Alex-Devera/3x-ui
1
0
Fork 0
mirror of https://github.com/MHSanaei/3x-ui.git synced 2026-02-28 05:02:59 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
3x-ui/web/service/trusttunnel.go
Claude 10eab4cb06
Add TrustTunnel protocol support as a separate managed process 
TrustTunnel (by AdGuard) is an independent VPN protocol binary that
runs alongside Xray. This integrates it into the 3x-ui panel so users
can create TrustTunnel inbounds through the same UI.

Architecture:
- TrustTunnel runs as a separate process (not an xray inbound)
- Each TrustTunnel inbound gets its own TOML config and process
- TrustTunnel inbounds are skipped during xray config generation
- Periodic health checks restart crashed TrustTunnel processes

New files (isolated, minimal merge conflict risk):
- trusttunnel/process.go: process lifecycle and TOML config generation
- web/service/trusttunnel.go: service layer with start/stop/restart
- web/html/form/protocol/trusttunnel.html: UI form template

Modified files (minimal, targeted changes):
- database/model/model.go: add TrustTunnel protocol constant
- web/service/xray.go: skip trusttunnel inbounds in xray config
- web/service/inbound.go: validation + TrustTunnel process triggers
- web/web.go: startup/shutdown integration
- web/assets/js/model/inbound.js: protocol enum + settings class
- web/assets/js/model/dbinbound.js: isTrustTunnel helper
- web/html/form/inbound.html: form conditional
- web/html/form/client.html: password field for TrustTunnel clients

https://claude.ai/code/session_01RQBndg4ZPmYAToK4KKcBzp
2026-02-17 09:45:32 +00:00

180 lines
4.4 KiB
Go
Raw Blame History

package service
import (
"sync"
"github.com/mhsanaei/3x-ui/v2/database"
"github.com/mhsanaei/3x-ui/v2/database/model"
"github.com/mhsanaei/3x-ui/v2/logger"
"github.com/mhsanaei/3x-ui/v2/trusttunnel"
)
// Package-level TrustTunnel service instance, set during server startup.
// Used by InboundService to trigger TrustTunnel restarts on inbound changes.
var ttService *TrustTunnelService
// SetTrustTunnelService sets the package-level TrustTunnel service instance.
func SetTrustTunnelService(s *TrustTunnelService) {
ttService = s
}
// GetTrustTunnelService returns the package-level TrustTunnel service instance.
func GetTrustTunnelService() *TrustTunnelService {
return ttService
}
// TrustTunnelService manages TrustTunnel endpoint processes.
// Each TrustTunnel inbound runs its own process alongside Xray.
type TrustTunnelService struct {
mu sync.Mutex
processes map[string]*trusttunnel.Process // keyed by inbound tag
}
func NewTrustTunnelService() *TrustTunnelService {
return &TrustTunnelService{
processes: make(map[string]*trusttunnel.Process),
}
}
// StartAll starts TrustTunnel processes for all enabled TrustTunnel inbounds.
func (s *TrustTunnelService) StartAll() {
if !trusttunnel.IsBinaryInstalled() {
logger.Debug("TrustTunnel binary not installed, skipping")
return
}
inbounds, err := s.getTrustTunnelInbounds()
if err != nil {
logger.Warning("Failed to get TrustTunnel inbounds:", err)
return
}
for _, inbound := range inbounds {
if !inbound.Enable {
continue
}
if err := s.startInbound(inbound); err != nil {
logger.Warningf("Failed to start TrustTunnel for %s: %v", inbound.Tag, err)
}
}
}
// StopAll stops all running TrustTunnel processes.
func (s *TrustTunnelService) StopAll() {
s.mu.Lock()
defer s.mu.Unlock()
for tag, proc := range s.processes {
if proc.IsRunning() {
if err := proc.Stop(); err != nil {
logger.Warningf("Failed to stop TrustTunnel %s: %v", tag, err)
}
}
}
s.processes = make(map[string]*trusttunnel.Process)
}
// RestartForInbound restarts the TrustTunnel process for a specific inbound.
func (s *TrustTunnelService) RestartForInbound(inbound *model.Inbound) error {
s.mu.Lock()
defer s.mu.Unlock()
// Stop existing process for this tag
if proc, ok := s.processes[inbound.Tag]; ok && proc.IsRunning() {
proc.Stop()
}
if !inbound.Enable {
delete(s.processes, inbound.Tag)
return nil
}
return s.startInboundLocked(inbound)
}
// StopForInbound stops the TrustTunnel process for a specific inbound tag.
func (s *TrustTunnelService) StopForInbound(tag string) {
s.mu.Lock()
defer s.mu.Unlock()
if proc, ok := s.processes[tag]; ok {
if proc.IsRunning() {
proc.Stop()
}
delete(s.processes, tag)
}
}
// IsRunning checks if a TrustTunnel process is running for the given tag.
func (s *TrustTunnelService) IsRunning(tag string) bool {
s.mu.Lock()
defer s.mu.Unlock()
if proc, ok := s.processes[tag]; ok {
return proc.IsRunning()
}
return false
}
// CheckAndRestart checks for crashed TrustTunnel processes and restarts them.
func (s *TrustTunnelService) CheckAndRestart() {
if !trusttunnel.IsBinaryInstalled() {
return
}
inbounds, err := s.getTrustTunnelInbounds()
if err != nil {
return
}
s.mu.Lock()
defer s.mu.Unlock()
for _, inbound := range inbounds {
if !inbound.Enable {
continue
}
proc, ok := s.processes[inbound.Tag]
if !ok || !proc.IsRunning() {
logger.Infof("TrustTunnel %s not running, restarting...", inbound.Tag)
s.startInboundLocked(inbound)
}
}
}
func (s *TrustTunnelService) startInbound(inbound *model.Inbound) error {
s.mu.Lock()
defer s.mu.Unlock()
return s.startInboundLocked(inbound)
}
func (s *TrustTunnelService) startInboundLocked(inbound *model.Inbound) error {
settings, err := trusttunnel.ParseSettings(inbound.Settings)
if err != nil {
return err
}
proc := trusttunnel.NewProcess(inbound.Tag)
if err := proc.WriteConfig(inbound.Listen, inbound.Port, settings); err != nil {
return err
}
if err := proc.Start(); err != nil {
return err
}
s.processes[inbound.Tag] = proc
logger.Infof("TrustTunnel started for inbound %s on port %d", inbound.Tag, inbound.Port)
return nil
}
func (s *TrustTunnelService) getTrustTunnelInbounds() ([]*model.Inbound, error) {
db := database.GetDB()
var inbounds []*model.Inbound
err := db.Model(model.Inbound{}).Where("protocol = ?", model.TrustTunnel).Find(&inbounds).Error
if err != nil {
return nil, err
}
return inbounds, nil
}
Reference in a new issue View git blame Copy permalink