linux ssh lang,ssh 连接双层验证linux 系统

/*

ssh 连接双层验证的linux shell

Last login: Sat Sep 26 20:11:58 2015 from 192.168.119.1

Hello, this is test cli (version 2.0).

Copyright 2002-2013 test Tech. Co., Ltd. All rights reserved.

Login> admin

Password:

[root@local ~]#

*/

package main

import (

"io"

"os"

"fmt"

"log"

"flag"

"sync"

"strings"

"golang.org/x/crypto/ssh"

)

var (

debugSwitch bool

iManUser, iManPassword string

hostIp, port, userNmae, passWord, shellCmd string

)

func init() {

flag.StringVar(&hostIp, "h", "", "The remote host ip.")

flag.StringVar(&port, "port", "22", "The remote host port.")

flag.StringVar(&userNmae, "u", "", "The user name login host.")

flag.StringVar(&passWord, "p", "", "Log on to the host password.")

flag.StringVar(&iManUser, "iManu", "", "The user name login iMan.")

flag.StringVar(&iManPassword, "iManp", "", "Login iMan's password.")

flag.StringVar(&shellCmd, "c", "", "To perform a shell command.")

flag.BoolVar(&debugSwitch, "d", false, "The debug switch.")

}

func main() {

flag.Parse()

if os.Args == nil || hostIp == "" || userNmae == "" ||

passWord == "" || shellCmd == "" {

Usage()

}

// ssh登录配置,用户名、密码

config := &ssh.ClientConfig{

User: userNmae,

Auth: []ssh.AuthMethod{

ssh.Password(passWord),

},

}

// 使用tcp的默认22号端口连接ssh

client, err := ssh.Dial("tcp", hostIp+":"+port, config)

if err != nil {

panic(err)

}

defer client.Close()

// Create a session

session, err := client.NewSession()

if err != nil {

log.Fatalf("unable to create session: %s", err)

}

defer session.Close()

// shell终端的模式,vt100

modes := ssh.TerminalModes{

ssh.ECHO: 0, // disable echoing

ssh.TTY_OP_ISPEED: 14400, // input speed = 14.4kbaud

ssh.TTY_OP_OSPEED: 14400, // output speed = 14.4kbaud

}

if err := session.RequestPty("vt100", 80, 40, modes); err != nil {

log.Fatal(err)

}

// session的标准输入管道

w, err := session.StdinPipe()

if err != nil {

panic(err)

}

// session的标准输出管道

r, err := session.StdoutPipe()

if err != nil {

panic(err)

}

// session的错误输出管道

e, err := session.StderrPipe()

if err != nil {

panic(err)

}

// channel 读写shell

in, out := MuxShell(w, r, e)

if err := session.Shell(); err != nil {

log.Fatal(err)

}

if iManLogin() {

in

in

}

in

// 退出系统 shell

in

// 退出iMan shell

if iManLogin() {

// fmt.Println("iMan 退出系统中...")

in

}

if debugSwitch {

fmt.Printf("----------正在远程连接: %s:%s,请稍等.------------\n", hostIp, port)

if iManLogin() {

fmt.Println("\n############### iMan登录 ####################")

fmt.Printf("命令执行返回: %s\n",

fmt.Printf("\t\t%s\n",

}

fmt.Println("\n############### 执行命令结果 ####################")

fmt.Printf("命令执行返回: \n%s\n\n",

fmt.Println("############### 退出系统 ####################")

fmt.Printf("命令执行返回: %s\n\n",

if iManLogin() {

fmt.Println("退出系统shell.")

fmt.Printf("\t\t%s\n",

}

fmt.Println("############### 本次SSH结束 ####################")

} else {

if iManLogin() {

_, _, _ =

} else {

_ =

}

}

session.Wait()

}

func Usage() {

fmt.Printf(`Usage of cssh:

-c string

To perform a shell command.

-d bool The debug statu.

-h string

The remote host ip.

-iManp string

The host login iman user password.

-iManu string

The host login iman user name.

-p string

The host login user password.

-port string

The remote host port. (default "22")

-u string

The host login user name.

[cssh -h 192.168.1.1 -port 22 -u root -p root -iManU admin -iManP admin -c "uptime;whoami" -d true]`)

os.Exit(1)

}

func iManLogin() bool {

if iManUser == "" && iManPassword == "" {

return false

}

return true

}

func MuxShell(w io.Writer, r, e io.Reader) (chan

in := make(chan string, 3)

out := make(chan string, 1)

var wg sync.WaitGroup

wg.Add(1) //for the shell itself

go func() {

for cmd := range in {

wg.Add(1)

w.Write([]byte(cmd + "\n"))

wg.Wait()

}

}()

go func() {

var (

buf [65 * 1024]byte

t int

)

for {

n, err := r.Read(buf[t:])

if err != nil {

fmt.Println(err.Error())

close(in)

close(out)

return

}

t += n

tmpLogIn := string(buf[:t])

//assuming the $PS1 == 'Login>'; $PS1 == 'Password:'; $PS1 == '[test@local ~]$ "; $PS1 == '[root@local ~]# '

if strings.Contains(tmpLogIn, "Login>") || strings.Contains(tmpLogIn, "Password:") ||

strings.Contains(tmpLogIn, "$") || strings.Contains(tmpLogIn, "]#") {

out

t = 0

wg.Done()

}

}

}()

return in, out

}