gotty/app/app.go

package app

import (
	"crypto/rand"
	"encoding/base64"
	"encoding/json"
	"log"
	"math/big"
	"net/http"
	"os"
	"os/exec"
	"strconv"
	"strings"
	"syscall"
	"unsafe"

	"github.com/elazarl/go-bindata-assetfs"
	"github.com/gorilla/websocket"
	"github.com/kr/pty"
	"github.com/yudai/utf8reader"
)

type App struct {
	options Options

	upgrader *websocket.Upgrader
}

type Options struct {
	Address     string
	Port        string
	PermitWrite bool
	Credential  string
	RandomUrl   bool
	Command     []string
}

func New(options Options) *App {
	return &App{
		options: options,

		upgrader: &websocket.Upgrader{
			ReadBufferSize:  1024,
			WriteBufferSize: 1024,
			Subprotocols:    []string{"gotty"},
		},
	}
}

func loggerHandler(h http.Handler) http.Handler {
	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
		log.Printf("%s %s", r.Method, r.URL.Path)
		h.ServeHTTP(w, r)
	})
}

func basicAuthHandler(h http.Handler, cred string) http.Handler {
	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
		token := strings.SplitN(r.Header.Get("Authorization"), " ", 2)
		if len(token) != 2 || strings.ToLower(token[0]) != "basic" {
			w.Header().Set("WWW-Authenticate", `Basic realm="GoTTY"`)
			http.Error(w, "Bad Request", http.StatusUnauthorized)
			return
		}

		payload, err := base64.StdEncoding.DecodeString(token[1])
		if err != nil {
			http.Error(w, "Internal Server Error", http.StatusInternalServerError)
			return
		}
		if cred != string(payload) {
			w.Header().Set("WWW-Authenticate", `Basic realm="GoTTY"`)
			http.Error(w, "authorization failed", http.StatusUnauthorized)
			return
		}
		h.ServeHTTP(w, r)
	})
}

func (app *App) Run() error {
	path := "/"
	if app.options.RandomUrl {
		randomPath := generateRandomString(8)
		path = "/" + randomPath + "/"
	}

	fs := http.StripPrefix(path, http.FileServer(&assetfs.AssetFS{Asset: Asset, AssetDir: AssetDir, Prefix: "bindata"}))
	http.Handle(path, fs)
	http.HandleFunc(path+"ws", app.handler)

	endpoint := app.options.Address + ":" + app.options.Port
	log.Printf("Server is running at %s, command: %s", endpoint+path, strings.Join(app.options.Command, " "))
	handler := http.Handler(http.DefaultServeMux)
	handler = loggerHandler(handler)
	if app.options.Credential != "" {
		handler = basicAuthHandler(handler, app.options.Credential)
	}
	err := http.ListenAndServe(endpoint, handler)
	if err != nil {
		return err
	}

	return nil
}

func (app *App) handler(w http.ResponseWriter, r *http.Request) {
	log.Printf("New client connected: %s", r.RemoteAddr)

	if r.Method != "GET" {
		http.Error(w, "Method not allowed", 405)
		return
	}

	conn, err := app.upgrader.Upgrade(w, r, nil)
	if err != nil {
		log.Print("Failed to upgrade connection")
		return
	}

	cmd := exec.Command(app.options.Command[0], app.options.Command[1:]...)
	ptyIo, err := pty.Start(cmd)
	if err != nil {
		log.Print("Failed to execute command")
		return
	}
	log.Printf("Command is running for client %s with PID %d", r.RemoteAddr, cmd.Process.Pid)

	context := &clientContext{
		request:    r,
		connection: conn,
		command:    cmd,
		pty:        ptyIo,
	}

	app.goHandleConnection(context)
}

func (app *App) goHandleConnection(context *clientContext) {
	exit := make(chan bool, 2)

	go func() {
		defer func() { exit <- true }()

		app.processSend(context)
	}()

	go func() {
		defer func() { exit <- true }()

		app.processReceive(context)
	}()

	go func() {
		<-exit
		context.command.Wait()
		context.connection.Close()
		log.Printf("Connection closed: %s", context.request.RemoteAddr)
	}()
}

func (app *App) processSend(context *clientContext) {
	buf := make([]byte, 1024)
	utf8f := utf8reader.New(context.pty)

	for {
		size, err := utf8f.Read(buf)
		if err != nil {
			log.Printf("Command exited for: %s", context.request.RemoteAddr)
			return
		}

		writer, err := context.connection.NextWriter(websocket.TextMessage)
		if err != nil {
			return
		}

		writer.Write(buf[:size])
		writer.Close()
	}
}

func (app *App) processReceive(context *clientContext) {
	for {
		_, data, err := context.connection.ReadMessage()
		if err != nil {
			return
		}

		switch data[0] {
		case Input:
			if !app.options.PermitWrite {
				break
			}

			_, err := context.pty.Write(data[1:])
			if err != nil {
				return
			}

		case ResizeTerminal:
			var args argResizeTerminal
			err = json.Unmarshal(data[1:], &args)
			if err != nil {
				log.Print("Malformed remote command")
				return
			}

			window := struct {
				row uint16
				col uint16
				x   uint16
				y   uint16
			}{
				uint16(args.Rows),
				uint16(args.Columns),
				0,
				0,
			}
			syscall.Syscall(
				syscall.SYS_IOCTL,
				context.pty.Fd(),
				syscall.TIOCSWINSZ,
				uintptr(unsafe.Pointer(&window)),
			)

		default:
			log.Print("Unknown message type")
			return
		}
	}
}

func generateRandomString(length int) string {
	const base = 36
	size := big.NewInt(base)
	n := make([]byte, length)
	for i, _ := range n {
		c, _ := rand.Int(rand.Reader, size)
		n[i] = strconv.FormatInt(c.Int64(), base)[0]
	}
	return string(n)
}

const (
	Input          = '0'
	ResizeTerminal = '1'
)

type argResizeTerminal struct {
	Columns float64
	Rows    float64
}

type clientContext struct {
	request    *http.Request
	connection *websocket.Conn
	command    *exec.Cmd
	pty        *os.File
}
Initialize repository 2015-08-16 09:47:23 +00:00			`package app`

			`import (`
Random URL generation(Close #17) 2015-08-19 11:35:04 +00:00			`"crypto/rand"`
HTTP Basic Authentication support. Close #8 2015-08-20 06:40:38 +00:00			`"encoding/base64"`
Initialize repository 2015-08-16 09:47:23 +00:00			`"encoding/json"`
			`"log"`
Random URL generation(Close #17) 2015-08-19 11:35:04 +00:00			`"math/big"`
Initialize repository 2015-08-16 09:47:23 +00:00			`"net/http"`
Restructure handler function 2015-08-21 09:22:08 +00:00			`"os"`
Initialize repository 2015-08-16 09:47:23 +00:00			`"os/exec"`
Random URL generation(Close #17) 2015-08-19 11:35:04 +00:00			`"strconv"`
Initialize repository 2015-08-16 09:47:23 +00:00			`"strings"`
			`"syscall"`
			`"unsafe"`

			`"github.com/elazarl/go-bindata-assetfs"`
			`"github.com/gorilla/websocket"`
			`"github.com/kr/pty"`
Replace UTF8 bounds check with utf8reader 2015-08-17 06:46:35 +00:00			`"github.com/yudai/utf8reader"`
Initialize repository 2015-08-16 09:47:23 +00:00			`)`

			`type App struct {`
Create App instance with struct of options 2015-08-21 03:48:07 +00:00			`options Options`
Restructure handler function 2015-08-21 09:22:08 +00:00
			`upgrader *websocket.Upgrader`
Create App instance with struct of options 2015-08-21 03:48:07 +00:00			`}`

			`type Options struct {`
Initialize repository 2015-08-16 09:47:23 +00:00			`Address string`
			`Port string`
			`PermitWrite bool`
HTTP Basic Authentication support. Close #8 2015-08-20 06:40:38 +00:00			`Credential string`
Create App instance with struct of options 2015-08-21 03:48:07 +00:00			`RandomUrl bool`
Initialize repository 2015-08-16 09:47:23 +00:00			`Command []string`
			`}`

Create App instance with struct of options 2015-08-21 03:48:07 +00:00			`func New(options Options) *App {`
Initialize repository 2015-08-16 09:47:23 +00:00			`return &App{`
Create App instance with struct of options 2015-08-21 03:48:07 +00:00			`options: options,`
Restructure handler function 2015-08-21 09:22:08 +00:00
			`upgrader: &websocket.Upgrader{`
			`ReadBufferSize: 1024,`
			`WriteBufferSize: 1024,`
			`Subprotocols: []string{"gotty"},`
			`},`
Initialize repository 2015-08-16 09:47:23 +00:00			`}`
			`}`

HTTP Basic Authentication support. Close #8 2015-08-20 06:40:38 +00:00			`func loggerHandler(h http.Handler) http.Handler {`
			`return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {`
			`log.Printf("%s %s", r.Method, r.URL.Path)`
			`h.ServeHTTP(w, r)`
			`})`
			`}`

			`func basicAuthHandler(h http.Handler, cred string) http.Handler {`
			`return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {`
			`token := strings.SplitN(r.Header.Get("Authorization"), " ", 2)`
			`if len(token) != 2 \|\| strings.ToLower(token[0]) != "basic" {`
			w.Header().Set("WWW-Authenticate", `Basic realm="GoTTY"`)
			`http.Error(w, "Bad Request", http.StatusUnauthorized)`
			`return`
			`}`

			`payload, err := base64.StdEncoding.DecodeString(token[1])`
			`if err != nil {`
			`http.Error(w, "Internal Server Error", http.StatusInternalServerError)`
			`return`
			`}`
			`if cred != string(payload) {`
			w.Header().Set("WWW-Authenticate", `Basic realm="GoTTY"`)
			`http.Error(w, "authorization failed", http.StatusUnauthorized)`
			`return`
			`}`
			`h.ServeHTTP(w, r)`
			`})`
			`}`

Initialize repository 2015-08-16 09:47:23 +00:00			`func (app *App) Run() error {`
Random URL generation(Close #17) 2015-08-19 11:35:04 +00:00			`path := "/"`
Create App instance with struct of options 2015-08-21 03:48:07 +00:00			`if app.options.RandomUrl {`
Random URL generation(Close #17) 2015-08-19 11:35:04 +00:00			`randomPath := generateRandomString(8)`
			`path = "/" + randomPath + "/"`
			`}`

			`fs := http.StripPrefix(path, http.FileServer(&assetfs.AssetFS{Asset: Asset, AssetDir: AssetDir, Prefix: "bindata"}))`
			`http.Handle(path, fs)`
Restructure handler function 2015-08-21 09:22:08 +00:00			`http.HandleFunc(path+"ws", app.handler)`
Random URL generation(Close #17) 2015-08-19 11:35:04 +00:00
Create App instance with struct of options 2015-08-21 03:48:07 +00:00			`endpoint := app.options.Address + ":" + app.options.Port`
			`log.Printf("Server is running at %s, command: %s", endpoint+path, strings.Join(app.options.Command, " "))`
HTTP Basic Authentication support. Close #8 2015-08-20 06:40:38 +00:00			`handler := http.Handler(http.DefaultServeMux)`
			`handler = loggerHandler(handler)`
Create App instance with struct of options 2015-08-21 03:48:07 +00:00			`if app.options.Credential != "" {`
			`handler = basicAuthHandler(handler, app.options.Credential)`
HTTP Basic Authentication support. Close #8 2015-08-20 06:40:38 +00:00			`}`
Random URL generation(Close #17) 2015-08-19 11:35:04 +00:00			`err := http.ListenAndServe(endpoint, handler)`
Initialize repository 2015-08-16 09:47:23 +00:00			`if err != nil {`
			`return err`
			`}`

			`return nil`
			`}`

Restructure handler function 2015-08-21 09:22:08 +00:00			`func (app App) handler(w http.ResponseWriter, r http.Request) {`
			`log.Printf("New client connected: %s", r.RemoteAddr)`
Initialize repository 2015-08-16 09:47:23 +00:00
Restructure handler function 2015-08-21 09:22:08 +00:00			`if r.Method != "GET" {`
			`http.Error(w, "Method not allowed", 405)`
			`return`
			`}`
Initialize repository 2015-08-16 09:47:23 +00:00
Restructure handler function 2015-08-21 09:22:08 +00:00			`conn, err := app.upgrader.Upgrade(w, r, nil)`
			`if err != nil {`
			`log.Print("Failed to upgrade connection")`
			`return`
			`}`

			`cmd := exec.Command(app.options.Command[0], app.options.Command[1:]...)`
			`ptyIo, err := pty.Start(cmd)`
			`if err != nil {`
			`log.Print("Failed to execute command")`
			`return`
			`}`
			`log.Printf("Command is running for client %s with PID %d", r.RemoteAddr, cmd.Process.Pid)`

			`context := &clientContext{`
			`request: r,`
			`connection: conn,`
			`command: cmd,`
			`pty: ptyIo,`
			`}`

			`app.goHandleConnection(context)`
			`}`

			`func (app App) goHandleConnection(context clientContext) {`
			`exit := make(chan bool, 2)`

			`go func() {`
			`defer func() { exit <- true }()`
Initialize repository 2015-08-16 09:47:23 +00:00
Restructure handler function 2015-08-21 09:22:08 +00:00			`app.processSend(context)`
			`}()`

			`go func() {`
			`defer func() { exit <- true }()`

			`app.processReceive(context)`
			`}()`

			`go func() {`
			`<-exit`
			`context.command.Wait()`
			`context.connection.Close()`
			`log.Printf("Connection closed: %s", context.request.RemoteAddr)`
			`}()`
			`}`

			`func (app App) processSend(context clientContext) {`
			`buf := make([]byte, 1024)`
			`utf8f := utf8reader.New(context.pty)`

			`for {`
			`size, err := utf8f.Read(buf)`
Initialize repository 2015-08-16 09:47:23 +00:00			`if err != nil {`
Restructure handler function 2015-08-21 09:22:08 +00:00			`log.Printf("Command exited for: %s", context.request.RemoteAddr)`
Initialize repository 2015-08-16 09:47:23 +00:00			`return`
			`}`

Restructure handler function 2015-08-21 09:22:08 +00:00			`writer, err := context.connection.NextWriter(websocket.TextMessage)`
Initialize repository 2015-08-16 09:47:23 +00:00			`if err != nil {`
			`return`
			`}`

Restructure handler function 2015-08-21 09:22:08 +00:00			`writer.Write(buf[:size])`
			`writer.Close()`
			`}`
			`}`
Initialize repository 2015-08-16 09:47:23 +00:00
Restructure handler function 2015-08-21 09:22:08 +00:00			`func (app App) processReceive(context clientContext) {`
			`for {`
			`_, data, err := context.connection.ReadMessage()`
			`if err != nil {`
			`return`
			`}`
Don't send invalid UTF-8 string When a rune stands over the buffer boundary, invalid UTF-8 bytes were sent to the client. Now the logic checks if the tail of the buffer can be decoded as a valid rune. When it's an invalid byte sequence, the logic keeps it in the buffer and send it in the next loop with the following byte sequence. 2015-08-17 02:00:09 +00:00
Restructure handler function 2015-08-21 09:22:08 +00:00			`switch data[0] {`
			`case Input:`
			`if !app.options.PermitWrite {`
			`break`
			`}`
Don't send invalid UTF-8 string When a rune stands over the buffer boundary, invalid UTF-8 bytes were sent to the client. Now the logic checks if the tail of the buffer can be decoded as a valid rune. When it's an invalid byte sequence, the logic keeps it in the buffer and send it in the next loop with the following byte sequence. 2015-08-17 02:00:09 +00:00
Restructure handler function 2015-08-21 09:22:08 +00:00			`_, err := context.pty.Write(data[1:])`
			`if err != nil {`
			`return`
			`}`
Don't send invalid UTF-8 string When a rune stands over the buffer boundary, invalid UTF-8 bytes were sent to the client. Now the logic checks if the tail of the buffer can be decoded as a valid rune. When it's an invalid byte sequence, the logic keeps it in the buffer and send it in the next loop with the following byte sequence. 2015-08-17 02:00:09 +00:00
Restructure handler function 2015-08-21 09:22:08 +00:00			`case ResizeTerminal:`
			`var args argResizeTerminal`
			`err = json.Unmarshal(data[1:], &args)`
			`if err != nil {`
			`log.Print("Malformed remote command")`
			`return`
Initialize repository 2015-08-16 09:47:23 +00:00			`}`
Restructure handler function 2015-08-21 09:22:08 +00:00
			`window := struct {`
			`row uint16`
			`col uint16`
			`x uint16`
			`y uint16`
			`}{`
			`uint16(args.Rows),`
			`uint16(args.Columns),`
			`0,`
			`0,`
Initialize repository 2015-08-16 09:47:23 +00:00			`}`
Restructure handler function 2015-08-21 09:22:08 +00:00			`syscall.Syscall(`
			`syscall.SYS_IOCTL,`
			`context.pty.Fd(),`
			`syscall.TIOCSWINSZ,`
			`uintptr(unsafe.Pointer(&window)),`
			`)`

			`default:`
			`log.Print("Unknown message type")`
			`return`
			`}`
			`}`
			`}`

			`func generateRandomString(length int) string {`
			`const base = 36`
			`size := big.NewInt(base)`
			`n := make([]byte, length)`
			`for i, _ := range n {`
			`c, _ := rand.Int(rand.Reader, size)`
			`n[i] = strconv.FormatInt(c.Int64(), base)[0]`
Initialize repository 2015-08-16 09:47:23 +00:00			`}`
Restructure handler function 2015-08-21 09:22:08 +00:00			`return string(n)`
Initialize repository 2015-08-16 09:47:23 +00:00			`}`

Simplify structure of command messages The first byte of a input message shows the type of that message. 0: normal keystrokes 1: resize window command 2015-08-21 04:40:39 +00:00			`const (`
			`Input = '0'`
			`ResizeTerminal = '1'`
			`)`

			`type argResizeTerminal struct {`
			`Columns float64`
			`Rows float64`
Initialize repository 2015-08-16 09:47:23 +00:00			`}`
Random URL generation(Close #17) 2015-08-19 11:35:04 +00:00
Restructure handler function 2015-08-21 09:22:08 +00:00			`type clientContext struct {`
			`request *http.Request`
			`connection *websocket.Conn`
			`command *exec.Cmd`
			`pty *os.File`
Random URL generation(Close #17) 2015-08-19 11:35:04 +00:00			`}`