Merge pull request #2 from mzsombor/feature_source_address

wip: try source address
2023-01-09 16:52:38 +02:00 · 2023-01-09 16:52:38 +02:00 · 984c2827ec
parent 04bd859f15 fc7e19d21e
commit 984c2827ec
2 changed files with 30 additions and 2 deletions
--- a/webssh/handler.py
+++ b/webssh/handler.py
@ -377,6 +377,12 @@ class IndexHandler(MixinHandler, tornado.web.RequestHandler):
            raise InvalidValueError('Invalid port: {}'.format(value))
        return port

+    def get_source_address(self):
+        value = self.get_value('source_address')
+        if not is_valid_ip_address(value):
+            raise InvalidValueError('Invalid source ip address: {}'.format(value))
+        return value
+
    def lookup_hostname(self, hostname, port):
        key = hostname if port == 22 else '[{}]:{}'.format(hostname, port)

@ -395,6 +401,7 @@ class IndexHandler(MixinHandler, tornado.web.RequestHandler):
        privatekey, filename = self.get_privatekey()
        passphrase = self.get_argument('passphrase', u'')
        totp = self.get_argument('totp', u'')
+        source_address = self.get_source_address()

        if isinstance(self.policy, paramiko.RejectPolicy):
            self.lookup_hostname(hostname, port)
@ -404,8 +411,19 @@ class IndexHandler(MixinHandler, tornado.web.RequestHandler):
        else:
            pkey = None

+        if source_address:
+            logging.info("Binding socket for source ip {}".format(source_address))
+            sock = socket.socket()
+            sock.settimeout(options.timeout)  # Set a timeout on blocking socket operations
+            try:
+                sock.bind((source_address, 0))
+            except OSError:
+                raise InvalidValueError('Unable to bind source address {} socket'.format(source_address))
+        else:
+            sock = None
+
        self.ssh_client.totp = totp
-        args = (hostname, port, username, password, pkey)
+        args = (hostname, port, username, password, pkey, sock)
        logging.debug(args)

        return args
@ -451,6 +469,14 @@ class IndexHandler(MixinHandler, tornado.web.RequestHandler):
        dst_addr = args[:2]
        logging.info('Connecting to {}:{}'.format(*dst_addr))

+        sock = args[5]
+        if sock:
+            logging.info('Connecting source address socket')
+            try:
+                sock.connect(dst_addr)
+            except socket.error:
+                raise ValueError('Unable to connect source address socket to {}:{}'.format(*dst_addr))
+
        try:
            ssh.connect(*args, timeout=options.timeout)
        except socket.error:
--- a/webssh/templates/index.html
+++ b/webssh/templates/index.html
@ -77,6 +77,8 @@
            <input class="form-control" type="password" id="totp" name="totp" value="">
          </div>
          <div class="col">
+            <label for="source_address">Source Address (optional)</label>
+            <input class="form-control" type="text" id="source_address" name="source_address" value="">
          </div>
        </div>
        <input type="hidden" id="term" name="term" value="xterm-256color">