mirror of
https://github.com/hotyue/IP-Sentinel.git
synced 2026-06-19 08:09:34 +08:00
56 lines
2.1 KiB
Bash
Executable File
56 lines
2.1 KiB
Bash
Executable File
#!/bin/bash
|
||
|
||
# ==========================================================
|
||
# 脚本名称: install.sh (v4.3.0 模块化终极引导入口)
|
||
# 核心功能: 权限鉴定、沙盒创建、Ctrl+C 熔断保护、业务流引导
|
||
# ==========================================================
|
||
|
||
# 1. 严格权限鉴权
|
||
if [ "$EUID" -ne 0 ]; then
|
||
echo -e "\033[31m❌ 权限被拒绝: 部署 IP-Sentinel 需要最高系统权限。\033[0m"
|
||
echo -e "💡 请切换到 root 用户 (执行 su root 或 sudo -i) 后重新运行指令。"
|
||
exit 1
|
||
fi
|
||
|
||
# 2. [沙盒机制] 创建安全挂载点
|
||
SECURE_TMP=$(mktemp -d /tmp/ips_install.XXXXXX)
|
||
|
||
# ----------------------------------------------------------
|
||
# [中断防护] 严格捕获 Ctrl+C 人为中断,执行优雅的战场清理
|
||
# ----------------------------------------------------------
|
||
cleanup_and_exit() {
|
||
echo -e "\n\n\033[33m⚠️ 检测到中断信号 (Ctrl+C),安装操作已被手动中止。\033[0m"
|
||
echo -e "🧹 正在清理临时沙盒文件..."
|
||
rm -rf "$SECURE_TMP" 2>/dev/null
|
||
exit 1
|
||
}
|
||
# 绑定系统级中断引信
|
||
trap cleanup_and_exit INT QUIT TERM
|
||
trap 'rm -rf "$SECURE_TMP" 2>/dev/null' EXIT HUP
|
||
|
||
# 测试期指向当前重构开发分支
|
||
REPO_RAW_URL="https://raw.githubusercontent.com/hotyue/IP-Sentinel/main"
|
||
|
||
echo -e "\n⏳ 正在拉取 IP-Sentinel v4.3.0 安装模块引擎..."
|
||
|
||
# 3. 仅拉取总指挥大管家
|
||
curl -fsSL --connect-timeout 10 --retry 3 "${REPO_RAW_URL}/install/build_agent.sh" -o "${SECURE_TMP}/build_agent.sh"
|
||
|
||
if [ ! -s "${SECURE_TMP}/build_agent.sh" ]; then
|
||
echo -e "\033[31m❌ 致命错误:核心安装引擎拉取失败!网络阻断或 GitHub Raw 异常。\033[0m"
|
||
exit 1
|
||
fi
|
||
|
||
export SECURE_TMP
|
||
export REPO_RAW_URL
|
||
|
||
# ==========================================================
|
||
# 【业务交接】转移控制权至大管家
|
||
# 由于已废弃管道流安装法,终端输入天然纯净,无需再重定向 /dev/tty
|
||
# ==========================================================
|
||
chmod +x "${SECURE_TMP}/build_agent.sh"
|
||
bash "${SECURE_TMP}/build_agent.sh"
|
||
|
||
# 透传子进程的退出状态码
|
||
exit $?
|