mirror of
https://github.com/DictXiong/dotfiles.git
synced 2024-11-24 10:17:02 +08:00
riot: support jump servers, sep by commas
This commit is contained in:
parent
b33604ac14
commit
3c10ebfaeb
133
scripts/riot
133
scripts/riot
|
@ -5,66 +5,106 @@ source "$THIS_DIR/../tools/common.sh"
|
||||||
RIOT_TRUST_CLIENT=${RIOT_TRUST_CLIENT:-${DFS_TRUST:-0}}
|
RIOT_TRUST_CLIENT=${RIOT_TRUST_CLIENT:-${DFS_TRUST:-0}}
|
||||||
RIOT_TRUST_SERVER=${RIOT_TRUST_SERVER:-0}
|
RIOT_TRUST_SERVER=${RIOT_TRUST_SERVER:-0}
|
||||||
|
|
||||||
# get target settings
|
# get single server setting
|
||||||
# provides:
|
# may be called more than once
|
||||||
SERVER=""
|
get_server_meta() {
|
||||||
PORT="" # optional
|
# returns:
|
||||||
USERNAME="" # optional
|
RET_HOSTNAME=""
|
||||||
SSH_OPTIONS=""
|
RET_TRUST_SERVER=0
|
||||||
if [[ "$RIOT_TRUST_CLIENT" == "1" ]]; then
|
RET_PORT="" # optional
|
||||||
SSH_OPTIONS='-o ControlMaster=auto -o ControlPath=/tmp/sshcm-%C -o PermitLocalCommand=yes'
|
RET_USERNAME="" # optional
|
||||||
|
RET_JUMP_SERVER="" # optional
|
||||||
|
# body
|
||||||
|
local remote="$1"
|
||||||
|
# if in the form user@...
|
||||||
|
if [[ "$remote" == *@* ]]; then
|
||||||
|
RET_USERNAME=${remote%%@*}
|
||||||
|
remote=${remote#*@}
|
||||||
fi
|
fi
|
||||||
get_server_meta()
|
# if in the form ...:22
|
||||||
{
|
if [[ "$remote" == *:* ]]; then
|
||||||
local trust_server="$RIOT_TRUST_SERVER"
|
RET_PORT=${remote##*:}
|
||||||
local arg="$1"
|
remote=${remote%:*}
|
||||||
# overwrite
|
|
||||||
if [[ "$arg" == *@* ]]; then
|
|
||||||
USERNAME=${arg%%@*}
|
|
||||||
arg=${arg#*@}
|
|
||||||
fi
|
fi
|
||||||
if [[ "$arg" == *:* ]]; then
|
# presets -- match domain
|
||||||
PORT=${arg##*:}
|
local domain=${remote##*.}
|
||||||
arg=${arg%:*}
|
local host=${remote%.*}
|
||||||
fi
|
# if ends with dot
|
||||||
# presets
|
|
||||||
local domain=${arg##*.}
|
|
||||||
local host=${arg%.*}
|
|
||||||
if [[ -z "$domain" ]]; then
|
if [[ -z "$domain" ]]; then
|
||||||
domain="ibd"
|
domain="ibd"
|
||||||
fi
|
fi
|
||||||
|
# if there's no dot
|
||||||
if [[ "$host" == "$domain" ]]; then
|
if [[ "$host" == "$domain" ]]; then
|
||||||
domain="proxied"
|
domain="ibd"
|
||||||
fi
|
fi
|
||||||
case $domain in
|
case $domain in
|
||||||
ibd|ebd )
|
ibd|ebd )
|
||||||
SERVER=$host.$domain.ink
|
RET_HOSTNAME=$host.$domain.ink
|
||||||
PORT=${PORT:-12022}
|
RET_PORT=${RET_PORT:-12022}
|
||||||
USERNAME=${USERNAME:-root}
|
RET_USERNAME=${RET_USERNAME:-root}
|
||||||
trust_server=1
|
RET_TRUST_SERVER=1
|
||||||
;;
|
;;
|
||||||
nasp )
|
nasp )
|
||||||
SERVER=$host
|
RET_HOSTNAME=$host
|
||||||
PORT=${PORT:-12022}
|
RET_PORT=${RET_PORT:-12022}
|
||||||
USERNAME=${USERNAME:-dictxiong}
|
RET_USERNAME=${RET_USERNAME:-dictxiong}
|
||||||
SSH_OPTIONS="$SSH_OPTIONS -o ProxyJump=ssh@nasp.ob.ac.cn:36022"
|
RET_JUMP_SERVER="ssh@nasp.ob.ac.cn:36022"
|
||||||
trust_server=1
|
RET_TRUST_SERVER=1
|
||||||
;;
|
;;
|
||||||
proxied )
|
proxied )
|
||||||
SERVER=proxy.beardic.cn
|
RET_HOSTNAME=proxy.beardic.cn
|
||||||
local tmp=$(sha256sum <<< "$host" | tr -cd "[:digit:]")
|
local tmp=$(sha256sum <<< "$host" | tr -cd "[:digit:]")
|
||||||
tmp=${tmp:0:4}
|
tmp=${tmp:0:4}
|
||||||
PORT=$((10#$tmp+36000))
|
RET_PORT=$((10#$tmp+36000))
|
||||||
USERNAME=root
|
RET_USERNAME=root
|
||||||
trust_server=1
|
RET_TRUST_SERVER=1
|
||||||
;;
|
;;
|
||||||
* )
|
* )
|
||||||
fmt_warning "unknown domain: $domain. will try as server name"
|
fmt_warning "unknown domain: $domain. will try as host name"
|
||||||
SERVER="$arg"
|
RET_HOSTNAME="$remote"
|
||||||
esac
|
esac
|
||||||
if [[ "$trust_server" == "1" ]]; then
|
}
|
||||||
|
|
||||||
|
# remote setting, including jump servers
|
||||||
|
# will be called only once
|
||||||
|
# provides:
|
||||||
|
SERVER=""
|
||||||
|
TRUST_SERVER=1
|
||||||
|
PORT="" # optional
|
||||||
|
USERNAME="" # optional
|
||||||
|
SSH_OPTIONS="" # optional
|
||||||
|
if [[ "$RIOT_TRUST_CLIENT" == "1" ]]; then
|
||||||
|
SSH_OPTIONS='-o ControlMaster=auto -o ControlPath=/tmp/sshcm-%C -o PermitLocalCommand=yes'
|
||||||
|
fi
|
||||||
|
parse_remote() {
|
||||||
|
local remote="$1"
|
||||||
|
local jump_servers=""
|
||||||
|
# loop for jump servers
|
||||||
|
while [[ -n $remote ]]; do
|
||||||
|
local server=${remote%%,*}
|
||||||
|
remote=${remote#*,}
|
||||||
|
get_server_meta "$server"
|
||||||
|
if [[ -n "$RET_JUMP_SERVER" ]]; then
|
||||||
|
jump_servers="$jump_servers${jump_servers:+,}$RET_JUMP_SERVER"
|
||||||
|
fi
|
||||||
|
# only if all servers are trusted
|
||||||
|
TRUST_SERVER=$((TRUST_SERVER*RET_TRUST_SERVER))
|
||||||
|
if [[ "$server" == "$remote" || -z "$remote" ]]; then
|
||||||
|
SERVER="$RET_HOSTNAME"
|
||||||
|
PORT="$RET_PORT"
|
||||||
|
USERNAME="$RET_USERNAME"
|
||||||
|
remote=""
|
||||||
|
else
|
||||||
|
jump_servers="$jump_servers${jump_servers:+,}$RET_USERNAME${RET_USERNAME:+@}$RET_HOSTNAME${RET_PORT:+:}$RET_PORT"
|
||||||
|
fi
|
||||||
|
done
|
||||||
|
# construct cmd
|
||||||
|
if [[ "$RIOT_TRUST_SERVER" == "1" || "$TRUST_SERVER" == "1" ]]; then
|
||||||
SSH_OPTIONS="$SSH_OPTIONS -o ForwardX11=yes -o ForwardAgent=yes"
|
SSH_OPTIONS="$SSH_OPTIONS -o ForwardX11=yes -o ForwardAgent=yes"
|
||||||
fi
|
fi
|
||||||
|
if [[ -n "$jump_servers" ]]; then
|
||||||
|
SSH_OPTIONS="$SSH_OPTIONS -o ProxyJump=$jump_servers"
|
||||||
|
fi
|
||||||
}
|
}
|
||||||
|
|
||||||
eval_or_echo() {
|
eval_or_echo() {
|
||||||
|
@ -96,10 +136,7 @@ run_ssh()
|
||||||
# sshl
|
# sshl
|
||||||
run_sshl()
|
run_sshl()
|
||||||
{
|
{
|
||||||
if [[ -z "$1" ]]; then
|
local arg="$1"
|
||||||
fmt_fatal "invalid remote address: $1"
|
|
||||||
fi
|
|
||||||
arg="$1"
|
|
||||||
if [[ "$arg" != *":"* ]]; then
|
if [[ "$arg" != *":"* ]]; then
|
||||||
# treat as a port number
|
# treat as a port number
|
||||||
arg=localhost:$arg
|
arg=localhost:$arg
|
||||||
|
@ -148,13 +185,12 @@ print_help()
|
||||||
echo "available commands: ssh (default), sshl (ssh -L), zssh, sftp"
|
echo "available commands: ssh (default), sshl (ssh -L), zssh, sftp"
|
||||||
}
|
}
|
||||||
|
|
||||||
router()
|
router() {
|
||||||
{
|
|
||||||
if [[ -z "$1" || "$1" == "-h" || "$1" == "--help" ]]; then
|
if [[ -z "$1" || "$1" == "-h" || "$1" == "--help" ]]; then
|
||||||
print_help
|
print_help
|
||||||
exit
|
exit
|
||||||
fi
|
fi
|
||||||
get_server_meta "$1"
|
parse_remote "$1"
|
||||||
case $2 in
|
case $2 in
|
||||||
-h|--help)
|
-h|--help)
|
||||||
print_help
|
print_help
|
||||||
|
@ -170,9 +206,12 @@ router()
|
||||||
run_ssh sftp
|
run_ssh sftp
|
||||||
;;
|
;;
|
||||||
sshl )
|
sshl )
|
||||||
|
test -n "$3" || fmt_fatal "no target address provided"
|
||||||
run_sshl "$3"
|
run_sshl "$3"
|
||||||
;;
|
;;
|
||||||
scp )
|
scp )
|
||||||
|
test -n "$3" || fmt_fatal "no source path specified"
|
||||||
|
test -n "$4" || fmt_fatal "no destination path specified"
|
||||||
run_scp "$3" "$4"
|
run_scp "$3" "$4"
|
||||||
;;
|
;;
|
||||||
* )
|
* )
|
||||||
|
|
Loading…
Reference in New Issue
Block a user