package v1 import ( "encoding/base64" "encoding/json" "fmt" "net/http" "strconv" "strings" "time" "github.com/1Panel-dev/1Panel/backend/app/api/v1/helper" "github.com/1Panel-dev/1Panel/backend/constant" "github.com/1Panel-dev/1Panel/backend/global" "github.com/1Panel-dev/1Panel/backend/utils/cmd" "github.com/1Panel-dev/1Panel/backend/utils/copier" "github.com/1Panel-dev/1Panel/backend/utils/ssh" "github.com/1Panel-dev/1Panel/backend/utils/terminal" "github.com/gin-gonic/gin" "github.com/gorilla/websocket" "github.com/pkg/errors" ) func (b *BaseApi) WsSsh(c *gin.Context) { id, err := strconv.Atoi(c.Query("id")) if err != nil { helper.ErrorWithDetail(c, constant.CodeErrBadRequest, constant.ErrTypeInvalidParams, err) return } cols, err := strconv.Atoi(c.DefaultQuery("cols", "80")) if err != nil { helper.ErrorWithDetail(c, constant.CodeErrBadRequest, constant.ErrTypeInvalidParams, err) return } rows, err := strconv.Atoi(c.DefaultQuery("rows", "40")) if err != nil { helper.ErrorWithDetail(c, constant.CodeErrBadRequest, constant.ErrTypeInvalidParams, err) return } host, err := hostService.GetHostInfo(uint(id)) if err != nil { helper.ErrorWithDetail(c, constant.CodeErrBadRequest, constant.ErrTypeInvalidParams, err) return } var connInfo ssh.ConnInfo _ = copier.Copy(&connInfo, &host) connInfo.PrivateKey = []byte(host.PrivateKey) if len(host.PassPhrase) != 0 { connInfo.PassPhrase = []byte(host.PassPhrase) } wsConn, err := upGrader.Upgrade(c.Writer, c.Request, nil) if err != nil { global.LOG.Errorf("gin context http handler failed, err: %v", err) return } defer wsConn.Close() client, err := connInfo.NewClient() if wshandleError(wsConn, errors.WithMessage(err, "failed to set up the connection. Please check the host information")) { return } defer client.Close() ssConn, err := connInfo.NewSshConn(cols, rows) if wshandleError(wsConn, err) { return } defer ssConn.Close() sws, err := terminal.NewLogicSshWsSession(cols, rows, true, connInfo.Client, wsConn) if wshandleError(wsConn, err) { return } defer sws.Close() quitChan := make(chan bool, 3) sws.Start(quitChan) go sws.Wait(quitChan) <-quitChan if wshandleError(wsConn, err) { return } } func (b *BaseApi) RedisWsSsh(c *gin.Context) { cols, err := strconv.Atoi(c.DefaultQuery("cols", "80")) if err != nil { helper.ErrorWithDetail(c, constant.CodeErrBadRequest, constant.ErrTypeInvalidParams, err) return } rows, err := strconv.Atoi(c.DefaultQuery("rows", "40")) if err != nil { helper.ErrorWithDetail(c, constant.CodeErrBadRequest, constant.ErrTypeInvalidParams, err) return } redisConf, err := redisService.LoadConf() if err != nil { global.LOG.Errorf("load redis container failed, err: %v", err) helper.ErrorWithDetail(c, constant.CodeErrInternalServer, constant.ErrTypeInternalServer, err) return } wsConn, err := upGrader.Upgrade(c.Writer, c.Request, nil) if err != nil { global.LOG.Errorf("gin context http handler failed, err: %v", err) return } defer wsConn.Close() commands := "redis-cli" if len(redisConf.Requirepass) != 0 { commands = fmt.Sprintf("redis-cli -a %s --no-auth-warning", redisConf.Requirepass) } pidMap := loadMapFromDockerTop(redisConf.ContainerName) slave, err := terminal.NewCommand(fmt.Sprintf("docker exec -it %s %s", redisConf.ContainerName, commands)) if wshandleError(wsConn, err) { return } defer killBash(redisConf.ContainerName, commands, pidMap) defer slave.Close() tty, err := terminal.NewLocalWsSession(cols, rows, wsConn, slave) if wshandleError(wsConn, err) { return } quitChan := make(chan bool, 3) tty.Start(quitChan) go slave.Wait(quitChan) <-quitChan global.LOG.Info("websocket finished") if wshandleError(wsConn, err) { return } } func (b *BaseApi) ContainerWsSsh(c *gin.Context) { containerID := c.Query("containerid") command := c.Query("command") user := c.Query("user") if len(command) == 0 || len(containerID) == 0 { helper.ErrorWithDetail(c, constant.CodeErrBadRequest, constant.ErrTypeInvalidParams, errors.New("error param of command or containerID")) return } cols, err := strconv.Atoi(c.DefaultQuery("cols", "80")) if err != nil { helper.ErrorWithDetail(c, constant.CodeErrBadRequest, constant.ErrTypeInvalidParams, err) return } rows, err := strconv.Atoi(c.DefaultQuery("rows", "40")) if err != nil { helper.ErrorWithDetail(c, constant.CodeErrBadRequest, constant.ErrTypeInvalidParams, err) return } wsConn, err := upGrader.Upgrade(c.Writer, c.Request, nil) if err != nil { global.LOG.Errorf("gin context http handler failed, err: %v", err) return } defer wsConn.Close() cmds := []string{"exec", containerID, command} if len(user) != 0 { cmds = []string{"exec", "-u", user, containerID, command} } if cmd.CheckIllegal(user, containerID, command) { if wshandleError(wsConn, errors.New(" The command contains illegal characters.")) { return } } stdout, err := cmd.ExecWithCheck("docker", cmds...) if wshandleError(wsConn, errors.WithMessage(err, stdout)) { return } commands := fmt.Sprintf("docker exec -it %s %s", containerID, command) if len(user) != 0 { commands = fmt.Sprintf("docker exec -it -u %s %s %s", user, containerID, command) } pidMap := loadMapFromDockerTop(containerID) slave, err := terminal.NewCommand(commands) if wshandleError(wsConn, err) { return } defer killBash(containerID, command, pidMap) defer slave.Close() tty, err := terminal.NewLocalWsSession(cols, rows, wsConn, slave) if wshandleError(wsConn, err) { return } quitChan := make(chan bool, 3) tty.Start(quitChan) go slave.Wait(quitChan) <-quitChan global.LOG.Info("websocket finished") if wshandleError(wsConn, err) { return } } func wshandleError(ws *websocket.Conn, err error) bool { if err != nil { global.LOG.Errorf("handler ws faled:, err: %v", err) dt := time.Now().Add(time.Second) if ctlerr := ws.WriteControl(websocket.CloseMessage, []byte(err.Error()), dt); ctlerr != nil { wsData, err := json.Marshal(terminal.WsMsg{ Type: terminal.WsMsgCmd, Data: base64.StdEncoding.EncodeToString([]byte(err.Error())), }) if err != nil { _ = ws.WriteMessage(websocket.TextMessage, []byte("{\"type\":\"cmd\",\"data\":\"failed to encoding to json\"}")) } else { _ = ws.WriteMessage(websocket.TextMessage, wsData) } } return true } return false } func loadMapFromDockerTop(containerID string) map[string]string { pidMap := make(map[string]string) sudo := cmd.SudoHandleCmd() stdout, err := cmd.Execf("%s docker top %s -eo pid,command ", sudo, containerID) if err != nil { return pidMap } lines := strings.Split(stdout, "\n") for _, line := range lines { parts := strings.Fields(line) if len(parts) != 2 { continue } pidMap[parts[0]] = parts[1] } return pidMap } func killBash(containerID, comm string, pidMap map[string]string) { sudo := cmd.SudoHandleCmd() newPidMap := loadMapFromDockerTop(containerID) for pid, command := range newPidMap { isOld := false for pid2 := range pidMap { if pid == pid2 { isOld = true break } } if !isOld && command == comm { _, _ = cmd.Execf("%s kill -9 %s", sudo, pid) } } } var upGrader = websocket.Upgrader{ ReadBufferSize: 1024, WriteBufferSize: 1024 * 1024 * 10, CheckOrigin: func(r *http.Request) bool { return true }, }