mirror of
https://github.com/openclaw/openclaw.git
synced 2026-05-09 23:00:43 +00:00
538605ff44
* refactor: extract filesystem safety primitives * refactor: use fs-safe for file access helpers * refactor: reuse fs-safe for media reads * refactor: use fs-safe for image reads * refactor: reuse fs-safe in qqbot media opener * refactor: reuse fs-safe for local media checks * refactor: consume cleaner fs-safe api * refactor: align fs-safe json option names * fix: preserve fs-safe migration contracts * refactor: use fs-safe primitive subpaths * refactor: use grouped fs-safe subpaths * refactor: align fs-safe api usage * refactor: adapt private state store api * chore: refresh proof gate * refactor: follow fs-safe json api split * refactor: follow reduced fs-safe surface * build: default fs-safe python helper off * fix: preserve fs-safe plugin sdk aliases * refactor: consolidate fs-safe usage * refactor: unify fs-safe store usage * refactor: trim fs-safe temp workspace usage * refactor: hide low-level fs-safe primitives * build: use published fs-safe package * fix: preserve outbound recovery durability after rebase * chore: refresh pr checks
142 lines
4.5 KiB
TypeScript
142 lines
4.5 KiB
TypeScript
import fs from "node:fs/promises";
|
|
import path from "node:path";
|
|
import { movePathWithCopyFallback } from "openclaw/plugin-sdk/security-runtime";
|
|
import { normalizeLowercaseStringOrEmpty } from "openclaw/plugin-sdk/text-runtime";
|
|
|
|
export const DEFAULT_OPEN_SHELL_MIRROR_EXCLUDE_DIRS = ["hooks", "git-hooks", ".git"] as const;
|
|
const COPY_TREE_FS_CONCURRENCY = 16;
|
|
|
|
function createExcludeMatcher(excludeDirs?: readonly string[]) {
|
|
const excluded = new Set((excludeDirs ?? []).map((d) => normalizeLowercaseStringOrEmpty(d)));
|
|
return (name: string) => excluded.has(normalizeLowercaseStringOrEmpty(name));
|
|
}
|
|
|
|
function createConcurrencyLimiter(limit: number) {
|
|
let active = 0;
|
|
const queue: Array<() => void> = [];
|
|
|
|
const release = () => {
|
|
active -= 1;
|
|
queue.shift()?.();
|
|
};
|
|
|
|
return async <T>(task: () => Promise<T>): Promise<T> => {
|
|
if (active >= limit) {
|
|
await new Promise<void>((resolve) => {
|
|
queue.push(resolve);
|
|
});
|
|
}
|
|
active += 1;
|
|
try {
|
|
return await task();
|
|
} finally {
|
|
release();
|
|
}
|
|
};
|
|
}
|
|
|
|
const runLimitedFs = createConcurrencyLimiter(COPY_TREE_FS_CONCURRENCY);
|
|
|
|
async function lstatIfExists(targetPath: string) {
|
|
return await runLimitedFs(async () => await fs.lstat(targetPath)).catch(() => null);
|
|
}
|
|
|
|
async function copyTreeWithoutSymlinks(params: {
|
|
sourcePath: string;
|
|
targetPath: string;
|
|
preserveTargetSymlinks?: boolean;
|
|
}): Promise<void> {
|
|
const stats = await runLimitedFs(async () => await fs.lstat(params.sourcePath));
|
|
// Mirror sync only carries regular files and directories across the
|
|
// host/sandbox boundary. Symlinks and special files are dropped.
|
|
if (stats.isSymbolicLink()) {
|
|
return;
|
|
}
|
|
const targetStats = await lstatIfExists(params.targetPath);
|
|
if (params.preserveTargetSymlinks && targetStats?.isSymbolicLink()) {
|
|
return;
|
|
}
|
|
if (stats.isDirectory()) {
|
|
await runLimitedFs(async () => await fs.mkdir(params.targetPath, { recursive: true }));
|
|
const entries = await runLimitedFs(async () => await fs.readdir(params.sourcePath));
|
|
await Promise.all(
|
|
entries.map(async (entry) => {
|
|
await copyTreeWithoutSymlinks({
|
|
sourcePath: path.join(params.sourcePath, entry),
|
|
targetPath: path.join(params.targetPath, entry),
|
|
preserveTargetSymlinks: params.preserveTargetSymlinks,
|
|
});
|
|
}),
|
|
);
|
|
return;
|
|
}
|
|
if (stats.isFile()) {
|
|
await runLimitedFs(
|
|
async () => await fs.mkdir(path.dirname(params.targetPath), { recursive: true }),
|
|
);
|
|
await runLimitedFs(async () => await fs.copyFile(params.sourcePath, params.targetPath));
|
|
}
|
|
}
|
|
|
|
export async function replaceDirectoryContents(params: {
|
|
sourceDir: string;
|
|
targetDir: string;
|
|
/** Top-level directory names to exclude from sync (preserved in target, skipped from source). */
|
|
excludeDirs?: readonly string[];
|
|
}): Promise<void> {
|
|
const isExcluded = createExcludeMatcher(params.excludeDirs);
|
|
await fs.mkdir(params.targetDir, { recursive: true });
|
|
const existing = await fs.readdir(params.targetDir);
|
|
await Promise.all(
|
|
existing
|
|
.filter((entry) => !isExcluded(entry))
|
|
.map(async (entry) => {
|
|
const targetPath = path.join(params.targetDir, entry);
|
|
const stats = await lstatIfExists(targetPath);
|
|
if (stats?.isSymbolicLink()) {
|
|
return;
|
|
}
|
|
await runLimitedFs(
|
|
async () =>
|
|
await fs.rm(targetPath, {
|
|
recursive: true,
|
|
force: true,
|
|
}),
|
|
);
|
|
}),
|
|
);
|
|
const sourceEntries = await fs.readdir(params.sourceDir);
|
|
for (const entry of sourceEntries) {
|
|
if (isExcluded(entry)) {
|
|
continue;
|
|
}
|
|
await copyTreeWithoutSymlinks({
|
|
sourcePath: path.join(params.sourceDir, entry),
|
|
targetPath: path.join(params.targetDir, entry),
|
|
preserveTargetSymlinks: true,
|
|
});
|
|
}
|
|
}
|
|
|
|
export async function stageDirectoryContents(params: {
|
|
sourceDir: string;
|
|
targetDir: string;
|
|
/** Top-level directory names to exclude from the staged upload. */
|
|
excludeDirs?: readonly string[];
|
|
}): Promise<void> {
|
|
const isExcluded = createExcludeMatcher(params.excludeDirs);
|
|
await fs.mkdir(params.targetDir, { recursive: true });
|
|
const sourceEntries = await fs.readdir(params.sourceDir);
|
|
for (const entry of sourceEntries) {
|
|
if (isExcluded(entry)) {
|
|
continue;
|
|
}
|
|
await copyTreeWithoutSymlinks({
|
|
sourcePath: path.join(params.sourceDir, entry),
|
|
targetPath: path.join(params.targetDir, entry),
|
|
});
|
|
}
|
|
}
|
|
|
|
export { movePathWithCopyFallback };
|