-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathmain.go
476 lines (400 loc) · 15 KB
/
main.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
package main
import (
"bytes"
"io/ioutil"
"net/http"
"os"
"os/exec"
"path/filepath"
"strings"
"unicode/utf16"
"unicode/utf8"
tgbotapi "github.com/go-telegram-bot-api/telegram-bot-api/v5"
"github.com/pkg/errors"
"github.com/rs/zerolog/log"
)
const (
// CmdLogin specifies chat login command.
CmdLogin = "/login"
// CmdLogout specifies chat logout command.
CmdLogout = "/logout"
// CmdDisplay specifies file display command.
CmdDisplay = "/display"
// CmdUpload specifies upload file command.
CmdUpload = "/upload"
)
// UploadFilePerm specifies mode for uploaded files.
const UploadFilePerm = 0600
var (
apiToken = os.Getenv("TELESHELL_API_TOKEN")
password = os.Getenv("TELESHELL_PASSWORD")
shell = os.Getenv("TELESHELL_SHELL")
)
const (
// ChatStateInitial represents initial chat state.
ChatStateInitial = iota
// ChatStateAwaitingPassword represents awaiting password state.
ChatStateAwaitingPassword
// ChatStateAwaitingDisplayPath represents awaiting display path state.
ChatStateAwaitingDisplayPath
// ChatStateAwaitingUploadPath represents awaiting upload path state.
ChatStateAwaitingUploadPath
// ChatStateAwaitingUploadFile represents awaiting upload file state.
ChatStateAwaitingUploadFile
)
// ChatState represents chat state.
type ChatState struct {
State int
LoggedIn bool
UploadPath string
}
func main() {
// Initialize Telegram Bot API Client.
bot, err := tgbotapi.NewBotAPI(apiToken)
if err != nil {
log.Fatal().Err(err).Msg("Failed to create Bot API client")
}
// Bot API client successfully created and authenticated.
log.Info().Str("username", bot.Self.UserName).Msgf("Authenticated in the Telegram API")
// Set debug mode for the client.
bot.Debug = true
// Prepare updates configuration.
update := tgbotapi.NewUpdate(0)
update.Timeout = 60
// Prepare updates channel.
updates := bot.GetUpdatesChan(update)
// Prepare chats state index.
chats := map[int64]*ChatState{}
// Handle all incoming events.
for update := range updates {
if update.Message != nil {
logIncomingMessage(update.Message)
// Save metadata of chat to the state.
if _, ok := chats[update.Message.Chat.ID]; !ok {
chats[update.Message.Chat.ID] = &ChatState{
State: ChatStateInitial,
}
}
// FSE for the chat.
switch {
// Handle login command.
case update.Message.Text == CmdLogin:
// Prepare response message to ask the user's password.
messageConfig := newMessageConfig(update.Message, "Specify password")
messageConfig.ReplyMarkup = tgbotapi.ForceReply{ForceReply: true}
logSendMessage(bot.Send(messageConfig))
// Switch chat session state to awaiting password.
chats[update.Message.Chat.ID].State = ChatStateAwaitingPassword
// Handle login with args command.
case strings.HasPrefix(update.Message.Text, CmdLogin):
commandArgs := strings.TrimPrefix(update.Message.Text, CmdLogin)
update.Message.Text = strings.Trim(commandArgs, " ")
fallthrough
// Handle login command password.
case chats[update.Message.Chat.ID].State == ChatStateAwaitingPassword:
// Switch chat state back to initial to rule out state traps.
chats[update.Message.Chat.ID].State = ChatStateInitial
if update.Message.Text != password {
// Prepare response message for invalid password.
messageConfig := newMessageConfig(update.Message, "Invalid password")
logSendMessage(bot.Send(messageConfig))
} else {
// Prepare response message for valid password.
messageConfig := newMessageConfig(update.Message, "Logged in")
logSendMessage(bot.Send(messageConfig))
// Switch chat session to authenticated.
chats[update.Message.Chat.ID].LoggedIn = true
}
// Handle logout command.
case update.Message.Text == CmdLogout:
if checkLogin(chats, update.Message, bot) {
// Prepare response message for successful logout.
messageConfig := newMessageConfig(update.Message, "Logged out")
logSendMessage(bot.Send(messageConfig))
// Reset chat session state.
chats[update.Message.Chat.ID].LoggedIn = false
}
// Handle display command.
case update.Message.Text == CmdDisplay:
if checkLogin(chats, update.Message, bot) {
// Prepare response message for display file command.
messageConfig := newMessageConfig(update.Message, "Specify path")
logSendMessage(bot.Send(messageConfig))
// Switch chat session state to awaiting display path.
chats[update.Message.Chat.ID].State = ChatStateAwaitingDisplayPath
}
// Handle display with args command.
case strings.HasPrefix(update.Message.Text, CmdDisplay):
commandArgs := strings.TrimPrefix(update.Message.Text, CmdDisplay)
update.Message.Text = strings.Trim(commandArgs, " ")
fallthrough
// Handle display path command.
case chats[update.Message.Chat.ID].State == ChatStateAwaitingDisplayPath:
// Switch chat state back to initial to rule out state traps.
chats[update.Message.Chat.ID].State = ChatStateInitial
if checkLogin(chats, update.Message, bot) {
fileBytes, err := getFileBytes(update.Message.Text)
if err != nil {
// Prepare response message for error.
messageConfig := newMessageConfig(update.Message, err.Error())
logSendMessage(bot.Send(messageConfig))
} else {
// Prepare response message with a file.
messageConfig := tgbotapi.NewDocument(update.Message.Chat.ID, fileBytes)
messageConfig.ReplyToMessageID = update.Message.MessageID
logSendMessage(bot.Send(messageConfig))
}
}
// Handle upload command.
case update.Message.Text == CmdUpload:
if checkLogin(chats, update.Message, bot) {
// Prepare response message for upload file command.
messageConfig := newMessageConfig(update.Message, "Specify upload path")
logSendMessage(bot.Send(messageConfig))
// Switch chat session state to awaiting upload path.
chats[update.Message.Chat.ID].State = ChatStateAwaitingUploadPath
}
// Handle upload with args command.
case strings.HasPrefix(update.Message.Text, CmdUpload):
commandArgs := strings.TrimPrefix(update.Message.Text, CmdUpload)
update.Message.Text = strings.Trim(commandArgs, " ")
fallthrough
// Handle upload path command.
case chats[update.Message.Chat.ID].State == ChatStateAwaitingUploadPath:
// Switch chat state back to initial to rule out state traps.
chats[update.Message.Chat.ID].State = ChatStateInitial
if checkLogin(chats, update.Message, bot) {
chats[update.Message.Chat.ID].State = ChatStateAwaitingUploadFile
chats[update.Message.Chat.ID].UploadPath = update.Message.Text
// Prepare response message with a file path request.
messageConfig := newMessageConfig(update.Message, "Specify file attachment")
logSendMessage(bot.Send(messageConfig))
}
// Handle upload file command.
case chats[update.Message.Chat.ID].State == ChatStateAwaitingUploadFile:
// Switch chat state back to initial to rule out state traps.
chats[update.Message.Chat.ID].State = ChatStateInitial
if checkLogin(chats, update.Message, bot) {
if update.Message.Document == nil {
// Prepare response message for error.
messageConfig := newMessageConfig(update.Message, "No file uploaded")
logSendMessage(bot.Send(messageConfig))
} else {
go func(message *tgbotapi.Message, uploadPath string) {
// Get URL for attachment file.
fileURL, err := bot.GetFileDirectURL(update.Message.Document.FileID)
if err != nil {
// Prepare response message for error.
err = errors.Wrap(err, "failed to get file URL")
messageConfig := newMessageConfig(update.Message, err.Error())
logSendMessage(bot.Send(messageConfig))
return
}
// Download attachment file.
fileResponse, err := http.Get(fileURL)
if err != nil {
// Prepare response message for error.
err = errors.Wrap(err, "failed to download file")
messageConfig := newMessageConfig(update.Message, err.Error())
logSendMessage(bot.Send(messageConfig))
return
}
defer func() {
_ = fileResponse.Body.Close()
}()
// Read attachment file content.
fileData, err := ioutil.ReadAll(fileResponse.Body)
if err != nil {
// Prepare response message for error.
err = errors.Wrap(err, "failed to read file content")
messageConfig := newMessageConfig(update.Message, err.Error())
logSendMessage(bot.Send(messageConfig))
return
}
// Save downloaded file to the FS.
err = ioutil.WriteFile(uploadPath, fileData, UploadFilePerm)
if err != nil {
// Prepare response message for error.
err = errors.Wrap(err, "failed to write file content")
messageConfig := newMessageConfig(update.Message, err.Error())
logSendMessage(bot.Send(messageConfig))
return
}
// Specified file uploaded to file system.
messageConfig := newMessageConfig(update.Message, "Uploaded: "+uploadPath)
logSendMessage(bot.Send(messageConfig))
}(update.Message, chats[update.Message.Chat.ID].UploadPath)
}
}
// Handle shell command.
default:
// Switch chat state back to initial to rule out state traps.
chats[update.Message.Chat.ID].State = ChatStateInitial
if checkLogin(chats, update.Message, bot) {
go func(message *tgbotapi.Message) {
output, err := executeInShell(update.Message.Text)
output = strings.Trim(output, "\n")
writer := MessagesWriter{
maxMessageLength: 4096,
maxMessagesCount: 10,
newMessageConfig: func() tgbotapi.MessageConfig {
return newMessageConfig(message, "")
},
}
writer.Write("Output:", "bold")
writer.Write("\n", "")
writer.Write(output, "code")
if err != nil {
// Prepare error response message for command run.
writer.Write("\n\n", "")
writer.Write("Error:", "bold")
writer.Write("\n", "")
writer.Write(err.Error(), "code")
}
// Send prepared messages.
for _, messageConfig := range writer.Messages() {
logSendMessage(bot.Send(messageConfig))
}
}(update.Message)
}
}
}
}
}
// checkLogin checks that user in specified chat was logged in.
func checkLogin(chats map[int64]*ChatState, message *tgbotapi.Message, bot *tgbotapi.BotAPI) bool {
if !chats[message.Chat.ID].LoggedIn {
// Prepare response message for invalid authentication.
messageConfig := newMessageConfig(message, "Not logged in")
logSendMessage(bot.Send(messageConfig))
return false
}
return true
}
// newMessageConfig returns new message prototype as a reply to another message.
func newMessageConfig(replyTo *tgbotapi.Message, messageText string) tgbotapi.MessageConfig {
messageConfig := tgbotapi.NewMessage(replyTo.Chat.ID, messageText)
messageConfig.ReplyToMessageID = replyTo.MessageID
return messageConfig
}
// logIncomingMessage logs incoming message from the update object.
func logIncomingMessage(message *tgbotapi.Message) {
logEvent := log.Info()
logEvent.Str("username", message.From.UserName)
logEvent.Int("message-id", message.MessageID)
logEvent.Str("message-text", message.Text)
logEvent.Msg("Message accepted")
}
// logSendMessage logs message.Send() invocation result.
func logSendMessage(message tgbotapi.Message, err error) {
if err != nil {
logEvent := log.Warn().Err(err)
logEvent.Int("message-id", message.MessageID)
logEvent.Str("message-text", message.Text)
logEvent.Msg("Failed to send message")
return
}
logEvent := log.Info()
logEvent.Str("username", message.Chat.UserName)
logEvent.Int("message-id", message.MessageID)
logEvent.Str("message-text", message.Text)
logEvent.Msg("Message sent")
}
// getFileBytes returns file bytes by path.
func getFileBytes(path string) (*tgbotapi.FileBytes, error) {
data, err := ioutil.ReadFile(path)
if err != nil {
return nil, errors.Wrap(err, "failed to read file")
}
return &tgbotapi.FileBytes{
Name: filepath.Base(path),
Bytes: data,
}, nil
}
// executeInShell executes specified script in Bash.
func executeInShell(script string) (string, error) {
// Prepare command input.
buffer := bytes.Buffer{}
buffer.WriteString(script)
// Prepare command instance.
command := exec.Command(shell)
command.Stdin = &buffer
// Execute command capturing stdin and stdout.
output, err := command.CombinedOutput()
if err != nil {
return string(output), errors.Wrap(err, "failed to execute command")
}
return strings.ToValidUTF8(string(output), ""), nil
}
// MessagesWriter writes messages with splitting and markup.
type MessagesWriter struct {
maxMessageLength int
maxMessagesCount int
newMessageConfig func() tgbotapi.MessageConfig
messageConfigs []tgbotapi.MessageConfig
messageEntities []tgbotapi.MessageEntity
stringBuilder strings.Builder
}
// Write adds specified message text with markup.
func (mw *MessagesWriter) Write(largeMessage string, format string) {
for largeMessage != "" {
chunkMessage := largeMessage
builderRuneCount := mw.getStringRuneCount(mw.stringBuilder.String())
messageRuneCount := mw.getStringRuneCount(chunkMessage)
// If message is larger than available size, then pick part of it
if builderRuneCount+messageRuneCount > mw.maxMessageLength {
// Split original message to right size chunks.
freeSpace := mw.maxMessageLength - builderRuneCount
messageRunes := []rune(chunkMessage)
chunkMessage = string(messageRunes[:freeSpace])
largeMessage = string(messageRunes[freeSpace:])
} else {
// Everything is written.
largeMessage = ""
}
// Store metadata to entities slice.
if format != "" {
mw.messageEntities = append(mw.messageEntities, tgbotapi.MessageEntity{
Type: format,
Offset: mw.getUTF16BytesCount(mw.stringBuilder.String()),
Length: mw.getUTF16BytesCount(chunkMessage),
})
}
// Store message to string builder.
mw.stringBuilder.WriteString(chunkMessage)
// Flush accumulated data when it was an overflow.
if builderRuneCount+messageRuneCount > mw.maxMessageLength {
mw.flush()
}
}
}
// flush flushes accumulated data to messages.
func (mw *MessagesWriter) flush() {
// When max messages limit achieved.
if len(mw.messageConfigs) >= mw.maxMessagesCount {
mw.stringBuilder = strings.Builder{}
mw.messageEntities = nil
return
}
messageConfig := mw.newMessageConfig()
messageConfig.Text = mw.stringBuilder.String()
messageConfig.Entities = mw.messageEntities
mw.messageConfigs = append(mw.messageConfigs, messageConfig)
mw.stringBuilder = strings.Builder{}
mw.messageEntities = nil
}
// Messages returns accumulated message configs.
func (mw *MessagesWriter) Messages() []tgbotapi.MessageConfig {
if mw.stringBuilder.Len() != 0 {
mw.flush()
}
return mw.messageConfigs
}
// getUTF16BytesCount returns count of bytes for UTF-16 version of `utf8string`.
func (mw *MessagesWriter) getUTF16BytesCount(utf8string string) int {
return len(utf16.Encode([]rune(utf8string)))
}
// getStringRuneCount returns count of runes for UTF-8 string in `utf8string`.
func (mw *MessagesWriter) getStringRuneCount(utf8string string) int {
return utf8.RuneCountInString(utf8string)
}