mack-a
/
v2ray-agent
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

feat(脚本): 修改tls逻辑以兼容自定义证书安装、添加自定义tls证书安装教程

pull/534/merge
mack-a 2021-01-12 16:52:25 +08:00
parent a3b0e3f2f1
commit 0e9732f392
3 changed files with 39 additions and 25 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
README.md
View File

@ -31,6 +31,7 @@
- 不需要卸载就可以重装任何组合。卸载脚本时,是完全卸载无残留。
- 支持纯ipv6ipv6[注意事项](https://github.com/mack-a/v2ray-agent/blob/master/documents/ipv6_help.md)
- 支持ipv6人机验证 **需自己申请IPv6隧道不建议使用自带的IPv6**
- [支持自定义证书安装](https://github.com/mack-a/v2ray-agent/blob/master/documents/install_tls.md)
## 组合方式

13
documents/install_tls.md 100644
View File

@ -0,0 +1,13 @@
# 使用现有的证书进行脚本安装
## 1.创建目录
```
mkdir -p /etc/v2ray-agent/tls
```
## 2.将证书放到指定目录并修改名称
>下方的domain为要安装的域名
- 1.移动证书和私钥到/etc/v2ray-agent/tls下
- 2.修改文件名称
```
xxx.key --> domain.key
xxx.crt or xxx.pem or xxx.cer --> domain.crt
```

50
install.sh
View File

@ -641,32 +641,11 @@ installTLS(){
then
tlsDomain=${domain}
fi
# 安装tls
if [[ -d "/root/.acme.sh" && ! -f "/root/.acme.sh/${tlsDomain}_ecc/${tlsDomain}.key" && ! -f "/root/.acme.sh/${tlsDomain}_ecc/${tlsDomain}.cer" ]]
if [[ -f "/etc/v2ray-agent/tls/${tlsDomain}.crt" && -f "/etc/v2ray-agent/tls/${tlsDomain}.key" ]] || [[ -d "/root/.acme.sh/${tlsDomain}_ecc" && -f "/root/.acme.sh/${tlsDomain}_ecc/${tlsDomain}.key" && -f "/root/.acme.sh/${tlsDomain}_ecc/${tlsDomain}.cer" ]]
then
echoContent green " ---> 安装TLS证书"
if [[ ! -z "${pingIPv6}" ]]
then
sudo ~/.acme.sh/acme.sh --issue -d ${tlsDomain} --standalone -k ec-256 --listen-v6 >/dev/null
else
sudo ~/.acme.sh/acme.sh --issue -d ${tlsDomain} --standalone -k ec-256 >/dev/null
fi
sudo ~/.acme.sh/acme.sh --installcert -d ${tlsDomain} --fullchainpath /etc/v2ray-agent/tls/${tlsDomain}.crt --keypath /etc/v2ray-agent/tls/${tlsDomain}.key --ecc >/dev/null
if [[ -z `cat /etc/v2ray-agent/tls/${tlsDomain}.crt` ]]
then
echoContent red " ---> TLS安装失败请检查acme日志"
exit 0
elif [[ -z `cat /etc/v2ray-agent/tls/${tlsDomain}.key` ]]
then
echoContent red " ---> TLS安装失败请检查acme日志"
exit 0
fi
echoContent green " ---> TLS生成成功"
elif [[ -d "/root/.acme.sh/${tlsDomain}_ecc" && -f "/root/.acme.sh/${tlsDomain}_ecc/${tlsDomain}.key" && -f "/root/.acme.sh/${tlsDomain}_ecc/${tlsDomain}.cer" ]]
then
# 存在证书 但是脚本目录未安装
# 存在证书
echoContent green " ---> 检测到证书"
checkTLStatus ${tlsDomain}
if [[ "${tlsStatus}" = "已过期" ]]
@ -688,6 +667,27 @@ installTLS(){
fi
fi
fi
elif [[ -d "/root/.acme.sh" && ! -f "/root/.acme.sh/${tlsDomain}_ecc/${tlsDomain}.key" && ! -f "/root/.acme.sh/${tlsDomain}_ecc/${tlsDomain}.cer" ]]
then
echoContent green " ---> 安装TLS证书"
if [[ ! -z "${pingIPv6}" ]]
then
sudo ~/.acme.sh/acme.sh --issue -d ${tlsDomain} --standalone -k ec-256 --listen-v6 >/dev/null
else
sudo ~/.acme.sh/acme.sh --issue -d ${tlsDomain} --standalone -k ec-256 >/dev/null
fi
sudo ~/.acme.sh/acme.sh --installcert -d ${tlsDomain} --fullchainpath /etc/v2ray-agent/tls/${tlsDomain}.crt --keypath /etc/v2ray-agent/tls/${tlsDomain}.key --ecc >/dev/null
if [[ -z `cat /etc/v2ray-agent/tls/${tlsDomain}.crt` ]]
then
echoContent red " ---> TLS安装失败请检查acme日志"
exit 0
elif [[ -z `cat /etc/v2ray-agent/tls/${tlsDomain}.key` ]]
then
echoContent red " ---> TLS安装失败请检查acme日志"
exit 0
fi
echoContent green " ---> TLS生成成功"
else
echoContent yellow " ---> 未安装acme.sh"
exit 0;
@ -3283,7 +3283,7 @@ menu(){
cd
echoContent red "\n=============================================================="
echoContent green "作者mack-a"
echoContent green "当前版本v2.2.23"
echoContent green "当前版本v2.2.24"
echoContent green "Githubhttps://github.com/mack-a/v2ray-agent"
echoContent green "描述:七合一共存脚本"
echoContent red "=============================================================="