ContainerSSH Docker Backend Library

This library implements a backend that connects to a Docker socket and launches a new container for each connection, then runs executes a separate command per channel using docker exec. It replaces the legacy dockerrun backend.

⚠⚠⚠ Warning: This is a developer documentation. ⚠⚠⚠
The user documentation for ContainerSSH is located at containerssh.io.

Using this library

This library implements a NetworkConnectionHandler from the sshserver library. This can be embedded into a connection handler.

The network connection handler can be created with the New() method:

var client net.TCPAddr
connectionID := "0123456789ABCDEF"
config := docker.Config{
    //...
}
collector := metrics.New()
dr, err := docker.New(
    client,
    connectionID,
    config,
    logger,
    collector.MustCreateCounter("backend_requests", "", ""),
    collector.MustCreateCounter("backend_failures", "", ""),
)
if err != nil {
    // Handle error
}

The logger parameter is a logger from the ContainerSSH logger library.

The dr variable can then be used to create a container on finished handshake:

ssh, err := dr.OnHandshakeSuccess("provided-connection-username")

Conversely, on disconnect you must call dr.OnDisconnect(). The ssh variable can then be used to create session channels:

var channelID uint64 = 0
extraData := []byte{}
session, err := ssh.OnSessionChannel(channelID, extraData)

Finally, the session can be used to launch programs:

var requestID uint64 = 0
err = session.OnEnvRequest(requestID, "foo", "bar")
// ...
requestID = 1
var stdin io.Reader
var stdout, stderr io.Writer
err = session.OnShell(
    requestID,
    stdin,
    stdout,
    stderr,
    func(exitStatus ExitStatus) {
        // ...
    },
)

Operating modes

This library supports several operating modes:

connection creates a container per connection and uses the docker exec mechanism to launch SSH programs inside the container. This mode ignores the CMD of the container image and uses the idleProgram setting to launch inside the container.
session creates a container per session and potentially results in multiple containers for a single SSH connection. This mode uses the CMD of the container image or from the configuration.

Name		Name	Last commit message	Last commit date
Latest commit History 43 Commits
.github		.github
testdata		testdata
.gitignore		.gitignore
CHANGELOG.md		CHANGELOG.md
CODES.md		CODES.md
CODE_OF_CONDUCT.md		CODE_OF_CONDUCT.md
CONTRIBUTING.md		CONTRIBUTING.md
LICENSE.md		LICENSE.md
README.md		README.md
SECURITY.md		SECURITY.md
codes.go		codes.go
codes_doc.go		codes_doc.go
config.go		config.go
config_connection.go		config_connection.go
config_connection_unix.go		config_connection_unix.go
config_connection_windows.go		config_connection_windows.go
config_dockerrun.go		config_dockerrun.go
config_dockerrun_test.go		config_dockerrun_test.go
config_dockerrun_unix.go		config_dockerrun_unix.go
config_dockerrun_windows.go		config_dockerrun_windows.go
config_duration.go		config_duration.go
config_execution.go		config_execution.go
config_launch.go		config_launch.go
config_test.go		config_test.go
config_timeout.go		config_timeout.go
conformance_test.go		conformance_test.go
const.go		const.go
docker.go		docker.go
docker_impl.go		docker_impl.go
factory.go		factory.go
factory_dockerrun.go		factory_dockerrun.go
go.mod		go.mod
go.sum		go.sum
handler_channel.go		handler_channel.go
handler_network.go		handler_network.go
handler_ssh.go		handler_ssh.go
http.go		http.go
image.go		image.go

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Repository files navigation

ContainerSSH Docker Backend Library

Using this library

Operating modes

About

Uh oh!

Releases 16

Uh oh!

Languages

License

ContainerSSH/docker

Folders and files

Latest commit

History

Repository files navigation

ContainerSSH Docker Backend Library

Using this library

Operating modes

About

Topics

Resources

License

Code of conduct

Security policy

Uh oh!

Stars

Watchers

Forks

Releases 16

Uh oh!

Languages