2019-12-05 09:36:58 -05:00
|
|
|
|
package main
|
|
|
|
|
|
|
|
|
|
|
|
import (
|
|
|
|
|
|
"context"
|
2021-11-05 21:46:44 -04:00
|
|
|
|
"crypto/tls"
|
2021-01-15 11:45:49 -05:00
|
|
|
|
"errors"
|
2019-12-07 05:14:40 -05:00
|
|
|
|
"fmt"
|
2021-08-17 23:56:54 -04:00
|
|
|
|
"io"
|
2021-01-15 11:45:49 -05:00
|
|
|
|
"net"
|
|
|
|
|
|
"net/http"
|
2019-12-08 10:49:38 -05:00
|
|
|
|
"os"
|
2021-01-18 20:59:04 -05:00
|
|
|
|
"os/exec"
|
2022-03-19 05:22:15 -04:00
|
|
|
|
"path/filepath"
|
2022-01-18 07:41:51 -05:00
|
|
|
|
"runtime"
|
2022-03-19 05:22:15 -04:00
|
|
|
|
"strings"
|
2019-12-07 05:14:40 -05:00
|
|
|
|
"time"
|
2019-12-05 09:36:58 -05:00
|
|
|
|
|
2022-03-19 05:22:15 -04:00
|
|
|
|
"github.com/AlecAivazis/survey/v2"
|
2020-11-29 11:07:27 -05:00
|
|
|
|
"github.com/blang/semver"
|
2021-01-15 11:45:49 -05:00
|
|
|
|
"github.com/go-ping/ping"
|
2021-08-17 23:56:54 -04:00
|
|
|
|
"github.com/gorilla/websocket"
|
2022-10-18 11:40:01 -04:00
|
|
|
|
"github.com/nezhahq/go-github-selfupdate/selfupdate"
|
2022-03-19 05:22:15 -04:00
|
|
|
|
"github.com/shirou/gopsutil/v3/disk"
|
2022-01-18 08:07:16 -05:00
|
|
|
|
"github.com/shirou/gopsutil/v3/host"
|
2022-03-19 05:22:15 -04:00
|
|
|
|
psnet "github.com/shirou/gopsutil/v3/net"
|
2021-08-27 08:30:36 -04:00
|
|
|
|
flag "github.com/spf13/pflag"
|
2019-12-05 09:36:58 -05:00
|
|
|
|
"google.golang.org/grpc"
|
2021-11-05 21:46:44 -04:00
|
|
|
|
"google.golang.org/grpc/credentials"
|
2022-03-19 05:22:15 -04:00
|
|
|
|
"google.golang.org/grpc/credentials/insecure"
|
2019-12-05 10:42:20 -05:00
|
|
|
|
|
2021-03-20 02:53:10 -04:00
|
|
|
|
"github.com/naiba/nezha/cmd/agent/monitor"
|
2021-08-18 05:42:26 -04:00
|
|
|
|
"github.com/naiba/nezha/cmd/agent/processgroup"
|
|
|
|
|
|
"github.com/naiba/nezha/cmd/agent/pty"
|
2020-11-10 21:07:45 -05:00
|
|
|
|
"github.com/naiba/nezha/model"
|
2021-01-28 10:19:59 -05:00
|
|
|
|
"github.com/naiba/nezha/pkg/utils"
|
2020-11-10 21:07:45 -05:00
|
|
|
|
pb "github.com/naiba/nezha/proto"
|
|
|
|
|
|
"github.com/naiba/nezha/service/rpc"
|
2019-12-05 09:36:58 -05:00
|
|
|
|
)
|
|
|
|
|
|
|
2022-03-19 05:22:15 -04:00
|
|
|
|
type AgentCliParam struct {
|
2022-04-12 05:43:57 -04:00
|
|
|
|
SkipConnectionCount bool // 跳过连接数检查
|
|
|
|
|
|
SkipProcsCount bool // 跳过进程数量检查
|
|
|
|
|
|
DisableAutoUpdate bool // 关闭自动更新
|
|
|
|
|
|
DisableForceUpdate bool // 关闭强制更新
|
|
|
|
|
|
DisableCommandExecute bool // 关闭命令执行
|
|
|
|
|
|
Debug bool // debug模式
|
|
|
|
|
|
Server string // 服务器地址
|
|
|
|
|
|
ClientSecret string // 客户端密钥
|
|
|
|
|
|
ReportDelay int // 报告间隔
|
|
|
|
|
|
TLS bool // 是否使用TLS加密传输至服务端
|
2021-09-27 09:18:09 -04:00
|
|
|
|
}
|
|
|
|
|
|
|
2019-12-08 10:49:38 -05:00
|
|
|
|
var (
|
2021-09-29 07:58:02 -04:00
|
|
|
|
version string
|
2022-01-18 08:07:16 -05:00
|
|
|
|
arch string
|
2021-09-29 07:58:02 -04:00
|
|
|
|
client pb.NezhaServiceClient
|
|
|
|
|
|
inited bool
|
2019-12-08 10:49:38 -05:00
|
|
|
|
)
|
|
|
|
|
|
|
2020-11-30 01:24:00 -05:00
|
|
|
|
var (
|
2022-03-19 05:22:15 -04:00
|
|
|
|
agentCliParam AgentCliParam
|
|
|
|
|
|
agentConfig model.AgentConfig
|
|
|
|
|
|
httpClient = &http.Client{
|
2021-01-20 20:37:29 -05:00
|
|
|
|
CheckRedirect: func(req *http.Request, via []*http.Request) error {
|
|
|
|
|
|
return http.ErrUseLastResponse
|
|
|
|
|
|
},
|
2021-05-21 22:56:30 -04:00
|
|
|
|
Timeout: time.Second * 30,
|
2021-01-20 20:37:29 -05:00
|
|
|
|
}
|
2020-11-30 01:24:00 -05:00
|
|
|
|
)
|
|
|
|
|
|
|
2021-05-21 22:56:30 -04:00
|
|
|
|
const (
|
|
|
|
|
|
delayWhenError = time.Second * 10 // Agent 重连间隔
|
2021-06-11 23:37:47 -04:00
|
|
|
|
networkTimeOut = time.Second * 5 // 普通网络超时
|
2021-05-21 22:56:30 -04:00
|
|
|
|
)
|
2021-01-17 02:43:34 -05:00
|
|
|
|
|
2021-09-29 07:58:02 -04:00
|
|
|
|
func init() {
|
|
|
|
|
|
http.DefaultClient.Timeout = time.Second * 5
|
|
|
|
|
|
flag.CommandLine.ParseErrorsWhitelist.UnknownFlags = true
|
2022-03-19 05:22:15 -04:00
|
|
|
|
|
|
|
|
|
|
ex, err := os.Executable()
|
|
|
|
|
|
if err != nil {
|
|
|
|
|
|
panic(err)
|
|
|
|
|
|
}
|
|
|
|
|
|
agentConfig.Read(filepath.Dir(ex) + "/config.yml")
|
2021-09-29 07:58:02 -04:00
|
|
|
|
}
|
|
|
|
|
|
|
2019-12-05 09:36:58 -05:00
|
|
|
|
func main() {
|
2022-04-12 05:43:57 -04:00
|
|
|
|
// windows环境处理
|
2022-01-18 08:07:16 -05:00
|
|
|
|
if runtime.GOOS == "windows" {
|
|
|
|
|
|
hostArch, err := host.KernelArch()
|
|
|
|
|
|
if err != nil {
|
|
|
|
|
|
panic(err)
|
|
|
|
|
|
}
|
|
|
|
|
|
if hostArch == "i386" {
|
|
|
|
|
|
hostArch = "386"
|
|
|
|
|
|
}
|
|
|
|
|
|
if hostArch == "i686" || hostArch == "ia64" || hostArch == "x86_64" {
|
|
|
|
|
|
hostArch = "amd64"
|
|
|
|
|
|
}
|
|
|
|
|
|
if hostArch == "aarch64" {
|
|
|
|
|
|
hostArch = "arm64"
|
|
|
|
|
|
}
|
|
|
|
|
|
if arch != hostArch {
|
|
|
|
|
|
panic(fmt.Sprintf("与当前系统不匹配,当前运行 %s_%s, 需要下载 %s_%s", runtime.GOOS, arch, runtime.GOOS, hostArch))
|
|
|
|
|
|
}
|
2022-01-18 07:41:51 -05:00
|
|
|
|
}
|
|
|
|
|
|
|
2020-11-29 23:45:51 -05:00
|
|
|
|
// 来自于 GoReleaser 的版本号
|
2021-07-08 12:01:58 -04:00
|
|
|
|
monitor.Version = version
|
2019-12-08 10:49:38 -05:00
|
|
|
|
|
2022-04-12 05:43:57 -04:00
|
|
|
|
// 初始化运行参数
|
2022-03-19 05:22:15 -04:00
|
|
|
|
var isEditAgentConfig bool
|
|
|
|
|
|
flag.BoolVarP(&agentCliParam.Debug, "debug", "d", false, "开启调试信息")
|
|
|
|
|
|
flag.BoolVarP(&isEditAgentConfig, "edit-agent-config", "", false, "修改要监控的网卡/分区白名单")
|
|
|
|
|
|
flag.StringVarP(&agentCliParam.Server, "server", "s", "localhost:5555", "管理面板RPC端口")
|
|
|
|
|
|
flag.StringVarP(&agentCliParam.ClientSecret, "password", "p", "", "Agent连接Secret")
|
|
|
|
|
|
flag.IntVar(&agentCliParam.ReportDelay, "report-delay", 1, "系统状态上报间隔")
|
|
|
|
|
|
flag.BoolVar(&agentCliParam.SkipConnectionCount, "skip-conn", false, "不监控连接数")
|
|
|
|
|
|
flag.BoolVar(&agentCliParam.SkipProcsCount, "skip-procs", false, "不监控进程数")
|
|
|
|
|
|
flag.BoolVar(&agentCliParam.DisableCommandExecute, "disable-command-execute", false, "禁止在此机器上执行命令")
|
|
|
|
|
|
flag.BoolVar(&agentCliParam.DisableAutoUpdate, "disable-auto-update", false, "禁用自动升级")
|
|
|
|
|
|
flag.BoolVar(&agentCliParam.DisableForceUpdate, "disable-force-update", false, "禁用强制升级")
|
|
|
|
|
|
flag.BoolVar(&agentCliParam.TLS, "tls", false, "启用SSL/TLS加密")
|
2021-01-30 04:10:51 -05:00
|
|
|
|
flag.Parse()
|
|
|
|
|
|
|
2022-03-19 05:22:15 -04:00
|
|
|
|
if isEditAgentConfig {
|
|
|
|
|
|
editAgentConfig()
|
|
|
|
|
|
return
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
if agentCliParam.ClientSecret == "" {
|
2021-01-30 04:10:51 -05:00
|
|
|
|
flag.Usage()
|
|
|
|
|
|
return
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2022-03-19 05:22:15 -04:00
|
|
|
|
if agentCliParam.ReportDelay < 1 || agentCliParam.ReportDelay > 4 {
|
2021-10-09 12:03:02 -04:00
|
|
|
|
println("report-delay 的区间为 1-4")
|
|
|
|
|
|
return
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2021-01-30 04:10:51 -05:00
|
|
|
|
run()
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
func run() {
|
2019-12-09 03:02:49 -05:00
|
|
|
|
auth := rpc.AuthHandler{
|
2022-03-19 05:22:15 -04:00
|
|
|
|
ClientSecret: agentCliParam.ClientSecret,
|
2019-12-05 09:36:58 -05:00
|
|
|
|
}
|
2019-12-10 04:57:57 -05:00
|
|
|
|
|
2022-04-12 05:43:57 -04:00
|
|
|
|
// 下载远程命令执行需要的终端
|
2022-03-19 05:22:15 -04:00
|
|
|
|
if !agentCliParam.DisableCommandExecute {
|
2021-10-11 07:44:23 -04:00
|
|
|
|
go pty.DownloadDependency()
|
|
|
|
|
|
}
|
2019-12-10 04:57:57 -05:00
|
|
|
|
// 上报服务器信息
|
|
|
|
|
|
go reportState()
|
2021-03-20 11:50:16 -04:00
|
|
|
|
// 更新IP信息
|
|
|
|
|
|
go monitor.UpdateIP()
|
2019-12-10 04:57:57 -05:00
|
|
|
|
|
2022-04-12 05:43:57 -04:00
|
|
|
|
// 定时检查更新
|
2022-03-19 05:22:15 -04:00
|
|
|
|
if _, err := semver.Parse(version); err == nil && !agentCliParam.DisableAutoUpdate {
|
2022-04-12 05:43:57 -04:00
|
|
|
|
doSelfUpdate(true)
|
2020-12-19 10:27:59 -05:00
|
|
|
|
go func() {
|
2022-04-12 05:43:57 -04:00
|
|
|
|
for range time.Tick(20 * time.Minute) {
|
|
|
|
|
|
doSelfUpdate(true)
|
2020-12-19 10:27:59 -05:00
|
|
|
|
}
|
|
|
|
|
|
}()
|
|
|
|
|
|
}
|
2020-11-29 11:07:27 -05:00
|
|
|
|
|
2019-12-10 04:57:57 -05:00
|
|
|
|
var err error
|
|
|
|
|
|
var conn *grpc.ClientConn
|
|
|
|
|
|
|
2020-02-09 09:04:59 -05:00
|
|
|
|
retry := func() {
|
2021-07-16 06:09:50 -04:00
|
|
|
|
inited = false
|
2021-04-25 11:46:15 -04:00
|
|
|
|
println("Error to close connection ...")
|
2020-02-09 09:04:59 -05:00
|
|
|
|
if conn != nil {
|
|
|
|
|
|
conn.Close()
|
|
|
|
|
|
}
|
|
|
|
|
|
time.Sleep(delayWhenError)
|
2021-04-25 11:46:15 -04:00
|
|
|
|
println("Try to reconnect ...")
|
2020-02-09 09:04:59 -05:00
|
|
|
|
}
|
|
|
|
|
|
|
2019-12-09 05:14:31 -05:00
|
|
|
|
for {
|
2021-06-11 23:37:47 -04:00
|
|
|
|
timeOutCtx, cancel := context.WithTimeout(context.Background(), networkTimeOut)
|
2021-11-05 21:46:44 -04:00
|
|
|
|
var securityOption grpc.DialOption
|
2022-03-19 05:22:15 -04:00
|
|
|
|
if agentCliParam.TLS {
|
2021-11-05 23:42:23 -04:00
|
|
|
|
securityOption = grpc.WithTransportCredentials(credentials.NewTLS(&tls.Config{MinVersion: tls.VersionTLS12}))
|
2021-11-05 21:46:44 -04:00
|
|
|
|
} else {
|
2022-03-19 05:22:15 -04:00
|
|
|
|
securityOption = grpc.WithTransportCredentials(insecure.NewCredentials())
|
2021-11-05 21:46:44 -04:00
|
|
|
|
}
|
2022-03-19 05:22:15 -04:00
|
|
|
|
conn, err = grpc.DialContext(timeOutCtx, agentCliParam.Server, securityOption, grpc.WithPerRPCCredentials(&auth))
|
2019-12-09 03:02:49 -05:00
|
|
|
|
if err != nil {
|
2021-08-27 09:04:37 -04:00
|
|
|
|
println("与面板建立连接失败:", err)
|
2021-05-21 22:56:30 -04:00
|
|
|
|
cancel()
|
2019-12-09 05:14:31 -05:00
|
|
|
|
retry()
|
2019-12-09 03:02:49 -05:00
|
|
|
|
continue
|
|
|
|
|
|
}
|
2021-05-21 22:56:30 -04:00
|
|
|
|
cancel()
|
2019-12-09 03:02:49 -05:00
|
|
|
|
client = pb.NewNezhaServiceClient(conn)
|
|
|
|
|
|
// 第一步注册
|
2021-06-11 23:37:47 -04:00
|
|
|
|
timeOutCtx, cancel = context.WithTimeout(context.Background(), networkTimeOut)
|
2022-03-19 05:22:15 -04:00
|
|
|
|
_, err = client.ReportSystemInfo(timeOutCtx, monitor.GetHost(&agentConfig).PB())
|
2019-12-09 05:14:31 -05:00
|
|
|
|
if err != nil {
|
2021-08-27 09:04:37 -04:00
|
|
|
|
println("上报系统信息失败:", err)
|
2021-06-11 23:37:47 -04:00
|
|
|
|
cancel()
|
2019-12-09 05:14:31 -05:00
|
|
|
|
retry()
|
|
|
|
|
|
continue
|
|
|
|
|
|
}
|
2021-06-11 23:37:47 -04:00
|
|
|
|
cancel()
|
2021-07-16 06:09:50 -04:00
|
|
|
|
inited = true
|
2021-01-15 11:45:49 -05:00
|
|
|
|
// 执行 Task
|
2022-03-19 05:22:15 -04:00
|
|
|
|
tasks, err := client.RequestTask(context.Background(), monitor.GetHost(&agentConfig).PB())
|
2019-12-09 03:02:49 -05:00
|
|
|
|
if err != nil {
|
2021-08-27 09:04:37 -04:00
|
|
|
|
println("请求任务失败:", err)
|
2019-12-09 05:14:31 -05:00
|
|
|
|
retry()
|
2019-12-09 03:02:49 -05:00
|
|
|
|
continue
|
|
|
|
|
|
}
|
2021-01-15 11:45:49 -05:00
|
|
|
|
err = receiveTasks(tasks)
|
2021-08-27 09:04:37 -04:00
|
|
|
|
println("receiveTasks exit to main:", err)
|
2019-12-09 05:14:31 -05:00
|
|
|
|
retry()
|
2019-12-07 05:14:40 -05:00
|
|
|
|
}
|
2019-12-09 03:02:49 -05:00
|
|
|
|
}
|
2019-12-07 05:14:40 -05:00
|
|
|
|
|
2021-01-15 11:45:49 -05:00
|
|
|
|
func receiveTasks(tasks pb.NezhaService_RequestTaskClient) error {
|
2019-12-09 03:02:49 -05:00
|
|
|
|
var err error
|
2021-04-25 11:46:15 -04:00
|
|
|
|
defer println("receiveTasks exit", time.Now(), "=>", err)
|
2019-12-09 03:02:49 -05:00
|
|
|
|
for {
|
2021-01-16 05:04:47 -05:00
|
|
|
|
var task *pb.Task
|
2021-01-15 11:45:49 -05:00
|
|
|
|
task, err = tasks.Recv()
|
2019-12-09 03:02:49 -05:00
|
|
|
|
if err != nil {
|
|
|
|
|
|
return err
|
|
|
|
|
|
}
|
2021-08-17 23:56:54 -04:00
|
|
|
|
go func() {
|
|
|
|
|
|
defer func() {
|
2021-09-29 07:58:02 -04:00
|
|
|
|
if err := recover(); err != nil {
|
|
|
|
|
|
println("task panic", task, err)
|
2021-08-17 23:56:54 -04:00
|
|
|
|
}
|
|
|
|
|
|
}()
|
|
|
|
|
|
doTask(task)
|
|
|
|
|
|
}()
|
2021-01-16 05:04:47 -05:00
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
func doTask(task *pb.Task) {
|
|
|
|
|
|
var result pb.TaskResult
|
|
|
|
|
|
result.Id = task.GetId()
|
|
|
|
|
|
result.Type = task.GetType()
|
|
|
|
|
|
switch task.GetType() {
|
2021-08-17 23:56:54 -04:00
|
|
|
|
case model.TaskTypeTerminal:
|
|
|
|
|
|
handleTerminalTask(task)
|
2021-01-18 20:59:04 -05:00
|
|
|
|
case model.TaskTypeHTTPGET:
|
2021-08-17 23:56:54 -04:00
|
|
|
|
handleHttpGetTask(task, &result)
|
2021-01-18 20:59:04 -05:00
|
|
|
|
case model.TaskTypeICMPPing:
|
2021-08-17 23:56:54 -04:00
|
|
|
|
handleIcmpPingTask(task, &result)
|
2021-01-18 20:59:04 -05:00
|
|
|
|
case model.TaskTypeTCPPing:
|
2021-08-17 23:56:54 -04:00
|
|
|
|
handleTcpPingTask(task, &result)
|
2021-01-18 20:59:04 -05:00
|
|
|
|
case model.TaskTypeCommand:
|
2021-08-17 23:56:54 -04:00
|
|
|
|
handleCommandTask(task, &result)
|
2021-09-27 09:24:04 -04:00
|
|
|
|
case model.TaskTypeUpgrade:
|
|
|
|
|
|
handleUpgradeTask(task, &result)
|
2021-11-10 23:49:54 -05:00
|
|
|
|
case model.TaskTypeKeepalive:
|
|
|
|
|
|
return
|
2021-01-16 05:04:47 -05:00
|
|
|
|
default:
|
2021-08-27 09:04:37 -04:00
|
|
|
|
println("不支持的任务:", task)
|
2019-12-07 05:14:40 -05:00
|
|
|
|
}
|
2021-06-11 23:37:47 -04:00
|
|
|
|
client.ReportTask(context.Background(), &result)
|
2019-12-09 03:02:49 -05:00
|
|
|
|
}
|
2019-12-05 09:36:58 -05:00
|
|
|
|
|
2022-04-12 05:43:57 -04:00
|
|
|
|
// reportState 向server上报状态信息
|
2019-12-09 03:02:49 -05:00
|
|
|
|
func reportState() {
|
2021-01-13 09:30:28 -05:00
|
|
|
|
var lastReportHostInfo time.Time
|
2019-12-09 03:02:49 -05:00
|
|
|
|
var err error
|
2021-04-25 11:46:15 -04:00
|
|
|
|
defer println("reportState exit", time.Now(), "=>", err)
|
2019-12-09 03:02:49 -05:00
|
|
|
|
for {
|
2021-07-16 06:09:50 -04:00
|
|
|
|
// 为了更准确的记录时段流量,inited 后再上传状态信息
|
|
|
|
|
|
if client != nil && inited {
|
2022-03-19 05:22:15 -04:00
|
|
|
|
monitor.TrackNetworkSpeed(&agentConfig)
|
2021-06-11 23:37:47 -04:00
|
|
|
|
timeOutCtx, cancel := context.WithTimeout(context.Background(), networkTimeOut)
|
2022-03-19 05:22:15 -04:00
|
|
|
|
_, err = client.ReportSystemState(timeOutCtx, monitor.GetState(&agentConfig, agentCliParam.SkipConnectionCount, agentCliParam.SkipProcsCount).PB())
|
2021-06-11 23:37:47 -04:00
|
|
|
|
cancel()
|
2019-12-09 05:14:31 -05:00
|
|
|
|
if err != nil {
|
2021-04-25 11:46:15 -04:00
|
|
|
|
println("reportState error", err)
|
2019-12-09 05:14:31 -05:00
|
|
|
|
time.Sleep(delayWhenError)
|
|
|
|
|
|
}
|
2022-04-12 05:43:57 -04:00
|
|
|
|
// 每10分钟重新获取一次硬件信息
|
2021-01-13 09:30:28 -05:00
|
|
|
|
if lastReportHostInfo.Before(time.Now().Add(-10 * time.Minute)) {
|
|
|
|
|
|
lastReportHostInfo = time.Now()
|
2022-03-19 05:22:15 -04:00
|
|
|
|
client.ReportSystemInfo(context.Background(), monitor.GetHost(&agentConfig).PB())
|
2021-01-13 09:30:28 -05:00
|
|
|
|
}
|
2019-12-05 10:42:20 -05:00
|
|
|
|
}
|
2022-03-19 05:22:15 -04:00
|
|
|
|
time.Sleep(time.Second * time.Duration(agentCliParam.ReportDelay))
|
2019-12-05 10:42:20 -05:00
|
|
|
|
}
|
2019-12-05 09:36:58 -05:00
|
|
|
|
}
|
2021-04-25 11:46:15 -04:00
|
|
|
|
|
2022-04-12 05:43:57 -04:00
|
|
|
|
// doSelfUpdate 执行更新检查 如果更新成功则会结束进程
|
2021-11-04 01:52:45 -04:00
|
|
|
|
func doSelfUpdate(useLocalVersion bool) {
|
2021-11-04 00:06:20 -04:00
|
|
|
|
v := semver.MustParse("0.1.0")
|
2021-11-04 01:52:45 -04:00
|
|
|
|
if useLocalVersion {
|
2021-11-04 00:06:20 -04:00
|
|
|
|
v = semver.MustParse(version)
|
|
|
|
|
|
}
|
2021-08-27 09:04:37 -04:00
|
|
|
|
println("检查更新:", v)
|
2021-05-21 22:56:30 -04:00
|
|
|
|
latest, err := selfupdate.UpdateSelf(v, "naiba/nezha")
|
|
|
|
|
|
if err != nil {
|
2021-09-29 07:58:02 -04:00
|
|
|
|
println("更新失败:", err)
|
2021-05-21 22:56:30 -04:00
|
|
|
|
return
|
|
|
|
|
|
}
|
2021-08-27 09:04:37 -04:00
|
|
|
|
if !latest.Version.Equals(v) {
|
2022-04-12 05:43:57 -04:00
|
|
|
|
println("已经更新至:", latest.Version, " 正在结束进程")
|
2021-05-21 22:56:30 -04:00
|
|
|
|
os.Exit(1)
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2021-09-27 09:24:04 -04:00
|
|
|
|
func handleUpgradeTask(task *pb.Task, result *pb.TaskResult) {
|
2022-03-19 05:22:15 -04:00
|
|
|
|
if agentCliParam.DisableForceUpdate {
|
2021-11-04 00:55:12 -04:00
|
|
|
|
return
|
|
|
|
|
|
}
|
2021-11-04 01:52:45 -04:00
|
|
|
|
doSelfUpdate(false)
|
2021-09-27 09:24:04 -04:00
|
|
|
|
}
|
|
|
|
|
|
|
2021-08-17 23:56:54 -04:00
|
|
|
|
func handleTcpPingTask(task *pb.Task, result *pb.TaskResult) {
|
|
|
|
|
|
start := time.Now()
|
|
|
|
|
|
conn, err := net.DialTimeout("tcp", task.GetData(), time.Second*10)
|
|
|
|
|
|
if err == nil {
|
|
|
|
|
|
conn.Write([]byte("ping\n"))
|
|
|
|
|
|
conn.Close()
|
|
|
|
|
|
result.Delay = float32(time.Since(start).Microseconds()) / 1000.0
|
|
|
|
|
|
result.Successful = true
|
|
|
|
|
|
} else {
|
|
|
|
|
|
result.Data = err.Error()
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
func handleIcmpPingTask(task *pb.Task, result *pb.TaskResult) {
|
|
|
|
|
|
pinger, err := ping.NewPinger(task.GetData())
|
|
|
|
|
|
if err == nil {
|
|
|
|
|
|
pinger.SetPrivileged(true)
|
|
|
|
|
|
pinger.Count = 5
|
|
|
|
|
|
pinger.Timeout = time.Second * 20
|
|
|
|
|
|
err = pinger.Run() // Blocks until finished.
|
|
|
|
|
|
}
|
|
|
|
|
|
if err == nil {
|
2023-03-01 09:06:44 -05:00
|
|
|
|
if pinger.Statistics().PacketsRecv == 0 {
|
|
|
|
|
|
result.Data = "Ping 未收到回包"
|
|
|
|
|
|
} else {
|
|
|
|
|
|
result.Delay = float32(pinger.Statistics().AvgRtt.Microseconds()) / 1000.0
|
|
|
|
|
|
result.Successful = true
|
|
|
|
|
|
}
|
2021-08-17 23:56:54 -04:00
|
|
|
|
} else {
|
|
|
|
|
|
result.Data = err.Error()
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
func handleHttpGetTask(task *pb.Task, result *pb.TaskResult) {
|
|
|
|
|
|
start := time.Now()
|
|
|
|
|
|
resp, err := httpClient.Get(task.GetData())
|
|
|
|
|
|
if err == nil {
|
|
|
|
|
|
// 检查 HTTP Response 状态
|
|
|
|
|
|
result.Delay = float32(time.Since(start).Microseconds()) / 1000.0
|
|
|
|
|
|
if resp.StatusCode > 399 || resp.StatusCode < 200 {
|
|
|
|
|
|
err = errors.New("\n应用错误:" + resp.Status)
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
if err == nil {
|
|
|
|
|
|
// 检查 SSL 证书信息
|
2021-09-29 07:58:02 -04:00
|
|
|
|
if resp.TLS != nil && len(resp.TLS.PeerCertificates) > 0 {
|
2021-08-29 02:41:00 -04:00
|
|
|
|
c := resp.TLS.PeerCertificates[0]
|
2022-10-12 11:06:25 -04:00
|
|
|
|
result.Data = c.Issuer.CommonName + "|" + c.NotAfter.String()
|
2021-08-17 23:56:54 -04:00
|
|
|
|
}
|
2021-08-29 02:41:00 -04:00
|
|
|
|
result.Successful = true
|
2021-08-17 23:56:54 -04:00
|
|
|
|
} else {
|
|
|
|
|
|
// HTTP 请求失败
|
|
|
|
|
|
result.Data = err.Error()
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
func handleCommandTask(task *pb.Task, result *pb.TaskResult) {
|
2022-03-19 05:22:15 -04:00
|
|
|
|
if agentCliParam.DisableCommandExecute {
|
2021-10-11 07:41:19 -04:00
|
|
|
|
result.Data = "此 Agent 已禁止命令执行"
|
|
|
|
|
|
return
|
|
|
|
|
|
}
|
2021-08-17 23:56:54 -04:00
|
|
|
|
startedAt := time.Now()
|
|
|
|
|
|
var cmd *exec.Cmd
|
|
|
|
|
|
var endCh = make(chan struct{})
|
2021-08-18 05:42:26 -04:00
|
|
|
|
pg, err := processgroup.NewProcessExitGroup()
|
2021-08-17 23:56:54 -04:00
|
|
|
|
if err != nil {
|
|
|
|
|
|
// 进程组创建失败,直接退出
|
|
|
|
|
|
result.Data = err.Error()
|
|
|
|
|
|
return
|
|
|
|
|
|
}
|
|
|
|
|
|
timeout := time.NewTimer(time.Hour * 2)
|
|
|
|
|
|
if utils.IsWindows() {
|
2021-09-04 00:42:51 -04:00
|
|
|
|
cmd = exec.Command("cmd", "/c", task.GetData()) // #nosec
|
2021-08-17 23:56:54 -04:00
|
|
|
|
} else {
|
2021-09-04 00:42:51 -04:00
|
|
|
|
cmd = exec.Command("sh", "-c", task.GetData()) // #nosec
|
2021-08-17 23:56:54 -04:00
|
|
|
|
}
|
2021-08-19 11:57:45 -04:00
|
|
|
|
cmd.Env = os.Environ()
|
2021-08-17 23:56:54 -04:00
|
|
|
|
pg.AddProcess(cmd)
|
|
|
|
|
|
go func() {
|
|
|
|
|
|
select {
|
|
|
|
|
|
case <-timeout.C:
|
|
|
|
|
|
result.Data = "任务执行超时\n"
|
|
|
|
|
|
close(endCh)
|
|
|
|
|
|
pg.Dispose()
|
|
|
|
|
|
case <-endCh:
|
|
|
|
|
|
timeout.Stop()
|
|
|
|
|
|
}
|
|
|
|
|
|
}()
|
|
|
|
|
|
output, err := cmd.Output()
|
|
|
|
|
|
if err != nil {
|
|
|
|
|
|
result.Data += fmt.Sprintf("%s\n%s", string(output), err.Error())
|
|
|
|
|
|
} else {
|
|
|
|
|
|
close(endCh)
|
|
|
|
|
|
result.Data = string(output)
|
|
|
|
|
|
result.Successful = true
|
|
|
|
|
|
}
|
2021-09-30 00:01:01 -04:00
|
|
|
|
pg.Dispose()
|
2021-08-17 23:56:54 -04:00
|
|
|
|
result.Delay = float32(time.Since(startedAt).Seconds())
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2021-08-18 05:42:26 -04:00
|
|
|
|
type WindowSize struct {
|
|
|
|
|
|
Cols uint32
|
|
|
|
|
|
Rows uint32
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2021-08-17 23:56:54 -04:00
|
|
|
|
func handleTerminalTask(task *pb.Task) {
|
2022-03-19 05:22:15 -04:00
|
|
|
|
if agentCliParam.DisableCommandExecute {
|
2021-10-11 07:41:19 -04:00
|
|
|
|
println("此 Agent 已禁止命令执行")
|
|
|
|
|
|
return
|
|
|
|
|
|
}
|
2021-08-17 23:56:54 -04:00
|
|
|
|
var terminal model.TerminalTask
|
2022-03-18 11:13:22 -04:00
|
|
|
|
err := utils.Json.Unmarshal([]byte(task.GetData()), &terminal)
|
2021-08-17 23:56:54 -04:00
|
|
|
|
if err != nil {
|
|
|
|
|
|
println("Terminal 任务解析错误:", err)
|
|
|
|
|
|
return
|
|
|
|
|
|
}
|
|
|
|
|
|
protocol := "ws"
|
|
|
|
|
|
if terminal.UseSSL {
|
|
|
|
|
|
protocol += "s"
|
|
|
|
|
|
}
|
|
|
|
|
|
header := http.Header{}
|
2022-03-19 05:22:15 -04:00
|
|
|
|
header.Add("Secret", agentCliParam.ClientSecret)
|
2022-04-13 00:27:40 -04:00
|
|
|
|
// 目前只兼容Cloudflare验证
|
|
|
|
|
|
// 后续可能需要兼容更多的Cookie验证情况
|
|
|
|
|
|
if terminal.Cookie != "" {
|
|
|
|
|
|
cfCookie := fmt.Sprintf("CF_Authorization=%s", terminal.Cookie)
|
|
|
|
|
|
header.Add("Cookie", cfCookie)
|
|
|
|
|
|
}
|
2021-08-17 23:56:54 -04:00
|
|
|
|
conn, _, err := websocket.DefaultDialer.Dial(fmt.Sprintf("%s://%s/terminal/%s", protocol, terminal.Host, terminal.Session), header)
|
|
|
|
|
|
if err != nil {
|
|
|
|
|
|
println("Terminal 连接失败:", err)
|
|
|
|
|
|
return
|
|
|
|
|
|
}
|
|
|
|
|
|
defer conn.Close()
|
|
|
|
|
|
|
2021-08-18 05:42:26 -04:00
|
|
|
|
tty, err := pty.Start()
|
2021-08-17 23:56:54 -04:00
|
|
|
|
if err != nil {
|
|
|
|
|
|
println("Terminal pty.Start失败:", err)
|
|
|
|
|
|
return
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
defer func() {
|
2021-09-30 00:01:01 -04:00
|
|
|
|
err := tty.Close()
|
2021-08-17 23:56:54 -04:00
|
|
|
|
conn.Close()
|
2021-09-30 00:01:01 -04:00
|
|
|
|
println("terminal exit", terminal.Session, err)
|
2021-08-17 23:56:54 -04:00
|
|
|
|
}()
|
2021-08-18 05:42:26 -04:00
|
|
|
|
println("terminal init", terminal.Session)
|
2021-08-17 23:56:54 -04:00
|
|
|
|
|
|
|
|
|
|
go func() {
|
|
|
|
|
|
for {
|
|
|
|
|
|
buf := make([]byte, 1024)
|
|
|
|
|
|
read, err := tty.Read(buf)
|
|
|
|
|
|
if err != nil {
|
|
|
|
|
|
conn.WriteMessage(websocket.TextMessage, []byte(err.Error()))
|
2022-11-01 09:46:02 -04:00
|
|
|
|
conn.Close()
|
2021-08-17 23:56:54 -04:00
|
|
|
|
return
|
|
|
|
|
|
}
|
|
|
|
|
|
conn.WriteMessage(websocket.BinaryMessage, buf[:read])
|
|
|
|
|
|
}
|
|
|
|
|
|
}()
|
|
|
|
|
|
|
|
|
|
|
|
for {
|
|
|
|
|
|
messageType, reader, err := conn.NextReader()
|
|
|
|
|
|
if err != nil {
|
|
|
|
|
|
return
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
if messageType == websocket.TextMessage {
|
|
|
|
|
|
continue
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
dataTypeBuf := make([]byte, 1)
|
|
|
|
|
|
read, err := reader.Read(dataTypeBuf)
|
|
|
|
|
|
if err != nil {
|
|
|
|
|
|
conn.WriteMessage(websocket.TextMessage, []byte("Unable to read message type from reader"))
|
|
|
|
|
|
return
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
if read != 1 {
|
|
|
|
|
|
return
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
switch dataTypeBuf[0] {
|
|
|
|
|
|
case 0:
|
|
|
|
|
|
io.Copy(tty, reader)
|
|
|
|
|
|
case 1:
|
2022-03-18 11:13:22 -04:00
|
|
|
|
decoder := utils.Json.NewDecoder(reader)
|
2021-08-18 05:42:26 -04:00
|
|
|
|
var resizeMessage WindowSize
|
2021-08-17 23:56:54 -04:00
|
|
|
|
err := decoder.Decode(&resizeMessage)
|
|
|
|
|
|
if err != nil {
|
|
|
|
|
|
continue
|
|
|
|
|
|
}
|
2021-08-18 05:42:26 -04:00
|
|
|
|
tty.Setsize(resizeMessage.Cols, resizeMessage.Rows)
|
2021-08-17 23:56:54 -04:00
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2022-04-12 05:43:57 -04:00
|
|
|
|
// 修改Agent要监控的网卡与硬盘分区
|
2022-03-19 05:22:15 -04:00
|
|
|
|
func editAgentConfig() {
|
|
|
|
|
|
nc, err := psnet.IOCounters(true)
|
|
|
|
|
|
if err != nil {
|
|
|
|
|
|
panic(err)
|
|
|
|
|
|
}
|
|
|
|
|
|
var nicAllowlistOptions []string
|
|
|
|
|
|
for _, v := range nc {
|
|
|
|
|
|
nicAllowlistOptions = append(nicAllowlistOptions, v.Name)
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
var diskAllowlistOptions []string
|
|
|
|
|
|
diskList, err := disk.Partitions(false)
|
|
|
|
|
|
if err != nil {
|
|
|
|
|
|
panic(err)
|
|
|
|
|
|
}
|
|
|
|
|
|
for _, p := range diskList {
|
|
|
|
|
|
diskAllowlistOptions = append(diskAllowlistOptions, fmt.Sprintf("%s\t%s\t%s", p.Mountpoint, p.Fstype, p.Device))
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
var qs = []*survey.Question{
|
|
|
|
|
|
{
|
|
|
|
|
|
Name: "nic",
|
|
|
|
|
|
Prompt: &survey.MultiSelect{
|
|
|
|
|
|
Message: "选择要监控的网卡",
|
|
|
|
|
|
Options: nicAllowlistOptions,
|
|
|
|
|
|
},
|
|
|
|
|
|
},
|
|
|
|
|
|
{
|
|
|
|
|
|
Name: "disk",
|
|
|
|
|
|
Prompt: &survey.MultiSelect{
|
|
|
|
|
|
Message: "选择要监控的硬盘分区",
|
|
|
|
|
|
Options: diskAllowlistOptions,
|
|
|
|
|
|
},
|
|
|
|
|
|
},
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
answers := struct {
|
|
|
|
|
|
Nic []string
|
|
|
|
|
|
Disk []string
|
|
|
|
|
|
}{}
|
|
|
|
|
|
|
|
|
|
|
|
err = survey.Ask(qs, &answers, survey.WithValidator(survey.Required))
|
|
|
|
|
|
if err != nil {
|
|
|
|
|
|
fmt.Println("选择错误", err.Error())
|
|
|
|
|
|
return
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
agentConfig.HardDrivePartitionAllowlist = []string{}
|
|
|
|
|
|
for _, v := range answers.Disk {
|
|
|
|
|
|
agentConfig.HardDrivePartitionAllowlist = append(agentConfig.HardDrivePartitionAllowlist, strings.Split(v, "\t")[0])
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
agentConfig.NICAllowlist = make(map[string]bool)
|
|
|
|
|
|
for _, v := range answers.Nic {
|
|
|
|
|
|
agentConfig.NICAllowlist[v] = true
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
if err = agentConfig.Save(); err != nil {
|
|
|
|
|
|
panic(err)
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2022-04-10 08:28:22 -04:00
|
|
|
|
fmt.Println("修改自定义配置成功,重启 Agent 后生效")
|
2022-03-19 05:22:15 -04:00
|
|
|
|
}
|
|
|
|
|
|
|
2021-04-25 11:46:15 -04:00
|
|
|
|
func println(v ...interface{}) {
|
2022-03-19 05:22:15 -04:00
|
|
|
|
if agentCliParam.Debug {
|
2021-09-27 09:18:09 -04:00
|
|
|
|
fmt.Printf("NEZHA@%s>> ", time.Now().Format("2006-01-02 15:04:05"))
|
|
|
|
|
|
fmt.Println(v...)
|
2021-04-25 11:46:15 -04:00
|
|
|
|
}
|
|
|
|
|
|
}
|
