mirror of https://github.com/coddrago/Heroku
420 lines
13 KiB
Python
420 lines
13 KiB
Python
# Friendly Telegram (telegram userbot)
|
|
# Copyright (C) 2018-2019 The Authors
|
|
|
|
# This program is free software: you can redistribute it and/or modify
|
|
# it under the terms of the GNU Affero General Public License as published by
|
|
# the Free Software Foundation, either version 3 of the License, or
|
|
# (at your option) any later version.
|
|
|
|
# This program is distributed in the hope that it will be useful,
|
|
# but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
# GNU Affero General Public License for more details.
|
|
|
|
# You should have received a copy of the GNU Affero General Public License
|
|
# along with this program. If not, see <https://www.gnu.org/licenses/>.
|
|
|
|
# ©️ Dan Gazizullin, 2021-2023
|
|
# This file is a part of Hikka Userbot
|
|
# 🌐 https://github.com/hikariatama/Hikka
|
|
# You can redistribute it and/or modify it under the terms of the GNU AGPLv3
|
|
# 🔑 https://www.gnu.org/licenses/agpl-3.0.html
|
|
|
|
# ©️ Codrago, 2024-2025
|
|
# This file is a part of Heroku Userbot
|
|
# 🌐 https://github.com/coddrago/Heroku
|
|
# You can redistribute it and/or modify it under the terms of the GNU AGPLv3
|
|
# 🔑 https://www.gnu.org/licenses/agpl-3.0.html
|
|
|
|
# meta developer: @bsolute
|
|
|
|
import asyncio
|
|
import contextlib
|
|
import logging
|
|
import os
|
|
import re
|
|
import typing
|
|
|
|
import herokutl
|
|
|
|
from .. import loader, utils
|
|
|
|
logger = logging.getLogger(__name__)
|
|
|
|
|
|
def hash_msg(message):
|
|
return f"{str(utils.get_chat_id(message))}/{str(message.id)}"
|
|
|
|
async def read_stream(func: callable, stream, delay: float):
|
|
last_task = None
|
|
data = b""
|
|
while True:
|
|
dat = await stream.read(1)
|
|
|
|
if not dat:
|
|
# EOF
|
|
if last_task:
|
|
# Send all pending data
|
|
last_task.cancel()
|
|
await func(data.decode())
|
|
# If there is no last task there is inherently no data, so theres no point sending a blank string
|
|
break
|
|
|
|
data += dat
|
|
|
|
if last_task:
|
|
last_task.cancel()
|
|
|
|
last_task = asyncio.ensure_future(sleep_for_task(func, data, delay))
|
|
|
|
|
|
async def sleep_for_task(func: callable, data: bytes, delay: float):
|
|
await asyncio.sleep(delay)
|
|
await func(data.decode())
|
|
|
|
|
|
class MessageEditor:
|
|
def __init__(
|
|
self,
|
|
message: herokutl.tl.types.Message,
|
|
command: str,
|
|
config,
|
|
strings,
|
|
request_message,
|
|
):
|
|
self.message = message
|
|
self.command = command
|
|
self.stdout = ""
|
|
self.stderr = ""
|
|
self.rc = None
|
|
self.redraws = 0
|
|
self.config = config
|
|
self.strings = strings
|
|
self.request_message = request_message
|
|
|
|
async def update_stdout(self, stdout):
|
|
self.stdout = stdout
|
|
await self.redraw()
|
|
|
|
async def update_stderr(self, stderr):
|
|
self.stderr = stderr
|
|
await self.redraw()
|
|
|
|
async def redraw(self):
|
|
text = self.strings("running").format(utils.escape_html(self.command)) # fmt: skip
|
|
|
|
if self.rc is not None:
|
|
text += self.strings("finished").format(utils.escape_html(str(self.rc)))
|
|
|
|
text += self.strings("stdout")
|
|
text += utils.escape_html(self.stdout[max(len(self.stdout) - 2048, 0) :])
|
|
stderr = utils.escape_html(self.stderr[max(len(self.stderr) - 1024, 0) :])
|
|
text += (self.strings("stderr") + stderr) if stderr else ""
|
|
text += self.strings("end")
|
|
|
|
with contextlib.suppress(herokutl.errors.rpcerrorlist.MessageNotModifiedError):
|
|
try:
|
|
self.message = await utils.answer(self.message, text)
|
|
except herokutl.errors.rpcerrorlist.MessageTooLongError as e:
|
|
logger.error(e)
|
|
logger.error(text)
|
|
# The message is never empty due to the template header
|
|
|
|
async def cmd_ended(self, rc):
|
|
self.rc = rc
|
|
self.state = 4
|
|
await self.redraw()
|
|
|
|
def update_process(self, process):
|
|
pass
|
|
|
|
|
|
class SudoMessageEditor(MessageEditor):
|
|
# Let's just hope these are safe to parse
|
|
PASS_REQ = "[sudo] password for"
|
|
WRONG_PASS = r"\[sudo\] password for (.*): Sorry, try again\."
|
|
TOO_MANY_TRIES = (r"\[sudo\] password for (.*): sudo: [0-9]+ incorrect password attempts") # fmt: skip
|
|
|
|
def __init__(self, message, command, config, strings, request_message):
|
|
super().__init__(message, command, config, strings, request_message)
|
|
self.process = None
|
|
self.state = 0
|
|
self.authmsg = None
|
|
|
|
def update_process(self, process):
|
|
logger.debug("got sproc obj %s", process)
|
|
self.process = process
|
|
|
|
async def update_stderr(self, stderr):
|
|
logger.debug("stderr update " + stderr)
|
|
self.stderr = stderr
|
|
lines = stderr.strip().split("\n")
|
|
lastline = lines[-1]
|
|
lastlines = lastline.rsplit(" ", 1)
|
|
handled = False
|
|
|
|
if (
|
|
len(lines) > 1
|
|
and re.fullmatch(self.WRONG_PASS, lines[-2])
|
|
and lastlines[0] == self.PASS_REQ
|
|
and self.state == 1
|
|
):
|
|
logger.debug("switching state to 0")
|
|
await self.authmsg.edit(self.strings("auth_failed"))
|
|
self.state = 0
|
|
handled = True
|
|
await asyncio.sleep(2)
|
|
await self.authmsg.delete()
|
|
|
|
if lastlines[0] == self.PASS_REQ and self.state == 0:
|
|
logger.debug("Success to find sudo log!")
|
|
text = self.strings("auth_needed").format(self._tg_id)
|
|
|
|
try:
|
|
await utils.answer(self.message, text)
|
|
except herokutl.errors.rpcerrorlist.MessageNotModifiedError as e:
|
|
logger.debug(e)
|
|
|
|
logger.debug("edited message with link to self")
|
|
command = "<code>" + utils.escape_html(self.command) + "</code>"
|
|
user = utils.escape_html(lastlines[1][:-1])
|
|
|
|
self.authmsg = await self.message[0].client.send_message(
|
|
"me",
|
|
self.strings("auth_msg").format(command, user),
|
|
)
|
|
logger.debug("sent message to self")
|
|
|
|
self.message[0].client.remove_event_handler(self.on_message_edited)
|
|
self.message[0].client.add_event_handler(
|
|
self.on_message_edited,
|
|
herokutl.events.messageedited.MessageEdited(chats=["me"]),
|
|
)
|
|
|
|
logger.debug("registered handler")
|
|
handled = True
|
|
|
|
if len(lines) > 1 and (
|
|
re.fullmatch(self.TOO_MANY_TRIES, lastline) and self.state in {1, 3, 4}
|
|
):
|
|
logger.debug("password wrong lots of times")
|
|
await utils.answer(self.message, self.strings("auth_locked"))
|
|
await self.authmsg.delete()
|
|
self.state = 2
|
|
handled = True
|
|
|
|
if not handled:
|
|
logger.debug("Didn't find sudo log.")
|
|
if self.authmsg is not None:
|
|
await self.authmsg[0].delete()
|
|
self.authmsg = None
|
|
self.state = 2
|
|
await self.redraw()
|
|
|
|
logger.debug(self.state)
|
|
|
|
async def update_stdout(self, stdout):
|
|
self.stdout = stdout
|
|
|
|
if self.state != 2:
|
|
self.state = 3 # Means that we got stdout only
|
|
|
|
if self.authmsg is not None:
|
|
await self.authmsg.delete()
|
|
self.authmsg = None
|
|
|
|
await self.redraw()
|
|
|
|
async def on_message_edited(self, message):
|
|
# Message contains sensitive information.
|
|
if self.authmsg is None:
|
|
return
|
|
|
|
logger.debug("got message edit update in self %s", str(message.id))
|
|
|
|
if hash_msg(message) == hash_msg(self.authmsg):
|
|
# The user has provided interactive authentication. Send password to stdin for sudo.
|
|
try:
|
|
self.authmsg = await utils.answer(message, self.strings("auth_ongoing"))
|
|
except herokutl.errors.rpcerrorlist.MessageNotModifiedError:
|
|
# Try to clear personal info if the edit fails
|
|
await message.delete()
|
|
|
|
self.state = 1
|
|
self.process.stdin.write(
|
|
message.message.message.split("\n", 1)[0].encode() + b"\n"
|
|
)
|
|
|
|
|
|
class RawMessageEditor(SudoMessageEditor):
|
|
def __init__(
|
|
self,
|
|
message,
|
|
command,
|
|
config,
|
|
strings,
|
|
request_message,
|
|
show_done=False,
|
|
):
|
|
super().__init__(message, command, config, strings, request_message)
|
|
self.show_done = show_done
|
|
|
|
async def redraw(self):
|
|
logger.debug(self.rc)
|
|
|
|
if self.rc is None:
|
|
text = (
|
|
"<code>"
|
|
+ utils.escape_html(self.stdout[max(len(self.stdout) - 4095, 0) :])
|
|
+ "</code>"
|
|
)
|
|
elif self.rc == 0:
|
|
text = (
|
|
"<code>"
|
|
+ utils.escape_html(self.stdout[max(len(self.stdout) - 4090, 0) :])
|
|
+ "</code>"
|
|
)
|
|
else:
|
|
text = (
|
|
"<code>"
|
|
+ utils.escape_html(self.stderr[max(len(self.stderr) - 4095, 0) :])
|
|
+ "</code>"
|
|
)
|
|
|
|
if self.rc is not None and self.show_done:
|
|
text += "\n" + self.strings("done")
|
|
|
|
logger.debug(text)
|
|
|
|
with contextlib.suppress(
|
|
herokutl.errors.rpcerrorlist.MessageNotModifiedError,
|
|
herokutl.errors.rpcerrorlist.MessageEmptyError,
|
|
ValueError,
|
|
):
|
|
try:
|
|
await utils.answer(self.message, text)
|
|
except herokutl.errors.rpcerrorlist.MessageTooLongError as e:
|
|
logger.error(e)
|
|
logger.error(text)
|
|
|
|
|
|
@loader.tds
|
|
class TerminalMod(loader.Module):
|
|
"""Runs commands"""
|
|
|
|
strings = {"name": "Terminal"}
|
|
|
|
def __init__(self):
|
|
self.config = loader.ModuleConfig(
|
|
loader.ConfigValue(
|
|
"FLOOD_WAIT_PROTECT",
|
|
2,
|
|
lambda: self.strings("fw_protect"),
|
|
validator=loader.validators.Integer(minimum=0),
|
|
),
|
|
)
|
|
self.activecmds = {}
|
|
|
|
@loader.command()
|
|
async def terminalcmd(self, message):
|
|
await self.run_command(message, utils.get_args_raw(message))
|
|
|
|
@loader.command()
|
|
async def pipcmd(self, message):
|
|
await self.run_command(
|
|
message,
|
|
("pip " if os.geteuid() == 0 else "sudo -S pip ")
|
|
+ utils.get_args_raw(message)
|
|
)
|
|
|
|
@loader.command()
|
|
async def aptcmd(self, message):
|
|
await self.run_command(
|
|
message,
|
|
("apt " if os.geteuid() == 0 else "sudo -S apt ")
|
|
+ utils.get_args_raw(message)
|
|
+ " -y",
|
|
RawMessageEditor(
|
|
message,
|
|
f"apt {utils.get_args_raw(message)}",
|
|
self.config,
|
|
self.strings,
|
|
message,
|
|
True,
|
|
),
|
|
)
|
|
|
|
async def run_command(
|
|
self,
|
|
message: herokutl.tl.types.Message,
|
|
cmd: str,
|
|
editor: typing.Optional[MessageEditor] = None,
|
|
):
|
|
if len(cmd.split(" ")) > 1 and cmd.split(" ")[0] == "sudo":
|
|
needsswitch = True
|
|
|
|
for word in cmd.split(" ", 1)[1].split(" "):
|
|
if word[0] != "-":
|
|
break
|
|
|
|
if word == "-S":
|
|
needsswitch = False
|
|
|
|
if needsswitch:
|
|
cmd = " ".join([cmd.split(" ", 1)[0], "-S", cmd.split(" ", 1)[1]])
|
|
|
|
sproc = await asyncio.create_subprocess_shell(
|
|
cmd,
|
|
stdin=asyncio.subprocess.PIPE,
|
|
stdout=asyncio.subprocess.PIPE,
|
|
stderr=asyncio.subprocess.PIPE,
|
|
cwd=utils.get_base_dir(),
|
|
)
|
|
|
|
if editor is None:
|
|
editor = SudoMessageEditor(message, cmd, self.config, self.strings, message)
|
|
|
|
editor.update_process(sproc)
|
|
|
|
self.activecmds[hash_msg(message)] = sproc
|
|
|
|
await editor.redraw()
|
|
|
|
await asyncio.gather(
|
|
read_stream(
|
|
editor.update_stdout,
|
|
sproc.stdout,
|
|
self.config["FLOOD_WAIT_PROTECT"],
|
|
),
|
|
read_stream(
|
|
editor.update_stderr,
|
|
sproc.stderr,
|
|
self.config["FLOOD_WAIT_PROTECT"],
|
|
),
|
|
)
|
|
|
|
await editor.cmd_ended(await sproc.wait())
|
|
del self.activecmds[hash_msg(message)]
|
|
|
|
@loader.command()
|
|
async def terminatecmd(self, message):
|
|
if not message.is_reply:
|
|
await utils.answer(message, self.strings("what_to_kill"))
|
|
return
|
|
|
|
if hash_msg(await message.get_reply_message()) in self.activecmds:
|
|
try:
|
|
if "-f" not in utils.get_args_raw(message):
|
|
self.activecmds[
|
|
hash_msg(await message.get_reply_message())
|
|
].terminate()
|
|
else:
|
|
self.activecmds[hash_msg(await message.get_reply_message())].kill()
|
|
except Exception:
|
|
logger.exception("Killing process failed")
|
|
await utils.answer(message, self.strings("kill_fail"))
|
|
else:
|
|
await utils.answer(message, self.strings("killed"))
|
|
else:
|
|
await utils.answer(message, self.strings("no_cmd"))
|