mirror of
https://github.com/MHSanaei/3x-ui.git
synced 2026-06-05 20:54:14 +00:00
d97ce19f30
Three Windows-specific issues addressed: 1. Orphaned xray-windows-amd64 after VS Code debugger stop. Delve's "Stop" sends TerminateProcess to the Go binary, which is uncatchable — our signal handlers never run, so xrayService.StopXray() is skipped and xray is left dangling. Spawn xray as a child of a Job Object with JOB_OBJECT_LIMIT_KILL_ON_JOB_CLOSE so the OS kills xray when our handle to the job is closed (which happens even on TerminateProcess). Also trap os.Interrupt in main so Ctrl+C in the terminal runs the graceful path. 2. /panel/setting/restartPanel logged "failed to send SIGHUP signal: not supported by windows" because Windows can't deliver arbitrary signals. Add a restart hook in web/global; main registers it to push SIGHUP into its own signal channel, and RestartPanel calls the hook before falling back to the (Unix-only) signal path. Same restart-loop code runs in both cases. 3. util/sys/sys_windows.go now uses windows.NewLazySystemDLL so the kernel32.dll resolve is pinned to %SystemRoot%\System32 (prevents DLL hijacking by a planted DLL next to the binary). Local filetime type replaced with windows.Filetime, and the unreliable syscall.GetLastError() fallback replaced with a type assertion on the errno captured at call time. Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
585 lines
16 KiB
Go
585 lines
16 KiB
Go
// Package main is the entry point for the 3x-ui web panel application.
|
|
// It initializes the database, web server, and handles command-line operations for managing the panel.
|
|
package main
|
|
|
|
import (
|
|
"flag"
|
|
"fmt"
|
|
"log"
|
|
"os"
|
|
"os/signal"
|
|
"syscall"
|
|
_ "unsafe"
|
|
|
|
"github.com/mhsanaei/3x-ui/v3/config"
|
|
"github.com/mhsanaei/3x-ui/v3/database"
|
|
"github.com/mhsanaei/3x-ui/v3/logger"
|
|
"github.com/mhsanaei/3x-ui/v3/sub"
|
|
"github.com/mhsanaei/3x-ui/v3/util/crypto"
|
|
"github.com/mhsanaei/3x-ui/v3/util/sys"
|
|
"github.com/mhsanaei/3x-ui/v3/web"
|
|
"github.com/mhsanaei/3x-ui/v3/web/global"
|
|
"github.com/mhsanaei/3x-ui/v3/web/service"
|
|
|
|
"github.com/joho/godotenv"
|
|
"github.com/op/go-logging"
|
|
)
|
|
|
|
// runWebServer initializes and starts the web server for the 3x-ui panel.
|
|
func runWebServer() {
|
|
log.Printf("Starting %v %v", config.GetName(), config.GetVersion())
|
|
|
|
switch config.GetLogLevel() {
|
|
case config.Debug:
|
|
logger.InitLogger(logging.DEBUG)
|
|
case config.Info:
|
|
logger.InitLogger(logging.INFO)
|
|
case config.Notice:
|
|
logger.InitLogger(logging.NOTICE)
|
|
case config.Warning:
|
|
logger.InitLogger(logging.WARNING)
|
|
case config.Error:
|
|
logger.InitLogger(logging.ERROR)
|
|
default:
|
|
log.Fatalf("Unknown log level: %v", config.GetLogLevel())
|
|
}
|
|
|
|
godotenv.Load()
|
|
|
|
err := database.InitDB(config.GetDBPath())
|
|
if err != nil {
|
|
log.Fatalf("Error initializing database: %v", err)
|
|
}
|
|
|
|
var server *web.Server
|
|
server = web.NewServer()
|
|
global.SetWebServer(server)
|
|
err = server.Start()
|
|
if err != nil {
|
|
log.Fatalf("Error starting web server: %v", err)
|
|
return
|
|
}
|
|
|
|
var subServer *sub.Server
|
|
sub.SetDistFS(web.EmbeddedDist())
|
|
service.RegisterSubLinkProvider(sub.NewLinkProvider())
|
|
subServer = sub.NewServer()
|
|
global.SetSubServer(subServer)
|
|
err = subServer.Start()
|
|
if err != nil {
|
|
log.Fatalf("Error starting sub server: %v", err)
|
|
return
|
|
}
|
|
|
|
sigCh := make(chan os.Signal, 1)
|
|
// Trap shutdown signals
|
|
signal.Notify(sigCh, syscall.SIGHUP, syscall.SIGTERM, sys.SIGUSR1, os.Interrupt)
|
|
global.SetRestartHook(func() {
|
|
select {
|
|
case sigCh <- syscall.SIGHUP:
|
|
default:
|
|
}
|
|
})
|
|
for {
|
|
sig := <-sigCh
|
|
|
|
switch sig {
|
|
case syscall.SIGHUP:
|
|
logger.Info("Received SIGHUP signal. Restarting servers...")
|
|
|
|
err := server.StopPanelOnly()
|
|
if err != nil {
|
|
logger.Debug("Error stopping web server:", err)
|
|
}
|
|
err = subServer.Stop()
|
|
if err != nil {
|
|
logger.Debug("Error stopping sub server:", err)
|
|
}
|
|
|
|
server = web.NewServer()
|
|
global.SetWebServer(server)
|
|
err = server.StartPanelOnly()
|
|
if err != nil {
|
|
log.Fatalf("Error restarting web server: %v", err)
|
|
return
|
|
}
|
|
log.Println("Web server restarted successfully.")
|
|
|
|
sub.SetDistFS(web.EmbeddedDist())
|
|
subServer = sub.NewServer()
|
|
global.SetSubServer(subServer)
|
|
err = subServer.Start()
|
|
if err != nil {
|
|
log.Fatalf("Error restarting sub server: %v", err)
|
|
return
|
|
}
|
|
log.Println("Sub server restarted successfully.")
|
|
case sys.SIGUSR1:
|
|
logger.Info("Received USR1 signal, restarting xray-core...")
|
|
err := server.RestartXray()
|
|
if err != nil {
|
|
logger.Error("Failed to restart xray-core:", err)
|
|
}
|
|
|
|
default:
|
|
// --- FIX FOR TELEGRAM BOT CONFLICT (409) on full shutdown ---
|
|
service.StopBot()
|
|
// ------------------------------------------------------------
|
|
|
|
server.Stop()
|
|
subServer.Stop()
|
|
log.Println("Shutting down servers.")
|
|
return
|
|
}
|
|
}
|
|
}
|
|
|
|
// resetSetting resets all panel settings to their default values.
|
|
func resetSetting() error {
|
|
err := database.InitDB(config.GetDBPath())
|
|
if err != nil {
|
|
fmt.Println("Failed to initialize database:", err)
|
|
return err
|
|
}
|
|
|
|
settingService := service.SettingService{}
|
|
err = settingService.ResetSettings()
|
|
if err != nil {
|
|
fmt.Println("Failed to reset settings:", err)
|
|
return err
|
|
} else {
|
|
fmt.Println("Settings successfully reset.")
|
|
}
|
|
return nil
|
|
}
|
|
|
|
// showSetting displays the current panel settings if show is true.
|
|
func showSetting(show bool) {
|
|
if show {
|
|
settingService := service.SettingService{}
|
|
port, err := settingService.GetPort()
|
|
if err != nil {
|
|
fmt.Println("get current port failed, error info:", err)
|
|
}
|
|
|
|
webBasePath, err := settingService.GetBasePath()
|
|
if err != nil {
|
|
fmt.Println("get webBasePath failed, error info:", err)
|
|
}
|
|
|
|
certFile, err := settingService.GetCertFile()
|
|
if err != nil {
|
|
fmt.Println("get cert file failed, error info:", err)
|
|
}
|
|
keyFile, err := settingService.GetKeyFile()
|
|
if err != nil {
|
|
fmt.Println("get key file failed, error info:", err)
|
|
}
|
|
|
|
userService := service.UserService{}
|
|
userModel, err := userService.GetFirstUser()
|
|
if err != nil {
|
|
fmt.Println("get current user info failed, error info:", err)
|
|
}
|
|
|
|
if userModel.Username == "" || userModel.Password == "" {
|
|
fmt.Println("current username or password is empty")
|
|
}
|
|
|
|
fmt.Println("current panel settings as follows:")
|
|
if certFile == "" || keyFile == "" {
|
|
fmt.Println("Warning: Panel is not secure with SSL")
|
|
} else {
|
|
fmt.Println("Panel is secure with SSL")
|
|
}
|
|
|
|
hasDefaultCredential := func() bool {
|
|
return userModel.Username == "admin" && crypto.CheckPasswordHash(userModel.Password, "admin")
|
|
}()
|
|
|
|
fmt.Println("hasDefaultCredential:", hasDefaultCredential)
|
|
fmt.Println("port:", port)
|
|
fmt.Println("webBasePath:", webBasePath)
|
|
}
|
|
}
|
|
|
|
// updateTgbotEnableSts enables or disables the Telegram bot notifications based on the status parameter.
|
|
func updateTgbotEnableSts(status bool) {
|
|
settingService := service.SettingService{}
|
|
currentTgSts, err := settingService.GetTgbotEnabled()
|
|
if err != nil {
|
|
fmt.Println(err)
|
|
return
|
|
}
|
|
logger.Infof("current enabletgbot status[%v],need update to status[%v]", currentTgSts, status)
|
|
if currentTgSts != status {
|
|
err := settingService.SetTgbotEnabled(status)
|
|
if err != nil {
|
|
fmt.Println(err)
|
|
return
|
|
} else {
|
|
logger.Infof("SetTgbotEnabled[%v] success", status)
|
|
}
|
|
}
|
|
}
|
|
|
|
// updateTgbotSetting updates Telegram bot settings including token, chat ID, and runtime schedule.
|
|
func updateTgbotSetting(tgBotToken string, tgBotChatid string, tgBotRuntime string) {
|
|
err := database.InitDB(config.GetDBPath())
|
|
if err != nil {
|
|
fmt.Println("Error initializing database:", err)
|
|
return
|
|
}
|
|
|
|
settingService := service.SettingService{}
|
|
|
|
if tgBotToken != "" {
|
|
err := settingService.SetTgBotToken(tgBotToken)
|
|
if err != nil {
|
|
fmt.Printf("Error setting Telegram bot token: %v\n", err)
|
|
return
|
|
}
|
|
logger.Info("Successfully updated Telegram bot token.")
|
|
}
|
|
|
|
if tgBotRuntime != "" {
|
|
err := settingService.SetTgbotRuntime(tgBotRuntime)
|
|
if err != nil {
|
|
fmt.Printf("Error setting Telegram bot runtime: %v\n", err)
|
|
return
|
|
}
|
|
logger.Infof("Successfully updated Telegram bot runtime to [%s].", tgBotRuntime)
|
|
}
|
|
|
|
if tgBotChatid != "" {
|
|
err := settingService.SetTgBotChatId(tgBotChatid)
|
|
if err != nil {
|
|
fmt.Printf("Error setting Telegram bot chat ID: %v\n", err)
|
|
return
|
|
}
|
|
logger.Info("Successfully updated Telegram bot chat ID.")
|
|
}
|
|
}
|
|
|
|
// updateSetting updates various panel settings including port, credentials, base path, listen IP, and two-factor authentication.
|
|
func updateSetting(port int, username string, password string, webBasePath string, listenIP string, resetTwoFactor bool) error {
|
|
err := database.InitDB(config.GetDBPath())
|
|
if err != nil {
|
|
fmt.Println("Database initialization failed:", err)
|
|
return err
|
|
}
|
|
|
|
settingService := service.SettingService{}
|
|
userService := service.UserService{}
|
|
|
|
if port > 0 {
|
|
err := settingService.SetPort(port)
|
|
if err != nil {
|
|
fmt.Println("Failed to set port:", err)
|
|
} else {
|
|
fmt.Printf("Port set successfully: %v\n", port)
|
|
}
|
|
}
|
|
|
|
if username != "" || password != "" {
|
|
err := userService.UpdateFirstUser(username, password)
|
|
if err != nil {
|
|
fmt.Println("Failed to update username and password:", err)
|
|
} else {
|
|
fmt.Println("Username and password updated successfully")
|
|
}
|
|
}
|
|
|
|
if webBasePath != "" {
|
|
err := settingService.SetBasePath(webBasePath)
|
|
if err != nil {
|
|
fmt.Println("Failed to set base URI path:", err)
|
|
} else {
|
|
fmt.Println("Base URI path set successfully")
|
|
}
|
|
}
|
|
|
|
if resetTwoFactor {
|
|
err := settingService.SetTwoFactorEnable(false)
|
|
|
|
if err != nil {
|
|
fmt.Println("Failed to reset two-factor authentication:", err)
|
|
} else {
|
|
settingService.SetTwoFactorToken("")
|
|
fmt.Println("Two-factor authentication reset successfully")
|
|
}
|
|
}
|
|
|
|
if listenIP != "" {
|
|
err := settingService.SetListen(listenIP)
|
|
if err != nil {
|
|
fmt.Println("Failed to set listen IP:", err)
|
|
} else {
|
|
fmt.Printf("listen %v set successfully", listenIP)
|
|
}
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
// updateCert updates the SSL certificate files for the panel.
|
|
func updateCert(publicKey string, privateKey string) {
|
|
err := database.InitDB(config.GetDBPath())
|
|
if err != nil {
|
|
fmt.Println(err)
|
|
return
|
|
}
|
|
|
|
if (privateKey != "" && publicKey != "") || (privateKey == "" && publicKey == "") {
|
|
settingService := service.SettingService{}
|
|
err = settingService.SetCertFile(publicKey)
|
|
if err != nil {
|
|
fmt.Println("set certificate public key failed:", err)
|
|
} else {
|
|
fmt.Println("set certificate public key success")
|
|
}
|
|
|
|
err = settingService.SetKeyFile(privateKey)
|
|
if err != nil {
|
|
fmt.Println("set certificate private key failed:", err)
|
|
} else {
|
|
fmt.Println("set certificate private key success")
|
|
}
|
|
|
|
err = settingService.SetSubCertFile(publicKey)
|
|
if err != nil {
|
|
fmt.Println("set certificate for subscription public key failed:", err)
|
|
} else {
|
|
fmt.Println("set certificate for subscription public key success")
|
|
}
|
|
|
|
err = settingService.SetSubKeyFile(privateKey)
|
|
if err != nil {
|
|
fmt.Println("set certificate for subscription private key failed:", err)
|
|
} else {
|
|
fmt.Println("set certificate for subscription private key success")
|
|
}
|
|
} else {
|
|
fmt.Println("both public and private key should be entered.")
|
|
}
|
|
}
|
|
|
|
// GetCertificate displays the current SSL certificate settings if getCert is true.
|
|
func GetCertificate(getCert bool) {
|
|
if getCert {
|
|
settingService := service.SettingService{}
|
|
certFile, err := settingService.GetCertFile()
|
|
if err != nil {
|
|
fmt.Println("get cert file failed, error info:", err)
|
|
}
|
|
keyFile, err := settingService.GetKeyFile()
|
|
if err != nil {
|
|
fmt.Println("get key file failed, error info:", err)
|
|
}
|
|
|
|
fmt.Println("cert:", certFile)
|
|
fmt.Println("key:", keyFile)
|
|
}
|
|
}
|
|
|
|
// GetListenIP displays the current panel listen IP address if getListen is true.
|
|
func GetListenIP(getListen bool) {
|
|
if getListen {
|
|
|
|
settingService := service.SettingService{}
|
|
ListenIP, err := settingService.GetListen()
|
|
if err != nil {
|
|
log.Printf("Failed to retrieve listen IP: %v", err)
|
|
return
|
|
}
|
|
|
|
fmt.Println("listenIP:", ListenIP)
|
|
}
|
|
}
|
|
|
|
func GetApiToken(getApiToken bool) {
|
|
if !getApiToken {
|
|
return
|
|
}
|
|
apiTokenService := service.ApiTokenService{}
|
|
tokens, err := apiTokenService.List()
|
|
if err != nil {
|
|
fmt.Println("get apiToken failed, error info:", err)
|
|
return
|
|
}
|
|
if len(tokens) > 0 {
|
|
fmt.Println("apiToken:", tokens[0].Token)
|
|
return
|
|
}
|
|
created, err := apiTokenService.Create("install")
|
|
if err != nil {
|
|
fmt.Println("create apiToken failed, error info:", err)
|
|
return
|
|
}
|
|
fmt.Println("apiToken:", created.Token)
|
|
}
|
|
|
|
// migrateDb performs database migration operations for the 3x-ui panel.
|
|
func migrateDb() {
|
|
inboundService := service.InboundService{}
|
|
|
|
err := database.InitDB(config.GetDBPath())
|
|
if err != nil {
|
|
log.Fatal(err)
|
|
}
|
|
fmt.Println("Start migrating database...")
|
|
inboundService.MigrateDB()
|
|
fmt.Println("Migration done!")
|
|
}
|
|
|
|
// main is the entry point of the 3x-ui application.
|
|
// It parses command-line arguments to run the web server, migrate database, or update settings.
|
|
func main() {
|
|
if len(os.Args) < 2 {
|
|
runWebServer()
|
|
return
|
|
}
|
|
|
|
var showVersion bool
|
|
flag.BoolVar(&showVersion, "v", false, "show version")
|
|
|
|
runCmd := flag.NewFlagSet("run", flag.ExitOnError)
|
|
|
|
migrateDbCmd := flag.NewFlagSet("migrate-db", flag.ExitOnError)
|
|
var migrateDsn string
|
|
var migrateSrc string
|
|
migrateDbCmd.StringVar(&migrateDsn, "dsn", "", "Destination PostgreSQL DSN (postgres://user:pass@host:port/db?sslmode=disable)")
|
|
migrateDbCmd.StringVar(&migrateSrc, "src", "", "Source SQLite file (defaults to the configured x-ui.db)")
|
|
|
|
settingCmd := flag.NewFlagSet("setting", flag.ExitOnError)
|
|
var port int
|
|
var username string
|
|
var password string
|
|
var webBasePath string
|
|
var listenIP string
|
|
var getListen bool
|
|
var webCertFile string
|
|
var webKeyFile string
|
|
var tgbottoken string
|
|
var tgbotchatid string
|
|
var enabletgbot bool
|
|
var tgbotRuntime string
|
|
var reset bool
|
|
var show bool
|
|
var getCert bool
|
|
var getApiToken bool
|
|
var resetTwoFactor bool
|
|
settingCmd.BoolVar(&reset, "reset", false, "Reset all settings")
|
|
settingCmd.BoolVar(&show, "show", false, "Display current settings")
|
|
settingCmd.IntVar(&port, "port", 0, "Set panel port number")
|
|
settingCmd.StringVar(&username, "username", "", "Set login username")
|
|
settingCmd.StringVar(&password, "password", "", "Set login password")
|
|
settingCmd.StringVar(&webBasePath, "webBasePath", "", "Set base path for Panel")
|
|
settingCmd.StringVar(&listenIP, "listenIP", "", "set panel listenIP IP")
|
|
settingCmd.BoolVar(&resetTwoFactor, "resetTwoFactor", false, "Reset two-factor authentication settings")
|
|
settingCmd.BoolVar(&getListen, "getListen", false, "Display current panel listenIP IP")
|
|
settingCmd.BoolVar(&getCert, "getCert", false, "Display current certificate settings")
|
|
settingCmd.BoolVar(&getApiToken, "getApiToken", false, "Display current API token")
|
|
settingCmd.StringVar(&webCertFile, "webCert", "", "Set path to public key file for panel")
|
|
settingCmd.StringVar(&webKeyFile, "webCertKey", "", "Set path to private key file for panel")
|
|
settingCmd.StringVar(&tgbottoken, "tgbottoken", "", "Set token for Telegram bot")
|
|
settingCmd.StringVar(&tgbotRuntime, "tgbotRuntime", "", "Set cron time for Telegram bot notifications")
|
|
settingCmd.StringVar(&tgbotchatid, "tgbotchatid", "", "Set chat ID for Telegram bot notifications")
|
|
settingCmd.BoolVar(&enabletgbot, "enabletgbot", false, "Enable notifications via Telegram bot")
|
|
|
|
oldUsage := flag.Usage
|
|
flag.Usage = func() {
|
|
oldUsage()
|
|
fmt.Println()
|
|
fmt.Println("Commands:")
|
|
fmt.Println(" run run web panel")
|
|
fmt.Println(" migrate migrate form other/old x-ui")
|
|
fmt.Println(" migrate-db copy data from the SQLite file into a PostgreSQL database")
|
|
fmt.Println(" setting set settings")
|
|
}
|
|
|
|
flag.Parse()
|
|
if showVersion {
|
|
fmt.Println(config.GetVersion())
|
|
return
|
|
}
|
|
|
|
switch os.Args[1] {
|
|
case "run":
|
|
err := runCmd.Parse(os.Args[2:])
|
|
if err != nil {
|
|
fmt.Println(err)
|
|
return
|
|
}
|
|
runWebServer()
|
|
case "migrate":
|
|
migrateDb()
|
|
case "migrate-db":
|
|
if err := migrateDbCmd.Parse(os.Args[2:]); err != nil {
|
|
fmt.Println(err)
|
|
return
|
|
}
|
|
src := migrateSrc
|
|
if src == "" {
|
|
src = config.GetDBPath()
|
|
}
|
|
if migrateDsn == "" {
|
|
fmt.Println("--dsn is required: postgres://user:pass@host:port/dbname?sslmode=disable")
|
|
return
|
|
}
|
|
if err := database.MigrateData(src, migrateDsn); err != nil {
|
|
fmt.Println("migration failed:", err)
|
|
os.Exit(1)
|
|
}
|
|
case "setting":
|
|
err := settingCmd.Parse(os.Args[2:])
|
|
if err != nil {
|
|
fmt.Println(err)
|
|
return
|
|
}
|
|
if reset {
|
|
if err = resetSetting(); err != nil {
|
|
return
|
|
}
|
|
} else {
|
|
if err = updateSetting(port, username, password, webBasePath, listenIP, resetTwoFactor); err != nil {
|
|
return
|
|
}
|
|
}
|
|
if show {
|
|
showSetting(show)
|
|
}
|
|
if getListen {
|
|
GetListenIP(getListen)
|
|
}
|
|
if getCert {
|
|
GetCertificate(getCert)
|
|
}
|
|
if getApiToken {
|
|
GetApiToken(getApiToken)
|
|
}
|
|
if (tgbottoken != "") || (tgbotchatid != "") || (tgbotRuntime != "") {
|
|
updateTgbotSetting(tgbottoken, tgbotchatid, tgbotRuntime)
|
|
}
|
|
if enabletgbot {
|
|
updateTgbotEnableSts(enabletgbot)
|
|
}
|
|
case "cert":
|
|
err := settingCmd.Parse(os.Args[2:])
|
|
if err != nil {
|
|
fmt.Println(err)
|
|
return
|
|
}
|
|
if reset {
|
|
updateCert("", "")
|
|
} else {
|
|
updateCert(webCertFile, webKeyFile)
|
|
}
|
|
default:
|
|
fmt.Println("Invalid subcommands")
|
|
fmt.Println()
|
|
runCmd.Usage()
|
|
fmt.Println()
|
|
settingCmd.Usage()
|
|
}
|
|
}
|