Obsidian Vault Access¶
The sandbox can mount an Obsidian vault from your host, giving agents access to your notes and knowledge base. The vault is available both in the VM and inside sandbox containers, with writes landing in an OverlayFS upper layer (not on your host).
Setup¶
Pass the --vault flag when bootstrapping:
# Using the Bilrost CLI (recommended) — configure vault path during `bilrost init`
bilrost up
# Using bootstrap.sh directly
./bootstrap.sh --openclaw ~/Projects/openclaw --vault ~/Documents/Vaults/main
This mounts your vault directory into the Lima VM at /mnt/obsidian via virtiofs (read-only by default from the host side).
Mount modes are baked at VM creation
The --vault flag creates a Lima mount. If you initially bootstrapped without --vault and want to add a vault later, you need to delete and recreate the VM:
bash
./bootstrap.sh --delete
./bootstrap.sh --openclaw ~/Projects/openclaw --vault ~/Documents/Vaults/main
How It Works¶
OverlayFS Layer¶
Like the main OpenClaw source, the vault gets an OverlayFS overlay:
| Path | Purpose |
|---|---|
/mnt/obsidian |
Host mount (read-only lower dir) |
/var/lib/openclaw/overlay/obsidian/upper |
Overlay upper dir (writes land here) |
/workspace-obsidian |
Merged mount point (agents see this) |
The systemd mount unit is workspace\x2dobsidian.mount (the \x2d is the systemd escape for the - character in mount paths).
Gateway Environment Variable¶
When the vault mount is detected, the gateway systemd service exports:
Environment=OBSIDIAN_VAULT_PATH=/workspace-obsidian
This tells agents where to find vault files without hardcoding the path.
Container Bind Mount¶
The sandbox role automatically adds a read-write bind mount into Docker containers (changed from ro in PR #67):
{
"agents": {
"defaults": {
"sandbox": {
"docker": {
"binds": ["/workspace-obsidian:/workspace-obsidian:rw"]
}
}
}
}
}
Overlay-protected writes
Even though the container mount is rw, writes land in the OverlayFS upper layer, not directly on the host vault. The sync gate controls when changes propagate back. To lock the vault to read-only, override with:
bash
-e "sandbox_vault_access=ro"
Stale Mount Cleanup¶
If you previously bootstrapped with --vault but later re-provision without it, the overlay role automatically cleans up the stale obsidian mount unit:
- Checks if
/mnt/obsidianexists (the Lima mount) - If it does not exist, checks for a stale
workspace\x2dobsidian.mountunit - Stops the mount, disables it, and removes the unit file
This prevents systemd failures from mount units pointing to nonexistent lower directories.
Configuration Variables¶
| Variable | Default | Description |
|---|---|---|
overlay_lower_obsidian |
/mnt/obsidian |
Host vault mount point |
overlay_obsidian_path |
/workspace-obsidian |
Merged overlay mount point |
sandbox_vault_path |
/workspace-obsidian |
Source path for container bind mount |
sandbox_vault_access |
rw |
Container access: ro or rw |
Verification Commands¶
# Check vault mount exists in VM
limactl shell openclaw-sandbox -- mountpoint /workspace-obsidian
# List vault contents
limactl shell openclaw-sandbox -- ls /workspace-obsidian
# Check systemd mount unit
limactl shell openclaw-sandbox -- systemctl status workspace\\x2dobsidian.mount
# Verify OBSIDIAN_VAULT_PATH in gateway env
limactl shell openclaw-sandbox -- systemctl show openclaw-gateway --property=Environment | grep OBSIDIAN
# Check vault is visible inside containers
limactl shell openclaw-sandbox -- docker run --rm \
-v /workspace-obsidian:/workspace-obsidian:ro alpine ls /workspace-obsidian
# Check sandbox config for vault bind
limactl shell openclaw-sandbox -- jq '.agents.defaults.sandbox.docker.binds' ~/.openclaw/openclaw.json
# Expected: ["/workspace-obsidian:/workspace-obsidian:ro"]
iCloud Vault Sync¶
If your Obsidian vault lives in iCloud (~/Library/Mobile Documents/iCloud~md~obsidian/...), virtiofs cannot directly read files that iCloud has evicted to the cloud. The sync-vault.sh script uses rsync to bridge this gap:
# Manual sync from host
./scripts/sync-vault.sh
The script:
- Runs rsync from the host vault to the VM's
/workspace-obsidian/(the merged overlay mount) - Uses
--exclude=.obsidian/to avoid ESTALE errors on virtiofs lower-layer config files - Can be automated via launchd (see Cadence > Host-Side Scheduling)
Write to the merged mount
The sync script writes to /workspace-obsidian/ (the merged overlay mount), not to the raw upper dir at /var/lib/openclaw/overlay/obsidian/upper/. This is critical: writing to the upper dir directly bypasses inotify on the merged mount, so chokidar (used by cadence) would never see those writes.
The inotify Gotcha¶
OverlayFS has an important subtlety: inotify watches on the merged mount only fire for writes to the merged mount. If a process writes directly to the overlay upper directory, the change is visible via ls on the merged mount, but inotify never fires.
This means:
- Cadence file watchers on
/workspace-obsidian/work correctly for writes to/workspace-obsidian/ - Cadence file watchers on
/workspace-obsidian/do not fire for writes to/var/lib/openclaw/overlay/obsidian/upper/
Always write to /workspace-obsidian/ (the merged mount), not the raw upper dir.
Troubleshooting¶
Vault directory is empty¶
- Check the Lima mount exists:
ls /mnt/obsidian - If empty, the vault path might be wrong. Delete and re-create the VM with the correct
--vaultpath - Check Lima mount status:
limactl list --json | jq '.[] | .mounts'
Mount unit failed¶
# Check the unit status
limactl shell openclaw-sandbox -- systemctl status workspace\\x2dobsidian.mount
# Check journalctl for errors
limactl shell openclaw-sandbox -- sudo journalctl -u workspace\\x2dobsidian.mount
Common causes:
- The lower directory
/mnt/obsidiandoes not exist (VM created without--vault) - The upper or work directories are missing (run
./bootstrap.shagain to recreate)
Vault not visible in containers¶
- Check the bind mount is in
openclaw.json:jq '.agents.defaults.sandbox.docker.binds' ~/.openclaw/openclaw.json - Check
/workspace-obsidianexists and is mounted on the VM - Restart the gateway after config changes:
bilrost restart