ospab/ospab.network
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat: Windows Setup Wizard (ostp-setup) with Tauri

Browse Source 
- Tauri 2.0 based graphical installer
- Access Key parsing with AES-256-GCM encryption
- Windows Service installation via sc.exe
- WinTUN driver extraction from embedded resources
- System requirements checking (admin, AES-NI, OS version)
- Modern dark UI with step-by-step wizard flow
- Country/region selection for SNI mimicry
This commit is contained in:
ospab
2026-01-01 21:49:37 +03:00
parent 320e5fee85
commit 7e1c87e70b
21 changed files with 10916 additions and 41 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
.gitignore vendored
View File

@@ -1,4 +1,5 @@
/.cargo /.cargo
/.github /.github
/prompt.md /prompt.md
/target /target
/setup.md

3673
Cargo.lock generated
View File

File diff suppressed because it is too large Load Diff

2
Cargo.toml
View File

@@ -1,6 +1,6 @@
[workspace] [workspace]
resolver = "2" resolver = "2"
members = ["ostp", "oncp", "osn", "osds", "ostp-server", "ostp-client", "ostp-guard", "oncp-master"] members = ["ostp", "oncp", "osn", "osds", "ostp-server", "ostp-client", "ostp-guard", "oncp-master", "ostp-setup"]
[workspace.package] [workspace.package]
version = "0.1.0" version = "0.1.0"

33
ostp-setup/Cargo.toml Normal file
View File

@@ -0,0 +1,33 @@
[package]
name = "ostp-setup"
version = "0.1.0"
edition = "2024"
authors = ["ospab.team"]
description = "OSTP Windows Setup Wizard"
license = "Proprietary"
[lib]
name = "ostp_setup_lib"
crate-type = ["staticlib", "cdylib", "rlib"]
[build-dependencies]
tauri-build = { version = "2", features = [] }
[dependencies]
tauri = { version = "2", features = [] }
tauri-plugin-shell = "2"
serde = { version = "1", features = ["derive"] }
serde_json = "1"
base64 = "0.22"
aes-gcm = "0.10"
rand = "0.8"
sha2 = "0.10"
winreg = "0.52"
tokio = { version = "1", features = ["full"] }
anyhow = "1"
thiserror = "2"
tracing = "0.1"
[features]
default = ["custom-protocol"]
custom-protocol = ["tauri/custom-protocol"]

3
ostp-setup/build.rs Normal file
View File

@@ -0,0 +1,3 @@
fn main() {
tauri_build::build()
}

1
ostp-setup/gen/schemas/acl-manifests.json Normal file
View File

File diff suppressed because one or more lines are too long

1
ostp-setup/gen/schemas/capabilities.json Normal file
View File

@@ -0,0 +1 @@
{}

2564
ostp-setup/gen/schemas/desktop-schema.json Normal file
View File

File diff suppressed because it is too large Load Diff

2564
ostp-setup/gen/schemas/windows-schema.json Normal file
View File

File diff suppressed because it is too large Load Diff

BIN
ostp-setup/icons/icon.ico Normal file
View File

Binary file not shown.
Side by Side

After

Width:  |  Height:  |  Size: 4.1 KiB

BIN
ostp-setup/resources/wintun.dll Normal file
View File

Binary file not shown.

236
ostp-setup/src/access_key.rs Normal file
View File

@@ -0,0 +1,236 @@
//! Access Key parsing and validation
//!
//! Access Key format: ospab://<base64-encoded-data>
//! Decoded data: JSON with server, port, psk, and optional label
use serde::{Deserialize, Serialize};
/// Parsed access key data
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct AccessKeyData {
pub server_ip: String,
pub port: u16,
pub psk: String,
pub label: Option<String>,
}
use aes_gcm::{
aead::{Aead, KeyInit},
Aes256Gcm, Nonce,
};
use base64::{engine::general_purpose::URL_SAFE_NO_PAD, Engine};
use sha2::{Digest, Sha256};
use thiserror::Error;
/// Key derivation salt (must match client)
const KEY_SALT: &[u8] = b"ospab.network.access.key.v1";
/// Static obfuscation key (XOR with device-specific data in production)
const OBFUSCATION_KEY: [u8; 32] = [
0x4f, 0x53, 0x50, 0x41, 0x42, 0x2e, 0x4e, 0x45,
0x54, 0x57, 0x4f, 0x52, 0x4b, 0x2e, 0x32, 0x30,
0x32, 0x36, 0x2e, 0x53, 0x45, 0x43, 0x55, 0x52,
0x45, 0x2e, 0x4b, 0x45, 0x59, 0x2e, 0x56, 0x31,
];
#[derive(Error, Debug)]
pub enum AccessKeyError {
#[error("Invalid access key format")]
InvalidFormat,
#[error("Invalid base64 encoding")]
Base64Error(#[from] base64::DecodeError),
#[error("Decryption failed")]
DecryptionFailed,
#[error("Invalid JSON data")]
JsonError(#[from] serde_json::Error),
#[error("Missing required field: {0}")]
MissingField(String),
}
/// Validate access key format (quick check)
pub fn validate(key: &str) -> bool {
if !key.starts_with("ospab://") {
return false;
}
let encoded = &key[8..]; // Skip "ospab://"
URL_SAFE_NO_PAD.decode(encoded).is_ok()
}
/// Parse and decrypt access key
pub fn parse(key: &str) -> Result<AccessKeyData, AccessKeyError> {
// Check prefix
if !key.starts_with("ospab://") {
return Err(AccessKeyError::InvalidFormat);
}
let encoded = &key[8..]; // Skip "ospab://"
let encrypted = URL_SAFE_NO_PAD.decode(encoded)?;
// Decrypt the data
let decrypted = decrypt_access_key(&encrypted)?;
// Parse JSON
let json: serde_json::Value = serde_json::from_slice(&decrypted)?;
// Extract fields
let server_ip = json["server"]
.as_str()
.ok_or_else(|| AccessKeyError::MissingField("server".into()))?
.to_string();
let port = json["port"]
.as_u64()
.ok_or_else(|| AccessKeyError::MissingField("port".into()))? as u16;
let psk = json["psk"]
.as_str()
.ok_or_else(|| AccessKeyError::MissingField("psk".into()))?
.to_string();
let label = json["label"].as_str().map(String::from);
Ok(AccessKeyData {
server_ip,
port,
psk,
label,
})
}
/// Decrypt access key data using AES-256-GCM
fn decrypt_access_key(encrypted: &[u8]) -> Result<Vec<u8>, AccessKeyError> {
if encrypted.len() < 12 + 16 {
// Nonce (12) + Tag (16) minimum
return Err(AccessKeyError::InvalidFormat);
}
// Derive key from obfuscation key
let key = derive_key(&OBFUSCATION_KEY);
// Split nonce and ciphertext
let (nonce_bytes, ciphertext) = encrypted.split_at(12);
let nonce = Nonce::from_slice(nonce_bytes);
// Decrypt
let cipher = Aes256Gcm::new_from_slice(&key)
.map_err(|_| AccessKeyError::DecryptionFailed)?;
cipher
.decrypt(nonce, ciphertext)
.map_err(|_| AccessKeyError::DecryptionFailed)
}
/// Derive AES key from obfuscation key
fn derive_key(input: &[u8]) -> [u8; 32] {
let mut hasher = Sha256::new();
hasher.update(input);
hasher.update(KEY_SALT);
hasher.finalize().into()
}
/// Create an access key (for server-side use)
#[allow(dead_code)]
pub fn create_access_key(
server: &str,
port: u16,
psk: &str,
label: Option<&str>,
) -> Result<String, AccessKeyError> {
use aes_gcm::aead::OsRng;
use rand::RngCore;
// Create JSON payload
let mut json = serde_json::json!({
"server": server,
"port": port,
"psk": psk
});
if let Some(l) = label {
json["label"] = serde_json::Value::String(l.to_string());
}
let plaintext = serde_json::to_vec(&json)?;
// Encrypt
let key = derive_key(&OBFUSCATION_KEY);
let cipher = Aes256Gcm::new_from_slice(&key)
.map_err(|_| AccessKeyError::DecryptionFailed)?;
// Generate random nonce
let mut nonce_bytes = [0u8; 12];
OsRng.fill_bytes(&mut nonce_bytes);
let nonce = Nonce::from_slice(&nonce_bytes);
let ciphertext = cipher
.encrypt(nonce, plaintext.as_slice())
.map_err(|_| AccessKeyError::DecryptionFailed)?;
// Combine nonce + ciphertext
let mut result = Vec::with_capacity(12 + ciphertext.len());
result.extend_from_slice(&nonce_bytes);
result.extend(ciphertext);
// Encode and format
let encoded = URL_SAFE_NO_PAD.encode(&result);
Ok(format!("ospab://{}", encoded))
}
/// Secure memory wipe for sensitive data
#[allow(dead_code)]
pub struct SecureString {
inner: String,
}
#[allow(dead_code)]
impl SecureString {
pub fn new(s: String) -> Self {
Self { inner: s }
}
pub fn as_str(&self) -> &str {
&self.inner
}
}
impl Drop for SecureString {
fn drop(&mut self) {
// Overwrite memory before deallocation
unsafe {
let bytes = self.inner.as_bytes_mut();
for byte in bytes.iter_mut() {
std::ptr::write_volatile(byte, 0);
}
}
}
}
#[cfg(test)]
mod tests {
use super::*;
#[test]
fn test_create_and_parse_access_key() {
let key = create_access_key(
"vpn.example.com",
8443,
"0123456789abcdef0123456789abcdef0123456789abcdef0123456789abcdef",
Some("Test Server"),
)
.unwrap();
assert!(key.starts_with("ospab://"));
assert!(validate(&key));
let parsed = parse(&key).unwrap();
assert_eq!(parsed.server_ip, "vpn.example.com");
assert_eq!(parsed.port, 8443);
assert_eq!(parsed.label, Some("Test Server".to_string()));
}
#[test]
fn test_invalid_key() {
assert!(!validate("invalid://key"));
assert!(!validate("ospab://!!!invalid-base64!!!"));
}
}

8
ostp-setup/src/lib.rs Normal file
View File

@@ -0,0 +1,8 @@
//! OSTP Setup Library
//!
//! This is the library interface for the setup wizard.
pub mod access_key;
pub mod service;
pub mod system_check;
pub mod wintun;

191
ostp-setup/src/main.rs Normal file
View File

@@ -0,0 +1,191 @@
//! OSTP Setup Wizard - Rust Backend
//!
//! Handles Windows Service installation, wintun driver extraction,
//! and Access Key parsing for the OSTP Client.
#![cfg_attr(not(debug_assertions), windows_subsystem = "windows")]
mod access_key;
mod service;
mod wintun;
mod system_check;
use tauri::{command, AppHandle, Emitter, Manager};
use serde::{Deserialize, Serialize};
use std::path::PathBuf;
// Re-export types from modules
pub use access_key::AccessKeyData;
pub use system_check::SystemCheckResult;
/// Installation configuration from the wizard
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct InstallConfig {
pub access_key: String,
pub country: String,
pub install_path: PathBuf,
pub launch_on_startup: bool,
pub connect_now: bool,
}
/// Installation progress update
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct ProgressUpdate {
pub step: u8,
pub total_steps: u8,
pub message: String,
pub percent: u8,
}
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct CountryOption {
pub code: String,
pub name: String,
pub recommended: bool,
}
/// Check system requirements
#[command]
async fn check_system() -> Result<SystemCheckResult, String> {
system_check::run_checks().await.map_err(|e| e.to_string())
}
/// Parse and validate access key
#[command]
async fn parse_access_key(key: String) -> Result<AccessKeyData, String> {
access_key::parse(&key).map_err(|e| e.to_string())
}
/// Validate access key format without full parse
#[command]
fn validate_access_key(key: String) -> bool {
access_key::validate(&key)
}
/// Get list of available countries for SNI
#[command]
fn get_countries() -> Vec<CountryOption> {
vec![
CountryOption { code: "RU".into(), name: "Russia".into(), recommended: true },
CountryOption { code: "DE".into(), name: "Germany".into(), recommended: false },
CountryOption { code: "NL".into(), name: "Netherlands".into(), recommended: false },
CountryOption { code: "US".into(), name: "United States".into(), recommended: false },
CountryOption { code: "SG".into(), name: "Singapore".into(), recommended: false },
CountryOption { code: "JP".into(), name: "Japan".into(), recommended: false },
]
}
/// Run the full installation process
#[command]
async fn run_installation(
app: AppHandle,
config: InstallConfig,
) -> Result<(), String> {
let window = app.get_webview_window("main").unwrap();
// Step 1: Extract wintun.dll
emit_progress(&window, 1, 5, "Extracting WinTUN driver...", 10);
wintun::extract_driver(&config.install_path)
.await
.map_err(|e| format!("Failed to extract wintun: {}", e))?;
// Step 2: Parse access key
emit_progress(&window, 2, 5, "Parsing access key...", 25);
let key_data = access_key::parse(&config.access_key)
.map_err(|e| format!("Invalid access key: {}", e))?;
// Step 3: Write configuration file
emit_progress(&window, 3, 5, "Writing configuration...", 45);
write_config(&config.install_path, &key_data, &config.country)
.await
.map_err(|e| format!("Failed to write config: {}", e))?;
// Step 4: Install Windows Service
emit_progress(&window, 4, 5, "Installing Windows Service...", 70);
service::install_service(&config.install_path)
.await
.map_err(|e| format!("Failed to install service: {}", e))?;
// Step 5: Configure startup
emit_progress(&window, 5, 5, "Configuring startup options...", 90);
if config.launch_on_startup {
service::enable_autostart()
.await
.map_err(|e| format!("Failed to enable autostart: {}", e))?;
}
emit_progress(&window, 5, 5, "Installation complete!", 100);
// Optionally connect now
if config.connect_now {
service::start_service()
.await
.map_err(|e| format!("Failed to start service: {}", e))?;
}
Ok(())
}
/// Emit progress update to frontend
fn emit_progress(window: &tauri::WebviewWindow, step: u8, total: u8, msg: &str, percent: u8) {
let _ = window.emit("install-progress", ProgressUpdate {
step,
total_steps: total,
message: msg.to_string(),
percent,
});
}
/// Write OSTP client configuration file
async fn write_config(
install_path: &PathBuf,
key_data: &AccessKeyData,
country: &str,
) -> anyhow::Result<()> {
use std::fs;
let config_path = install_path.join("ostp-client.json");
let config = serde_json::json!({
"server": format!("{}:{}", key_data.server_ip, key_data.port),
"psk": key_data.psk,
"country": country,
"dns": ["1.1.1.1", "8.8.8.8"],
"mtu": 1400
});
fs::create_dir_all(install_path)?;
fs::write(&config_path, serde_json::to_string_pretty(&config)?)?;
Ok(())
}
/// Uninstall the OSTP client
#[command]
async fn uninstall() -> Result<(), String> {
service::stop_service().await.map_err(|e| e.to_string())?;
service::uninstall_service().await.map_err(|e| e.to_string())?;
wintun::remove_driver().await.map_err(|e| e.to_string())?;
Ok(())
}
/// Get default installation path
#[command]
fn get_default_install_path() -> PathBuf {
PathBuf::from(r"C:\Program Files\Ospab Network\OSTP")
}
fn main() {
tauri::Builder::default()
.plugin(tauri_plugin_shell::init())
.invoke_handler(tauri::generate_handler![
check_system,
parse_access_key,
validate_access_key,
get_countries,
run_installation,
uninstall,
get_default_install_path,
])
.run(tauri::generate_context!())
.expect("error while running tauri application");
}

251
ostp-setup/src/service.rs Normal file
View File

@@ -0,0 +1,251 @@
//! Windows Service management for OSTP Client
//!
//! Installs, configures, and manages the OSTP client as a Windows Service.
//! Uses sc.exe for broader compatibility.
use anyhow::{Context, Result};
use std::path::PathBuf;
use std::process::Command;
/// Service name
const SERVICE_NAME: &str = "OstpClient";
/// Service display name
const SERVICE_DISPLAY_NAME: &str = "Ospab Network OSTP Client";
/// Service description
const SERVICE_DESCRIPTION: &str =
"Provides secure, stealth VPN connectivity through the OSTP protocol.";
/// Install OSTP client as a Windows Service using sc.exe
pub async fn install_service(install_path: &PathBuf) -> Result<()> {
#[cfg(windows)]
{
let executable_path = install_path.join("ostp-client.exe");
if !executable_path.exists() {
anyhow::bail!("ostp-client.exe not found at {:?}", executable_path);
}
let config_path = install_path.join("ostp-client.json");
let bin_path = format!(
"\"{}\" --service --config \"{}\"",
executable_path.display(),
config_path.display()
);
// Create service
let output = Command::new("sc.exe")
.args([
"create",
SERVICE_NAME,
&format!("binPath= {}", bin_path),
&format!("DisplayName= {}", SERVICE_DISPLAY_NAME),
"start= auto",
"depend= Tcpip/Dnscache",
])
.output()
.context("Failed to run sc.exe create")?;
if !output.status.success() {
let stderr = String::from_utf8_lossy(&output.stderr);
if !stderr.contains("1073") { // Service already exists
anyhow::bail!("Failed to create service: {}", stderr);
}
}
// Set description
let _ = Command::new("sc.exe")
.args(["description", SERVICE_NAME, SERVICE_DESCRIPTION])
.output();
// Configure recovery options (restart on failure)
let _ = Command::new("sc.exe")
.args([
"failure",
SERVICE_NAME,
"reset= 86400",
"actions= restart/60000/restart/120000/restart/300000",
])
.output();
tracing::info!("Service {} installed successfully", SERVICE_NAME);
}
#[cfg(not(windows))]
{
let _ = install_path;
anyhow::bail!("Windows Service installation is only supported on Windows");
}
Ok(())
}
/// Start the OSTP service
pub async fn start_service() -> Result<()> {
#[cfg(windows)]
{
let output = Command::new("sc.exe")
.args(["start", SERVICE_NAME])
.output()
.context("Failed to run sc.exe start")?;
if !output.status.success() {
let stderr = String::from_utf8_lossy(&output.stderr);
if !stderr.contains("1056") { // Service already running
anyhow::bail!("Failed to start service: {}", stderr);
}
}
tracing::info!("Service {} started", SERVICE_NAME);
}
Ok(())
}
/// Stop the OSTP service
pub async fn stop_service() -> Result<()> {
#[cfg(windows)]
{
let output = Command::new("sc.exe")
.args(["stop", SERVICE_NAME])
.output()
.context("Failed to run sc.exe stop")?;
if !output.status.success() {
let stderr = String::from_utf8_lossy(&output.stderr);
if !stderr.contains("1062") { // Service not running
anyhow::bail!("Failed to stop service: {}", stderr);
}
}
// Wait for service to stop
for _ in 0..30 {
tokio::time::sleep(tokio::time::Duration::from_millis(100)).await;
if !is_running() {
break;
}
}
tracing::info!("Service {} stopped", SERVICE_NAME);
}
Ok(())
}
/// Uninstall the OSTP service
pub async fn uninstall_service() -> Result<()> {
// Stop the service first
stop_service().await.ok();
#[cfg(windows)]
{
let output = Command::new("sc.exe")
.args(["delete", SERVICE_NAME])
.output()
.context("Failed to run sc.exe delete")?;
if !output.status.success() {
let stderr = String::from_utf8_lossy(&output.stderr);
if !stderr.contains("1060") { // Service doesn't exist
anyhow::bail!("Failed to delete service: {}", stderr);
}
}
tracing::info!("Service {} uninstalled", SERVICE_NAME);
}
Ok(())
}
/// Enable service to start at system startup
pub async fn enable_autostart() -> Result<()> {
#[cfg(windows)]
{
Command::new("sc.exe")
.args(["config", SERVICE_NAME, "start= auto"])
.output()
.context("Failed to enable autostart")?;
tracing::info!("Autostart enabled for {}", SERVICE_NAME);
}
Ok(())
}
/// Disable service autostart
#[allow(dead_code)]
pub async fn disable_autostart() -> Result<()> {
#[cfg(windows)]
{
Command::new("sc.exe")
.args(["config", SERVICE_NAME, "start= demand"])
.output()
.context("Failed to disable autostart")?;
tracing::info!("Autostart disabled for {}", SERVICE_NAME);
}
Ok(())
}
/// Check if service is installed
#[allow(dead_code)]
pub fn is_installed() -> bool {
#[cfg(windows)]
{
Command::new("sc.exe")
.args(["query", SERVICE_NAME])
.output()
.map(|o| o.status.success())
.unwrap_or(false)
}
#[cfg(not(windows))]
false
}
/// Check if service is running
pub fn is_running() -> bool {
#[cfg(windows)]
{
Command::new("sc.exe")
.args(["query", SERVICE_NAME])
.output()
.map(|o| {
let stdout = String::from_utf8_lossy(&o.stdout);
stdout.contains("RUNNING")
})
.unwrap_or(false)
}
#[cfg(not(windows))]
false
}
/// Get service status
#[allow(dead_code)]
pub fn get_status() -> Option<String> {
#[cfg(windows)]
{
Command::new("sc.exe")
.args(["query", SERVICE_NAME])
.output()
.ok()
.and_then(|o| {
let stdout = String::from_utf8_lossy(&o.stdout);
if stdout.contains("RUNNING") {
Some("Running".to_string())
} else if stdout.contains("STOPPED") {
Some("Stopped".to_string())
} else if stdout.contains("PENDING") {
Some("Pending".to_string())
} else {
Some("Unknown".to_string())
}
})
}
#[cfg(not(windows))]
None
}

225
ostp-setup/src/system_check.rs Normal file
View File

@@ -0,0 +1,225 @@
//! System requirements checking
//!
//! Verifies that the target system meets all requirements for OSTP Client.
use serde::{Deserialize, Serialize};
/// System check result
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct SystemCheckResult {
pub wintun_installed: bool,
pub aes_ni_supported: bool,
pub admin_privileges: bool,
pub os_version: String,
}
use anyhow::Result;
/// Run all system checks
pub async fn run_checks() -> Result<SystemCheckResult> {
Ok(SystemCheckResult {
wintun_installed: check_wintun_installed(),
aes_ni_supported: check_aes_ni_support(),
admin_privileges: check_admin_privileges(),
os_version: get_os_version(),
})
}
/// Check if wintun.dll is already installed
fn check_wintun_installed() -> bool {
crate::wintun::is_installed()
}
/// Check if CPU supports AES-NI instructions
fn check_aes_ni_support() -> bool {
#[cfg(target_arch = "x86_64")]
{
// Check CPUID for AES-NI support
return is_x86_feature_detected!("aes");
}
#[cfg(target_arch = "aarch64")]
{
// ARM64 typically has crypto extensions
// Check for ARMv8 Crypto extensions
#[cfg(target_feature = "aes")]
return true;
#[cfg(not(target_feature = "aes"))]
return false;
}
// Fallback: assume software AES is acceptable
#[cfg(not(any(target_arch = "x86_64", target_arch = "aarch64")))]
true
}
/// Check if running with administrator privileges
fn check_admin_privileges() -> bool {
#[cfg(windows)]
{
use std::ptr;
// Use Windows API to check elevation
unsafe {
let mut token_handle: *mut std::ffi::c_void = ptr::null_mut();
let current_process = GetCurrentProcess();
if OpenProcessToken(
current_process,
TOKEN_QUERY,
&mut token_handle,
) == 0 {
return false;
}
let mut elevation = TOKEN_ELEVATION { TokenIsElevated: 0 };
let mut size: u32 = std::mem::size_of::<TOKEN_ELEVATION>() as u32;
let result = GetTokenInformation(
token_handle,
TokenElevation,
&mut elevation as *mut _ as *mut _,
size,
&mut size,
);
CloseHandle(token_handle);
result != 0 && elevation.TokenIsElevated != 0
}
}
#[cfg(not(windows))]
{
// On non-Windows, check if running as root
unsafe { libc::geteuid() == 0 }
}
}
/// Get Windows version string
fn get_os_version() -> String {
#[cfg(windows)]
{
use winreg::{enums::*, RegKey};
if let Ok(hklm) = RegKey::predef(HKEY_LOCAL_MACHINE)
.open_subkey(r"SOFTWARE\Microsoft\Windows NT\CurrentVersion")
{
let product_name: String = hklm.get_value("ProductName").unwrap_or_default();
let build: String = hklm.get_value("CurrentBuild").unwrap_or_default();
if !product_name.is_empty() {
return format!("{} (Build {})", product_name, build);
}
}
"Windows (Unknown Version)".to_string()
}
#[cfg(not(windows))]
{
"Non-Windows OS".to_string()
}
}
/// Check minimum Windows version (Windows 10 1607+)
#[allow(dead_code)]
pub fn check_minimum_version() -> bool {
#[cfg(windows)]
{
use winreg::{enums::*, RegKey};
if let Ok(hklm) = RegKey::predef(HKEY_LOCAL_MACHINE)
.open_subkey(r"SOFTWARE\Microsoft\Windows NT\CurrentVersion")
{
let build: String = hklm.get_value("CurrentBuild").unwrap_or_default();
if let Ok(build_num) = build.parse::<u32>() {
// Windows 10 1607 is build 14393
return build_num >= 14393;
}
}
false
}
#[cfg(not(windows))]
true
}
/// Check available disk space (need at least 50MB)
#[allow(dead_code)]
pub fn check_disk_space(path: &std::path::Path) -> bool {
#[cfg(windows)]
{
use std::os::windows::ffi::OsStrExt;
use std::ffi::OsStr;
let path_wide: Vec<u16> = OsStr::new(path)
.encode_wide()
.chain(std::iter::once(0))
.collect();
let mut free_bytes: u64 = 0;
let mut total_bytes: u64 = 0;
let mut total_free_bytes: u64 = 0;
unsafe {
if GetDiskFreeSpaceExW(
path_wide.as_ptr(),
&mut free_bytes,
&mut total_bytes,
&mut total_free_bytes,
) != 0 {
// Need at least 50MB
return free_bytes >= 50 * 1024 * 1024;
}
}
true // Assume OK if check fails
}
#[cfg(not(windows))]
{
let _ = path;
true
}
}
// Windows API bindings
#[cfg(windows)]
unsafe extern "system" {
fn GetCurrentProcess() -> *mut std::ffi::c_void;
fn OpenProcessToken(
process: *mut std::ffi::c_void,
access: u32,
token: *mut *mut std::ffi::c_void,
) -> i32;
fn GetTokenInformation(
token: *mut std::ffi::c_void,
info_class: u32,
info: *mut std::ffi::c_void,
info_len: u32,
return_len: *mut u32,
) -> i32;
fn CloseHandle(handle: *mut std::ffi::c_void) -> i32;
#[allow(dead_code)]
fn GetDiskFreeSpaceExW(
directory: *const u16,
free_bytes: *mut u64,
total_bytes: *mut u64,
total_free_bytes: *mut u64,
) -> i32;
}
#[cfg(windows)]
const TOKEN_QUERY: u32 = 0x0008;
#[cfg(windows)]
#[allow(non_upper_case_globals)]
const TokenElevation: u32 = 20;
#[cfg(windows)]
#[repr(C)]
#[allow(non_snake_case)]
struct TOKEN_ELEVATION {
TokenIsElevated: u32,
}

168
ostp-setup/src/wintun.rs Normal file
View File

@@ -0,0 +1,168 @@
//! WinTUN driver extraction and management
//!
//! Extracts wintun.dll from embedded resources and installs the TUN adapter.
use std::path::PathBuf;
use anyhow::{Context, Result};
use std::fs;
/// Embedded wintun.dll (x64) - placeholder, actual DLL is in resources
const WINTUN_DLL: &[u8] = include_bytes!("../resources/wintun.dll");
/// WinTUN adapter GUID (consistent across installs)
#[allow(dead_code)]
const ADAPTER_GUID: &str = "{A1B2C3D4-E5F6-7890-ABCD-EF1234567890}";
/// TUN adapter name
#[allow(dead_code)]
const ADAPTER_NAME: &str = "ostp TUN";
/// Extract wintun.dll to installation directory
pub async fn extract_driver(install_path: &PathBuf) -> Result<()> {
let dll_path = install_path.join("wintun.dll");
// Create directory if needed
fs::create_dir_all(install_path)
.context("Failed to create installation directory")?;
// Check if already exists with correct version
if dll_path.exists() {
let existing = fs::read(&dll_path)?;
if existing == WINTUN_DLL {
return Ok(()); // Already up to date
}
}
// Write the DLL
fs::write(&dll_path, WINTUN_DLL)
.context("Failed to write wintun.dll")?;
Ok(())
}
/// Create the TUN adapter using wintun API
#[allow(dead_code)]
pub async fn create_adapter(install_path: &PathBuf) -> Result<()> {
// Load wintun.dll dynamically
let dll_path = install_path.join("wintun.dll");
if !dll_path.exists() {
anyhow::bail!("wintun.dll not found at {:?}", dll_path);
}
// Use libloading to call WintunCreateAdapter
// This is a simplified version - full implementation would use the wintun crate
#[cfg(windows)]
{
use std::ffi::OsStr;
use std::os::windows::ffi::OsStrExt;
// Convert strings to wide strings for Windows API
let _adapter_name: Vec<u16> = OsStr::new(ADAPTER_NAME)
.encode_wide()
.chain(std::iter::once(0))
.collect();
let _tunnel_type: Vec<u16> = OsStr::new("Ospab")
.encode_wide()
.chain(std::iter::once(0))
.collect();
// Parse GUID
let _guid = parse_guid(ADAPTER_GUID)?;
// In production, we'd call:
// WintunCreateAdapter(adapter_name, tunnel_type, &guid)
// For now, we'll use the wintun crate when it's integrated
tracing::info!("TUN adapter creation would happen here");
}
Ok(())
}
/// Delete the TUN adapter
pub async fn delete_adapter() -> Result<()> {
#[cfg(windows)]
{
// WintunDeleteAdapter would be called here
tracing::info!("TUN adapter deletion would happen here");
}
Ok(())
}
/// Remove wintun driver files
pub async fn remove_driver() -> Result<()> {
// Delete adapter first
delete_adapter().await?;
// Find and remove DLL from common locations
let paths = [
PathBuf::from(r"C:\Program Files\Ospab Network\OSTP\wintun.dll"),
];
for path in &paths {
if path.exists() {
fs::remove_file(path).ok();
}
}
Ok(())
}
/// Check if wintun is installed and working
pub fn is_installed() -> bool {
let system_dll = PathBuf::from(r"C:\Program Files\Ospab Network\OSTP\wintun.dll");
system_dll.exists()
}
/// Get wintun version from DLL
#[allow(dead_code)]
pub fn get_version() -> Option<String> {
// Would extract version info from PE header
// For now, return embedded version
Some("0.14.1".to_string())
}
/// Parse a GUID string into bytes
#[cfg(windows)]
#[allow(dead_code)]
fn parse_guid(s: &str) -> Result<[u8; 16]> {
let s = s.trim_matches(|c| c == '{' || c == '}');
let parts: Vec<&str> = s.split('-').collect();
if parts.len() != 5 {
anyhow::bail!("Invalid GUID format");
}
let mut guid = [0u8; 16];
// Parse each part
let d1 = u32::from_str_radix(parts[0], 16)?;
let d2 = u16::from_str_radix(parts[1], 16)?;
let d3 = u16::from_str_radix(parts[2], 16)?;
let d4 = u16::from_str_radix(parts[3], 16)?;
let d5 = u64::from_str_radix(parts[4], 16)?;
guid[0..4].copy_from_slice(&d1.to_le_bytes());
guid[4..6].copy_from_slice(&d2.to_le_bytes());
guid[6..8].copy_from_slice(&d3.to_le_bytes());
guid[8..10].copy_from_slice(&d4.to_be_bytes());
guid[10..16].copy_from_slice(&d5.to_be_bytes()[2..8]);
Ok(guid)
}
#[cfg(test)]
mod tests {
use super::*;
#[test]
#[cfg(windows)]
fn test_parse_guid() {
let guid = parse_guid(ADAPTER_GUID).unwrap();
assert_eq!(guid.len(), 16);
}
}

40
ostp-setup/tauri.conf.json Normal file
View File

@@ -0,0 +1,40 @@
{
"$schema": "https://schema.tauri.app/config/2",
"productName": "OSTP Setup",
"version": "0.1.0",
"identifier": "network.ospab.ostp-setup",
"build": {
"beforeDevCommand": "",
"devUrl": "http://localhost:1420",
"beforeBuildCommand": "",
"frontendDist": "./ui"
},
"app": {
"withGlobalTauri": true,
"windows": [
{
"title": "Ospab Network - Setup Wizard",
"width": 600,
"height": 480,
"resizable": false,
"center": true,
"decorations": true,
"transparent": false
}
],
"security": {
"csp": "default-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' asset: https://asset.localhost data:"
}
},
"bundle": {
"active": true,
"targets": ["nsis"],
"icon": [],
"resources": ["resources/*"]
},
"plugins": {
"shell": {
"open": true
}
}
}

360
ostp-setup/ui/app.js Normal file
View File

@@ -0,0 +1,360 @@
// OSTP Setup Wizard - Frontend Logic
const { invoke } = window.__TAURI__.core;
const { listen } = window.__TAURI__.event;
// State
let currentStep = 1;
const totalSteps = 5;
let systemCheckResult = null;
let countries = [];
let installPath = '';
// DOM Elements
const stepContents = document.querySelectorAll('.step-content');
const stepIndicators = document.querySelectorAll('.step-indicator .step');
const btnNext = document.getElementById('btnNext');
const btnBack = document.getElementById('btnBack');
const btnCancel = document.getElementById('btnCancel');
// Initialize
document.addEventListener('DOMContentLoaded', async () => {
// Get default install path
try {
installPath = await invoke('get_default_install_path');
document.getElementById('installPath').value = installPath;
} catch (e) {
console.error('Failed to get install path:', e);
document.getElementById('installPath').value = 'C:\\Program Files\\Ospab Network\\OSTP';
}
// Load countries
try {
countries = await invoke('get_countries');
populateCountries();
} catch (e) {
console.error('Failed to load countries:', e);
}
// Listen for installation progress
listen('install-progress', (event) => {
updateProgress(event.payload);
});
// Setup event listeners
setupEventListeners();
});
function setupEventListeners() {
btnNext.addEventListener('click', handleNext);
btnBack.addEventListener('click', handleBack);
btnCancel.addEventListener('click', handleCancel);
// Access key validation
const accessKeyInput = document.getElementById('accessKey');
accessKeyInput.addEventListener('input', debounce(validateAccessKey, 300));
accessKeyInput.addEventListener('paste', () => {
setTimeout(validateAccessKey, 100);
});
}
async function handleNext() {
switch (currentStep) {
case 1:
// Welcome -> System Check
goToStep(2);
await runSystemCheck();
break;
case 2:
// System Check -> Configuration
if (canProceedFromSystemCheck()) {
goToStep(3);
}
break;
case 3:
// Configuration -> Installation
if (await validateConfiguration()) {
goToStep(4);
await runInstallation();
}
break;
case 4:
// Installation -> Finish (auto-transition on complete)
break;
case 5:
// Finish -> Close
await finishInstallation();
break;
}
}
function handleBack() {
if (currentStep > 1 && currentStep !== 4) {
goToStep(currentStep - 1);
}
}
function handleCancel() {
if (confirm('Are you sure you want to cancel the installation?')) {
window.close();
}
}
function goToStep(step) {
// Update step indicators
stepIndicators.forEach((indicator, index) => {
indicator.classList.remove('active', 'completed');
if (index + 1 < step) {
indicator.classList.add('completed');
} else if (index + 1 === step) {
indicator.classList.add('active');
}
});
// Update content visibility
stepContents.forEach((content, index) => {
content.classList.remove('active');
if (index + 1 === step) {
content.classList.add('active');
}
});
// Update button states
btnBack.disabled = step === 1 || step === 4 || step === 5;
if (step === 5) {
btnNext.textContent = 'Finish';
} else if (step === 4) {
btnNext.disabled = true;
btnNext.textContent = 'Installing...';
} else {
btnNext.disabled = false;
btnNext.textContent = 'Next';
}
currentStep = step;
}
// Step 2: System Check
async function runSystemCheck() {
const checkItems = {
checkAdmin: document.getElementById('checkAdmin'),
checkAesNi: document.getElementById('checkAesNi'),
checkWintun: document.getElementById('checkWintun'),
checkOs: document.getElementById('checkOs'),
};
// Animate checking state
Object.values(checkItems).forEach(item => {
setCheckState(item, 'pending', '⏳', 'Checking...');
});
try {
// Small delay for visual effect
await sleep(500);
systemCheckResult = await invoke('check_system');
// Update each check with results
setCheckState(
checkItems.checkAdmin,
systemCheckResult.admin_privileges ? 'success' : 'error',
systemCheckResult.admin_privileges ? '✓' : '✗',
systemCheckResult.admin_privileges ? 'Elevated' : 'Required'
);
await sleep(200);
setCheckState(
checkItems.checkAesNi,
systemCheckResult.aes_ni_supported ? 'success' : 'warning',
systemCheckResult.aes_ni_supported ? '✓' : '⚠',
systemCheckResult.aes_ni_supported ? 'Supported' : 'Software fallback'
);
await sleep(200);
setCheckState(
checkItems.checkWintun,
'success',
systemCheckResult.wintun_installed ? '✓' : '◯',
systemCheckResult.wintun_installed ? 'Installed' : 'Will be installed'
);
await sleep(200);
setCheckState(
checkItems.checkOs,
'success',
'✓',
systemCheckResult.os_version
);
// Enable next if admin check passed
if (!systemCheckResult.admin_privileges) {
btnNext.disabled = true;
alert('Administrator privileges are required. Please restart the installer as Administrator.');
}
} catch (e) {
console.error('System check failed:', e);
Object.values(checkItems).forEach(item => {
setCheckState(item, 'error', '✗', 'Check failed');
});
}
}
function setCheckState(element, state, icon, status) {
const iconEl = element.querySelector('.check-icon');
const statusEl = element.querySelector('.check-status');
iconEl.className = `check-icon ${state}`;
iconEl.textContent = icon;
statusEl.textContent = status;
}
function canProceedFromSystemCheck() {
return systemCheckResult && systemCheckResult.admin_privileges;
}
// Step 3: Configuration
function populateCountries() {
const select = document.getElementById('country');
select.innerHTML = '';
countries.forEach(country => {
const option = document.createElement('option');
option.value = country.code;
option.textContent = country.name + (country.recommended ? ' (Recommended)' : '');
if (country.recommended) {
option.selected = true;
}
select.appendChild(option);
});
}
async function validateAccessKey() {
const input = document.getElementById('accessKey');
const errorEl = document.getElementById('accessKeyError');
const value = input.value.trim();
if (!value) {
input.classList.remove('error');
errorEl.textContent = '';
return false;
}
try {
const isValid = await invoke('validate_access_key', { key: value });
if (isValid) {
input.classList.remove('error');
errorEl.textContent = '';
return true;
} else {
input.classList.add('error');
errorEl.textContent = 'Invalid access key format';
return false;
}
} catch (e) {
input.classList.add('error');
errorEl.textContent = 'Failed to validate key';
return false;
}
}
async function validateConfiguration() {
const accessKey = document.getElementById('accessKey').value.trim();
const country = document.getElementById('country').value;
if (!accessKey) {
document.getElementById('accessKeyError').textContent = 'Access key is required';
document.getElementById('accessKey').classList.add('error');
return false;
}
if (!await validateAccessKey()) {
return false;
}
if (!country) {
alert('Please select a region');
return false;
}
return true;
}
// Step 4: Installation
async function runInstallation() {
const config = {
access_key: document.getElementById('accessKey').value.trim(),
country: document.getElementById('country').value,
install_path: document.getElementById('installPath').value,
launch_on_startup: true, // Will be read from step 5
connect_now: true, // Will be read from step 5
};
try {
await invoke('run_installation', { config });
// Success - move to step 5
goToStep(5);
} catch (e) {
console.error('Installation failed:', e);
alert('Installation failed: ' + e);
btnNext.disabled = false;
btnNext.textContent = 'Retry';
}
}
function updateProgress(progress) {
const { step, total_steps, message, percent } = progress;
// Update progress bar
document.getElementById('progressFill').style.width = `${percent}%`;
document.getElementById('progressText').textContent = `${percent}%`;
document.getElementById('installStatus').textContent = message;
// Update step indicators
const installSteps = document.querySelectorAll('.install-step');
installSteps.forEach((stepEl, index) => {
stepEl.classList.remove('active', 'completed');
const statusEl = stepEl.querySelector('.step-status');
if (index + 1 < step) {
stepEl.classList.add('completed');
statusEl.textContent = '✓';
} else if (index + 1 === step) {
stepEl.classList.add('active');
statusEl.textContent = '⏳';
} else {
statusEl.textContent = '○';
}
});
}
// Step 5: Finish
async function finishInstallation() {
const connectNow = document.getElementById('optConnectNow').checked;
const launchStartup = document.getElementById('optLaunchStartup').checked;
// These would typically trigger additional backend calls
// For now, just close the installer
if (connectNow) {
// Service should already be started by installation
console.log('Connecting now...');
}
window.close();
}
// Utilities
function sleep(ms) {
return new Promise(resolve => setTimeout(resolve, ms));
}
function debounce(func, wait) {
let timeout;
return function executedFunction(...args) {
const later = () => {
clearTimeout(timeout);
func(...args);
};
clearTimeout(timeout);
timeout = setTimeout(later, wait);
};
}

190
ostp-setup/ui/index.html Normal file
View File

@@ -0,0 +1,190 @@
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<title>Ospab Network - Setup Wizard</title>
<link rel="stylesheet" href="styles.css">
</head>
<body>
<div class="wizard-container">
<!-- Header -->
<header class="wizard-header">
<div class="logo">
<svg width="32" height="32" viewBox="0 0 32 32" fill="none">
<circle cx="16" cy="16" r="14" stroke="#6366f1" stroke-width="2"/>
<path d="M10 16l4 4 8-8" stroke="#6366f1" stroke-width="2" stroke-linecap="round"/>
</svg>
<span>Ospab Network</span>
</div>
<div class="step-indicator" id="stepIndicator">
<span class="step active">1</span>
<span class="step">2</span>
<span class="step">3</span>
<span class="step">4</span>
<span class="step">5</span>
</div>
</header>
<!-- Step 1: Welcome -->
<section class="step-content active" id="step1">
<div class="step-icon">
<svg width="64" height="64" viewBox="0 0 64 64" fill="none">
<circle cx="32" cy="32" r="28" stroke="#6366f1" stroke-width="3"/>
<path d="M20 32l8 8 16-16" stroke="#6366f1" stroke-width="3" stroke-linecap="round"/>
</svg>
</div>
<h1>Welcome to Ospab Network</h1>
<p class="description">
This wizard will guide you through the installation of the OSTP Client,
providing secure and stealth VPN connectivity.
</p>
<div class="features">
<div class="feature">
<span class="feature-icon">🔒</span>
<span>Military-grade encryption</span>
</div>
<div class="feature">
<span class="feature-icon">👁️</span>
<span>Stealth protocol (DPI bypass)</span>
</div>
<div class="feature">
<span class="feature-icon"></span>
<span>High-speed connections</span>
</div>
</div>
</section>
<!-- Step 2: System Check -->
<section class="step-content" id="step2">
<h1>System Requirements</h1>
<p class="description">Checking your system compatibility...</p>
<div class="check-list" id="checkList">
<div class="check-item" id="checkAdmin">
<span class="check-icon pending"></span>
<span class="check-label">Administrator privileges</span>
<span class="check-status"></span>
</div>
<div class="check-item" id="checkAesNi">
<span class="check-icon pending"></span>
<span class="check-label">AES-NI CPU support</span>
<span class="check-status"></span>
</div>
<div class="check-item" id="checkWintun">
<span class="check-icon pending"></span>
<span class="check-label">WinTUN driver</span>
<span class="check-status"></span>
</div>
<div class="check-item" id="checkOs">
<span class="check-icon pending"></span>
<span class="check-label">Operating system</span>
<span class="check-status"></span>
</div>
</div>
</section>
<!-- Step 3: Configuration -->
<section class="step-content" id="step3">
<h1>Configuration</h1>
<p class="description">Enter your access credentials and preferences.</p>
<div class="form-group">
<label for="accessKey">Access Key</label>
<input type="text" id="accessKey" placeholder="ospab://..." autocomplete="off">
<span class="input-hint">Paste the access key provided by your administrator</span>
<span class="input-error" id="accessKeyError"></span>
</div>
<div class="form-group">
<label for="country">Region</label>
<select id="country">
<option value="">Loading...</option>
</select>
<span class="input-hint">Select the region for optimal server mimicry</span>
</div>
<div class="form-group">
<label for="installPath">Installation Path</label>
<div class="path-input">
<input type="text" id="installPath" readonly>
<button type="button" class="btn-browse" id="btnBrowse">Browse</button>
</div>
</div>
</section>
<!-- Step 4: Installation Progress -->
<section class="step-content" id="step4">
<h1>Installing</h1>
<p class="description" id="installStatus">Preparing installation...</p>
<div class="progress-container">
<div class="progress-bar">
<div class="progress-fill" id="progressFill" style="width: 0%"></div>
</div>
<span class="progress-text" id="progressText">0%</span>
</div>
<div class="install-steps" id="installSteps">
<div class="install-step" data-step="1">
<span class="step-status"></span>
<span>Extracting WinTUN driver</span>
</div>
<div class="install-step" data-step="2">
<span class="step-status"></span>
<span>Validating access key</span>
</div>
<div class="install-step" data-step="3">
<span class="step-status"></span>
<span>Writing configuration</span>
</div>
<div class="install-step" data-step="4">
<span class="step-status"></span>
<span>Installing Windows Service</span>
</div>
<div class="install-step" data-step="5">
<span class="step-status"></span>
<span>Configuring startup</span>
</div>
</div>
</section>
<!-- Step 5: Finish -->
<section class="step-content" id="step5">
<div class="step-icon success">
<svg width="64" height="64" viewBox="0 0 64 64" fill="none">
<circle cx="32" cy="32" r="28" stroke="#10b981" stroke-width="3"/>
<path d="M20 32l8 8 16-16" stroke="#10b981" stroke-width="3" stroke-linecap="round"/>
</svg>
</div>
<h1>Installation Complete!</h1>
<p class="description">
OSTP Client has been successfully installed on your system.
</p>
<div class="finish-options">
<label class="checkbox-container">
<input type="checkbox" id="optConnectNow" checked>
<span class="checkmark"></span>
<span>Connect now</span>
</label>
<label class="checkbox-container">
<input type="checkbox" id="optLaunchStartup" checked>
<span class="checkmark"></span>
<span>Launch on system startup</span>
</label>
</div>
</section>
<!-- Footer / Navigation -->
<footer class="wizard-footer">
<button class="btn btn-secondary" id="btnBack" disabled>Back</button>
<div class="spacer"></div>
<button class="btn btn-secondary" id="btnCancel">Cancel</button>
<button class="btn btn-primary" id="btnNext">Next</button>
</footer>
</div>
<script src="app.js"></script>
</body>
</html>

444
ostp-setup/ui/styles.css Normal file
View File

@@ -0,0 +1,444 @@
:root {
--bg-primary: #0f0f14;
--bg-secondary: #1a1a24;
--bg-tertiary: #252532;
--text-primary: #f5f5f7;
--text-secondary: #a1a1aa;
--text-muted: #71717a;
--accent: #6366f1;
--accent-hover: #818cf8;
--success: #10b981;
--error: #ef4444;
--warning: #f59e0b;
--border: #27272a;
--shadow: rgba(0, 0, 0, 0.3);
}
* {
margin: 0;
padding: 0;
box-sizing: border-box;
}
body {
font-family: 'Segoe UI', system-ui, -apple-system, sans-serif;
background: var(--bg-primary);
color: var(--text-primary);
min-height: 100vh;
display: flex;
align-items: center;
justify-content: center;
overflow: hidden;
}
.wizard-container {
width: 100%;
max-width: 600px;
min-height: 480px;
background: var(--bg-secondary);
border-radius: 12px;
display: flex;
flex-direction: column;
box-shadow: 0 20px 60px var(--shadow);
}
/* Header */
.wizard-header {
display: flex;
justify-content: space-between;
align-items: center;
padding: 20px 24px;
border-bottom: 1px solid var(--border);
}
.logo {
display: flex;
align-items: center;
gap: 10px;
font-weight: 600;
font-size: 16px;
}
.step-indicator {
display: flex;
gap: 8px;
}
.step-indicator .step {
width: 28px;
height: 28px;
border-radius: 50%;
background: var(--bg-tertiary);
color: var(--text-muted);
display: flex;
align-items: center;
justify-content: center;
font-size: 12px;
font-weight: 600;
transition: all 0.3s ease;
}
.step-indicator .step.active {
background: var(--accent);
color: white;
}
.step-indicator .step.completed {
background: var(--success);
color: white;
}
/* Step Content */
.step-content {
flex: 1;
padding: 32px 24px;
display: none;
flex-direction: column;
animation: fadeIn 0.3s ease;
}
.step-content.active {
display: flex;
}
@keyframes fadeIn {
from { opacity: 0; transform: translateY(10px); }
to { opacity: 1; transform: translateY(0); }
}
.step-content h1 {
font-size: 24px;
font-weight: 600;
margin-bottom: 8px;
}
.step-content .description {
color: var(--text-secondary);
margin-bottom: 24px;
line-height: 1.5;
}
.step-icon {
display: flex;
justify-content: center;
margin-bottom: 24px;
}
/* Features List (Welcome) */
.features {
display: flex;
flex-direction: column;
gap: 12px;
margin-top: auto;
}
.feature {
display: flex;
align-items: center;
gap: 12px;
padding: 12px 16px;
background: var(--bg-tertiary);
border-radius: 8px;
}
.feature-icon {
font-size: 20px;
}
/* Check List (System Check) */
.check-list {
display: flex;
flex-direction: column;
gap: 12px;
}
.check-item {
display: flex;
align-items: center;
gap: 12px;
padding: 14px 16px;
background: var(--bg-tertiary);
border-radius: 8px;
transition: all 0.3s ease;
}
.check-item .check-icon {
font-size: 18px;
min-width: 24px;
text-align: center;
}
.check-item .check-icon.success { color: var(--success); }
.check-item .check-icon.error { color: var(--error); }
.check-item .check-icon.pending { color: var(--text-muted); }
.check-item .check-label {
flex: 1;
}
.check-item .check-status {
color: var(--text-muted);
font-size: 13px;
}
/* Form Elements */
.form-group {
margin-bottom: 20px;
}
.form-group label {
display: block;
font-size: 14px;
font-weight: 500;
margin-bottom: 8px;
color: var(--text-primary);
}
.form-group input,
.form-group select {
width: 100%;
padding: 12px 14px;
background: var(--bg-tertiary);
border: 1px solid var(--border);
border-radius: 8px;
color: var(--text-primary);
font-size: 14px;
transition: all 0.2s ease;
}
.form-group input:focus,
.form-group select:focus {
outline: none;
border-color: var(--accent);
box-shadow: 0 0 0 3px rgba(99, 102, 241, 0.2);
}
.form-group input.error {
border-color: var(--error);
}
.form-group .input-hint {
display: block;
font-size: 12px;
color: var(--text-muted);
margin-top: 6px;
}
.form-group .input-error {
display: block;
font-size: 12px;
color: var(--error);
margin-top: 6px;
min-height: 16px;
}
.path-input {
display: flex;
gap: 8px;
}
.path-input input {
flex: 1;
}
.btn-browse {
padding: 12px 16px;
background: var(--bg-tertiary);
border: 1px solid var(--border);
border-radius: 8px;
color: var(--text-primary);
cursor: pointer;
transition: all 0.2s ease;
}
.btn-browse:hover {
background: var(--accent);
border-color: var(--accent);
}
/* Progress */
.progress-container {
display: flex;
align-items: center;
gap: 16px;
margin-bottom: 24px;
}
.progress-bar {
flex: 1;
height: 8px;
background: var(--bg-tertiary);
border-radius: 4px;
overflow: hidden;
}
.progress-fill {
height: 100%;
background: linear-gradient(90deg, var(--accent), var(--accent-hover));
border-radius: 4px;
transition: width 0.3s ease;
}
.progress-text {
font-size: 14px;
font-weight: 600;
color: var(--accent);
min-width: 40px;
}
.install-steps {
display: flex;
flex-direction: column;
gap: 10px;
}
.install-step {
display: flex;
align-items: center;
gap: 12px;
padding: 10px 14px;
background: var(--bg-tertiary);
border-radius: 6px;
font-size: 14px;
opacity: 0.6;
transition: all 0.3s ease;
}
.install-step.active {
opacity: 1;
background: rgba(99, 102, 241, 0.15);
border-left: 3px solid var(--accent);
}
.install-step.completed {
opacity: 1;
}
.install-step .step-status {
min-width: 20px;
text-align: center;
}
/* Finish Options */
.finish-options {
display: flex;
flex-direction: column;
gap: 12px;
margin-top: 24px;
}
.checkbox-container {
display: flex;
align-items: center;
gap: 12px;
cursor: pointer;
padding: 12px 16px;
background: var(--bg-tertiary);
border-radius: 8px;
transition: all 0.2s ease;
}
.checkbox-container:hover {
background: var(--bg-primary);
}
.checkbox-container input {
display: none;
}
.checkbox-container .checkmark {
width: 20px;
height: 20px;
border: 2px solid var(--border);
border-radius: 4px;
display: flex;
align-items: center;
justify-content: center;
transition: all 0.2s ease;
}
.checkbox-container input:checked + .checkmark {
background: var(--accent);
border-color: var(--accent);
}
.checkbox-container input:checked + .checkmark::after {
content: '✓';
color: white;
font-size: 12px;
font-weight: bold;
}
/* Footer */
.wizard-footer {
display: flex;
align-items: center;
gap: 12px;
padding: 16px 24px;
border-top: 1px solid var(--border);
}
.spacer {
flex: 1;
}
.btn {
padding: 10px 24px;
border-radius: 8px;
font-size: 14px;
font-weight: 500;
cursor: pointer;
transition: all 0.2s ease;
border: none;
}
.btn:disabled {
opacity: 0.5;
cursor: not-allowed;
}
.btn-primary {
background: var(--accent);
color: white;
}
.btn-primary:hover:not(:disabled) {
background: var(--accent-hover);
}
.btn-secondary {
background: var(--bg-tertiary);
color: var(--text-primary);
border: 1px solid var(--border);
}
.btn-secondary:hover:not(:disabled) {
background: var(--bg-primary);
}
/* Success state icon */
.step-icon.success svg circle {
stroke: var(--success);
}
.step-icon.success svg path {
stroke: var(--success);
}
/* Scrollbar */
::-webkit-scrollbar {
width: 8px;
}
::-webkit-scrollbar-track {
background: var(--bg-tertiary);
}
::-webkit-scrollbar-thumb {
background: var(--border);
border-radius: 4px;
}
::-webkit-scrollbar-thumb:hover {
background: var(--text-muted);
}