Spaces:

wuran
/

myclawd

Running

App Files Files Community

wuran commited on about 1 month ago

Commit

ddacf56

verified ·

1 Parent(s): 10f43b3

Create Dockerfile

Browse files

Files changed (1) hide show

Dockerfile +129 -0

Dockerfile ADDED Viewed

	@@ -0,0 +1,129 @@

+# 核心镜像：Node 22 slim 保证了环境的现代性与轻量化
+FROM node:22-slim
+# 1. 安装系统依赖
+# 包含：git (拉取依赖), openssh-client (解决构建报错), build-essential/g++/make (编译原生模块), python3 (运行同步脚本)
+RUN apt-get update && apt-get install -y --no-install-recommends \
+    git openssh-client build-essential python3 python3-pip \
+    g++ make ca-certificates \
+    && rm -rf /var/lib/apt/lists/*
+# 2. 安装 Hugging Face 命令行工具
+RUN pip3 install --no-cache-dir huggingface_hub --break-system-packages
+# 3. 构建环境优化
+# 修复 Git 证书问题并将所有 SSH 协议重定向为 HTTPS
+RUN update-ca-certificates && \
+    git config --global http.sslVerify false && \
+    git config --global url."https://github.com/".insteadOf ssh://git@github.com/
+# 4. 全局安装 OpenClaw
+RUN npm install -g openclaw@latest --unsafe-perm
+# 5. 设置环境变量
+ENV PORT=7860 \
+    OPENCLAW_GATEWAY_MODE=local \
+    HOME=/root
+# 6. 核心同步引擎 (sync.py)
+# 针对 OpenClaw 新版 MEMORY.md 机制进行了全路径覆盖
+RUN echo 'import os, sys, tarfile\n\
+from huggingface_hub import HfApi, hf_hub_download\n\
+from datetime import datetime, timedelta\n\
+api = HfApi()\n\
+repo_id = os.getenv("HF_DATASET")\n\
+token = os.getenv("HF_TOKEN")\n\
+\n\
+def restore():\n\
+    try:\n\
+        print(f"--- [SYNC] 启动恢复流程, 目标仓库: {repo_id} ---")\n\
+        if not repo_id or not token:\n\
+            print("--- [SYNC] 跳过恢复: 未配置 HF_DATASET 或 HF_TOKEN ---")\n\
+            return False\n\
+        files = api.list_repo_files(repo_id=repo_id, repo_type="dataset", token=token)\n\
+        now = datetime.now()\n\
+        for i in range(5):\n\
+            day = (now - timedelta(days=i)).strftime("%Y-%m-%d")\n\
+            name = f"backup_{day}.tar.gz"\n\
+            if name in files:\n\
+                print(f"--- [SYNC] 发现备份文件: {name}, 正在下载... ---")\n\
+                path = hf_hub_download(repo_id=repo_id, filename=name, repo_type="dataset", token=token)\n\
+                with tarfile.open(path, "r:gz") as tar:\n\
+                    tar.extractall(path="/root/.openclaw/")\n\
+                print(f"--- [SYNC] 恢复成功! 数据已覆盖至 /root/.openclaw/ ---")\n\
+                return True\n\
+        print("--- [SYNC] 未找到最近 5 天的备份包 ---")\n\
+    except Exception as e:\n\
+        print(f"--- [SYNC] 恢复异常: {e} ---")\n\
+\n\
+def backup():\n\
+    try:\n\
+        day = datetime.now().strftime("%Y-%m-%d")\n\
+        name = f"backup_{day}.tar.gz"\n\
+        print(f"--- [SYNC] 正在执行全量备份: {name} ---")\n\
+        with tarfile.open(name, "w:gz") as tar:\n\
+            # 路径说明：sessions(网关历史), workspace(记忆文件), agents(配置), memory(旧版目录)\n\
+            for target in ["sessions", "workspace", "agents", "memory", "openclaw.json"]:\n\
+                full_path = f"/root/.openclaw/{target}"\n\
+                if os.path.exists(full_path):\n\
+                    tar.add(full_path, arcname=target)\n\
+        api.upload_file(path_or_fileobj=name, path_in_repo=name, repo_id=repo_id, repo_type="dataset", token=token)\n\
+        print(f"--- [SYNC] 备份上传成功! ---")\n\
+    except Exception as e:\n\
+        print(f"--- [SYNC] 备份失败: {e} ---")\n\
+\n\
+if __name__ == "__main__":\n\
+    if len(sys.argv) > 1 and sys.argv[1] == "backup":\n\
+        backup()\n\
+    else:\n\
+        restore()' > /usr/local/bin/sync.py
+# 7. 容器入口脚本 (start-openclaw)
+# 负责恢复数据 -> 生成配置 -> 启动网关 -> 定时备份
+RUN echo '#!/bin/bash\n\
+set -e\n\
+mkdir -p /root/.openclaw/sessions\n\
+mkdir -p /root/.openclaw/workspace\n\
+\n\
+# 启动前执行数据恢复\n\
+python3 /usr/local/bin/sync.py restore\n\
+\n\
+# 清理 API Base 地址\n\
+CLEAN_BASE=$(echo "$OPENAI_API_BASE" | sed "s|/chat/completions||g" | sed "s|/v1/|/v1|g" | sed "s|/v1$|/v1|g")\n\
+\n\
+# 生成 openclaw.json 配置文件\n\
+cat > /root/.openclaw/openclaw.json <<EOF\n\
+{\n\
+  "models": {\n\
+    "providers": {\n\
+      "siliconflow": {\n\
+        "baseUrl": "$CLEAN_BASE",\n\
+        "apiKey": "$OPENAI_API_KEY",\n\
+        "api": "openai-completions",\n\
+        "models": [{ "id": "$MODEL", "name": "DeepSeek", "contextWindow": 128000 }]\n\
+      }\n\
+    }\n\
+  },\n\
+  "agents": { "defaults": { "model": { "primary": "siliconflow/$MODEL" } } },\n\
+  "gateway": {\n\
+    "mode": "local", "bind": "lan", "port": $PORT,\n\
+    "trustedProxies": ["0.0.0.0/0", "10.0.0.0/8", "172.16.0.0/12", "192.168.0.0/16"],\n\
+    "auth": { "mode": "token", "token": "$OPENCLAW_GATEWAY_PASSWORD" },\n\
+    "controlUi": { "allowInsecureAuth": true }\n\
+  }\n\
+}\n\
+EOF\n\
+\n\
+# 启动定时备份进程 (每 3 小时执行一次，增强安全性)\n\
+(while true; do\n\
+    sleep 10800\n\
+    python3 /usr/local/bin/sync.py backup\n\
+done) &\n\
+\n\
+# 启动 OpenClaw 网关\n\
+openclaw doctor --fix\n\
+exec openclaw gateway run --port $PORT\n\
+' > /usr/local/bin/start-openclaw && chmod +x /usr/local/bin/start-openclaw
+EXPOSE 7860
+CMD ["/usr/local/bin/start-openclaw"]