yum install -y epel-release
yum install -y python python-pip

pip install pexpect     # 此庫(kù)用相當(dāng)于linux中的expect命令

# coding=UTF-8
import sys,os,pexpect,subprocess
 
host_controller="192.168.174.150"                            # 控制節(jié)點(diǎn)IP地址
host_addresses=["192.168.174.151","192.168.174.152"]           # 客戶端們的IP地址
host_domains=["client1","client2"]                          # 客戶端們的域名
host_username="root"                                         # ssh連接的用戶，控制端的用戶為root
host_passwd="110119"                                         # ssh連接的用戶密碼
 
 
# 本地創(chuàng)建ssh公鑰
if os.path.exists("/root/.ssh/id_rsa.pub") == True:
	print("\033[32m"+"ssh公鑰已創(chuàng)建"+"\033[0m")                # 輸出綠色字體
else:
	print("\033[32m"+"ssh公鑰未創(chuàng)建，開始創(chuàng)建"+"\033[0m")
	child = pexpect.spawn('ssh-keygen -t rsa -b 1024')
	child.expect('Enter file in which to save the key')
	child.sendline('')
	child.expect('Enter passphrase')
	child.sendline('')
	child.expect('Enter same passphrase again')
	child.sendline('')
 
	child.expect(pexpect.EOF)               # 用于等待子進(jìn)程的結(jié)束
	print(child.before.decode())            # 等待命令執(zhí)行完畢并打印輸出信息
	print("\033[32m" + "ssh公鑰已創(chuàng)建" + "\033[0m")
	print("\n")
 
 
# 向被控主機(jī)添加公鑰的方法
def add_ssh_public_key_client(address,username,password):
	print("\033[32m"+"{}正在被添加公鑰".format(address)+"\033[0m")
	# BatchMode=yes：表示使SSH在連接過程中不會(huì)提示輸入密碼，而直接嘗試免密連接，-o ConnectTimeout=5：表示限制連接超時(shí)時(shí)間為5秒
	public_key_flag=os.system("ssh {}@{} -o BatchMode=yes -o ConnectTimeout=5 'exit'".format(username,address))
	if public_key_flag== 0:
		print("\033[32m" + "{}已經(jīng)可以ssh連接".format(address) + "\033[0m")
		return
	child = pexpect.spawn('ssh-copy-id -i /root/.ssh/id_rsa.pub {}@{}'.format(username,address))
	try:
		child.expect('Are you sure you want to continue connecting')
	except pexpect.TIMEOUT:       # 如果try塊中的咨詢超時(shí)5秒沒有出現(xiàn)就會(huì)出現(xiàn)異常pexpect.TIMEOUT
		print("\033[32m"+"{}已經(jīng)不是首次ssh連接了".format(address)+"\033[0m")
	else:                         # 是否回答咨詢yes
		child.sendline('yes')
	finally:
		child.expect('password')
		child.sendline(password)
	child.expect(pexpect.EOF)               # 用于等待子進(jìn)程的結(jié)束
	print(child.before.decode())            # 等待命令執(zhí)行完畢并打印輸出信息
# 測(cè)試ssh連接的方法
def test_ssh_connection(all_flag,address,username):
	print("\033[32m" + "{}測(cè)試是否可以ssh連接".format(address) + "\033[0m")
	flag=os.system('ssh {}@{} -o ConnectTimeout=5 "exit"'.format(username,address))
	if flag==0:
		print("\033[32m" + "Success: {}可以ssh免密連接".format(address) + "\033[0m")
	else:
		print("\033[1;31m" + "Failed: {}ssh免密連接失敗".format(address) + "\033[0m")     # 輸出紅色字體
		all_flag=1
	return all_flag
 
# 本地的密鑰開始加入被控制主機(jī)
for i in range(0, len(host_addresses)):
	add_ssh_public_key_client(host_addresses[i],host_username,host_passwd)
	print("\n")
# 測(cè)試ssh連接
for i in range(0, len(host_addresses)):
	final_flag=test_ssh_connection(0,host_addresses[i],host_username)
if final_flag ==1:
	sys.exit("ssh測(cè)試失敗，請(qǐng)檢查!")
else:
	print("\033[32m" + "Success: 全部可以ssh免密連接" + "\033[0m")
print("\n")