icebergs/base/ssh/connect.go

package ssh

import (
	"encoding/json"
	"fmt"
	"io"
	"net"
	"os"
	"path"
	"strings"
	"time"

	ice "github.com/shylinux/icebergs"
	"github.com/shylinux/icebergs/base/aaa"
	"github.com/shylinux/icebergs/base/mdb"
	"github.com/shylinux/icebergs/base/nfs"
	"github.com/shylinux/icebergs/base/tcp"
	kit "github.com/shylinux/toolkits"
	"golang.org/x/crypto/ssh"
	"golang.org/x/crypto/ssh/terminal"
)

func _ssh_tick(m *ice.Message, pw io.Writer) {
	if m.Option("tick") == "" {
		return
	}
	m.Go(func() {
		for {
			m.Sleep(m.Option("tick"))
			pw.Write([]byte("# " + time.Now().Format(ice.MOD_TIME) + "\n"))
		}
	})
}
func _ssh_password(m *ice.Message, file string) {
	if f, e := os.Open(file); e == nil {
		defer f.Close()

		var data interface{}
		json.NewDecoder(f).Decode(&data)

		kit.Fetch(data, func(key string, value string) { m.Option(key, value) })
	}
}
func _ssh_stream(m *ice.Message, stdin *os.File) (io.Reader, io.Writer) {
	pr, pw := io.Pipe()
	m.Go(func() {
		buf := make([]byte, 1024)
		for {
			if n, e := stdin.Read(buf); m.Assert(e) {
				pw.Write(buf[:n])
			}
		}
	})
	return pr, pw
}
func _ssh_store(stdio *os.File) func() {
	fd := int(stdio.Fd())
	oldState, err := terminal.MakeRaw(fd)
	if err != nil {
		panic(err)
	}
	return func() { terminal.Restore(fd, oldState) }
}

func _ssh_session(m *ice.Message, client *ssh.Client, w, h int, stdin io.Reader, stdout, stderr io.Writer) *ssh.Session {
	session, e := client.NewSession()
	m.Assert(e)

	session.Stdin = stdin
	session.Stdout = stdout
	session.Stderr = stderr

	modes := ssh.TerminalModes{
		ssh.ECHO:          1,
		ssh.TTY_OP_ISPEED: 14400,
		ssh.TTY_OP_OSPEED: 14400,
	}

	session.RequestPty(os.Getenv("TERM"), h, w, modes)
	session.Shell()
	return session
}
func _ssh_init(m *ice.Message, pw io.Writer) {
	for _, k := range []string{"one", "two"} {
		if m.Sleep("100ms"); m.Option(k) != "" {
			pw.Write([]byte(m.Option(k) + "\n"))
		}
	}
}
func _ssh_conn(m *ice.Message, conn net.Conn, username, hostport string) *ssh.Client {
	methods := []ssh.AuthMethod{}
	methods = append(methods, ssh.KeyboardInteractive(func(user, instruction string, questions []string, echos []bool) (res []string, err error) {
		for _, q := range questions {
			p := strings.TrimSpace(strings.ToLower(q))
			switch {
			case strings.HasSuffix(p, "verification code:"):
				if verify := m.Option("verify"); verify == "" {
					fmt.Printf(q)
					fmt.Scanf("%s\n", &verify)

					res = append(res, verify)
				} else {
					res = append(res, aaa.TOTP_GET(verify, 6, 30))
				}
			case strings.HasSuffix(p, "password:"):
				res = append(res, m.Option(aaa.PASSWORD))
			default:
			}
		}
		return
	}))

	methods = append(methods, ssh.PublicKeysCallback(func() ([]ssh.Signer, error) {
		key, err := ssh.ParsePrivateKey([]byte(m.Cmdx(nfs.CAT, path.Join(os.Getenv("HOME"), m.Option("private")))))
		return []ssh.Signer{key}, err
	}))
	methods = append(methods, ssh.PasswordCallback(func() (string, error) {
		return m.Option(aaa.PASSWORD), nil
	}))

	c, chans, reqs, err := ssh.NewClientConn(conn, hostport, &ssh.ClientConfig{
		User: username, Auth: methods, BannerCallback: func(message string) error { return nil },
		HostKeyCallback: func(hostname string, remote net.Addr, key ssh.PublicKey) error { return nil },
	})

	m.Assert(err)
	return ssh.NewClient(c, chans, reqs)
}

const CONNECT = "connect"

func init() {
	Index.Merge(&ice.Context{
		Configs: map[string]*ice.Config{
			CONNECT: {Name: CONNECT, Help: "连接", Value: kit.Data()},
		},
		Commands: map[string]*ice.Command{
			CONNECT: {Name: "connect hash auto dial prunes", Help: "连接", Action: map[string]*ice.Action{
				tcp.DIAL: {Name: "dial username=shy host=shylinux.com port=22 private=.ssh/id_rsa", Help: "添加", Hand: func(m *ice.Message, arg ...string) {
					m.Option(tcp.DIAL_CB, func(c net.Conn) {
						client := _ssh_conn(m, c, kit.Select("shy", m.Option(aaa.USERNAME)),
							kit.Select("shylinux.com", m.Option(tcp.HOST))+":"+kit.Select("22", m.Option(tcp.PORT)),
						)

						h := m.Rich(CONNECT, "", kit.Dict(
							aaa.USERNAME, m.Option(aaa.USERNAME),
							tcp.HOST, m.Option(tcp.HOST),
							tcp.PORT, m.Option(tcp.PORT),
							kit.MDB_STATUS, tcp.OPEN,
							CONNECT, client,
						))
						m.Cmd(CONNECT, SESSION, kit.MDB_HASH, h)
						m.Echo(h)
					})

					m.Cmds(tcp.CLIENT, tcp.DIAL, kit.MDB_TYPE, SSH, kit.MDB_NAME, m.Option(aaa.USERNAME), tcp.PORT, m.Option(tcp.PORT), tcp.HOST, m.Option(tcp.HOST))
					m.Sleep("100ms")
				}},
				SESSION: {Name: "session hash", Help: "会话", Hand: func(m *ice.Message, arg ...string) {
					m.Richs(CONNECT, "", m.Option(kit.MDB_HASH), func(key string, value map[string]interface{}) {
						client, ok := value[CONNECT].(*ssh.Client)
						m.Assert(ok)

						h := m.Rich(SESSION, "", kit.Data(kit.MDB_STATUS, tcp.OPEN, CONNECT, key))

						if session, e := _ssh_sess(m, h, client); m.Assert(e) {
							session.Shell()
							session.Wait()
						}
					})
				}},

				"open": {Name: "open authfile= username=shy password= verfiy= host=shylinux.com port=22 private=.ssh/id_rsa tick=", Help: "终端", Hand: func(m *ice.Message, arg ...string) {
					var client *ssh.Client
					w, h, _ := terminal.GetSize(int(os.Stdin.Fd()))

					_ssh_password(m, m.Option("authfile"))
					p := path.Join(os.Getenv("HOME"), ".ssh/", fmt.Sprintf("%s@%s", m.Option("username"), m.Option("host")))
					if _, e := os.Stat(p); e == nil {
						if c, e := net.Dial("unix", p); e == nil {

							pr, pw := _ssh_stream(m, os.Stdin)
							defer _ssh_store(os.Stdout)()
							defer _ssh_store(os.Stdin)()

							c.Write([]byte(fmt.Sprintf("height:%d,width:%d\n", h, w)))

							m.Go(func() { io.Copy(c, pr) })
							_ssh_init(m, pw)
							m.Echo("logout\n")
							io.Copy(os.Stdout, c)
							return
						} else {
							os.Remove(p)
						}
					}

					if l, e := net.Listen("unix", p); m.Assert(e) {
						defer func() { os.Remove(p) }()
						defer l.Close()

						m.Go(func() {
							for {
								if c, e := l.Accept(); e == nil {
									buf := make([]byte, 1024)
									if n, e := c.Read(buf); m.Assert(e) {
										fmt.Sscanf(string(buf[:n]), "height:%d,width:%d", &h, &w)
									}

									session := _ssh_session(m, client, w, h, c, c, c)
									func(session *ssh.Session) {
										m.Go(func() {
											defer c.Close()
											session.Wait()
										})
									}(session)
								} else {
									break
								}
							}
						})
					}

					m.Option(tcp.DIAL_CB, func(c net.Conn) {
						client = _ssh_conn(m, c, m.Option(aaa.USERNAME), m.Option(tcp.HOST)+":"+m.Option(tcp.PORT))

						pr, pw := _ssh_stream(m, os.Stdin)
						defer _ssh_store(os.Stdout)()
						defer _ssh_store(os.Stdin)()

						session := _ssh_session(m, client, w, h, pr, os.Stdout, os.Stderr)
						_ssh_init(m, pw)
						_ssh_tick(m, pw)
						session.Wait()
					})

					m.Cmdy(tcp.CLIENT, tcp.DIAL, kit.MDB_TYPE, "ssh", kit.MDB_NAME, m.Option(tcp.HOST),
						tcp.PORT, m.Option(tcp.PORT), tcp.HOST, m.Option(tcp.HOST), arg)

					m.Echo("exit %s\n", m.Option(tcp.HOST))
				}},
				mdb.REMOVE: {Name: "remove", Help: "删除", Hand: func(m *ice.Message, arg ...string) {
					m.Cmdy(mdb.DELETE, CONNECT, "", mdb.HASH, kit.MDB_HASH, m.Option(kit.MDB_HASH))
				}},
				mdb.PRUNES: {Name: "prunes", Help: "清理", Hand: func(m *ice.Message, arg ...string) {
					m.Cmdy(mdb.PRUNES, CONNECT, "", mdb.HASH, kit.MDB_STATUS, tcp.CLOSE)
				}},
			}, Hand: func(m *ice.Message, c *ice.Context, cmd string, arg ...string) {
				m.Option(mdb.FIELDS, kit.Select("time,hash,status,username,host,port", mdb.DETAIL, len(arg) > 0))
				if m.Cmdy(mdb.SELECT, CONNECT, "", mdb.HASH, kit.MDB_HASH, arg); len(arg) == 0 {
					m.Table(func(index int, value map[string]string, head []string) {
						m.PushButton(kit.Select("", mdb.REMOVE, value[kit.MDB_STATUS] == tcp.CLOSE))
					})
				}
			}},
		},
	})
}