mirror of
https://github.com/wavetermdev/waveterm.git
synced 2025-01-04 18:59:08 +01:00
593 lines
16 KiB
Go
593 lines
16 KiB
Go
// Copyright 2022 Dashborg Inc
|
|
//
|
|
// This Source Code Form is subject to the terms of the Mozilla Public
|
|
// License, v. 2.0. If a copy of the MPL was not distributed with this
|
|
// file, You can obtain one at https://mozilla.org/MPL/2.0/.
|
|
|
|
package main
|
|
|
|
import (
|
|
"bytes"
|
|
"fmt"
|
|
"os"
|
|
"strconv"
|
|
"strings"
|
|
"syscall"
|
|
"time"
|
|
|
|
"github.com/commandlinedev/apishell/pkg/base"
|
|
"github.com/commandlinedev/apishell/pkg/packet"
|
|
"github.com/commandlinedev/apishell/pkg/server"
|
|
"github.com/commandlinedev/apishell/pkg/shexec"
|
|
"golang.org/x/sys/unix"
|
|
)
|
|
|
|
var BuildTime = "0"
|
|
|
|
// func doMainRun(pk *packet.RunPacketType, sender *packet.PacketSender) {
|
|
// err := shexec.ValidateRunPacket(pk)
|
|
// if err != nil {
|
|
// sender.SendCKErrorPacket(pk.CK, fmt.Sprintf("invalid run packet: %v", err))
|
|
// return
|
|
// }
|
|
// fileNames, err := base.GetCommandFileNames(pk.CK)
|
|
// if err != nil {
|
|
// sender.SendCKErrorPacket(pk.CK, fmt.Sprintf("cannot get command file names: %v", err))
|
|
// return
|
|
// }
|
|
// cmd, err := shexec.MakeRunnerExec(pk.CK)
|
|
// if err != nil {
|
|
// sender.SendCKErrorPacket(pk.CK, fmt.Sprintf("cannot make mshell command: %v", err))
|
|
// return
|
|
// }
|
|
// cmdStdin, err := cmd.StdinPipe()
|
|
// if err != nil {
|
|
// sender.SendCKErrorPacket(pk.CK, fmt.Sprintf("cannot pipe stdin to command: %v", err))
|
|
// return
|
|
// }
|
|
// // touch ptyout file (should exist for tailer to work correctly)
|
|
// ptyOutFd, err := os.OpenFile(fileNames.PtyOutFile, os.O_CREATE|os.O_TRUNC|os.O_APPEND|os.O_WRONLY, 0600)
|
|
// if err != nil {
|
|
// sender.SendCKErrorPacket(pk.CK, fmt.Sprintf("cannot open pty out file '%s': %v", fileNames.PtyOutFile, err))
|
|
// return
|
|
// }
|
|
// ptyOutFd.Close() // just opened to create the file, can close right after
|
|
// runnerOutFd, err := os.OpenFile(fileNames.RunnerOutFile, os.O_CREATE|os.O_TRUNC|os.O_APPEND|os.O_WRONLY, 0600)
|
|
// if err != nil {
|
|
// sender.SendCKErrorPacket(pk.CK, fmt.Sprintf("cannot open runner out file '%s': %v", fileNames.RunnerOutFile, err))
|
|
// return
|
|
// }
|
|
// defer runnerOutFd.Close()
|
|
// cmd.Stdout = runnerOutFd
|
|
// cmd.Stderr = runnerOutFd
|
|
// err = cmd.Start()
|
|
// if err != nil {
|
|
// sender.SendCKErrorPacket(pk.CK, fmt.Sprintf("error starting command: %v", err))
|
|
// return
|
|
// }
|
|
// go func() {
|
|
// err = packet.SendPacket(cmdStdin, pk)
|
|
// if err != nil {
|
|
// sender.SendCKErrorPacket(pk.CK, fmt.Sprintf("error sending forked runner command: %v", err))
|
|
// return
|
|
// }
|
|
// cmdStdin.Close()
|
|
|
|
// // clean up zombies
|
|
// cmd.Wait()
|
|
// }()
|
|
// }
|
|
|
|
// func doGetCmd(tailer *cmdtail.Tailer, pk *packet.GetCmdPacketType, sender *packet.PacketSender) error {
|
|
// err := tailer.AddWatch(pk)
|
|
// if err != nil {
|
|
// return err
|
|
// }
|
|
// return nil
|
|
// }
|
|
|
|
// func doMain() {
|
|
// homeDir := base.GetHomeDir()
|
|
// err := os.Chdir(homeDir)
|
|
// if err != nil {
|
|
// packet.SendErrorPacket(os.Stdout, fmt.Sprintf("cannot change directory to $HOME '%s': %v", homeDir, err))
|
|
// return
|
|
// }
|
|
// _, err = base.GetMShellPath()
|
|
// if err != nil {
|
|
// packet.SendErrorPacket(os.Stdout, err.Error())
|
|
// return
|
|
// }
|
|
// packetParser := packet.MakePacketParser(os.Stdin)
|
|
// sender := packet.MakePacketSender(os.Stdout)
|
|
// tailer, err := cmdtail.MakeTailer(sender)
|
|
// if err != nil {
|
|
// packet.SendErrorPacket(os.Stdout, err.Error())
|
|
// return
|
|
// }
|
|
// go tailer.Run()
|
|
// initPacket := shexec.MakeInitPacket()
|
|
// sender.SendPacket(initPacket)
|
|
// for pk := range packetParser.MainCh {
|
|
// if pk.GetType() == packet.RunPacketStr {
|
|
// doMainRun(pk.(*packet.RunPacketType), sender)
|
|
// continue
|
|
// }
|
|
// if pk.GetType() == packet.GetCmdPacketStr {
|
|
// err = doGetCmd(tailer, pk.(*packet.GetCmdPacketType), sender)
|
|
// if err != nil {
|
|
// errPk := packet.MakeErrorPacket(err.Error())
|
|
// sender.SendPacket(errPk)
|
|
// continue
|
|
// }
|
|
// continue
|
|
// }
|
|
// if pk.GetType() == packet.CdPacketStr {
|
|
// cdPacket := pk.(*packet.CdPacketType)
|
|
// err := os.Chdir(cdPacket.Dir)
|
|
// resp := packet.MakeResponsePacket(cdPacket.ReqId)
|
|
// if err != nil {
|
|
// resp.Error = err.Error()
|
|
// } else {
|
|
// resp.Success = true
|
|
// }
|
|
// sender.SendPacket(resp)
|
|
// continue
|
|
// }
|
|
// if pk.GetType() == packet.ErrorPacketStr {
|
|
// errPk := pk.(*packet.ErrorPacketType)
|
|
// errPk.Error = "invalid packet sent to mshell: " + errPk.Error
|
|
// sender.SendPacket(errPk)
|
|
// continue
|
|
// }
|
|
// sender.SendErrorPacket(fmt.Sprintf("invalid packet '%s' sent to mshell", pk.GetType()))
|
|
// }
|
|
// }
|
|
|
|
func readFullRunPacket(packetParser *packet.PacketParser) (*packet.RunPacketType, error) {
|
|
rpb := packet.MakeRunPacketBuilder()
|
|
for pk := range packetParser.MainCh {
|
|
ok, runPacket := rpb.ProcessPacket(pk)
|
|
if runPacket != nil {
|
|
return runPacket, nil
|
|
}
|
|
if !ok {
|
|
return nil, fmt.Errorf("invalid packet '%s' sent to mshell", pk.GetType())
|
|
}
|
|
}
|
|
return nil, fmt.Errorf("no run packet received")
|
|
}
|
|
|
|
func handleSingle(fromServer bool) {
|
|
packetParser := packet.MakePacketParser(os.Stdin)
|
|
sender := packet.MakePacketSender(os.Stdout, nil)
|
|
defer func() {
|
|
sender.Close()
|
|
sender.WaitForDone()
|
|
}()
|
|
initPacket := shexec.MakeInitPacket()
|
|
sender.SendPacket(initPacket)
|
|
if len(os.Args) >= 3 && os.Args[2] == "--version" {
|
|
return
|
|
}
|
|
runPacket, err := readFullRunPacket(packetParser)
|
|
if err != nil {
|
|
sender.SendErrorResponse(runPacket.ReqId, err)
|
|
return
|
|
}
|
|
err = shexec.ValidateRunPacket(runPacket)
|
|
if err != nil {
|
|
sender.SendErrorResponse(runPacket.ReqId, err)
|
|
return
|
|
}
|
|
if fromServer {
|
|
err = runPacket.CK.Validate("run packet")
|
|
if err != nil {
|
|
sender.SendErrorResponse(runPacket.ReqId, fmt.Errorf("run packets from server must have a CK: %v", err))
|
|
}
|
|
}
|
|
if runPacket.Detached {
|
|
cmd, startPk, err := shexec.RunCommandDetached(runPacket, sender)
|
|
if err != nil {
|
|
sender.SendErrorResponse(runPacket.ReqId, err)
|
|
return
|
|
}
|
|
sender.SendPacket(startPk)
|
|
sender.Close()
|
|
sender.WaitForDone()
|
|
cmd.DetachedWait(startPk)
|
|
return
|
|
} else {
|
|
shexec.IgnoreSigPipe()
|
|
ticker := time.NewTicker(1 * time.Minute)
|
|
go func() {
|
|
for range ticker.C {
|
|
// this will let the command detect when the server has gone away
|
|
// that will then trigger cmd.SendHup() to send SIGHUP to the exec'ed process
|
|
sender.SendPacket(packet.MakePingPacket())
|
|
}
|
|
}()
|
|
defer ticker.Stop()
|
|
cmd, err := shexec.RunCommandSimple(runPacket, sender, true)
|
|
if err != nil {
|
|
sender.SendErrorResponse(runPacket.ReqId, fmt.Errorf("error running command: %w", err))
|
|
return
|
|
}
|
|
defer cmd.Close()
|
|
startPacket := cmd.MakeCmdStartPacket(runPacket.ReqId)
|
|
sender.SendPacket(startPacket)
|
|
go func() {
|
|
exitErr := sender.WaitForDone()
|
|
if exitErr != nil {
|
|
base.Logf("I/O error talking to server, sending SIGHUP to children\n")
|
|
cmd.SendSignal(syscall.SIGHUP)
|
|
}
|
|
}()
|
|
cmd.RunRemoteIOAndWait(packetParser, sender)
|
|
return
|
|
}
|
|
}
|
|
|
|
func detectOpenFds() ([]packet.RemoteFd, error) {
|
|
var fds []packet.RemoteFd
|
|
for fdNum := 3; fdNum <= 64; fdNum++ {
|
|
flags, err := unix.FcntlInt(uintptr(fdNum), unix.F_GETFL, 0)
|
|
if err != nil {
|
|
continue
|
|
}
|
|
flags = flags & 3
|
|
rfd := packet.RemoteFd{FdNum: fdNum}
|
|
if flags&2 == 2 {
|
|
return nil, fmt.Errorf("invalid fd=%d, mshell does not support fds open for reading and writing", fdNum)
|
|
}
|
|
if flags&1 == 1 {
|
|
rfd.Write = true
|
|
} else {
|
|
rfd.Read = true
|
|
}
|
|
fds = append(fds, rfd)
|
|
}
|
|
return fds, nil
|
|
}
|
|
|
|
func parseInstallOpts() (*shexec.InstallOpts, error) {
|
|
opts := &shexec.InstallOpts{}
|
|
iter := base.MakeOptsIter(os.Args[2:]) // first arg is --install
|
|
for iter.HasNext() {
|
|
argStr := iter.Next()
|
|
found, err := tryParseSSHOpt(iter, &opts.SSHOpts)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
if found {
|
|
continue
|
|
}
|
|
if argStr == "--detect" {
|
|
opts.Detect = true
|
|
continue
|
|
}
|
|
if base.IsOption(argStr) {
|
|
return nil, fmt.Errorf("invalid option '%s' passed to mshell --install", argStr)
|
|
}
|
|
opts.ArchStr = argStr
|
|
break
|
|
}
|
|
return opts, nil
|
|
}
|
|
|
|
func tryParseSSHOpt(iter *base.OptsIter, sshOpts *shexec.SSHOpts) (bool, error) {
|
|
argStr := iter.Current()
|
|
if argStr == "--ssh" {
|
|
if !iter.IsNextPlain() {
|
|
return false, fmt.Errorf("'--ssh [user@host]' missing host")
|
|
}
|
|
sshOpts.SSHHost = iter.Next()
|
|
return true, nil
|
|
}
|
|
if argStr == "--ssh-opts" {
|
|
if !iter.HasNext() {
|
|
return false, fmt.Errorf("'--ssh-opts [options]' missing options")
|
|
}
|
|
sshOpts.SSHOptsStr = iter.Next()
|
|
return true, nil
|
|
}
|
|
if argStr == "-i" {
|
|
if !iter.IsNextPlain() {
|
|
return false, fmt.Errorf("-i [identity-file]' missing file")
|
|
}
|
|
sshOpts.SSHIdentity = iter.Next()
|
|
return true, nil
|
|
}
|
|
if argStr == "-l" {
|
|
if !iter.IsNextPlain() {
|
|
return false, fmt.Errorf("-l [user]' missing user")
|
|
}
|
|
sshOpts.SSHUser = iter.Next()
|
|
return true, nil
|
|
}
|
|
if argStr == "-p" {
|
|
if !iter.IsNextPlain() {
|
|
return false, fmt.Errorf("-p [port]' missing port")
|
|
}
|
|
nextArgStr := iter.Next()
|
|
portVal, err := strconv.Atoi(nextArgStr)
|
|
if err != nil {
|
|
return false, fmt.Errorf("-p [port]' invalid port: %v", err)
|
|
}
|
|
if portVal <= 0 {
|
|
return false, fmt.Errorf("-p [port]' invalid port: %d", portVal)
|
|
}
|
|
sshOpts.SSHPort = portVal
|
|
return true, nil
|
|
}
|
|
return false, nil
|
|
}
|
|
|
|
func parseClientOpts() (*shexec.ClientOpts, error) {
|
|
opts := &shexec.ClientOpts{}
|
|
iter := base.MakeOptsIter(os.Args[1:])
|
|
for iter.HasNext() {
|
|
argStr := iter.Next()
|
|
found, err := tryParseSSHOpt(iter, &opts.SSHOpts)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
if found {
|
|
continue
|
|
}
|
|
if argStr == "--cwd" {
|
|
if !iter.IsNextPlain() {
|
|
return nil, fmt.Errorf("'--cwd [dir]' missing directory")
|
|
}
|
|
opts.Cwd = iter.Next()
|
|
continue
|
|
}
|
|
if argStr == "--detach" {
|
|
opts.Detach = true
|
|
continue
|
|
}
|
|
if argStr == "--pty" {
|
|
opts.UsePty = true
|
|
continue
|
|
}
|
|
if argStr == "--debug" {
|
|
opts.Debug = true
|
|
continue
|
|
}
|
|
if argStr == "--sudo" {
|
|
opts.Sudo = true
|
|
continue
|
|
}
|
|
if argStr == "--sudo-with-password" {
|
|
if !iter.HasNext() {
|
|
return nil, fmt.Errorf("'--sudo-with-password [pw]', missing password")
|
|
}
|
|
opts.Sudo = true
|
|
opts.SudoWithPass = true
|
|
opts.SudoPw = iter.Next()
|
|
continue
|
|
}
|
|
if argStr == "--sudo-with-passfile" {
|
|
if !iter.IsNextPlain() {
|
|
return nil, fmt.Errorf("'--sudo-with-passfile [file]', missing file")
|
|
}
|
|
opts.Sudo = true
|
|
opts.SudoWithPass = true
|
|
fileName := iter.Next()
|
|
contents, err := os.ReadFile(fileName)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("cannot read --sudo-with-passfile file '%s': %w", fileName, err)
|
|
}
|
|
if newlineIdx := bytes.Index(contents, []byte{'\n'}); newlineIdx != -1 {
|
|
contents = contents[0:newlineIdx]
|
|
}
|
|
opts.SudoPw = string(contents) + "\n"
|
|
continue
|
|
}
|
|
if argStr == "--" {
|
|
if !iter.HasNext() {
|
|
return nil, fmt.Errorf("'--' should be followed by command")
|
|
}
|
|
opts.Command = strings.Join(iter.Rest(), " ")
|
|
break
|
|
}
|
|
return nil, fmt.Errorf("invalid option '%s' passed to mshell", argStr)
|
|
}
|
|
return opts, nil
|
|
}
|
|
|
|
func handleClient() (int, error) {
|
|
opts, err := parseClientOpts()
|
|
if err != nil {
|
|
return 1, fmt.Errorf("parsing opts: %w", err)
|
|
}
|
|
if opts.Debug {
|
|
packet.GlobalDebug = true
|
|
}
|
|
if opts.Command == "" {
|
|
return 1, fmt.Errorf("no [command] specified. [command] follows '--' option (see usage)")
|
|
}
|
|
fds, err := detectOpenFds()
|
|
if err != nil {
|
|
return 1, err
|
|
}
|
|
opts.Fds = fds
|
|
err = shexec.ValidateRemoteFds(opts.Fds)
|
|
if err != nil {
|
|
return 1, err
|
|
}
|
|
runPacket, err := opts.MakeRunPacket() // modifies opts
|
|
if err != nil {
|
|
return 1, err
|
|
}
|
|
if runPacket.Detached {
|
|
return 1, fmt.Errorf("cannot run detached command from command line client")
|
|
}
|
|
donePacket, err := shexec.RunClientSSHCommandAndWait(runPacket, shexec.StdContext{}, opts.SSHOpts, nil, opts.Debug)
|
|
if err != nil {
|
|
return 1, err
|
|
}
|
|
return donePacket.ExitCode, nil
|
|
}
|
|
|
|
func handleInstall() (int, error) {
|
|
opts, err := parseInstallOpts()
|
|
if err != nil {
|
|
return 1, fmt.Errorf("parsing opts: %w", err)
|
|
}
|
|
if opts.SSHOpts.SSHHost == "" {
|
|
return 1, fmt.Errorf("cannot install without '--ssh user@host' option")
|
|
}
|
|
if opts.Detect && opts.ArchStr != "" {
|
|
return 1, fmt.Errorf("cannot supply both --detect and arch '%s'", opts.ArchStr)
|
|
}
|
|
if opts.ArchStr == "" && !opts.Detect {
|
|
return 1, fmt.Errorf("must supply an arch string or '--detect' to auto detect")
|
|
}
|
|
if opts.ArchStr != "" {
|
|
fullArch := opts.ArchStr
|
|
fields := strings.SplitN(fullArch, ".", 2)
|
|
if len(fields) != 2 {
|
|
return 1, fmt.Errorf("invalid arch format '%s' passed to mshell --install", fullArch)
|
|
}
|
|
goos, goarch := fields[0], fields[1]
|
|
if !base.ValidGoArch(goos, goarch) {
|
|
return 1, fmt.Errorf("invalid arch '%s' passed to mshell --install", fullArch)
|
|
}
|
|
optName := base.GoArchOptFile(base.MShellVersion, goos, goarch)
|
|
_, err = os.Stat(optName)
|
|
if err != nil {
|
|
return 1, fmt.Errorf("cannot install mshell to remote host, cannot read '%s': %w", optName, err)
|
|
}
|
|
opts.OptName = optName
|
|
}
|
|
err = shexec.RunInstallFromOpts(opts)
|
|
if err != nil {
|
|
return 1, err
|
|
}
|
|
return 0, nil
|
|
}
|
|
|
|
func handleEnv() (int, error) {
|
|
cwd, err := os.Getwd()
|
|
if err != nil {
|
|
return 1, err
|
|
}
|
|
fmt.Printf("%s\x00\x00", cwd)
|
|
fullEnv := os.Environ()
|
|
var linePrinted bool
|
|
for _, envLine := range fullEnv {
|
|
if envLine != "" {
|
|
fmt.Printf("%s\x00", envLine)
|
|
linePrinted = true
|
|
}
|
|
}
|
|
if linePrinted {
|
|
fmt.Printf("\x00")
|
|
} else {
|
|
fmt.Printf("\x00\x00")
|
|
}
|
|
return 0, nil
|
|
}
|
|
|
|
func handleUsage() {
|
|
usage := `
|
|
Client Usage: mshell [opts] --ssh user@host -- [command]
|
|
|
|
mshell multiplexes input and output streams to a remote command over ssh.
|
|
|
|
Options:
|
|
-i [identity-file] - used to set '-i' option for ssh command
|
|
-l [user] - used to set '-l' option for ssh command
|
|
--cwd [dir] - execute remote command in [dir]
|
|
--ssh-opts [opts] - addition options to pass to ssh command
|
|
[command] - the remote command to execute
|
|
|
|
Sudo Options:
|
|
--sudo - use only if sudo never requires a password
|
|
--sudo-with-password [pw] - not recommended, use --sudo-with-passfile if possible
|
|
--sudo-with-passfile [file]
|
|
|
|
Sudo options allow you to run the given command using "sudo". The first
|
|
option only works when you can sudo without a password. Your password will be passed
|
|
securely through a high numbered fd to "sudo -S". Note that to use high numbered
|
|
file descriptors with sudo, you will need to add this line to your /etc/sudoers file:
|
|
Defaults closefrom_override
|
|
See full documentation for more details.
|
|
|
|
Examples:
|
|
# execute a python script remotely, with stdin still hooked up correctly
|
|
mshell --cwd "~/work" -i key.pem --ssh ubuntu@somehost -- "python3 /dev/fd/4" 4< myscript.py
|
|
|
|
# capture multiple outputs
|
|
mshell --ssh ubuntu@test -- "cat file1.txt > /dev/fd/3; cat file2.txt > /dev/fd/4" 3> file1.txt 4> file2.txt
|
|
|
|
# execute a script, catpure stdout/stderr in fd-3 and fd-4
|
|
# useful if you need to see stdout for interacting with ssh (password or host auth)
|
|
mshell --ssh user@host -- "test.sh > /dev/fd/3 2> /dev/fd/4" 3> test.stdout 4> test.stderr
|
|
|
|
# run a script as root (via sudo), capture output
|
|
mshell --sudo-with-passfile pw.txt --ssh ubuntu@somehost -- "python3 /dev/fd/3 > /dev/fd/4" 3< myscript.py 4> script-output.txt < script-input.txt
|
|
`
|
|
fmt.Printf("%s\n\n", strings.TrimSpace(usage))
|
|
}
|
|
|
|
func main() {
|
|
base.SetBuildTime(BuildTime)
|
|
if len(os.Args) == 1 {
|
|
handleUsage()
|
|
return
|
|
}
|
|
firstArg := os.Args[1]
|
|
if firstArg == "--help" {
|
|
handleUsage()
|
|
return
|
|
} else if firstArg == "--version" {
|
|
fmt.Printf("mshell %s+%s\n", base.MShellVersion, base.BuildTime)
|
|
return
|
|
} else if firstArg == "--test-env" {
|
|
state, err := shexec.GetShellState()
|
|
if state != nil {
|
|
|
|
}
|
|
if err != nil {
|
|
fmt.Fprintf(os.Stderr, "[error] %v\n", err)
|
|
os.Exit(1)
|
|
}
|
|
} else if firstArg == "--single" {
|
|
base.InitDebugLog("single")
|
|
handleSingle(false)
|
|
return
|
|
} else if firstArg == "--single-from-server" {
|
|
base.InitDebugLog("single")
|
|
handleSingle(true)
|
|
return
|
|
} else if firstArg == "--server" {
|
|
base.InitDebugLog("server")
|
|
rtnCode, err := server.RunServer()
|
|
if err != nil {
|
|
fmt.Fprintf(os.Stderr, "[error] %v\n", err)
|
|
}
|
|
if rtnCode != 0 {
|
|
os.Exit(rtnCode)
|
|
}
|
|
return
|
|
} else if firstArg == "--install" {
|
|
rtnCode, err := handleInstall()
|
|
if err != nil {
|
|
fmt.Fprintf(os.Stderr, "[error] %v\n", err)
|
|
}
|
|
os.Exit(rtnCode)
|
|
return
|
|
} else {
|
|
rtnCode, err := handleClient()
|
|
if err != nil {
|
|
fmt.Fprintf(os.Stderr, "[error] %v\n", err)
|
|
}
|
|
if rtnCode != 0 {
|
|
os.Exit(rtnCode)
|
|
}
|
|
return
|
|
}
|
|
}
|