#!/usr/bin/env bash # 生成 Reality 密钥与面板登录密码,写入 .env set -euo pipefail SCRIPT_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)" ROOT_DIR="$(dirname "$SCRIPT_DIR")" ENV_FILE="${ROOT_DIR}/.env" if ! command -v sing-box &>/dev/null; then echo "sing-box 未安装,使用临时下载..." >&2 TMP="$(mktemp -d)" ARCH="$(uname -m)" case "$ARCH" in x86_64) SB_ARCH="amd64" ;; aarch64) SB_ARCH="arm64" ;; *) echo "不支持的架构: $ARCH" >&2; exit 1 ;; esac curl -fsSL "https://github.com/SagerNet/sing-box/releases/download/v1.11.0/sing-box-1.11.0-linux-${SB_ARCH}.tar.gz" \ | tar -xz -C "$TMP" --strip-components=1 SB="$TMP/sing-box" else SB="sing-box" fi KEYPAIR="$("$SB" generate reality-keypair)" PRIVATE_KEY="$(echo "$KEYPAIR" | grep 'PrivateKey:' | awk '{print $2}')" PUBLIC_KEY="$(echo "$KEYPAIR" | grep 'PublicKey:' | awk '{print $2}')" SHORT_ID="$("$SB" generate rand --hex 8)" PANEL_PASSWORD="$("$SB" generate rand --base64 32 | tr -d '/+=' | head -c 20)" echo "========== 生成的密钥 ==========" echo "REALITY_PRIVATE_KEY: $PRIVATE_KEY" echo "REALITY_PUBLIC_KEY: $PUBLIC_KEY" echo "REALITY_SHORT_ID: $SHORT_ID" echo "PANEL_PASSWORD: $PANEL_PASSWORD" echo "================================" if [[ -f "$ENV_FILE" ]]; then for var in REALITY_PRIVATE_KEY REALITY_PUBLIC_KEY REALITY_SHORT_ID PANEL_PASSWORD; do val="${!var}" if grep -q "^${var}=" "$ENV_FILE" 2>/dev/null; then sed -i "s|^${var}=.*|${var}=${val}|" "$ENV_FILE" else echo "${var}=${val}" >> "$ENV_FILE" fi done if ! grep -q "^PANEL_USERNAME=" "$ENV_FILE" 2>/dev/null; then echo "PANEL_USERNAME=admin" >> "$ENV_FILE" fi echo "已写入 $ENV_FILE" else echo "提示: 先复制 .env.example 为 .env 并填写 VPS_IP、DOMAIN 等,再重新运行本脚本" >&2 fi