#!/usr/bin/env bash PATH=/bin:/sbin:/usr/bin:/usr/sbin:/usr/local/bin:/usr/local/sbin:~/bin export PATH # # Auto install Shadowsocks Server (all version) # # Copyright (C) 2016-2020 Teddysun Licensed: GPLv3 # Copyright (C) 2019-2020 M3chD09 Licensed: MIT # Copyright (C) 2019-2020 Yuk1n0 # # System Required: CentOS 6+, Debian7+, Ubuntu12+ # # Reference URL: # https://github.com/shadowsocks/shadowsocks # https://github.com/shadowsocks/shadowsocks-go # https://github.com/shadowsocks/shadowsocks-libev # https://github.com/shadowsocks/shadowsocks-windows # https://github.com/shadowsocksr-rm/shadowsocksr # https://github.com/shadowsocksrr/shadowsocksr # https://github.com/shadowsocksrr/shadowsocksr-csharp # https://github.com/shadowsocks/v2ray-plugin # # Thanks: # @clowwindy # @breakwa11 # @cyfdecyf # @madeye # @linusyang # @Akkariiin # @teddysun # @M3chD09 red='\033[0;31m' green='\033[0;32m' yellow='\033[0;33m' plain='\033[0m' [[ $EUID -ne 0 ]] && echo -e "[${red}Error${plain}] This script must be run as root!" && exit 1 cur_dir=$(pwd) software=(Shadowsocks-libev ShadowsocksR) libsodium_file="libsodium-1.0.18" libsodium_url="https://github.com/jedisct1/libsodium/releases/download/1.0.18-RELEASE/libsodium-1.0.18.tar.gz" mbedtls_file="mbedtls-2.16.6" mbedtls_url="https://tls.mbed.org/download/mbedtls-2.16.6-gpl.tgz" shadowsocks_libev_init="/etc/init.d/shadowsocks-libev" shadowsocks_libev_config="/etc/shadowsocks-libev/config.json" shadowsocks_libev_centos="https://raw.githubusercontent.com/Yuk1n0/Shadowsocks-Install/master/shadowsocks-libev" shadowsocks_libev_debian="https://raw.githubusercontent.com/Yuk1n0/Shadowsocks-Install/master/shadowsocks-libev-debian" v2ray_file=$(wget -qO- https://api.github.com/repos/shadowsocks/v2ray-plugin/releases/latest | grep linux-amd64 | grep name | cut -f4 -d\") shadowsocks_r_file="shadowsocksr-3.2.2" shadowsocks_r_url="https://github.com/shadowsocksrr/shadowsocksr/archive/3.2.2.tar.gz" shadowsocks_r_init="/etc/init.d/shadowsocks-r" shadowsocks_r_config="/etc/shadowsocks-r/config.json" shadowsocks_r_centos="https://raw.githubusercontent.com/Yuk1n0/Shadowsocks-Install/master/shadowsocksR" shadowsocks_r_debian="https://raw.githubusercontent.com/Yuk1n0/Shadowsocks-Install/master/shadowsocksR-debian" # Stream Ciphers common_ciphers=( aes-256-gcm aes-192-gcm aes-128-gcm aes-256-ctr aes-192-ctr aes-128-ctr aes-256-cfb aes-192-cfb aes-128-cfb camellia-128-cfb camellia-192-cfb camellia-256-cfb xchacha20-ietf-poly1305 chacha20-ietf-poly1305 chacha20-ietf ) r_ciphers=( none aes-256-cfb aes-192-cfb aes-128-cfb aes-256-cfb8 aes-192-cfb8 aes-128-cfb8 aes-256-ctr aes-192-ctr aes-128-ctr chacha20-ietf ) # Reference URL: # https://github.com/shadowsocksr-rm/shadowsocks-rss/blob/master/ssr.md # https://github.com/shadowsocksrr/shadowsocksr/commit/a3cf0254508992b7126ab1151df0c2f10bf82680 protocols=( origin verify_deflate auth_sha1_v4 auth_sha1_v4_compatible auth_aes128_md5 auth_aes128_sha1 auth_chain_a auth_chain_b auth_chain_c auth_chain_d auth_chain_e auth_chain_f ) obfs=( plain http_simple http_simple_compatible http_post http_post_compatible tls1.2_ticket_auth tls1.2_ticket_auth_compatible tls1.2_ticket_fastauth tls1.2_ticket_fastauth_compatible ) # initialization parameter v2ray_plugin="" disable_selinux() { if [ -s /etc/selinux/config ] && grep 'SELINUX=enforcing' /etc/selinux/config; then sed -i 's/SELINUX=enforcing/SELINUX=disabled/g' /etc/selinux/config setenforce 0 fi } check_sys() { local checkType=$1 local value=$2 local release='' local systemPackage='' if [[ -f /etc/redhat-release ]]; then release="centos" systemPackage="yum" elif grep -Eqi "debian|raspbian" /etc/issue; then release="debian" systemPackage="apt" elif grep -Eqi "ubuntu" /etc/issue; then release="ubuntu" systemPackage="apt" elif grep -Eqi "centos|red hat|redhat" /etc/issue; then release="centos" systemPackage="yum" elif grep -Eqi "debian|raspbian" /proc/version; then release="debian" systemPackage="apt" elif grep -Eqi "ubuntu" /proc/version; then release="ubuntu" systemPackage="apt" elif grep -Eqi "centos|red hat|redhat" /proc/version; then release="centos" systemPackage="yum" fi if [[ "${checkType}" == "sysRelease" ]]; then if [ "${value}" == "${release}" ]; then return 0 else return 1 fi elif [[ "${checkType}" == "packageManager" ]]; then if [ "${value}" == "${systemPackage}" ]; then return 0 else return 1 fi fi } # autoconf_version version_ge() { test "$(echo "$@" | tr " " "\n" | sort -rV | head -n 1)" == "$1" } version_gt() { test "$(echo "$@" | tr " " "\n" | sort -V | head -n 1)" != "$1" } # config_shadowsocks check_kernel_version() { local kernel_version=$(uname -r | cut -d- -f1) if version_gt ${kernel_version} 3.7.0; then return 0 else return 1 fi } # config_shadowsocks check_kernel_headers() { if check_sys packageManager yum; then if rpm -qa | grep -q headers-$(uname -r); then return 0 else return 1 fi elif check_sys packageManager apt; then if dpkg -s linux-headers-$(uname -r) >/dev/null 2>&1; then return 0 else return 1 fi fi return 1 } # centosversion getversion() { if [[ -s /etc/redhat-release ]]; then grep -oE "[0-9.]+" /etc/redhat-release else grep -oE "[0-9.]+" /etc/issue fi } centosversion() { if check_sys sysRelease centos; then local code=$1 local version="$(getversion)" local main_ver=${version%%.*} if [ "$main_ver" == "$code" ]; then return 0 else return 1 fi else return 1 fi } autoconf_version() { if [ ! "$(command -v autoconf)" ]; then echo -e "[${green}Info${plain}] Starting install package autoconf" if check_sys packageManager yum; then yum install -y autoconf >/dev/null 2>&1 || echo -e "[${red}Error:${plain}] Failed to install autoconf" elif check_sys packageManager apt; then apt-get -y update >/dev/null 2>&1 apt-get -y install autoconf >/dev/null 2>&1 || echo -e "[${red}Error:${plain}] Failed to install autoconf" fi fi local autoconf_ver=$(autoconf --version | grep autoconf | grep -oE "[0-9.]+") if version_ge ${autoconf_ver} 2.67; then return 0 else return 1 fi } get_ip() { local IP=$(ip addr | egrep -o '[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}' | egrep -v "^192\.168|^172\.1[6-9]\.|^172\.2[0-9]\.|^172\.3[0-2]\.|^10\.|^127\.|^255\.|^0\." | head -n 1) [ -z ${IP} ] && IP=$(wget -qO- -t1 -T2 ipv4.icanhazip.com) [ -z ${IP} ] && IP=$(wget -qO- -t1 -T2 ipinfo.io/ip) echo ${IP} } get_ipv6() { local ipv6=$(wget -qO- -t1 -T2 ipv6.icanhazip.com) [ -z ${ipv6} ] && return 1 || return 0 } get_libev_ver() { libev_ver=$(wget --no-check-certificate -qO- https://api.github.com/repos/shadowsocks/shadowsocks-libev/releases/latest | grep 'tag_name' | cut -d\" -f4) [ -z ${libev_ver} ] && echo -e "[${red}Error${plain}] Get shadowsocks-libev latest version failed" && exit 1 } # debianversion get_opsy() { [ -f /etc/redhat-release ] && awk '{print ($1,$3~/^[0-9]/?$3:$4)}' /etc/redhat-release && return [ -f /etc/os-release ] && awk -F'[= "]' '/PRETTY_NAME/{print $3,$4,$5}' /etc/os-release && return [ -f /etc/lsb-release ] && awk -F'[="]+' '/DESCRIPTION/{print $2}' /etc/lsb-release && return } debianversion() { if check_sys sysRelease debian; then local version=$(get_opsy) local code=${1} local main_ver=$(echo ${version} | sed 's/[^0-9]//g') if [ "${main_ver}" == "${code}" ]; then return 0 else return 1 fi else return 1 fi } download() { local filename=$(basename $1) if [ -f ${1} ]; then echo "${filename} [found]" else echo "${filename} not found, download now..." wget --no-check-certificate -c -t3 -T60 -O ${1} ${2} if [ $? -ne 0 ]; then echo -e "[${red}Error${plain}] Download ${filename} failed." exit 1 fi fi } download_files() { cd ${cur_dir} if [ "${selected}" == "1" ]; then get_libev_ver shadowsocks_libev_file="shadowsocks-libev-$(echo ${libev_ver} | sed -e 's/^[a-zA-Z]//g')" shadowsocks_libev_url="https://github.com/shadowsocks/shadowsocks-libev/releases/download/${libev_ver}/${shadowsocks_libev_file}.tar.gz" download "${shadowsocks_libev_file}.tar.gz" "${shadowsocks_libev_url}" if check_sys packageManager yum; then download "${shadowsocks_libev_init}" "${shadowsocks_libev_centos}" elif check_sys packageManager apt; then download "${shadowsocks_libev_init}" "${shadowsocks_libev_debian}" fi elif [ "${selected}" == "2" ]; then download "${shadowsocks_r_file}.tar.gz" "${shadowsocks_r_url}" if check_sys packageManager yum; then download "${shadowsocks_r_init}" "${shadowsocks_r_centos}" elif check_sys packageManager apt; then download "${shadowsocks_r_init}" "${shadowsocks_r_debian}" fi fi } get_char() { SAVEDSTTY=$(stty -g) stty -echo stty cbreak dd if=/dev/tty bs=1 count=1 2>/dev/null stty -raw stty echo stty $SAVEDSTTY } error_detect_depends() { local command=$1 local depend=$(echo "${command}" | awk '{print $4}') echo -e "[${green}Info${plain}] Starting to install package ${depend}" ${command} >/dev/null 2>&1 if [ $? -ne 0 ]; then echo -e "[${red}Error${plain}] Failed to install ${red}${depend}${plain}" exit 1 fi } config_firewall() { if centosversion 6; then /etc/init.d/iptables status >/dev/null 2>&1 if [ $? -eq 0 ]; then iptables -L -n | grep -i ${shadowsocksport} >/dev/null 2>&1 if [ $? -ne 0 ]; then iptables -I INPUT -m state --state NEW -m tcp -p tcp --dport ${shadowsocksport} -j ACCEPT iptables -I INPUT -m state --state NEW -m udp -p udp --dport ${shadowsocksport} -j ACCEPT /etc/init.d/iptables save /etc/init.d/iptables restart else echo -e "[${green}Info${plain}] port ${green}${shadowsocksport}${plain} already be enabled." fi else echo -e "[${yellow}Warning${plain}] iptables looks like not running or not installed, please enable port ${shadowsocksport} manually if necessary." fi elif centosversion 7; then systemctl status firewalld >/dev/null 2>&1 if [ $? -eq 0 ]; then default_zone=$(firewall-cmd --get-default-zone) firewall-cmd --permanent --zone=${default_zone} --add-port=${shadowsocksport}/tcp firewall-cmd --permanent --zone=${default_zone} --add-port=${shadowsocksport}/udp firewall-cmd --permanent --zone=${default_zone} --add-service=http firewall-cmd --permanent --zone=${default_zone} --add-port=443/tcp firewall-cmd --permanent --zone=${default_zone} --add-port=443/udp firewall-cmd --reload else echo -e "[${yellow}Warning${plain}] firewalld looks like not running or not installed, please enable port ${shadowsocksport} manually if necessary." fi fi } config_shadowsocks() { if check_kernel_version && check_kernel_headers; then fast_open="true" else fast_open="false" fi if [ "${selected}" == "1" ]; then local server_value="\"0.0.0.0\"" if get_ipv6; then server_value="[\"[::0]\",\"0.0.0.0\"]" fi if [ ! -d "$(dirname ${shadowsocks_libev_config})" ]; then mkdir -p $(dirname ${shadowsocks_libev_config}) fi if [ "${v2ray_plugin}" == "y" ] || [ "${v2ray_plugin}" == "Y" ]; then cat >/etc/shadowsocks-libev/config.json <${shadowsocks_libev_config} <<-EOF { "server":${server_value}, "server_port":${shadowsocksport}, "password":"${shadowsockspwd}", "timeout":300, "user":"nobody", "method":"${shadowsockscipher}", "fast_open":${fast_open}, "nameserver":"8.8.8.8" } EOF fi elif [ "${selected}" == "2" ]; then if [ ! -d "$(dirname ${shadowsocks_r_config})" ]; then mkdir -p $(dirname ${shadowsocks_r_config}) fi cat >${shadowsocks_r_config} <<-EOF { "server":"0.0.0.0", "server_ipv6":"::", "server_port":${shadowsocksport}, "local_address":"127.0.0.1", "local_port":1080, "password":"${shadowsockspwd}", "timeout":120, "method":"${shadowsockscipher}", "protocol":"${shadowsockprotocol}", "protocol_param":"", "obfs":"${shadowsockobfs}", "obfs_param":"", "redirect":"", "dns_ipv6":false, "fast_open":${fast_open}, "workers":1 } EOF fi } install_dependencies() { if check_sys packageManager yum; then echo -e "[${green}Info${plain}] Checking the EPEL repository..." if [ ! -f /etc/yum.repos.d/epel.repo ]; then yum install -y epel-release >/dev/null 2>&1 fi [ ! -f /etc/yum.repos.d/epel.repo ] && echo -e "[${red}Error${plain}] Install EPEL repository failed, please check it." && exit 1 [ ! "$(command -v yum-config-manager)" ] && yum install -y yum-utils >/dev/null 2>&1 [ x"$(yum-config-manager epel | grep -w enabled | awk '{print $3}')" != x"True" ] && yum-config-manager --enable epel >/dev/null 2>&1 echo -e "[${green}Info${plain}] Checking the EPEL repository complete..." yum_depends=( unzip gzip openssl openssl-devel gcc python python-devel python-setuptools pcre pcre-devel libtool libevent autoconf automake make curl curl-devel zlib-devel perl perl-devel cpio expat-devel gettext-devel libev-devel c-ares-devel git qrencode wget asciidoc xmlto rng-tools ) for depend in ${yum_depends[@]}; do error_detect_depends "yum -y install ${depend}" done elif check_sys packageManager apt; then apt_depends=( gettext build-essential unzip gzip python python-dev python-setuptools curl openssl libssl-dev autoconf automake libtool gcc make perl cpio libpcre3 libpcre3-dev zlib1g-dev libev-dev libc-ares-dev git qrencode wget asciidoc xmlto rng-tools ) apt-get -y update for depend in ${apt_depends[@]}; do error_detect_depends "apt-get -y install ${depend}" done fi } install_check() { if check_sys packageManager yum || check_sys packageManager apt; then if centosversion 5; then return 1 fi return 0 else return 1 fi } install_select() { if ! install_check; then echo -e "[${red}Error${plain}] Your OS is not supported to run it!" echo "Please change to CentOS 6+/Debian 7+/Ubuntu 12+ and try again." exit 1 fi clear get_libev_ver while true; do echo "Which Shadowsocks server you'd select:" for ((i = 1; i <= ${#software[@]}; i++)); do hint="${software[$i - 1]}" echo -e "${green}${i}${plain}) ${hint}" done read -p "Please enter a number (Default ${software[0]}):" selected [ -z "${selected}" ] && selected="1" case "${selected}" in 1 | 2) echo echo "You choose = ${software[${selected} - 1]}" if [ "${selected}" == "1" ]; then echo -e "[${green}Info${plain}] Current official Shadowsocks-libev Version:${libev_ver}" fi echo break ;; *) echo -e "[${red}Error${plain}] Please only enter a number [1-2]" ;; esac done } install_prepare_password() { echo "Please enter password for ${software[${selected} - 1]}" read -p "(Default password: shadowsocks):" shadowsockspwd [ -z "${shadowsockspwd}" ] && shadowsockspwd="shadowsocks" echo echo "password = ${shadowsockspwd}" echo } install_prepare_port() { while true; do dport=$(shuf -i 9000-19999 -n 1) echo -e "Please enter a port for ${software[${selected} - 1]} [1-65535]" read -p "(Default port: ${dport}):" shadowsocksport [ -z "${shadowsocksport}" ] && shadowsocksport=${dport} expr ${shadowsocksport} + 1 &>/dev/null if [ $? -eq 0 ]; then if [ ${shadowsocksport} -ge 1 ] && [ ${shadowsocksport} -le 65535 ] && [ ${shadowsocksport:0:1} != 0 ]; then echo echo "port = ${shadowsocksport}" echo break fi fi echo -e "[${red}Error${plain}] Please enter a correct number [1-65535]" done } install_prepare_cipher() { while true; do echo -e "Please select stream cipher for ${software[${selected} - 1]}:" if [ "${selected}" == "1" ]; then for ((i = 1; i <= ${#common_ciphers[@]}; i++)); do hint="${common_ciphers[$i - 1]}" echo -e "${green}${i}${plain}) ${hint}" done read -p "Which cipher you'd select(Default: ${common_ciphers[0]}):" pick [ -z "$pick" ] && pick=1 expr ${pick} + 1 &>/dev/null if [ $? -ne 0 ]; then echo -e "[${red}Error${plain}] Please enter a number" continue fi if [[ "$pick" -lt 1 || "$pick" -gt ${#common_ciphers[@]} ]]; then echo -e "[${red}Error${plain}] Please enter a number between 1 and ${#common_ciphers[@]}" continue fi shadowsockscipher=${common_ciphers[$pick - 1]} elif [ "${selected}" == "2" ]; then for ((i = 1; i <= ${#r_ciphers[@]}; i++)); do hint="${r_ciphers[$i - 1]}" echo -e "${green}${i}${plain}) ${hint}" done read -p "Which cipher you'd select(Default: ${r_ciphers[1]}):" pick [ -z "$pick" ] && pick=2 expr ${pick} + 1 &>/dev/null if [ $? -ne 0 ]; then echo -e "[${red}Error${plain}] Please enter a number" continue fi if [[ "$pick" -lt 1 || "$pick" -gt ${#r_ciphers[@]} ]]; then echo -e "[${red}Error${plain}] Please enter a number between 1 and ${#r_ciphers[@]}" continue fi shadowsockscipher=${r_ciphers[$pick - 1]} fi echo echo "cipher = ${shadowsockscipher}" echo break done } install_prepare_protocol() { while true; do echo -e "Please select protocol for ${software[${selected} - 1]}:" for ((i = 1; i <= ${#protocols[@]}; i++)); do hint="${protocols[$i - 1]}" echo -e "${green}${i}${plain}) ${hint}" done read -p "Which protocol you'd select(Default: ${protocols[0]}):" protocol [ -z "$protocol" ] && protocol=1 expr ${protocol} + 1 &>/dev/null if [ $? -ne 0 ]; then echo -e "[${red}Error${plain}] Please enter a number" continue fi if [[ "$protocol" -lt 1 || "$protocol" -gt ${#protocols[@]} ]]; then echo -e "[${red}Error${plain}] Please enter a number between 1 and ${#protocols[@]}" continue fi shadowsockprotocol=${protocols[$protocol - 1]} echo echo "protocol = ${shadowsockprotocol}" echo break done } install_prepare_obfs() { while true; do echo -e "Please select obfs for ${software[${selected} - 1]}:" for ((i = 1; i <= ${#obfs[@]}; i++)); do hint="${obfs[$i - 1]}" echo -e "${green}${i}${plain}) ${hint}" done read -p "Which obfs you'd select(Default: ${obfs[0]}):" r_obfs [ -z "$r_obfs" ] && r_obfs=1 expr ${r_obfs} + 1 &>/dev/null if [ $? -ne 0 ]; then echo -e "[${red}Error${plain}] Please enter a number" continue fi if [[ "$r_obfs" -lt 1 || "$r_obfs" -gt ${#obfs[@]} ]]; then echo -e "[${red}Error${plain}] Please enter a number between 1 and ${#obfs[@]}" continue fi shadowsockobfs=${obfs[$r_obfs - 1]} echo echo "obfs = ${shadowsockobfs}" echo break done } install_prepare_domain() { while true; do echo -e "[${yellow}Warning${plain}] To use v2ray-plugin, make sure you have at least ONE domain ,or you can buy one at https://www.godaddy.com " echo echo -e "Do you want install v2ray-plugin for ${software[${selected} - 1]}? [y/n]" read -p "(default: n):" v2ray_plugin [ -z "$v2ray_plugin" ] && v2ray_plugin=n case "${v2ray_plugin}" in y | Y | n | N) echo echo "You choose = ${v2ray_plugin}" echo break ;; *) echo -e "[${red}Error${plain}] Please only enter [y/n]" ;; esac done if [ "${v2ray_plugin}" == "y" ] || [ "${v2ray_plugin}" == "Y" ]; then read -p "Please enter your own domain: " domain str=$(echo $domain | gawk '/^([a-zA-Z0-9_\-\.]+)\.([a-zA-Z]{2,5})$/{print $0}') while [ ! -n "${str}" ]; do echo -e "[${red}Error${plain}] Invalid domain, Please try again! " read -p "Please enter your own domain: " domain str=$(echo $domain | gawk '/^([a-zA-Z0-9_\-\.]+)\.([a-zA-Z]{2,5})$/{print $0}') done echo -e "Your domain = ${domain}" get_cert fi } get_cert() { if [ -f /etc/letsencrypt/live/$domain/fullchain.pem ]; then echo -e "[${green}Info${plain}] Cert already got, skip..." else yum install -y certbot certbot certonly --cert-name $domain -d $domain --standalone --agree-tos --register-unsafely-without-email systemctl enable certbot-renew.timer systemctl start certbot-renew.timer if [ ! -f /etc/letsencrypt/live/$domain/fullchain.pem ]; then echo -e "[${red}Error${plain}] Failed to get a cert! " exit 1 fi fi } install_prepare() { if [ "${selected}" == "1" ]; then install_prepare_password install_prepare_port install_prepare_cipher install_prepare_domain elif [ "${selected}" == "2" ]; then install_prepare_password install_prepare_port install_prepare_cipher install_prepare_protocol install_prepare_obfs fi echo echo "Press any key to start...or Press Ctrl+C to cancel" char=$(get_char) } install_libsodium() { if [ ! -f /usr/lib/libsodium.a ]; then cd ${cur_dir} download "${libsodium_file}.tar.gz" "${libsodium_url}" tar zxf ${libsodium_file}.tar.gz cd ${libsodium_file} ./configure --prefix=/usr && make && make install if [ $? -ne 0 ]; then echo -e "[${red}Error${plain}] ${libsodium_file} install failed." install_cleanup exit 1 fi else echo -e "[${green}Info${plain}] ${libsodium_file} already installed." fi } install_mbedtls() { if [ ! -f /usr/lib/libmbedtls.a ]; then cd ${cur_dir} download "${mbedtls_file}-gpl.tgz" "${mbedtls_url}" tar xf ${mbedtls_file}-gpl.tgz cd ${mbedtls_file} make SHARED=1 CFLAGS=-fPIC make DESTDIR=/usr install if [ $? -ne 0 ]; then echo -e "[${red}Error${plain}] ${mbedtls_file} install failed." install_cleanup exit 1 fi else echo -e "[${green}Info${plain}] ${mbedtls_file} already installed." fi } install_shadowsocks_libev() { cd ${cur_dir} tar zxf ${shadowsocks_libev_file}.tar.gz cd ${shadowsocks_libev_file} ./configure --disable-documentation && make && make install if [ $? -eq 0 ]; then chmod +x ${shadowsocks_libev_init} local service_name=$(basename ${shadowsocks_libev_init}) if check_sys packageManager yum; then chkconfig --add ${service_name} chkconfig ${service_name} on elif check_sys packageManager apt; then update-rc.d -f ${service_name} defaults fi else echo echo -e "[${red}Error${plain}] ${software[0]} install failed." install_cleanup exit 1 fi } install_shadowsocks_libev_v2ray_plugin() { if [ "${v2ray_plugin}" == "y" ] || [ "${v2ray_plugin}" == "Y" ]; then if [ -f /usr/local/bin/v2ray-plugin ]; then echo -e "[${green}Info${plain}] V2ray-plugin already installed, skip..." else if [ ! -f $v2ray_file ]; then v2ray_url=$(wget -qO- https://api.github.com/repos/shadowsocks/v2ray-plugin/releases/latest | grep linux-amd64 | grep browser_download_url | cut -f4 -d\") wget --no-check-certificate $v2ray_url fi tar xf $v2ray_file mv v2ray-plugin_linux_amd64 /usr/local/bin/v2ray-plugin if [ ! -f /usr/local/bin/v2ray-plugin ]; then echo -e "[${red}Error${plain}] Failed to install v2ray-plugin! " exit 1 fi fi fi } install_shadowsocks_r() { cd ${cur_dir} tar zxf ${shadowsocks_r_file}.tar.gz mv ${shadowsocks_r_file}/shadowsocks /usr/local/ if [ -f /usr/local/shadowsocks/server.py ]; then chmod +x ${shadowsocks_r_init} local service_name=$(basename ${shadowsocks_r_init}) if check_sys packageManager yum; then chkconfig --add ${service_name} chkconfig ${service_name} on elif check_sys packageManager apt; then update-rc.d -f ${service_name} defaults fi else echo echo -e "[${red}Error${plain}] ${software[1]} install failed." install_cleanup exit 1 fi } install_completed_libev() { clear ldconfig ${shadowsocks_libev_init} start echo echo -e "Congratulations, ${green}${software[0]}${plain} server install completed!" if [ "$(command -v v2ray-plugin)" ]; then echo -e "Your Server IP : ${red} ${domain} ${plain}" else echo -e "Your Server IP : ${red} $(get_ip) ${plain}" fi echo -e "Your Server Port : ${red} ${shadowsocksport} ${plain}" echo -e "Your Password : ${red} ${shadowsockspwd} ${plain}" if [ "$(command -v v2ray-plugin)" ]; then echo "Your Plugin : v2ray-plugin" echo "Your Plugin options : tls;host=${domain}" fi echo -e "Your Encryption Method: ${red} ${shadowsockscipher} ${plain}" } install_completed_r() { clear ${shadowsocks_r_init} start echo echo -e "Congratulations, ${green}${software[1]}${plain} server install completed!" echo -e "Your Server IP : ${red} $(get_ip) ${plain}" echo -e "Your Server Port : ${red} ${shadowsocksport} ${plain}" echo -e "Your Password : ${red} ${shadowsockspwd} ${plain}" echo -e "Your Protocol : ${red} ${shadowsockprotocol} ${plain}" echo -e "Your obfs : ${red} ${shadowsockobfs} ${plain}" echo -e "Your Encryption Method: ${red} ${shadowsockscipher} ${plain}" } qr_generate_libev() { if [ "$(command -v qrencode)" ]; then local tmp=$(echo -n "${shadowsockscipher}:${shadowsockspwd}@$(get_ip):${shadowsocksport}" | base64 -w0) local qr_code="ss://${tmp}" echo echo "Your QR Code: (For Shadowsocks Windows, OSX, Android and iOS clients)" echo -e "${green} ${qr_code} ${plain}" echo -n "${qr_code}" | qrencode -s8 -o ${cur_dir}/shadowsocks_libev_qr.png echo "Your QR Code has been saved as a PNG file path:" echo -e "${green} ${cur_dir}/shadowsocks_libev_qr.png ${plain}" fi } qr_generate_r() { if [ "$(command -v qrencode)" ]; then local tmp1=$(echo -n "${shadowsockspwd}" | base64 -w0 | sed 's/=//g;s/\//_/g;s/+/-/g') local tmp2=$(echo -n "$(get_ip):${shadowsocksport}:${shadowsockprotocol}:${shadowsockscipher}:${shadowsockobfs}:${tmp1}/?obfsparam=" | base64 -w0) local qr_code="ssr://${tmp2}" echo echo "Your QR Code: (For ShadowsocksR Windows, Android clients only)" echo -e "${green} ${qr_code} ${plain}" echo -n "${qr_code}" | qrencode -s8 -o ${cur_dir}/shadowsocks_r_qr.png echo "Your QR Code has been saved as a PNG file path:" echo -e "${green} ${cur_dir}/shadowsocks_r_qr.png ${plain}" fi } install_main() { install_libsodium if ! ldconfig -p | grep -wq "/usr/lib"; then echo "/usr/lib" >/etc/ld.so.conf.d/lib.conf fi ldconfig if [ "${selected}" == "1" ]; then install_mbedtls install_shadowsocks_libev install_shadowsocks_libev_v2ray_plugin install_completed_libev qr_generate_libev elif [ "${selected}" == "2" ]; then install_shadowsocks_r install_completed_r qr_generate_r fi echo echo "Enjoy it!" echo } install_cleanup() { cd ${cur_dir} rm -rf ${libsodium_file} ${libsodium_file}.tar.gz rm -rf ${mbedtls_file} ${mbedtls_file}-gpl.tgz rm -rf ${shadowsocks_libev_file} ${shadowsocks_libev_file}.tar.gz rm -rf ${shadowsocks_r_file} ${shadowsocks_r_file}.tar.gz rm -rf $v2ray_file } install_shadowsocks() { disable_selinux install_select install_dependencies install_prepare download_files config_shadowsocks if check_sys packageManager yum; then config_firewall fi install_main install_cleanup } uninstall_shadowsocks_libev() { printf "Are you sure uninstall ${red}${software[0]}${plain}? [y/n]\n" read -p "(default: n):" answer [ -z ${answer} ] && answer="n" if [ "${answer}" == "y" ] || [ "${answer}" == "Y" ]; then ${shadowsocks_libev_init} status >/dev/null 2>&1 if [ $? -eq 0 ]; then ${shadowsocks_libev_init} stop fi local service_name=$(basename ${shadowsocks_libev_init}) if check_sys packageManager yum; then chkconfig --del ${service_name} elif check_sys packageManager apt; then update-rc.d -f ${service_name} remove fi if [ "${answer_upgrade}" != "y" ] || [ "${answer_upgrade}" != "Y" ]; then rm -fr $(dirname ${shadowsocks_libev_config}) rm -f /usr/local/bin/v2ray-plugin fi rm -f /usr/local/bin/ss-local rm -f /usr/local/bin/ss-tunnel rm -f /usr/local/bin/ss-server rm -f /usr/local/bin/ss-manager rm -f /usr/local/bin/ss-redir rm -f /usr/local/bin/ss-nat rm -f /usr/local/lib/libshadowsocks-libev.a rm -f /usr/local/lib/libshadowsocks-libev.la rm -f /usr/local/include/shadowsocks.h rm -f /usr/local/lib/pkgconfig/shadowsocks-libev.pc rm -f /usr/local/share/man/man1/ss-local.1 rm -f /usr/local/share/man/man1/ss-tunnel.1 rm -f /usr/local/share/man/man1/ss-server.1 rm -f /usr/local/share/man/man1/ss-manager.1 rm -f /usr/local/share/man/man1/ss-redir.1 rm -f /usr/local/share/man/man1/ss-nat.1 rm -f /usr/local/share/man/man8/shadowsocks-libev.8 rm -fr /usr/local/share/doc/shadowsocks-libev rm -f ${shadowsocks_libev_init} echo -e "[${green}Info${plain}] ${software[0]} uninstall success" else echo echo -e "[${green}Info${plain}] ${software[0]} uninstall cancelled, nothing to do..." echo fi } uninstall_shadowsocks_r() { printf "Are you sure uninstall ${red}${software[1]}${plain}? [y/n]\n" read -p "(default: n):" answer [ -z ${answer} ] && answer="n" if [ "${answer}" == "y" ] || [ "${answer}" == "Y" ]; then ${shadowsocks_r_init} status >/dev/null 2>&1 if [ $? -eq 0 ]; then ${shadowsocks_r_init} stop fi local service_name=$(basename ${shadowsocks_r_init}) if check_sys packageManager yum; then chkconfig --del ${service_name} elif check_sys packageManager apt; then update-rc.d -f ${service_name} remove fi rm -fr $(dirname ${shadowsocks_r_config}) rm -f ${shadowsocks_r_init} rm -f /var/log/shadowsocks.log rm -fr /usr/local/shadowsocks echo -e "[${green}Info${plain}] ${software[1]} uninstall success" else echo echo -e "[${green}Info${plain}] ${software[1]} uninstall cancelled, nothing to do..." echo fi } uninstall_shadowsocks() { while true; do echo "Which Shadowsocks server you want to uninstall?" for ((i = 1; i <= ${#software[@]}; i++)); do hint="${software[$i - 1]}" echo -e "${green}${i}${plain}) ${hint}" done read -p "Please enter a number [1-2]:" un_select case "${un_select}" in 1 | 2) echo echo "You choose = ${software[${un_select} - 1]}" echo break ;; *) echo -e "[${red}Error${plain}] Please only enter a number [1-2]" ;; esac done if [ "${un_select}" == "1" ]; then if [ -f ${shadowsocks_libev_init} ]; then uninstall_shadowsocks_libev else echo -e "[${red}Error${plain}] ${software[${un_select} - 1]} not installed, please check it and try again." echo exit 1 fi elif [ "${un_select}" == "2" ]; then if [ -f ${shadowsocks_r_init} ]; then uninstall_shadowsocks_r else echo -e "[${red}Error${plain}] ${software[${un_select} - 1]} not installed, please check it and try again." echo exit 1 fi fi } upgrade_shadowsocks() { echo printf "Are you sure upgrade ${green}${software[0]}${plain} ? [y/n]" read -p " (default: n) : " answer_upgrade [ -z ${answer_upgrade} ] && answer_upgrade="n" if [ "${answer_upgrade}" == "Y" ] || [ "${answer_upgrade}" == "y" ]; then if [ -f ${shadowsocks_r_init} ]; then echo echo -e "[${red}Error${plain}] Only support for shadowsocks_libev !" echo exit 1 elif [ -f ${shadowsocks_libev_init} ]; then if [ ! "$(command -v ss-local)" ]; then echo echo -e "[${red}Error${plain}] You don't install shadowsocks-libev..." echo exit 1 else current_local_version=$(ss-local --help | grep shadowsocks | cut -d' ' -f2) fi get_libev_ver current_libev_ver=$(echo ${libev_ver} | sed -e 's/^[a-zA-Z]//g') echo echo -e "[${green}Info${plain}] Current official Shadowsocks-libev Version: v${current_local_version}" if [[ "${current_libev_ver}" == "${current_local_version}" ]]; then echo echo -e "[${green}Info${plain}] Already updated to latest version !" echo exit 1 fi uninstall_shadowsocks_libev if [ "${answer}" == "Y" ] || [ "${answer}" == "y" ]; then disable_selinux selected=1 echo echo "You will upgrade ${software[${seleted} - 1]}" echo shadowsockspwd=$(cat /etc/shadowsocks-libev/config.json | grep password | cut -d\" -f4) shadowsocksport=$(cat /etc/shadowsocks-libev/config.json | grep server_port | cut -d ',' -f1 | cut -d ':' -f2) shadowsockscipher=$(cat /etc/shadowsocks-libev/config.json | grep method | cut -d\" -f4) if [ -f /usr/local/bin/v2ray-plugin ]; then install_dependencies download_files install_shadowsocks_libev else install_prepare_domain install_dependencies download_files install_shadowsocks_libev install_shadowsocks_libev_v2ray_plugin fi install_completed_libev qr_generate_libev install_cleanup else exit 1 fi else echo echo -e "[${red}Error${plain}] Don't exist shadowsocks server !" echo exit 1 fi else echo echo -e "[${green}Info${plain}] ${software[0]} upgrade cancelled, nothing to do..." echo fi } # Initialization step action=$1 [ -z $1 ] && action=install case "${action}" in install | uninstall | upgrade) ${action}_shadowsocks ;; *) echo "Arguments error! [${action}]" echo "Usage: $(basename $0) [install|uninstall|upgrade]" ;; esac