import { spawnSync } from "node:child_process" ;import fs from "node:fs" ;import path from "node:path" ;import type { Command } from "commander" ;import { loadConfig } from "../config/config.js" ;import { pickPrimaryTailnetIPv4, pickPrimaryTailnetIPv6 } from "../infra/tailnet.js" ;import { getWideAreaZonePath, resolveWideAreaDiscoveryDomain } from "../infra/widearea-dns.js" ;import { defaultRuntime } from "../runtime.js" ;import { formatDocsLink } from "../terminal/links.js" ;import { getTerminalTableWidth, renderTable } from "../terminal/table.js" ;import { theme } from "../terminal/theme.js" ;boolean ; inherit?: boolean };function run(cmd: string, args: string[], opts?: RunOpts): string {const res = spawnSync(cmd, args, {"utf-8" ,"inherit" : "pipe" ,if (res.error) {throw res.error;if (!opts?.allowFailure && res.status !== 0 ) {const errText =typeof res.stderr === "string" && res.stderr.trim()"unknown" }`;throw new Error(`${cmd} ${args.join(" " )} failed: ${errText}`);return typeof res.stdout === "string" ? res.stdout : "" ;function writeFileSudoIfNeeded(filePath: string, content: string): void {try {"utf-8" );return ;catch (err) {const code = (err as { code?: string }).code;if (code !== "EACCES" && code !== "EPERM" ) {throw err instanceof Error ? err : new Error(String(err));const res = spawnSync("sudo" , ["tee" , filePath], {"utf-8" ,"pipe" , "ignore" , "inherit" ],if (res.error) {throw res.error;if (res.status !== 0 ) {throw new Error(`sudo tee ${filePath} failed: exit ${res.status ?? "unknown" }`);function mkdirSudoIfNeeded(dirPath: string): void {try {true });return ;catch (err) {const code = (err as { code?: string }).code;if (code !== "EACCES" && code !== "EPERM" ) {throw err instanceof Error ? err : new Error(String(err));"sudo" , ["mkdir" , "-p" , dirPath], { inherit: true });function zoneFileNeedsBootstrap(zonePath: string): boolean {if (!fs.existsSync(zonePath)) {return true ;try {const content = fs.readFileSync(zonePath, "utf-8" );return !/\bSOA\b/.test(content) || !/\bNS\b/.test(content);catch {return true ;function detectBrewPrefix(): string {const out = run("brew" , ["--prefix" ]);const prefix = out.trim();if (!prefix) {throw new Error("failed to resolve Homebrew prefix" );return prefix;function ensureImportLine(corefilePath: string, importGlob: string): boolean {const existing = fs.readFileSync(corefilePath, "utf-8" );if (existing.includes(importGlob)) {return false ;const next = `${existing.replace(/\s*$/, "" )}\n\nimport ${importGlob}\n`;return true ;function registerDnsCli(program: Command) {const dns = program"dns" )"DNS helpers for wide-area discovery (Tailscale + CoreDNS)" )"after" ,"Docs:" )} ${formatDocsLink("/cli/dns" , "docs.openclaw.ai/cli/dns" )}\n`,"setup" )"Set up CoreDNS to serve your discovery domain for unicast DNS-SD (Wide-Area Bonjour)" ,"--domain <domain>" , "Wide-area discovery domain (e.g. openclaw.internal)" )"--apply" ,"Install/update CoreDNS config and (re)start the service (requires sudo)" ,false ,const cfg = loadConfig();const tailnetIPv4 = pickPrimaryTailnetIPv4();const tailnetIPv6 = pickPrimaryTailnetIPv6();const wideAreaDomain = resolveWideAreaDiscoveryDomain({if (!wideAreaDomain) {throw new Error("No wide-area domain configured. Set discovery.wideArea.domain or pass --domain." ,const zonePath = getWideAreaZonePath(wideAreaDomain);const tableWidth = getTerminalTableWidth();"DNS setup" ));"Key" , header: "Key" , minWidth: 18 },"Value" , header: "Value" , minWidth: 24 , flex: true },"Domain" , Value: wideAreaDomain },"Zone file" , Value: zonePath },"Tailnet IP" ,"—" }${tailnetIPv6 ? ` (v6 ${tailnetIPv6})` : "" }`,"" );"Recommended config ($OPENCLAW_CONFIG_PATH, default ~/.openclaw/openclaw.json):" ,"auto" },true , domain: wideAreaDomain } },"" );"Tailscale admin (DNS → Nameservers):" ));"<this machine's tailnet IPv4>" }`),"" )}`),if (!opts.apply) {"" );"Run with --apply to install CoreDNS and configure it." ));return ;if (process.platform !== "darwin" ) {throw new Error("dns setup is currently supported on macOS only" );if (!tailnetIPv4 && !tailnetIPv6) {throw new Error("no tailnet IP detected; ensure Tailscale is running on this machine" );const prefix = detectBrewPrefix();const etcDir = path.join(prefix, "etc" , "coredns" );const corefilePath = path.join(etcDir, "Corefile" );const confDir = path.join(etcDir, "conf.d" );const importGlob = path.join(confDir, "*.server" );const serverPath = path.join(confDir, `${wideAreaDomain.replace(/\.$/, "" )}.server`);"brew" , ["list" , "coredns" ], { allowFailure: true });"brew" , ["install" , "coredns" ], {true ,true ,if (!fs.existsSync(corefilePath)) {import ${importGlob}\n`);else {const bindArgs = [tailnetIPv4, tailnetIPv6].filter((v): v is string => Boolean (v?.trim()));const server = ["" )}:53 {`," " )}`,10 s`,"\n" );// Ensure the gateway can write its zone file path. true });if (zoneFileNeedsBootstrap(zonePath)) {const y = new Date().getUTCFullYear();const m = String(new Date().getUTCMonth() + 1 ).padStart(2 , "0" );const d = String(new Date().getUTCDate()).padStart(2 , "0" );const serial = `${y}${m}${d}01 `;const zoneLines = [s enabled)`,60 `,7200 3600 1209600 60 `,null ,null ,Boolean (line));"\n" ), "utf-8" );"" );"Starting CoreDNS (sudo)…" ));"sudo" , ["brew" , "services" , "restart" , "coredns" ], {true ,if (cfg.discovery?.wideArea?.enabled !== true ) {"" );"Note: enable discovery.wideArea.enabled in the active OpenClaw config ($OPENCLAW_CONFIG_PATH, default ~/.openclaw/openclaw.json) on the gateway and restart the gateway so it writes the DNS-SD zone." ,
Messung V0.5 in Prozent C=97 H=95 G=95
¤ Dauer der Verarbeitung: 0.10 Sekunden
(vorverarbeitet am 2026-06-05)
¤ *© Formatika GbR, Deutschland
