first

2025-11-03 16:00:25 +08:00 · 2020-09-01 10:34:11 +08:00
parent 104482ceff
commit 6f0d87c562
103 changed files with 19717 additions and 0 deletions
--- a/machine/ws_shell_session.go
+++ b/machine/ws_shell_session.go
@@ -0,0 +1,261 @@
+package machine
+
+import (
+	"bytes"
+	"encoding/json"
+	"github.com/astaxie/beego/logs"
+	"github.com/gorilla/websocket"
+	"golang.org/x/crypto/ssh"
+	"io"
+	"sync"
+	"time"
+)
+
+//func WsSsh(c *controllers.MachineController) {
+//	wsConn, err := upGrader.Upgrade(c.Ctx.ResponseWriter, c.Ctx.Request, nil)
+//	if err != nil {
+//		panic(base.NewBizErr("获取requst responsewirte错误"))
+//	}
+//
+//	cols, _ := c.GetInt("col", 80)
+//	rows, _ := c.GetInt("rows", 40)
+//
+//	sws, err := NewLogicSshWsSession(cols, rows, true, GetCli(c.GetMachineId()).client, wsConn)
+//	if sws == nil {
+//		panic(base.NewBizErr("连接失败"))
+//	}
+//	//if wshandleError(wsConn, err) {
+//	//	return
+//	//}
+//	defer sws.Close()
+//
+//	quitChan := make(chan bool, 3)
+//	sws.Start(quitChan)
+//	go sws.Wait(quitChan)
+//
+//	<-quitChan
+//	//保存日志
+//
+//	////write logs
+//	//xtermLog := model.SshLog{
+//	//	StartedAt: startTime,
+//	//	UserId:    userM.Id,
+//	//	Log:       sws.LogString(),
+//	//	MachineId: idx,
+//	//	ClientIp:  cIp,
+//	//}
+//	//err = xtermLog.Create()
+//	//if wshandleError(wsConn, err) {
+//	//	return
+//}
+
+type safeBuffer struct {
+	buffer bytes.Buffer
+	mu     sync.Mutex
+}
+
+func (w *safeBuffer) Write(p []byte) (int, error) {
+	w.mu.Lock()
+	defer w.mu.Unlock()
+	return w.buffer.Write(p)
+}
+func (w *safeBuffer) Bytes() []byte {
+	w.mu.Lock()
+	defer w.mu.Unlock()
+	return w.buffer.Bytes()
+}
+func (w *safeBuffer) Reset() {
+	w.mu.Lock()
+	defer w.mu.Unlock()
+	w.buffer.Reset()
+}
+
+const (
+	wsMsgCmd    = "cmd"
+	wsMsgResize = "resize"
+)
+
+type wsMsg struct {
+	Type string `json:"type"`
+	Cmd  string `json:"cmd"`
+	Cols int    `json:"cols"`
+	Rows int    `json:"rows"`
+}
+
+type LogicSshWsSession struct {
+	stdinPipe       io.WriteCloser
+	comboOutput     *safeBuffer //ssh 终端混合输出
+	logBuff         *safeBuffer //保存session的日志
+	inputFilterBuff *safeBuffer //用来过滤输入的命令和ssh_filter配置对比的
+	session         *ssh.Session
+	wsConn          *websocket.Conn
+	isAdmin         bool
+	IsFlagged       bool `comment:"当前session是否包含禁止命令"`
+}
+
+func NewLogicSshWsSession(cols, rows int, isAdmin bool, cli *Cli, wsConn *websocket.Conn) (*LogicSshWsSession, error) {
+	sshSession, err := cli.GetSession()
+	if err != nil {
+		return nil, err
+	}
+
+	stdinP, err := sshSession.StdinPipe()
+	if err != nil {
+		return nil, err
+	}
+
+	comboWriter := new(safeBuffer)
+	logBuf := new(safeBuffer)
+	inputBuf := new(safeBuffer)
+	//ssh.stdout and stderr will write output into comboWriter
+	sshSession.Stdout = comboWriter
+	sshSession.Stderr = comboWriter
+
+	modes := ssh.TerminalModes{
+		ssh.ECHO:          1,     // disable echo
+		ssh.TTY_OP_ISPEED: 14400, // input speed = 14.4kbaud
+		ssh.TTY_OP_OSPEED: 14400, // output speed = 14.4kbaud
+	}
+	// Request pseudo terminal
+	if err := sshSession.RequestPty("xterm", rows, cols, modes); err != nil {
+		return nil, err
+	}
+	// Start remote shell
+	if err := sshSession.Shell(); err != nil {
+		return nil, err
+	}
+	//sshSession.Run("top")
+	return &LogicSshWsSession{
+		stdinPipe:       stdinP,
+		comboOutput:     comboWriter,
+		logBuff:         logBuf,
+		inputFilterBuff: inputBuf,
+		session:         sshSession,
+		wsConn:          wsConn,
+		isAdmin:         isAdmin,
+		IsFlagged:       false,
+	}, nil
+}
+
+//Close 关闭
+func (sws *LogicSshWsSession) Close() {
+	if sws.session != nil {
+		sws.session.Close()
+	}
+	if sws.logBuff != nil {
+		sws.logBuff = nil
+	}
+	if sws.comboOutput != nil {
+		sws.comboOutput = nil
+	}
+}
+func (sws *LogicSshWsSession) Start(quitChan chan bool) {
+	go sws.receiveWsMsg(quitChan)
+	go sws.sendComboOutput(quitChan)
+}
+
+//receiveWsMsg  receive websocket msg do some handling then write into ssh.session.stdin
+func (sws *LogicSshWsSession) receiveWsMsg(exitCh chan bool) {
+	wsConn := sws.wsConn
+	//tells other go routine quit
+	defer setQuit(exitCh)
+	for {
+		select {
+		case <-exitCh:
+			return
+		default:
+			//read websocket msg
+			_, wsData, err := wsConn.ReadMessage()
+			if err != nil {
+				logs.Error("reading webSocket message failed")
+				//panic(base.NewBizErr("reading webSocket message failed"))
+				return
+			}
+			//unmashal bytes into struct
+			msgObj := wsMsg{}
+			if err := json.Unmarshal(wsData, &msgObj); err != nil {
+				logs.Error("unmarshal websocket message failed")
+				//panic(base.NewBizErr("unmarshal websocket message failed"))
+			}
+			switch msgObj.Type {
+			case wsMsgResize:
+				//handle xterm.js size change
+				if msgObj.Cols > 0 && msgObj.Rows > 0 {
+					if err := sws.session.WindowChange(msgObj.Rows, msgObj.Cols); err != nil {
+						logs.Error("ssh pty change windows size failed")
+						//panic(base.NewBizErr("ssh pty change windows size failed"))
+					}
+				}
+			case wsMsgCmd:
+				//handle xterm.js stdin
+				//decodeBytes, err := base64.StdEncoding.DecodeString(msgObj.Cmd)
+				//if err != nil {
+				//	logs.Error("websock cmd string base64 decoding failed")
+				//	//panic(base.NewBizErr("websock cmd string base64 decoding failed"))
+				//}
+				sws.sendWebsocketInputCommandToSshSessionStdinPipe([]byte(msgObj.Cmd))
+			}
+		}
+	}
+}
+
+//sendWebsocketInputCommandToSshSessionStdinPipe
+func (sws *LogicSshWsSession) sendWebsocketInputCommandToSshSessionStdinPipe(cmdBytes []byte) {
+	if _, err := sws.stdinPipe.Write(cmdBytes); err != nil {
+		logs.Error("ws cmd bytes write to ssh.stdin pipe failed")
+		//panic(base.NewBizErr("ws cmd bytes write to ssh.stdin pipe failed"))
+	}
+}
+
+func (sws *LogicSshWsSession) sendComboOutput(exitCh chan bool) {
+	wsConn := sws.wsConn
+	//todo 优化成一个方法
+	//tells other go routine quit
+	defer setQuit(exitCh)
+
+	//every 120ms write combine output bytes into websocket response
+	tick := time.NewTicker(time.Millisecond * time.Duration(60))
+	//for range time.Tick(120 * time.Millisecond){}
+	defer tick.Stop()
+	for {
+		select {
+		case <-tick.C:
+			if sws.comboOutput == nil {
+				return
+			}
+			bs := sws.comboOutput.Bytes()
+			if len(bs) > 0 {
+				err := wsConn.WriteMessage(websocket.TextMessage, bs)
+				if err != nil {
+					logs.Error("ssh sending combo output to webSocket failed")
+					//panic(base.NewBizErr("ssh sending combo output to webSocket failed"))
+				}
+				_, err = sws.logBuff.Write(bs)
+				if err != nil {
+					logs.Error("combo output to log buffer failed")
+					//panic(base.NewBizErr("combo output to log buffer failed"))
+				}
+				sws.comboOutput.buffer.Reset()
+			}
+
+		case <-exitCh:
+			return
+		}
+	}
+}
+
+func (sws *LogicSshWsSession) Wait(quitChan chan bool) {
+	if err := sws.session.Wait(); err != nil {
+		logs.Error("ssh session wait failed")
+		//panic(base.NewBizErr("ssh session wait failed"))
+		setQuit(quitChan)
+	}
+}
+
+func (sws *LogicSshWsSession) LogString() string {
+	return sws.logBuff.buffer.String()
+}
+
+func setQuit(ch chan bool) {
+	ch <- true
+}