gotty/app/app.go

package app

import (
	"crypto/rand"
	"encoding/base64"
	"encoding/json"
	"log"
	"math/big"
	"net/http"
	"os/exec"
	"strconv"
	"strings"
	"syscall"
	"unsafe"

	"github.com/elazarl/go-bindata-assetfs"
	"github.com/gorilla/websocket"
	"github.com/kr/pty"
	"github.com/yudai/utf8reader"
)

type App struct {
	options Options
}

type Options struct {
	Address     string
	Port        string
	PermitWrite bool
	Credential  string
	RandomUrl   bool
	Command     []string
}

func New(options Options) *App {
	return &App{
		options: options,
	}
}

func loggerHandler(h http.Handler) http.Handler {
	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
		log.Printf("%s %s", r.Method, r.URL.Path)
		h.ServeHTTP(w, r)
	})
}

func basicAuthHandler(h http.Handler, cred string) http.Handler {
	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
		token := strings.SplitN(r.Header.Get("Authorization"), " ", 2)
		if len(token) != 2 || strings.ToLower(token[0]) != "basic" {
			w.Header().Set("WWW-Authenticate", `Basic realm="GoTTY"`)
			http.Error(w, "Bad Request", http.StatusUnauthorized)
			return
		}

		payload, err := base64.StdEncoding.DecodeString(token[1])
		if err != nil {
			http.Error(w, "Internal Server Error", http.StatusInternalServerError)
			return
		}
		if cred != string(payload) {
			w.Header().Set("WWW-Authenticate", `Basic realm="GoTTY"`)
			http.Error(w, "authorization failed", http.StatusUnauthorized)
			return
		}
		h.ServeHTTP(w, r)
	})
}

func (app *App) Run() error {
	path := "/"
	if app.options.RandomUrl {
		randomPath := generateRandomString(8)
		path = "/" + randomPath + "/"
	}

	fs := http.StripPrefix(path, http.FileServer(&assetfs.AssetFS{Asset: Asset, AssetDir: AssetDir, Prefix: "bindata"}))
	http.Handle(path, fs)
	http.HandleFunc(path+"ws", app.generateHandler())

	endpoint := app.options.Address + ":" + app.options.Port
	log.Printf("Server is running at %s, command: %s", endpoint+path, strings.Join(app.options.Command, " "))
	handler := http.Handler(http.DefaultServeMux)
	handler = loggerHandler(handler)
	if app.options.Credential != "" {
		handler = basicAuthHandler(handler, app.options.Credential)
	}
	err := http.ListenAndServe(endpoint, handler)
	if err != nil {
		return err
	}

	return nil
}

func (app *App) generateHandler() func(w http.ResponseWriter, r *http.Request) {
	return func(w http.ResponseWriter, r *http.Request) {
		log.Printf("New client connected: %s", r.RemoteAddr)

		upgrader := websocket.Upgrader{
			ReadBufferSize:  1024,
			WriteBufferSize: 1024,
			Subprotocols:    []string{"gotty"},
		}

		if r.Method != "GET" {
			http.Error(w, "Method not allowed", 405)
			return
		}

		conn, err := upgrader.Upgrade(w, r, nil)
		if err != nil {
			log.Print("Failed to upgrade connection")
			return
		}

		cmd := exec.Command(app.options.Command[0], app.options.Command[1:]...)
		fio, err := pty.Start(cmd)
		log.Printf("Command is running for client %s with PID %d", r.RemoteAddr, cmd.Process.Pid)
		if err != nil {
			log.Print("Failed to execute command")
			return
		}

		exit := make(chan bool, 2)

		go func() {
			defer func() { exit <- true }()

			buf := make([]byte, 1024)
			utf8f := utf8reader.New(fio)

			for {
				size, err := utf8f.Read(buf)
				if err != nil {
					log.Printf("Command exited for: %s", r.RemoteAddr)
					return
				}

				writer, err := conn.NextWriter(websocket.TextMessage)
				if err != nil {
					return
				}

				writer.Write(buf[:size])
				writer.Close()
			}
		}()

		go func() {
			defer func() { exit <- true }()

			for {
				_, data, err := conn.ReadMessage()
				if err != nil {
					return
				}

				switch data[0] {
				case Input:
					if !app.options.PermitWrite {
						break
					}

					_, err := fio.Write(data[1:])
					if err != nil {
						return
					}

				case ResizeTerminal:
					var args argResizeTerminal
					err = json.Unmarshal(data[1:], &args)
					if err != nil {
						log.Print("Malformed remote command")
						return
					}

					window := struct {
						row uint16
						col uint16
						x   uint16
						y   uint16
					}{
						uint16(args.Rows),
						uint16(args.Columns),
						0,
						0,
					}
					syscall.Syscall(
						syscall.SYS_IOCTL,
						fio.Fd(),
						syscall.TIOCSWINSZ,
						uintptr(unsafe.Pointer(&window)),
					)

				default:
					log.Print("Unknown message type")
					return
				}
			}
		}()

		go func() {
			<-exit
			cmd.Wait()
			conn.Close()
			log.Printf("Connection closed: %s", r.RemoteAddr)
		}()
	}
}

const (
	Input          = '0'
	ResizeTerminal = '1'
)

type argResizeTerminal struct {
	Columns float64
	Rows    float64
}

func generateRandomString(length int) string {
	const base = 36
	size := big.NewInt(base)
	n := make([]byte, length)
	for i, _ := range n {
		c, _ := rand.Int(rand.Reader, size)
		n[i] = strconv.FormatInt(c.Int64(), base)[0]
	}
	return string(n)
}
Initialize repository 2015-08-16 09:47:23 +00:00			`package app`

			`import (`
Random URL generation(Close #17) 2015-08-19 11:35:04 +00:00			`"crypto/rand"`
HTTP Basic Authentication support. Close #8 2015-08-20 06:40:38 +00:00			`"encoding/base64"`
Initialize repository 2015-08-16 09:47:23 +00:00			`"encoding/json"`
			`"log"`
Random URL generation(Close #17) 2015-08-19 11:35:04 +00:00			`"math/big"`
Initialize repository 2015-08-16 09:47:23 +00:00			`"net/http"`
			`"os/exec"`
Random URL generation(Close #17) 2015-08-19 11:35:04 +00:00			`"strconv"`
Initialize repository 2015-08-16 09:47:23 +00:00			`"strings"`
			`"syscall"`
			`"unsafe"`

			`"github.com/elazarl/go-bindata-assetfs"`
			`"github.com/gorilla/websocket"`
			`"github.com/kr/pty"`
Replace UTF8 bounds check with utf8reader 2015-08-17 06:46:35 +00:00			`"github.com/yudai/utf8reader"`
Initialize repository 2015-08-16 09:47:23 +00:00			`)`

			`type App struct {`
Create App instance with struct of options 2015-08-21 03:48:07 +00:00			`options Options`
			`}`

			`type Options struct {`
Initialize repository 2015-08-16 09:47:23 +00:00			`Address string`
			`Port string`
			`PermitWrite bool`
HTTP Basic Authentication support. Close #8 2015-08-20 06:40:38 +00:00			`Credential string`
Create App instance with struct of options 2015-08-21 03:48:07 +00:00			`RandomUrl bool`
Initialize repository 2015-08-16 09:47:23 +00:00			`Command []string`
			`}`

Create App instance with struct of options 2015-08-21 03:48:07 +00:00			`func New(options Options) *App {`
Initialize repository 2015-08-16 09:47:23 +00:00			`return &App{`
Create App instance with struct of options 2015-08-21 03:48:07 +00:00			`options: options,`
Initialize repository 2015-08-16 09:47:23 +00:00			`}`
			`}`

HTTP Basic Authentication support. Close #8 2015-08-20 06:40:38 +00:00			`func loggerHandler(h http.Handler) http.Handler {`
			`return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {`
			`log.Printf("%s %s", r.Method, r.URL.Path)`
			`h.ServeHTTP(w, r)`
			`})`
			`}`

			`func basicAuthHandler(h http.Handler, cred string) http.Handler {`
			`return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {`
			`token := strings.SplitN(r.Header.Get("Authorization"), " ", 2)`
			`if len(token) != 2 \|\| strings.ToLower(token[0]) != "basic" {`
			w.Header().Set("WWW-Authenticate", `Basic realm="GoTTY"`)
			`http.Error(w, "Bad Request", http.StatusUnauthorized)`
			`return`
			`}`

			`payload, err := base64.StdEncoding.DecodeString(token[1])`
			`if err != nil {`
			`http.Error(w, "Internal Server Error", http.StatusInternalServerError)`
			`return`
			`}`
			`if cred != string(payload) {`
			w.Header().Set("WWW-Authenticate", `Basic realm="GoTTY"`)
			`http.Error(w, "authorization failed", http.StatusUnauthorized)`
			`return`
			`}`
			`h.ServeHTTP(w, r)`
			`})`
			`}`

Initialize repository 2015-08-16 09:47:23 +00:00			`func (app *App) Run() error {`
Random URL generation(Close #17) 2015-08-19 11:35:04 +00:00			`path := "/"`
Create App instance with struct of options 2015-08-21 03:48:07 +00:00			`if app.options.RandomUrl {`
Random URL generation(Close #17) 2015-08-19 11:35:04 +00:00			`randomPath := generateRandomString(8)`
			`path = "/" + randomPath + "/"`
			`}`

			`fs := http.StripPrefix(path, http.FileServer(&assetfs.AssetFS{Asset: Asset, AssetDir: AssetDir, Prefix: "bindata"}))`
			`http.Handle(path, fs)`
			`http.HandleFunc(path+"ws", app.generateHandler())`

Create App instance with struct of options 2015-08-21 03:48:07 +00:00			`endpoint := app.options.Address + ":" + app.options.Port`
			`log.Printf("Server is running at %s, command: %s", endpoint+path, strings.Join(app.options.Command, " "))`
HTTP Basic Authentication support. Close #8 2015-08-20 06:40:38 +00:00			`handler := http.Handler(http.DefaultServeMux)`
			`handler = loggerHandler(handler)`
Create App instance with struct of options 2015-08-21 03:48:07 +00:00			`if app.options.Credential != "" {`
			`handler = basicAuthHandler(handler, app.options.Credential)`
HTTP Basic Authentication support. Close #8 2015-08-20 06:40:38 +00:00			`}`
Random URL generation(Close #17) 2015-08-19 11:35:04 +00:00			`err := http.ListenAndServe(endpoint, handler)`
Initialize repository 2015-08-16 09:47:23 +00:00			`if err != nil {`
			`return err`
			`}`

			`return nil`
			`}`

			`func (app App) generateHandler() func(w http.ResponseWriter, r http.Request) {`
			`return func(w http.ResponseWriter, r *http.Request) {`
			`log.Printf("New client connected: %s", r.RemoteAddr)`

			`upgrader := websocket.Upgrader{`
Don't send invalid UTF-8 string When a rune stands over the buffer boundary, invalid UTF-8 bytes were sent to the client. Now the logic checks if the tail of the buffer can be decoded as a valid rune. When it's an invalid byte sequence, the logic keeps it in the buffer and send it in the next loop with the following byte sequence. 2015-08-17 02:00:09 +00:00			`ReadBufferSize: 1024,`
			`WriteBufferSize: 1024,`
Initialize repository 2015-08-16 09:47:23 +00:00			`Subprotocols: []string{"gotty"},`
			`}`

			`if r.Method != "GET" {`
			`http.Error(w, "Method not allowed", 405)`
			`return`
			`}`

			`conn, err := upgrader.Upgrade(w, r, nil)`
			`if err != nil {`
			`log.Print("Failed to upgrade connection")`
			`return`
			`}`

Create App instance with struct of options 2015-08-21 03:48:07 +00:00			`cmd := exec.Command(app.options.Command[0], app.options.Command[1:]...)`
Initialize repository 2015-08-16 09:47:23 +00:00			`fio, err := pty.Start(cmd)`
Log PID of processes for clients 2015-08-21 03:33:44 +00:00			`log.Printf("Command is running for client %s with PID %d", r.RemoteAddr, cmd.Process.Pid)`
Initialize repository 2015-08-16 09:47:23 +00:00			`if err != nil {`
			`log.Print("Failed to execute command")`
			`return`
			`}`

			`exit := make(chan bool, 2)`

			`go func() {`
			`defer func() { exit <- true }()`

Don't send invalid UTF-8 string When a rune stands over the buffer boundary, invalid UTF-8 bytes were sent to the client. Now the logic checks if the tail of the buffer can be decoded as a valid rune. When it's an invalid byte sequence, the logic keeps it in the buffer and send it in the next loop with the following byte sequence. 2015-08-17 02:00:09 +00:00			`buf := make([]byte, 1024)`
Replace UTF8 bounds check with utf8reader 2015-08-17 06:46:35 +00:00			`utf8f := utf8reader.New(fio)`
Don't send invalid UTF-8 string When a rune stands over the buffer boundary, invalid UTF-8 bytes were sent to the client. Now the logic checks if the tail of the buffer can be decoded as a valid rune. When it's an invalid byte sequence, the logic keeps it in the buffer and send it in the next loop with the following byte sequence. 2015-08-17 02:00:09 +00:00
Replace UTF8 bounds check with utf8reader 2015-08-17 06:46:35 +00:00			`for {`
			`size, err := utf8f.Read(buf)`
Initialize repository 2015-08-16 09:47:23 +00:00			`if err != nil {`
Log PID of processes for clients 2015-08-21 03:33:44 +00:00			`log.Printf("Command exited for: %s", r.RemoteAddr)`
Initialize repository 2015-08-16 09:47:23 +00:00			`return`
			`}`
Don't send invalid UTF-8 string When a rune stands over the buffer boundary, invalid UTF-8 bytes were sent to the client. Now the logic checks if the tail of the buffer can be decoded as a valid rune. When it's an invalid byte sequence, the logic keeps it in the buffer and send it in the next loop with the following byte sequence. 2015-08-17 02:00:09 +00:00
			`writer, err := conn.NextWriter(websocket.TextMessage)`
Initialize repository 2015-08-16 09:47:23 +00:00			`if err != nil {`
			`return`
			`}`
Don't send invalid UTF-8 string When a rune stands over the buffer boundary, invalid UTF-8 bytes were sent to the client. Now the logic checks if the tail of the buffer can be decoded as a valid rune. When it's an invalid byte sequence, the logic keeps it in the buffer and send it in the next loop with the following byte sequence. 2015-08-17 02:00:09 +00:00
Replace UTF8 bounds check with utf8reader 2015-08-17 06:46:35 +00:00			`writer.Write(buf[:size])`
Initialize repository 2015-08-16 09:47:23 +00:00			`writer.Close()`
			`}`
			`}()`

			`go func() {`
			`defer func() { exit <- true }()`

			`for {`
			`_, data, err := conn.ReadMessage()`
			`if err != nil {`
			`return`
			`}`

			`switch data[0] {`
Simplify structure of command messages The first byte of a input message shows the type of that message. 0: normal keystrokes 1: resize window command 2015-08-21 04:40:39 +00:00			`case Input:`
Create App instance with struct of options 2015-08-21 03:48:07 +00:00			`if !app.options.PermitWrite {`
Initialize repository 2015-08-16 09:47:23 +00:00			`break`
			`}`

			`_, err := fio.Write(data[1:])`
			`if err != nil {`
			`return`
			`}`

Simplify structure of command messages The first byte of a input message shows the type of that message. 0: normal keystrokes 1: resize window command 2015-08-21 04:40:39 +00:00			`case ResizeTerminal:`
			`var args argResizeTerminal`
			`err = json.Unmarshal(data[1:], &args)`
Initialize repository 2015-08-16 09:47:23 +00:00			`if err != nil {`
			`log.Print("Malformed remote command")`
			`return`
			`}`

Simplify structure of command messages The first byte of a input message shows the type of that message. 0: normal keystrokes 1: resize window command 2015-08-21 04:40:39 +00:00			`window := struct {`
			`row uint16`
			`col uint16`
			`x uint16`
			`y uint16`
			`}{`
			`uint16(args.Rows),`
			`uint16(args.Columns),`
			`0,`
			`0,`
Initialize repository 2015-08-16 09:47:23 +00:00			`}`
Simplify structure of command messages The first byte of a input message shows the type of that message. 0: normal keystrokes 1: resize window command 2015-08-21 04:40:39 +00:00			`syscall.Syscall(`
			`syscall.SYS_IOCTL,`
			`fio.Fd(),`
			`syscall.TIOCSWINSZ,`
			`uintptr(unsafe.Pointer(&window)),`
			`)`
Initialize repository 2015-08-16 09:47:23 +00:00
			`default:`
			`log.Print("Unknown message type")`
			`return`
			`}`
			`}`
			`}()`

			`go func() {`
			`<-exit`
Call `Wait()` to prevent processes from being defunct 2015-08-21 03:36:26 +00:00			`cmd.Wait()`
Initialize repository 2015-08-16 09:47:23 +00:00			`conn.Close()`
			`log.Printf("Connection closed: %s", r.RemoteAddr)`
			`}()`
			`}`
			`}`

Simplify structure of command messages The first byte of a input message shows the type of that message. 0: normal keystrokes 1: resize window command 2015-08-21 04:40:39 +00:00			`const (`
			`Input = '0'`
			`ResizeTerminal = '1'`
			`)`

			`type argResizeTerminal struct {`
			`Columns float64`
			`Rows float64`
Initialize repository 2015-08-16 09:47:23 +00:00			`}`
Random URL generation(Close #17) 2015-08-19 11:35:04 +00:00
			`func generateRandomString(length int) string {`
			`const base = 36`
			`size := big.NewInt(base)`
			`n := make([]byte, length)`
			`for i, _ := range n {`
			`c, _ := rand.Int(rand.Reader, size)`
			`n[i] = strconv.FormatInt(c.Int64(), base)[0]`
			`}`
			`return string(n)`
			`}`