report issues: GitHub Issues

← Back to README

5.9 KiB Raw Permalink Blame History

Development

Project Structure

Development

Setup Dev Environment

Code Style

Tests

Status & Development

Current Version: v6.4.0

Planned Features

How You Can Help

Contributing

5.9 KiB

Raw Permalink Blame History