let5see/clawdbot
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

CLI: dns setup supports sudo-owned CoreDNS config

Browse Source
This commit is contained in:
Peter Steinberger
2025-12-17 17:15:51 +01:00
parent 2ce24fdbf8
commit 2eb27ffb4a
1 changed files with 44 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

48
src/cli/dns-cli.ts
View File

@@ -32,6 +32,44 @@ function run(cmd: string, args: string[], opts?: RunOpts): string {
return typeof res.stdout === "string" ? res.stdout : ""; return typeof res.stdout === "string" ? res.stdout : "";
} }
function writeFileSudoIfNeeded(filePath: string, content: string): void {
try {
fs.writeFileSync(filePath, content, "utf-8");
return;
} catch (err) {
const code = (err as { code?: string }).code;
if (code !== "EACCES" && code !== "EPERM") {
throw err instanceof Error ? err : new Error(String(err));
}
}
const res = spawnSync("sudo", ["tee", filePath], {
input: content,
encoding: "utf-8",
stdio: ["pipe", "ignore", "inherit"],
});
if (res.error) throw res.error;
if (res.status !== 0) {
throw new Error(
`sudo tee ${filePath} failed: exit ${res.status ?? "unknown"}`,
);
}
}
function mkdirSudoIfNeeded(dirPath: string): void {
try {
fs.mkdirSync(dirPath, { recursive: true });
return;
} catch (err) {
const code = (err as { code?: string }).code;
if (code !== "EACCES" && code !== "EPERM") {
throw err instanceof Error ? err : new Error(String(err));
}
}
run("sudo", ["mkdir", "-p", dirPath], { inherit: true });
}
function detectBrewPrefix(): string { function detectBrewPrefix(): string {
const out = run("brew", ["--prefix"]); const out = run("brew", ["--prefix"]);
const prefix = out.trim(); const prefix = out.trim();
@@ -43,7 +81,7 @@ function ensureImportLine(corefilePath: string, importGlob: string): boolean {
const existing = fs.readFileSync(corefilePath, "utf-8"); const existing = fs.readFileSync(corefilePath, "utf-8");
if (existing.includes(importGlob)) return false; if (existing.includes(importGlob)) return false;
const next = `${existing.replace(/\s*$/, "")}\n\nimport ${importGlob}\n`; const next = `${existing.replace(/\s*$/, "")}\n\nimport ${importGlob}\n`;
fs.writeFileSync(corefilePath, next, "utf-8"); writeFileSudoIfNeeded(corefilePath, next);
return true; return true;
} }
@@ -120,9 +158,11 @@ export function registerDnsCli(program: Command) {
allowFailure: true, allowFailure: true,
}); });
await fs.promises.mkdir(confDir, { recursive: true }); mkdirSudoIfNeeded(confDir);
if (fs.existsSync(corefilePath)) { if (!fs.existsSync(corefilePath)) {
writeFileSudoIfNeeded(corefilePath, `import ${importGlob}\n`);
} else {
ensureImportLine(corefilePath, importGlob); ensureImportLine(corefilePath, importGlob);
} }
@@ -141,7 +181,7 @@ export function registerDnsCli(program: Command) {
`}`, `}`,
``, ``,
].join("\n"); ].join("\n");
fs.writeFileSync(serverPath, server, "utf-8"); writeFileSudoIfNeeded(serverPath, server);
// Ensure the gateway can write its zone file path. // Ensure the gateway can write its zone file path.
await fs.promises.mkdir(path.dirname(zonePath), { recursive: true }); await fs.promises.mkdir(path.dirname(zonePath), { recursive: true });