mirror of
https://github.com/openclaw/openclaw.git
synced 2026-04-20 21:51:28 +00:00
300fb36879
Merged via squash.
Prepared head SHA: cb8ed77049
Co-authored-by: gumadeiras <5599352+gumadeiras@users.noreply.github.com>
Co-authored-by: gumadeiras <5599352+gumadeiras@users.noreply.github.com>
Reviewed-by: @gumadeiras
130 lines
3.3 KiB
TypeScript
130 lines
3.3 KiB
TypeScript
import { randomUUID } from "node:crypto";
|
|
import fs from "node:fs";
|
|
import path from "node:path";
|
|
|
|
const JSON_FILE_MODE = 0o600;
|
|
const JSON_DIR_MODE = 0o700;
|
|
|
|
function trySetSecureMode(pathname: string) {
|
|
try {
|
|
fs.chmodSync(pathname, JSON_FILE_MODE);
|
|
} catch {
|
|
// best-effort on platforms without chmod support
|
|
}
|
|
}
|
|
|
|
function trySyncDirectory(pathname: string) {
|
|
let fd: number | undefined;
|
|
try {
|
|
fd = fs.openSync(path.dirname(pathname), "r");
|
|
fs.fsyncSync(fd);
|
|
} catch {
|
|
// best-effort; some platforms/filesystems do not support syncing directories.
|
|
} finally {
|
|
if (fd !== undefined) {
|
|
try {
|
|
fs.closeSync(fd);
|
|
} catch {
|
|
// best-effort cleanup
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
function readSymlinkTargetPath(linkPath: string): string {
|
|
const target = fs.readlinkSync(linkPath);
|
|
return path.resolve(path.dirname(linkPath), target);
|
|
}
|
|
|
|
function resolveJsonWriteTarget(pathname: string): { targetPath: string; followsSymlink: boolean } {
|
|
let currentPath = pathname;
|
|
const visited = new Set<string>();
|
|
let followsSymlink = false;
|
|
|
|
for (;;) {
|
|
let stat: fs.Stats;
|
|
try {
|
|
stat = fs.lstatSync(currentPath);
|
|
} catch (error) {
|
|
if ((error as NodeJS.ErrnoException).code !== "ENOENT") {
|
|
throw error;
|
|
}
|
|
return { targetPath: currentPath, followsSymlink };
|
|
}
|
|
|
|
if (!stat.isSymbolicLink()) {
|
|
return { targetPath: currentPath, followsSymlink };
|
|
}
|
|
|
|
if (visited.has(currentPath)) {
|
|
const err = new Error(
|
|
`Too many symlink levels while resolving ${pathname}`,
|
|
) as NodeJS.ErrnoException;
|
|
err.code = "ELOOP";
|
|
throw err;
|
|
}
|
|
|
|
visited.add(currentPath);
|
|
followsSymlink = true;
|
|
currentPath = readSymlinkTargetPath(currentPath);
|
|
}
|
|
}
|
|
|
|
function renameJsonFileWithFallback(tmpPath: string, pathname: string) {
|
|
try {
|
|
fs.renameSync(tmpPath, pathname);
|
|
return;
|
|
} catch (error) {
|
|
const code = (error as NodeJS.ErrnoException).code;
|
|
// Windows does not reliably support rename-based overwrite for existing files.
|
|
if (code === "EPERM" || code === "EEXIST") {
|
|
fs.copyFileSync(tmpPath, pathname);
|
|
fs.rmSync(tmpPath, { force: true });
|
|
return;
|
|
}
|
|
throw error;
|
|
}
|
|
}
|
|
|
|
function writeTempJsonFile(pathname: string, payload: string) {
|
|
const fd = fs.openSync(pathname, "w", JSON_FILE_MODE);
|
|
try {
|
|
fs.writeFileSync(fd, payload, "utf8");
|
|
fs.fsyncSync(fd);
|
|
} finally {
|
|
fs.closeSync(fd);
|
|
}
|
|
}
|
|
|
|
export function loadJsonFile<T = unknown>(pathname: string): T | undefined {
|
|
try {
|
|
const raw = fs.readFileSync(pathname, "utf8");
|
|
return JSON.parse(raw) as T;
|
|
} catch {
|
|
return undefined;
|
|
}
|
|
}
|
|
|
|
export function saveJsonFile(pathname: string, data: unknown) {
|
|
const { targetPath, followsSymlink } = resolveJsonWriteTarget(pathname);
|
|
const tmpPath = `${targetPath}.${randomUUID()}.tmp`;
|
|
const payload = `${JSON.stringify(data, null, 2)}\n`;
|
|
|
|
if (!followsSymlink) {
|
|
fs.mkdirSync(path.dirname(targetPath), { recursive: true, mode: JSON_DIR_MODE });
|
|
}
|
|
try {
|
|
writeTempJsonFile(tmpPath, payload);
|
|
trySetSecureMode(tmpPath);
|
|
renameJsonFileWithFallback(tmpPath, targetPath);
|
|
trySetSecureMode(targetPath);
|
|
trySyncDirectory(targetPath);
|
|
} finally {
|
|
try {
|
|
fs.rmSync(tmpPath, { force: true });
|
|
} catch {
|
|
// best-effort cleanup when rename does not happen
|
|
}
|
|
}
|
|
}
|