opnDossier System Architecture¶
Overview¶
opnDossier is a CLI-based OPNsense configuration processor designed with an offline-first, operator-focused architecture. The system transforms complex XML configuration files into human-readable markdown documentation, following security-first principles and air-gap compatibility.
High-Level Architecture¶
Core Design Principles¶
- Offline-First: Zero external dependencies, complete air-gap compatibility
- Operator-Focused: Built for network administrators and operators
- Framework-First: Leverages established Go libraries (Cobra, Charm ecosystem)
- Structured Data: Maintains configuration hierarchy and relationships
- Security-First: No telemetry, input validation, secure processing
Architecture Pattern¶
- Monolithic CLI Application with clear separation of concerns
- Single Binary Distribution for easy deployment
- Local Processing Only - no external network calls
- Streaming Data Pipeline from XML input to various output formats
Technology Stack¶
Built with modern Go practices and established libraries:
| Component | Technology |
|---|---|
| CLI Framework | Cobra |
| Configuration | Viper |
| CLI Enhancement | Charm Fang |
| Terminal Styling | Charm Lipgloss |
| Markdown Rendering | Charm Glamour |
| XML Processing | Go's built-in encoding/xml |
| Structured Logging | Charm Log |
The CLI uses a layered architecture: Cobra provides command structure and argument parsing, Viper handles layered configuration management (files, env, flags), and Fang adds enhanced UX features like styled help, automatic version flags, and shell completion.
Services and Components¶
1. CLI Interface Layer¶
- Framework: Cobra CLI
- Responsibility: Command parsing, user interaction, error handling
- Key Files:
cmd/root.go,cmd/opnsense.go
2. Configuration Management¶
- Framework: spf13/viper
- Sources: CLI flags > Environment variables > Config file > Defaults
- Format: YAML configuration files
- Precedence: Standard order where environment variables override config files for deployment flexibility
3. Data Processing Engine¶
XML Parser Component¶
- Technology: Go's built-in
encoding/xml - Input: OPNsense config.xml files
- Output: Structured Go data types
- Features: Schema validation, error reporting, automatic charset conversion (UTF-8, US-ASCII, ISO-8859-1, Windows-1252)
Data Converter Component¶
- Input: Parsed XML structures
- Output: Markdown content
- Features: Hierarchy preservation, metadata injection
Output Renderer Component¶
- Formats: Terminal display, Markdown files, JSON (planned)
- Technologies: Charm Lipgloss (styling) + Charm Glamour (rendering)
4. Output Systems¶
- Terminal Display: Syntax-highlighted, styled terminal output
- File Export: Markdown file generation with metadata
- Future: HTML, JSON, and other structured formats
Data Model Architecture¶
opnDossier uses a hierarchical model structure that mirrors the OPNsense XML configuration while organizing functionality into logical domains:
graph TB
subgraph "Root Configuration"
ROOT[Opnsense Root]
META[Metadata & Global Settings]
end
subgraph "System Domain"
SYS[System Configuration]
USERS[User Management]
GROUPS[Group Management]
SYSCFG[System Services Config]
end
subgraph "Network Domain"
NET[Network Configuration]
IFACES[Interface Management]
ROUTING[Routing & Gateways]
VLAN[VLAN Configuration]
end
subgraph "Security Domain"
SEC[Security Configuration]
FIREWALL[Firewall Rules]
NAT[NAT Configuration]
VPN[VPN Services]
CERTS[Certificate Management]
end
subgraph "Services Domain"
SVC[Services Configuration]
DNS[DNS Services]
DHCP[DHCP Services]
MONITOR[Monitoring Services]
WEB[Web Services]
end
ROOT --> META
ROOT --> SYS
ROOT --> NET
ROOT --> SEC
ROOT --> SVC
SYS --> USERS
SYS --> GROUPS
SYS --> SYSCFG
NET --> IFACES
NET --> ROUTING
NET --> VLAN
SEC --> FIREWALL
SEC --> NAT
SEC --> VPN
SEC --> CERTS
SVC --> DNS
SVC --> DHCP
SVC --> MONITOR
SVC --> WEBThis hierarchical structure provides:
- Logical Organization: Related configuration grouped by functional domain
- Maintainability: Easier to locate and modify specific configuration types
- Extensibility: New features can be added to appropriate domains
- Validation: Domain-specific validation rules improve data integrity
- API Evolution: JSON tags enable better REST API integration
Data Flow Architecture¶
sequenceDiagram
participant User
participant CLI
participant ConfigMgr as Config Manager
participant Parser as XML Parser
participant Converter
participant Renderer
participant Output
User->>CLI: opndossier convert config.xml
CLI->>ConfigMgr: Load configuration
ConfigMgr-->>CLI: Configuration object
CLI->>Parser: Parse XML file
alt Valid XML
Parser->>Parser: Validate structure
Parser-->>CLI: Structured data
CLI->>Converter: Transform data
Converter-->>CLI: Markdown content
CLI->>Renderer: Format output
alt Terminal display
Renderer->>Output: Styled terminal
Output-->>User: Visual output
else File export
Renderer->>Output: Write file
Output-->>User: Confirmation
end
else Invalid XML
Parser-->>CLI: Error details
CLI-->>User: Error message
endProgrammatic Generation Architecture¶
Core Architecture¶
opnDossier uses programmatic markdown generation via the MarkdownBuilder component, delivering high performance, type safety, and enhanced developer experience.
sequenceDiagram
participant User
participant CLI
participant Parser as XML Parser
participant Builder as MarkdownBuilder
participant Methods as Go Methods
participant Renderer
participant Output
User->>CLI: opndossier convert config.xml
CLI->>Parser: Parse XML file
Parser-->>CLI: Structured data
CLI->>Builder: Create builder instance
Builder->>Methods: Direct method calls
Methods->>Methods: Type-safe operations
Methods-->>Builder: Structured content
Builder->>Renderer: Optimized string building
Renderer->>Output: Final markdown
Output-->>User: Generated reportKey Architectural Features¶
1. Performance Optimizations¶
The programmatic approach delivers significant performance improvements:
- Memory Usage: Reduced allocations through direct string building
- Generation Speed: Fast generation via method-based approach
- Throughput: High reports per second
- Scalability: Consistent performance across all dataset sizes
Performance can be measured using benchmarks in internal/converter/markdown_bench_test.go.
2. Type Safety¶
graph TB
subgraph "Programmatic Generation"
P1[Go Methods] --> P2[Compile-time Validation]
P2 --> P3[Type-safe Operations]
P3 --> P4[Explicit Error Handling]
P4 --> P5[Structured Results]
end
style P2 fill:#99ff99
style P3 fill:#99ff99
style P4 fill:#99ff993. Security Enhancements (Red Team Focus)¶
- Output Obfuscation: Built-in capabilities for sensitive data handling
- Complete Offline Support: No external dependencies
- Memory Safety: Improved handling of large configurations
- Error Isolation: Structured error handling prevents information leakage
MarkdownBuilder Component Architecture¶
classDiagram
class ReportBuilder {
<<interface>>
+BuildStandardReport(data) string
+BuildCustomReport(data, options) string
+BuildSystemSection(data) string
+BuildNetworkSection(data) string
+BuildSecuritySection(data) string
+BuildServicesSection(data) string
}
class MarkdownBuilder {
-config *OpnSenseDocument
-options BuildOptions
-logger *Logger
+CalculateSecurityScore(data) int
+AssessRiskLevel(severity) string
+FilterSystemTunables(tunables, filter) []SysctlItem
+GroupServicesByStatus(services) map[string][]Service
+FormatInterfaceLinks(interfaces) string
+EscapeMarkdownSpecialChars(input) string
}
class SecurityAssessor {
+CalculateSecurityScore(data) int
+AssessRiskLevel(severity) string
+AssessServiceRisk(service) string
+DetermineSecurityZone(interface) string
}
class DataTransformer {
+FilterSystemTunables(tunables, filter) []SysctlItem
+GroupServicesByStatus(services) map[string][]Service
+FormatSystemStats(data) map[string]interface{}
}
class StringFormatter {
+EscapeMarkdownSpecialChars(input) string
+FormatTimestamp(timestamp) string
+TruncateDescription(text, length) string
+FormatBoolean(value) string
}
ReportBuilder <|.. MarkdownBuilder
MarkdownBuilder o-- SecurityAssessor
MarkdownBuilder o-- DataTransformer
MarkdownBuilder o-- StringFormatterData Flow Pipeline (Programmatic Mode)¶
graph TD
subgraph "Input Processing"
XML[OPNsense XML] --> Parser[Enhanced Parser]
Parser --> Model[Structured Model]
end
subgraph "Programmatic Generation Engine"
Model --> Builder[MarkdownBuilder]
Builder --> Security[SecurityAssessor]
Builder --> Transform[DataTransformer]
Builder --> Format[StringFormatter]
Security --> Methods[Method-Based Generation]
Transform --> Methods
Format --> Methods
end
subgraph "Output Optimization"
Methods --> StringBuild[Optimized String Building]
StringBuild --> Render[Direct Rendering]
Render --> Output[Markdown Output]
end
subgraph "Performance Characteristics"
Metrics[Performance Metrics<br/>• Faster generation<br/>• Reduced memory<br/>• Increased throughput<br/>• Type-safe operations]
end
Output -.-> Metrics
style Builder fill:#99ff99,stroke:#333,stroke-width:4px
style Methods fill:#99ff99,stroke:#333,stroke-width:2px
style StringBuild fill:#99ff99,stroke:#333,stroke-width:2pxMethod Categories and Performance¶
Security Assessment Methods¶
- CalculateSecurityScore: 1.59M operations/sec
- AssessRiskLevel: 92M operations/sec
- AssessServiceRisk: High-frequency assessment capability
Data Transformation Methods¶
- FilterSystemTunables: 797K operations/sec
- GroupServicesByStatus: 1.01M operations/sec
- FormatSystemStats: Optimized for large datasets
String Utility Methods¶
- EscapeMarkdownSpecialChars: Ultra-fast character processing
- FormatTimestamp: Efficient time formatting
- TruncateDescription: Word-boundary aware truncation
Section Builders¶
- BuildSystemSection: 1.7K operations/sec (comprehensive sections)
- BuildNetworkSection: 6.7K operations/sec
- BuildSecuritySection: 5.1K operations/sec
- BuildServicesSection: 13K operations/sec
Memory Management Architecture¶
graph LR
subgraph "Programmatic Generation"
P1[Direct Methods] --> P2[Structured Building]
P2 --> P3[Pre-allocated Buffers]
P3 --> P4[Optimized Strings]
P4 --> P5[Efficient Memory]
P5 --> P6[Minimal Allocations]
end
style P5 fill:#99ff99
style P6 fill:#99ff99Error Handling Architecture¶
// Structured error types
type ValidationError struct {
Field string
Value any
Message string
}
type GenerationError struct {
Component string
Operation string
Cause error
}
// Context-aware error handling
func (b *MarkdownBuilder) BuildSection(data *model.OpnSenseDocument) (string, error) {
if err := b.validateInput(data); err != nil {
return "", &ValidationError{
Field: "input_data",
Value: data,
Message: fmt.Sprintf("invalid input: %v", err),
}
}
result, err := b.generateContent(data)
if err != nil {
return "", &GenerationError{
Component: "section_builder",
Operation: "content_generation",
Cause: err,
}
}
return result, nil
}
Modular Report Generator Architecture¶
Design Principles¶
Report generators in opnDossier follow a modular, self-contained architecture designed to support:
- Build-time feature selection via Go build flags
- Pro-level features through optional modules
- Independent development of report types
- Clean separation between shared infrastructure and report-specific logic
Module Structure¶
Each report generator should be a self-contained module with its own:
- Generation logic - All markdown/output construction
- Calculation logic - Security scoring, risk assessment, statistics
- Data transformations - Report-specific data processing
- Constants and mappings - Report-specific configuration
graph TB
subgraph "Shared Infrastructure"
Model[model.OpnSenseDocument]
Helpers[Shared Helpers<br/>• String formatting<br/>• Markdown escaping<br/>• Table building]
end
subgraph "Report Generator Modules"
Standard[Standard Report<br/>• Generation logic<br/>• Calculations<br/>• Transformations]
Blue[Blue Team Report<br/>• Compliance checks<br/>• Security findings<br/>• Risk assessment]
Red[Red Team Report<br/>• Attack surface<br/>• Enumeration data<br/>• Pivot analysis]
Pro[Pro Reports<br/>• Advanced analytics<br/>• Custom formats<br/>• Enterprise features]
end
Model --> Standard
Model --> Blue
Model --> Red
Model --> Pro
Helpers --> Standard
Helpers --> Blue
Helpers --> Red
Helpers --> Pro
style Pro fill:#ffd700,stroke:#333,stroke-width:2pxBuild Flag Integration¶
Report generators can be conditionally included using Go build tags:
This enables:
- Standard builds with core report types
- Pro builds with additional enterprise features
- Custom builds with specific report combinations
Implementation Guidelines¶
What Each Report Module Should Contain¶
Report modules are self-contained packages. Currently, report generation lives in internal/converter/builder/ and internal/converter/formatters/. As the system evolves to support Pro-level features, each report type may be extracted to its own package following this structure:
internal/converter/<report-type>/
├── generator.go # Main generation logic
├── calculations.go # Report-specific calculations
├── transformers.go # Data transformation functions
├── constants.go # Report-specific constants
└── <report-type>_test.go
What Should Remain Shared¶
model.OpnSenseDocument- The parsed configuration model- String helpers - Markdown escaping, formatting utilities
- Table builders - Generic markdown table construction
- Common interfaces -
ReportBuilder,Generatorinterfaces
Example Module Structure¶
// internal/reports/blueteam/generator.go
package blueteam
import (
"github.com/EvilBit-Labs/opnDossier/internal/model"
"github.com/EvilBit-Labs/opnDossier/internal/converter/formatters"
)
type BlueTeamGenerator struct {
// All state and configuration for blue team reports
}
func (g *BlueTeamGenerator) Generate(doc *model.OpnSenseDocument) (string, error) {
// Self-contained generation using only model and helpers
score := g.calculateSecurityScore(doc)
findings := g.analyzeCompliance(doc)
return g.buildReport(doc, score, findings)
}
// All calculation logic is internal to this module
func (g *BlueTeamGenerator) calculateSecurityScore(doc *model.OpnSenseDocument) int {
// Blue team specific scoring algorithm
}
Benefits¶
- Independent Testing - Each report module can be tested in isolation
- Feature Gating - Pro features excluded from standard builds
- Reduced Coupling - Changes to one report type don't affect others
- Clear Ownership - Each module has defined boundaries
- Extensibility - New report types added without modifying core
Data Storage Strategy¶
Local File System¶
- Configuration:
~/.opnDossier.yaml(user preferences) - Input: OPNsense XML files (any location)
- Output: Markdown files (user-specified or current directory)
Memory Management¶
- Structured Data: Go structs with XML/JSON tags
- Large Files: Streaming processing for memory efficiency
- Type Safety: Strong typing throughout the pipeline
No Persistent Storage¶
- Stateless Operation: Each run is independent
- No Database: All data flows through memory
- Temporary Files: Cleaned up automatically
External Integrations¶
Documentation System¶
- Technology: MkDocs with Material theme
- Purpose: Static documentation generation
- Deployment: Local development server, no runtime dependencies
Package Distribution¶
- Build System: GoReleaser for multi-platform builds
- Platforms: Linux, macOS, Windows (amd64, arm64)
- Distribution: GitHub Releases, package managers, direct download
- Formats: Binary archives, system packages (deb, rpm, apk)
Development Integration¶
- CI/CD: GitHub Actions
- Quality: golangci-lint, pre-commit hooks
- Testing: Go's built-in testing framework
- Task Runner: Just for development workflows
Air-Gap/Offline Considerations¶
Design for Isolation¶
graph LR
subgraph "Air-Gapped Environment"
subgraph "Secure Network"
FW[OPNsense Firewall]
OPS[Operator Workstation]
DOCS[Documentation Server]
end
subgraph "opnDossier Application"
BIN[Single Binary]
CFG[Local Config]
end
end
FW -->|config.xml| OPS
OPS -->|Executes| BIN
BIN -->|Uses| CFG
BIN -->|Generates| DOCSOffline Capabilities¶
- Zero External Dependencies: All libraries embedded in binary
- No Network Calls: Completely self-contained operation
- Portable Deployment: Single binary, no installation required
- Data Exchange: File-based import/export only
Data Exchange Patterns¶
- Import: Local files, USB drives, network shares
- Export: Markdown, JSON, plain text
- Transfer: Standard file transfer protocols (SCP, SFTP, etc.)
Versioned Data Strategy¶
Configuration Versioning¶
- Backward Compatibility: Support for older OPNsense versions
- Forward Compatibility: Graceful handling of newer configurations
- Version Detection: Automatic OPNsense version identification
- Migration Support: Utilities for format changes
Non-Destructive Processing¶
- Original Preservation: Input files never modified
- Timestamped Outputs: Version metadata in all outputs
- Audit Trail: Change tracking and diff generation
- Rollback Support: Easy reversion to previous states
Schema Evolution¶
graph TB
subgraph "Version Management"
V1[OPNsense v1.x<br/>Basic features]
V2[OPNsense v2.x<br/>Enhanced features]
V3[OPNsense v3.x<br/>Latest features]
end
subgraph "Compatibility Layer"
COMPAT[Version Handler]
MIGRATE[Migration Engine]
VALIDATE[Schema Validator]
end
subgraph "Processing Pipeline"
PARSER[XML Parser]
CONVERTER[Data Converter]
RENDERER[Output Renderer]
end
V1 --> COMPAT
V2 --> COMPAT
V3 --> COMPAT
COMPAT --> VALIDATE
COMPAT --> MIGRATE
MIGRATE --> PARSER
VALIDATE --> PARSER
PARSER --> CONVERTER
CONVERTER --> RENDERERSecurity Architecture¶
Threat Model¶
- Primary Threats: Malicious XML files, path traversal, resource exhaustion
- Not Addressed: Network attacks (offline operation), privilege escalation (user-level tool)
Security Controls¶
- Input Validation: XML schema validation, path sanitization, size limits
- Processing Security: Memory safety (Go runtime), type safety, error handling
- Output Security: Path validation, permission checks, content sanitization
Air-Gap Security Benefits¶
- No Network Attack Surface: Offline operation eliminates network-based threats
- No Data Exfiltration: Local processing only
- No Unauthorized Updates: Manual deployment only
- Audit-Friendly: All operations are local and traceable
Deployment Patterns¶
Single Binary Distribution¶
- Build: Cross-compiled Go binary
- Size: Minimal footprint (~10-20MB)
- Dependencies: None (all embedded)
- Installation: Drop-in replacement, no setup required
Multi-Platform Support¶
- Operating Systems: Linux, macOS, Windows
- Architectures: amd64, arm64
- Special: macOS universal binaries
- Packages: Native package formats for each platform
Enterprise Deployment¶
- Package Management: APT, RPM, Homebrew integration
- Code Signing: Verified binaries for security
- Bulk Deployment: Network share or USB distribution
- Configuration Management: YAML-based configuration
Quick Start Architecture Summary¶
- User provides OPNsense config.xml file
- CLI parses command-line arguments and loads configuration
- XML Parser validates and structures the input data
- Data Converter transforms XML to markdown with metadata
- Output Renderer formats for terminal display or file export
- User receives human-readable documentation
Key Benefits: Offline operation, security-first design, operator-focused workflows, cross-platform compatibility, and comprehensive documentation generation from complex network configurations.
For detailed architecture information, see the complete architecture documentation.