claw-daemon/clawd
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: add /etc/hosts /etc/hostname to systemd ReadWritePaths; bump v1.2.5

Browse Source 
Co-authored-by: Cursor <cursoragent@cursor.com>
This commit is contained in:
stswangzhiping
2026-05-04 18:14:14 +08:00
parent 9e67969fd1
commit 8990d48d51
2 changed files with 78 additions and 68 deletions
Download Patch File Download Diff File Expand all files Collapse all files

142
install.sh
View File

@@ -1,7 +1,7 @@
#!/usr/bin/env bash #!/usr/bin/env bash
# clawd one-click install script # clawd ??????
# Usage: curl -fsSL https://git.cutos.ai/claw-daemon/clawd/raw/branch/main/install.sh | sudo bash # ???curl -fsSL https://git.cutos.ai/claw-daemon/clawd/raw/branch/main/install.sh | sudo bash
# Requires root and Node.js >= 18 # ?? root ???????? Node.js >= 18
set -e set -e
@@ -11,26 +11,26 @@ info() { echo -e "${GREEN}[clawd]${NC} $*"; }
warn() { echo -e "${YELLOW}[clawd]${NC} $*"; } warn() { echo -e "${YELLOW}[clawd]${NC} $*"; }
error() { echo -e "${RED}[clawd]${NC} $*"; exit 1; } error() { echo -e "${RED}[clawd]${NC} $*"; exit 1; }
# -- check root # ?? ?? root ????????????????????????????????????????????????????????????????
if [ "$EUID" -ne 0 ]; then if [ "$EUID" -ne 0 ]; then
error "Please run as root: sudo bash install.sh" error "?? root ?????sudo bash install.sh?"
fi fi
# -- check Node.js # ?? ?? Node.js ?????????????????????????????????????????????????????????????
if ! command -v node &>/dev/null; then if ! command -v node &>/dev/null; then
error "Node.js not found. Please install Node.js >= 18 first." error "??? Node.js????? Node.js >= 18"
fi fi
NODE_VER=$(node -e "process.stdout.write(process.versions.node)") NODE_VER=$(node -e "process.stdout.write(process.versions.node)")
MAJOR=$(echo "$NODE_VER" | cut -d. -f1) MAJOR=$(echo "$NODE_VER" | cut -d. -f1)
if [ "$MAJOR" -lt 18 ]; then if [ "$MAJOR" -lt 18 ]; then
error "Node.js version too low (current: $NODE_VER). Need >= 18." error "Node.js ??????? $NODE_VER???? >= 18"
fi fi
info "Node.js $NODE_VER OK" info "Node.js $NODE_VER ?"
# -- install dnsmasq (needed for WiFi provisioning) # ?? ??/?? dnsmasq?WiFi ???????????????????????????????????????????
if ! command -v dnsmasq &>/dev/null; then if ! command -v dnsmasq &>/dev/null; then
info "Installing dnsmasq..." info "?? dnsmasq?WiFi ?????..."
if command -v apt-get &>/dev/null; then if command -v apt-get &>/dev/null; then
apt-get install -y -qq dnsmasq >/dev/null 2>&1 apt-get install -y -qq dnsmasq >/dev/null 2>&1
elif command -v yum &>/dev/null; then elif command -v yum &>/dev/null; then
@@ -38,23 +38,25 @@ if ! command -v dnsmasq &>/dev/null; then
elif command -v apk &>/dev/null; then elif command -v apk &>/dev/null; then
apk add --quiet dnsmasq >/dev/null 2>&1 apk add --quiet dnsmasq >/dev/null 2>&1
else else
warn "Cannot auto-install dnsmasq. WiFi provisioning may not work." warn "?????? dnsmasq?WiFi ?????????"
fi fi
# ?? dnsmasq ???????clawd ?????
systemctl disable dnsmasq 2>/dev/null || true systemctl disable dnsmasq 2>/dev/null || true
systemctl stop dnsmasq 2>/dev/null || true systemctl stop dnsmasq 2>/dev/null || true
fi fi
if command -v dnsmasq &>/dev/null; then if command -v dnsmasq &>/dev/null; then
info "dnsmasq OK" info "dnsmasq ?"
fi fi
# -- enable NetworkManager # ?? ?? NetworkManager?WiFi ???????????????????????????????????????????
if command -v nmcli &>/dev/null; then if command -v nmcli &>/dev/null; then
if ! systemctl is-active --quiet NetworkManager 2>/dev/null; then if ! systemctl is-active --quiet NetworkManager 2>/dev/null; then
info "Enabling NetworkManager..." info "?? NetworkManager..."
systemctl enable --now NetworkManager 2>/dev/null || true systemctl enable --now NetworkManager 2>/dev/null || true
fi fi
info "NetworkManager OK" info "NetworkManager ?"
# ?? DNS ???????? /etc ??????
NM_DNSMASQ_DIR="/etc/NetworkManager/dnsmasq-shared.d" NM_DNSMASQ_DIR="/etc/NetworkManager/dnsmasq-shared.d"
mkdir -p "$NM_DNSMASQ_DIR" mkdir -p "$NM_DNSMASQ_DIR"
cat > "$NM_DNSMASQ_DIR/clawd-captive.conf" << 'DNSCONF' cat > "$NM_DNSMASQ_DIR/clawd-captive.conf" << 'DNSCONF'
@@ -62,19 +64,20 @@ if command -v nmcli &>/dev/null; then
# All DNS queries resolve to gateway to trigger captive portal # All DNS queries resolve to gateway to trigger captive portal
address=/#/10.42.0.1 address=/#/10.42.0.1
DNSCONF DNSCONF
info "DNS hijack config written to $NM_DNSMASQ_DIR" info "DNS ??????? $NM_DNSMASQ_DIR ?"
fi fi
# -- WiFi rfkill unblock # ?? WiFi rfkill ??????????? WiFi?????????????????????????????????
for rf in /sys/class/rfkill/rfkill*; do for rf in /sys/class/rfkill/rfkill*; do
if [ -f "$rf/type" ] && [ "$(cat "$rf/type")" = "wlan" ]; then if [ -f "$rf/type" ] && [ "$(cat "$rf/type")" = "wlan" ]; then
if [ "$(cat "$rf/soft")" = "1" ]; then if [ "$(cat "$rf/soft")" = "1" ]; then
info "Unblocking WiFi ($(basename "$rf"))..." info "?? WiFi ($(basename "$rf"))..."
echo 0 > "$rf/soft" echo 0 > "$rf/soft"
fi fi
fi fi
done done
# ???????? + systemd ??????????? WiFi
RFKILL_SCRIPT="/usr/local/bin/clawd-unblock-wifi.sh" RFKILL_SCRIPT="/usr/local/bin/clawd-unblock-wifi.sh"
cat > "$RFKILL_SCRIPT" << 'SCRIPT' cat > "$RFKILL_SCRIPT" << 'SCRIPT'
#!/bin/sh #!/bin/sh
@@ -105,40 +108,39 @@ WantedBy=multi-user.target
UNIT UNIT
systemctl daemon-reload systemctl daemon-reload
systemctl enable clawd-rfkill systemctl enable clawd-rfkill
info "WiFi rfkill service created" info "WiFi rfkill ??????? ?"
# -- install ttyd # ?? ?? ttyd?Web ???????????????????????????????????????????????????????
info "Installing ttyd..." info "?? ttyd..."
if apt-get install -y ttyd >/dev/null 2>&1; then if apt-get install -y ttyd >/dev/null 2>&1; then
info "ttyd installed" info "ttyd ??? ?"
else else
warn "ttyd install failed. Web terminal may not be available." warn "ttyd ?????Web ????????"
fi fi
# -- install clawd # ?? ?? clawd ???????????????????????????????????????????????????????????????
INSTALL_DIR="/opt/clawd" INSTALL_DIR="/opt/clawd"
CONFIG_DIR="/etc/clawd" CONFIG_DIR="/etc/clawd"
ENV_FILE="$CONFIG_DIR/env" ENV_FILE="$CONFIG_DIR/env"
CUTOS_REPO="https://git.cutos.ai/claw-daemon/clawd.git" info "??? $INSTALL_DIR ..."
info "Installing to $INSTALL_DIR ..."
mkdir -p "$INSTALL_DIR" mkdir -p "$INSTALL_DIR"
cd "$INSTALL_DIR" cd "$INSTALL_DIR"
# Download source (prioritise .git repo update over package.json skip) # ?????????? package.json?????/???????? git/tarball?
CUTOS_REPO="https://git.cutos.ai/claw-daemon/clawd.git"
if command -v git &>/dev/null && [ -d ".git" ]; then if command -v git &>/dev/null && [ -d ".git" ]; then
# Migrate remote from GitHub to git.cutos.ai if needed
CURRENT_REMOTE=$(git remote get-url origin 2>/dev/null || echo "") CURRENT_REMOTE=$(git remote get-url origin 2>/dev/null || echo "")
if echo "$CURRENT_REMOTE" | grep -q "github.com"; then if echo "$CURRENT_REMOTE" | grep -q "github.com"; then
info "Migrating git remote to git.cutos.ai ..." info "?? git remote ? git.cutos.ai ..."
git remote set-url origin "$CUTOS_REPO" git remote set-url origin "$CUTOS_REPO"
fi fi
info "Pulling latest code..." info "??????..."
git fetch origin git fetch origin
git reset --hard origin/main git reset --hard origin/main
git clean -fd git clean -fd
elif [ -f "package.json" ]; then elif [ -f "package.json" ]; then
info "Source already present (no .git). Skipping download." info "????????? git??????"
elif command -v git &>/dev/null; then elif command -v git &>/dev/null; then
git clone --depth=1 "$CUTOS_REPO" . git clone --depth=1 "$CUTOS_REPO" .
else else
@@ -146,18 +148,18 @@ else
curl -fsSL "$TARBALL_URL" | tar -xz --strip-components=1 curl -fsSL "$TARBALL_URL" | tar -xz --strip-components=1
fi fi
# install npm deps # ????
info "Installing npm dependencies..." info "?? npm ??..."
npm install --omit=dev --silent npm install --omit=dev --silent
# create symlink # ???????
ln -sf "$INSTALL_DIR/bin/clawd.js" /usr/local/bin/clawd ln -sf "$INSTALL_DIR/bin/clawd.js" /usr/local/bin/clawd
chmod +x "$INSTALL_DIR/bin/clawd.js" chmod +x "$INSTALL_DIR/bin/clawd.js"
info "clawd installed to /usr/local/bin/clawd" info "clawd ???? /usr/local/bin/clawd ?"
# -- create config dir + env file # ?? ?????? + ?????? ??????????????????????????????????????????????
mkdir -p "$CONFIG_DIR" mkdir -p "$CONFIG_DIR"
if [ ! -f "$CONFIG_DIR/config.json" ]; then if [ ! -f "$CONFIG_DIR/config.json" ]; then
@@ -169,36 +171,36 @@ if [ ! -f "$CONFIG_DIR/config.json" ]; then
"heartbeat_interval": 30 "heartbeat_interval": 30
} }
EOF EOF
info "Config file created: $CONFIG_DIR/config.json" info "????????$CONFIG_DIR/config.json ?"
fi fi
if [ ! -f "$ENV_FILE" ]; then if [ ! -f "$ENV_FILE" ]; then
cat > "$ENV_FILE" <<EOF cat > "$ENV_FILE" <<EOF
# clawd environment variables (systemd EnvironmentFile) # clawd ?????systemd EnvironmentFile?
# Log level: debug / info / warn / error # ????: debug / info / warn / error
CLAWD_LOG_LEVEL=info CLAWD_LOG_LEVEL=info
# Write log file (0 = journald only) # ????????0=? journald?
CLAWD_LOG_FILE=1 CLAWD_LOG_FILE=1
# Custom server address (leave empty to read from config.json) # ????????????? config.json?
# CLAWD_SERVER=wss://claw.cutos.ai/ws # CLAWD_SERVER=wss://claw.cutos.ai/ws
# BtMonitor (bluetoothctl) is disabled by default. # BtMonitor?bluetoothctl??????????????? CLAWD_DISABLE_BT?
# Uncomment to enable Bluetooth LED: # ???????????????????
# CLAWD_ENABLE_BT=1 # CLAWD_ENABLE_BT=1
# OpenVFD sysfs path (default: /sys/class/leds/openvfd) # OpenVFD sysfs ?????? /sys/class/leds/openvfd?
# CLAWD_OPENVFD_PATH=/sys/class/leds/openvfd # CLAWD_OPENVFD_PATH=/sys/class/leds/openvfd
# VFD service pipe (default: /tmp/openvfd_service) # ??? vfdservice ????? /tmp/openvfd_service?
# CLAWD_VFD_PIPE=/tmp/openvfd_service # CLAWD_VFD_PIPE=/tmp/openvfd_service
# Fixed LAN interface for multi-port boards # ???/??????? LAN ???????????? clawd ?????? carrier ??
# CLAWD_ETH_IFACE=end0 # CLAWD_ETH_IFACE=end0
EOF EOF
info "Env file created: $ENV_FILE" info "??????????$ENV_FILE ?"
fi fi
# -- create log dir # ?? ?????? ?????????????????????????????????????????????????????????????
mkdir -p "$CONFIG_DIR/logs" mkdir -p "$CONFIG_DIR/logs"
info "Log dir: $CONFIG_DIR/logs" info "?????$CONFIG_DIR/logs ?"
# -- create systemd service # ?? ?? systemd service ????????????????????????????????????????????????????
NODE_BIN=$(command -v node) NODE_BIN=$(command -v node)
SERVICE_FILE="/etc/systemd/system/clawd.service" SERVICE_FILE="/etc/systemd/system/clawd.service"
@@ -211,70 +213,78 @@ Wants=NetworkManager.service
[Service] [Service]
Type=simple Type=simple
# systemd-notify ????????? NotifyAccess=main ????? all ??? WatchdogSec
NotifyAccess=all NotifyAccess=all
EnvironmentFile=$ENV_FILE EnvironmentFile=$ENV_FILE
ExecStart=$NODE_BIN $INSTALL_DIR/bin/clawd.js ExecStart=$NODE_BIN $INSTALL_DIR/bin/clawd.js
WorkingDirectory=$INSTALL_DIR WorkingDirectory=$INSTALL_DIR
# ????
Restart=always Restart=always
RestartSec=5 RestartSec=5
# ?? systemd ?? StartLimitIntervalSec?? StartLimitInterval=???
StartLimitInterval=300 StartLimitInterval=300
StartLimitBurst=10 StartLimitBurst=10
# ?????10s ? SIGTERM??? SIGKILL?
TimeoutStopSec=10 TimeoutStopSec=10
KillMode=mixed KillMode=mixed
KillSignal=SIGTERM KillSignal=SIGTERM
# ??????????
MemoryMax=256M MemoryMax=256M
CPUQuota=50% CPUQuota=50%
TasksMax=64 TasksMax=64
# ?????ttyd ????? setuid sudo???? NoNewPrivileges/strict?
ProtectSystem=full ProtectSystem=full
ReadWritePaths=$CONFIG_DIR /tmp ReadWritePaths=$CONFIG_DIR /tmp /etc/hosts /etc/hostname
# ??
StandardOutput=journal StandardOutput=journal
StandardError=journal StandardError=journal
SyslogIdentifier=clawd SyslogIdentifier=clawd
# systemd Watchdog?60s ????????
WatchdogSec=60 WatchdogSec=60
[Install] [Install]
WantedBy=multi-user.target WantedBy=multi-user.target
EOF EOF
info "systemd service file created" info "systemd ??????? ?"
# -- journald log limits # ?? journald ???????? ????????????????????????????????????????????????
JOURNAL_CONF="/etc/systemd/journald.conf.d/clawd.conf" JOURNAL_CONF="/etc/systemd/journald.conf.d/clawd.conf"
if [ ! -f "$JOURNAL_CONF" ]; then if [ ! -f "$JOURNAL_CONF" ]; then
mkdir -p /etc/systemd/journald.conf.d mkdir -p /etc/systemd/journald.conf.d
cat > "$JOURNAL_CONF" <<EOF cat > "$JOURNAL_CONF" <<EOF
# clawd journald limits # clawd journald ??
[Journal] [Journal]
SystemMaxUse=100M SystemMaxUse=100M
MaxFileSec=7day MaxFileSec=7day
EOF EOF
systemctl restart systemd-journald 2>/dev/null || true systemctl restart systemd-journald 2>/dev/null || true
info "journald limits configured" info "journald ??????? ?"
fi fi
# -- enable and start # ?? ????? ??????????????????????????????????????????????????????????????
systemctl daemon-reload systemctl daemon-reload
systemctl enable clawd systemctl enable clawd
systemctl restart clawd systemctl restart clawd
sleep 2 sleep 2
if systemctl is-active --quiet clawd; then if systemctl is-active --quiet clawd; then
info "clawd service is running" info "clawd ????? ?"
echo "" echo ""
echo " View logs: journalctl -u clawd -f" echo " ????? journalctl -u clawd -f"
echo " View status: systemctl status clawd" echo " ????? systemctl status clawd"
echo " Stop: systemctl stop clawd" echo " ????? systemctl stop clawd"
echo " Config: $CONFIG_DIR/config.json" echo " ????? $CONFIG_DIR/config.json"
echo " Env vars: $ENV_FILE" echo " ????? $ENV_FILE"
echo " Log file: $CONFIG_DIR/logs/clawd.log" echo " ????? $CONFIG_DIR/logs/clawd.log"
echo "" echo ""
else else
warn "Service failed to start. Check logs:" warn "?????????????"
echo " journalctl -u clawd -n 50 --no-pager" echo " journalctl -u clawd -n 50 --no-pager"
fi fi

2
package.json
View File

@@ -1,6 +1,6 @@
{ {
"name": "clawd", "name": "clawd",
"version": "1.2.4", "version": "1.2.5",
"description": "Claw Box daemon - connects local Linux box to claw.cutos.ai via WebSocket", "description": "Claw Box daemon - connects local Linux box to claw.cutos.ai via WebSocket",
"main": "lib/client.js", "main": "lib/client.js",
"bin": { "bin": {