claw_messenger 1.0.0

package/bin/qr-crypto-node.js

@@ -0,0 +1,186 @@
+/**
+ * QR Code 加密工具 v3 — Node.js 精简版
+ *
+ * 手机端、Node.js CLI 共享同一套算法，兼容微信小程序/H5/App。
+ * 算法：XOR 流密码 + Base64url，密钥由共享 secret + salt 派生。
+ *
+ * 输出格式: v3:<base64url(IV[4B] + ciphertext)>
+ *   - 移除 checksum，改为 IV 参与密钥索引的流密码，本身已具备完整性验证能力
+ *   - 缩短约 33% 的密文长度
+ *
+ * ⚠️ 本文件与 my-uniapp/src/utils/qr-crypto.js 逻辑一致，
+ *    修改任一文件时必须同步更新另一个。
+ */
+
+// ── 共享密钥（嵌入 App + clawmessenger，不可泄露）──────────────────
+const QR_SECRET = 'dm_im_qr_key_v2_2026_secure';
+const QR_SALT   = 'qr_salt_x9k2';
+
+function deriveKey() {
+  const input = QR_SECRET + QR_SALT;
+  const key = [];
+  for (let i = 0; i < 32; i++) {
+    let h = 0;
+    for (let j = 0; j < input.length; j++) {
+      h = ((h << 5) - h + input.charCodeAt((i + j) % input.length)) | 0;
+    }
+    key.push(h & 0xff);
+  }
+  return key;
+}
+
+function randomBytes(n) {
+  const bytes = [];
+  for (let i = 0; i < n; i++) bytes.push(Math.floor(Math.random() * 256));
+  return bytes;
+}
+
+function stringToUtf8Bytes(str) {
+  const bytes = [];
+  for (let i = 0; i < str.length; i++) {
+    const code = str.charCodeAt(i);
+    if (code < 0x80) bytes.push(code);
+    else if (code < 0x800) bytes.push(0xc0 | (code >> 6), 0x80 | (code & 0x3f));
+    else bytes.push(0xe0 | (code >> 12), 0x80 | ((code >> 6) & 0x3f), 0x80 | (code & 0x3f));
+  }
+  return bytes;
+}
+
+function utf8BytesToString(bytes) {
+  let str = '';
+  let i = 0;
+  while (i < bytes.length) {
+    const b1 = bytes[i];
+    if (b1 < 0x80) { str += String.fromCharCode(b1); i++; }
+    else if ((b1 & 0xe0) === 0xc0 && i + 1 < bytes.length) {
+      str += String.fromCharCode(((b1 & 0x1f) << 6) | (bytes[i + 1] & 0x3f)); i += 2;
+    } else if ((b1 & 0xf0) === 0xe0 && i + 2 < bytes.length) {
+      str += String.fromCharCode(((b1 & 0x0f) << 12) | ((bytes[i + 1] & 0x3f) << 6) | (bytes[i + 2] & 0x3f)); i += 3;
+    } else { i++; }
+  }
+  return str;
+}
+
+/* ── Base64url（无 padding）──────────────────────────────────── */
+const B64U = 'ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-_';
+
+function toBase64url(bytes) {
+  let res = '';
+  for (let i = 0; i < bytes.length; i += 3) {
+    const a = bytes[i];
+    const b = i + 1 < bytes.length ? bytes[i + 1] : 0;
+    const c = i + 2 < bytes.length ? bytes[i + 2] : 0;
+    res += B64U[a >> 2];
+    res += B64U[((a & 3) << 4) | (b >> 4)];
+    if (i + 1 < bytes.length) res += B64U[((b & 15) << 2) | (c >> 6)];
+    if (i + 2 < bytes.length) res += B64U[c & 63];
+  }
+  return res;
+}
+
+function fromBase64url(str) {
+  const bytes = [];
+  let i = 0;
+  // 先补齐 Base64url 可能缺失的 padding，使长度为 4 的倍数
+  const padLen = (4 - (str.length % 4)) % 4;
+  str = str.replace(/[^A-Za-z0-9\-_]/g, '') + '='.repeat(padLen);
+  while (i < str.length) {
+    const a = B64U.indexOf(str[i++]);
+    const b = B64U.indexOf(str[i++]);
+    const c = B64U.indexOf(str[i++]);
+    const d = B64U.indexOf(str[i++]);
+    if (a === -1 || b === -1) break;
+    bytes.push((a << 2) | (b >> 4));
+    if (c !== -1 && str[i - 2] !== '=') bytes.push(((b & 15) << 4) | (c >> 2));
+    if (d !== -1 && str[i - 1] !== '=') bytes.push(((c & 3) << 6) | d);
+  }
+  return bytes;
+}
+
+/* ── 加密 / 解密 ─────────────────────────────────────────────── */
+
+export function encryptQR(plaintext) {
+  const key = deriveKey();
+  const iv  = randomBytes(4);
+  const plainBytes = stringToUtf8Bytes(plaintext);
+
+  const cipherBytes = [];
+  for (let i = 0; i < plainBytes.length; i++) {
+    const keyIdx = (i + iv[i % 4]) % 32;
+    cipherBytes.push(plainBytes[i] ^ key[keyIdx]);
+  }
+
+  const payload = [...iv, ...cipherBytes];
+  return 'v3:' + toBase64url(payload);
+}
+
+export function decryptQR(encrypted) {
+  if (!encrypted || typeof encrypted !== 'string') return null;
+
+  // 兼容旧版 v2 格式
+  if (encrypted.startsWith('v2:')) return _decryptV2(encrypted);
+  if (!encrypted.startsWith('v3:')) return null;
+
+  try {
+    const payload = fromBase64url(encrypted.substring(3));
+    if (payload.length < 4) return null;
+
+    const iv = payload.slice(0, 4);
+    const cipherBytes = payload.slice(4);
+    const key = deriveKey();
+
+    const plainBytes = [];
+    for (let i = 0; i < cipherBytes.length; i++) {
+      const keyIdx = (i + iv[i % 4]) % 32;
+      plainBytes.push(cipherBytes[i] ^ key[keyIdx]);
+    }
+    return utf8BytesToString(plainBytes);
+  } catch (e) {
+    return null;
+  }
+}
+
+/* ── v2 兼容解密 ─────────────────────────────────────────────── */
+function _decryptV2(encrypted) {
+  const chars = 'ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/';
+  let base64 = encrypted.substring(3).replace(/-/g, '+').replace(/_/g, '/');
+  while (base64.length % 4 !== 0) base64 += '=';
+
+  const bytes = [];
+  let i = 0;
+  while (i < base64.length) {
+    const a = chars.indexOf(base64[i++]);
+    const b = chars.indexOf(base64[i++]);
+    const c = chars.indexOf(base64[i++]);
+    const d = chars.indexOf(base64[i++]);
+    if (a === -1 || b === -1) break;
+    bytes.push((a << 2) | (b >> 4));
+    if (c !== -1 && base64[i - 2] !== '=') bytes.push(((b & 15) << 4) | (c >> 2));
+    if (d !== -1 && base64[i - 1] !== '=') bytes.push(((c & 3) << 6) | d);
+  }
+
+  if (bytes.length < 8) return null;
+  const iv = bytes.slice(0, 4);
+  const cs = bytes.slice(bytes.length - 4);
+  const cipherBytes = bytes.slice(4, bytes.length - 4);
+
+  const key = deriveKey();
+  const plainBytes = [];
+  for (let i = 0; i < cipherBytes.length; i++) {
+    const keyIdx = (i + iv[i % 4]) % 32;
+    plainBytes.push(cipherBytes[i] ^ key[keyIdx]);
+  }
+
+  let a = 0x67452301, b = 0xefcdab89;
+  for (let i = 0; i < plainBytes.length; i++) {
+    a = ((a << 5) - a + plainBytes[i] + b) | 0;
+    b = ((b << 3) - b + plainBytes[i] + a) | 0;
+  }
+  const expectedCs = [(a >> 24) & 0xff, (a >> 16) & 0xff, (a >> 8) & 0xff, a & 0xff];
+  if (cs[0] !== expectedCs[0] || cs[1] !== expectedCs[1] ||
+      cs[2] !== expectedCs[2] || cs[3] !== expectedCs[3]) return null;
+
+  return utf8BytesToString(plainBytes);
+}
+
+export default { encryptQR, decryptQR };

package/bin/setup.js

@@ -0,0 +1,262 @@
+#!/usr/bin/env node
+
+/**
+ * claw_messenger - 手动设置
+ * 用于重新配置节点昵称
+ */
+
+import * as readline from 'readline';
+import * as fs from 'fs';
+import * as path from 'path';
+import * as crypto from 'crypto';
+import * as os from 'os';
+import axios from 'axios';
+import qrcode from 'qrcode-terminal';
+import { encryptQR } from './qr-crypto-node.js';
+import { ensureChatCompletionsEnabled, ensureImageModelSupport, ensurePluginEntry, ensureChannelConfig } from '../dist/openclaw-config.js';
+
+const SERVER_URL = process.env.DM_SERVER_URL || 'https://newsradar.dreamdt.cn/im';
+const CONFIG_DIR = path.join(os.homedir(), '.claw-bridge', 'openclaw');
+const CONFIG_FILE = path.join(CONFIG_DIR, 'config.json');
+const LEGACY_CONFIG_FILE = path.join(os.homedir(), '.claw-bridge', 'config.json');
+
+const rl = readline.createInterface({
+  input: process.stdin,
+  output: process.stdout
+});
+
+const question = (prompt) => new Promise(resolve => rl.question(prompt, resolve));
+
+function generateNodeId() {
+  const random = crypto.randomBytes(3).toString('hex');
+  return `claw_${random}`;
+}
+
+function loadConfig() {
+  try {
+    if (fs.existsSync(CONFIG_FILE)) {
+      const content = fs.readFileSync(CONFIG_FILE, 'utf-8');
+      return JSON.parse(content);
+    }
+    // 兼容旧路径
+    if (fs.existsSync(LEGACY_CONFIG_FILE)) {
+      const content = fs.readFileSync(LEGACY_CONFIG_FILE, 'utf-8');
+      return JSON.parse(content);
+    }
+  } catch {}
+  return null;
+}
+
+function saveConfig(config) {
+  if (!fs.existsSync(CONFIG_DIR)) {
+    fs.mkdirSync(CONFIG_DIR, { recursive: true });
+  }
+  fs.writeFileSync(CONFIG_FILE, JSON.stringify(config, null, 2), 'utf-8');
+}
+
+function deriveApiBaseUrl(serverUrl) {
+  try {
+    const url = new URL(serverUrl);
+    return `${url.protocol}//${url.host}`;
+  } catch {
+    return null;
+  }
+}
+
+async function registerNode(nodeName) {
+  const nodeId = generateNodeId();
+  console.log(`\n正在注册节点：${nodeId}...`);
+
+  try {
+    const resp = await axios.post(`${SERVER_URL}/api/claw/register`, {
+      node_id: nodeId,
+      name: nodeName,
+    }, { timeout: 10000 });
+
+    if (resp.data?.code === 200) {
+      const token = resp.data.data?.token || resp.data.data?.rong_token || resp.data.rong_token || '';
+      if (token) {
+        return { nodeId, token };
+      }
+      console.error('注册失败: 接口未返回 token');
+      return null;
+    }
+
+    if (resp.data?.code === 409) {
+      console.log('节点已存在，获取 token...');
+      const tokenResp = await axios.get(`${SERVER_URL}/api/claw/token/${nodeId}`, { timeout: 10000 });
+
+      if (tokenResp.data?.code === 200) {
+        return {
+          nodeId,
+          token: tokenResp.data.data?.token || tokenResp.data.token || '',
+        };
+      }
+      console.error('获取 token 失败:', tokenResp.data?.message || '未知错误');
+      return null;
+    }
+
+    console.error('注册失败:', resp.data?.message || resp.data?.errorMessage || `code ${resp.data?.code}`);
+    return null;
+
+  } catch (err) {
+    console.error('注册异常:', err.message);
+    return null;
+  }
+}
+
+async function showBindQRCode(nodeId, nodeName) {
+  console.log('\n========================================');
+  console.log('  请使用 App 扫码绑定');
+  console.log('========================================\n');
+
+  const bindData = JSON.stringify({
+    type: 'bind_openclaw',
+    node_id: nodeId,
+    timestamp: Date.now(),
+  });
+
+  // 加密 QR 数据
+  const encrypted = encryptQR(bindData);
+
+  // 生成在线二维码 URL 作为备选
+  const qrUrl = `https://api.qrserver.com/v1/create-qr-code/?size=300x300&data=${encodeURIComponent(encrypted)}`;
+
+  // 使用更大的二维码尺寸（small: false）提高扫描成功率
+  qrcode.generate(encrypted, { small: false, type: 'terminal' });
+
+  console.log('\n');
+  console.log('节点 ID:', nodeId);
+  console.log('提示：打开 App -> AI 助手 -> 扫码添加');
+  console.log('\n如果二维码无法扫描，可访问:', qrUrl);
+  console.log('或手动输入节点 ID:', nodeId);
+}
+
+async function main() {
+  console.log('🦞 claw_messenger - 配置\n');
+
+  let config = loadConfig();
+
+  if (config) {
+    // 补写 apiBaseUrl（旧配置可能没有）
+    if (!config.apiBaseUrl) {
+      const derived = deriveApiBaseUrl(SERVER_URL);
+      if (derived) {
+        config.apiBaseUrl = derived;
+        saveConfig(config);
+        console.log(`  ℹ️  已自动补写 apiBaseUrl: ${derived}`);
+      }
+    }
+
+    console.log('当前配置:');
+    console.log(`  节点 ID: ${config.nodeId}`);
+    console.log(`  节点名称：${config.nodeName}`);
+    if (config.apiBaseUrl) {
+      console.log(`  后端地址: ${config.apiBaseUrl}`);
+    }
+
+    const reset = await question('\n是否重新注册？(y/N): ');
+    if (reset.toLowerCase() !== 'y') {
+      rl.close();
+      console.log('\n✅ 配置未更改');
+      return;
+    }
+
+    // 用户选择重新注册，清除旧配置
+    console.log('  正在清除旧配置...');
+    try {
+      if (fs.existsSync(CONFIG_FILE)) {
+        fs.unlinkSync(CONFIG_FILE);
+        console.log('  ✅ 旧配置已清除');
+      }
+    } catch (err) {
+      console.warn('  ⚠️  清除旧配置失败:', err.message);
+    }
+  }
+
+  console.log('\n========================================');
+  console.log('  节点注册');
+  console.log('========================================\n');
+
+  const nodeName = await question('请输入节点昵称 (如：我的龙虾): ');
+  
+  if (!nodeName.trim()) {
+    console.error('昵称不能为空');
+    process.exit(1);
+  }
+
+  const result = await registerNode(nodeName.trim());
+
+  if (!result) {
+    process.exit(1);
+  }
+
+  config = {
+    nodeId: result.nodeId,
+    nodeName: nodeName.trim(),
+    token: result.token,
+    createdAt: new Date().toISOString(),
+  };
+
+  const derived = deriveApiBaseUrl(SERVER_URL);
+  if (derived) {
+    config.apiBaseUrl = derived;
+  }
+
+  saveConfig(config);
+
+  console.log('\n========================================');
+  console.log('  注册成功!');
+  console.log(`  节点 ID: ${result.nodeId}`);
+  console.log(`  节点名称：${nodeName.trim()}`);
+  console.log('========================================\n');
+
+  await showBindQRCode(result.nodeId, nodeName.trim());
+
+  rl.close();
+
+  // 确保 OpenClaw chatCompletions 端点已启用（SSE 流式调用需要）
+  console.log('\n🔧 检查 OpenClaw gateway 配置...');
+  try {
+    await ensureChatCompletionsEnabled();
+  } catch (e) {
+    console.log('  ⚠️  自动启用 chatCompletions 失败，请手动在 openclaw.json 中添加:');
+    console.log('       gateway.http.endpoints.chatCompletions.enabled = true');
+  }
+
+  // 确保模型支持 image 类型（IM 图片消息需要）
+  try {
+    await ensureImageModelSupport();
+  } catch (e) {
+    console.log('  ⚠️  自动配置模型 image 类型失败，请手动在 openclaw.json 中为模型添加 image 类型');
+  }
+
+  // 确保插件在 OpenClaw 中注册（关键：plugins.entries 中必须配置才能加载）
+  console.log('\n🔧 注册插件到 OpenClaw...');
+  try {
+    await ensurePluginEntry();
+    console.log('  ✅ 插件已注册到 openclaw.json');
+  } catch (e) {
+    console.log('  ⚠️  自动注册插件失败，请手动在 openclaw.json 中添加:');
+    console.log('       plugins.entries.claw_messenger = { enabled: true }');
+  }
+
+  // 确保 channels.claw_messenger 包含 nodeName
+  if (config?.nodeName) {
+    console.log('🔧 配置 channel...');
+    try {
+      await ensureChannelConfig(config.nodeName);
+      console.log('  ✅ channel 配置已写入 openclaw.json');
+    } catch (e) {
+      console.log('  ⚠️  自动配置 channel 失败，请手动在 openclaw.json 中添加:');
+      console.log(`       channels.claw_messenger = { enabled: true, nodeName: "${config.nodeName}" }`);
+    }
+  }
+
+  console.log('\n✅ 配置完成！重启 OpenClaw 后生效');
+}
+
+main().catch(err => {
+  console.error('配置失败:', err);
+  process.exit(1);
+});

package/dist/auto-register.d.ts

@@ -0,0 +1,49 @@
+import { getMacAddress } from './mac-address.js';
+interface RegisterResult {
+    nodeId: string;
+    nodeName: string;
+    token: string;
+    success: boolean;
+}
+/**
+ * 从 OpenClaw USER.md 获取昵称
+ */
+declare function getNicknameFromOpenClaw(): Promise<string | null>;
+/**
+ * 获取设备信息
+ */
+declare function getDeviceInfo(): {
+    deviceName: string;
+    platform: NodeJS.Platform;
+    arch: string;
+    totalMem: number;
+    freeMem: number;
+    cpuModel: string;
+    cpuCount: number;
+    macAddress: string;
+};
+/**
+ * 注册节点 - 调用服务端接口
+ */
+export declare function registerNode(serverUrl?: string, nodeName?: string): Promise<RegisterResult>;
+/**
+ * 获取或注册 Token
+ * 始终从服务端获取新 token，不使用本地缓存（缓存 token 可能已过期导致 31029）
+ *
+ * @param nodeName 节点昵称
+ * @param forceRegister 是否强制重新注册（忽略已有配置）
+ */
+export declare function getOrRegisterToken(nodeName?: string, forceRegister?: boolean): Promise<string>;
+/**
+ * 加载配置
+ */
+export declare function loadConfig(): Promise<{
+    nodeId: string;
+    nodeName: string;
+    token: string;
+    macAddress: string;
+    expiresAt?: number;
+} | null>;
+export { getMacAddress, getDeviceInfo, getNicknameFromOpenClaw };
+export declare function getAppKey(serverUrl?: string): Promise<string>;
+export declare function getAppSecret(serverUrl: string, token: string, nodeId?: string): Promise<string | undefined>;