NotificationsYou must be signed in to change notification settings
Fork1k
Star11.2k

Commitc9a226f

committed

feat: implement jetbrains agentssh tracking

Based on tcp forwarding instead of ssh connections

1 parent329aa45 commitc9a226fCopy full SHA for c9a226f

File tree

2 files changed

+68

-1

lines changed

agent/agentssh
- agentssh.go
- jetbrainstrack.go

2 files changed

+68

-1

lines changed

`‎agent/agentssh/agentssh.go‎`

Lines changed: 5 additions & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -111,7 +111,11 @@ func NewServer(ctx context.Context, logger slog.Logger, prometheusRegistry *prom`
`111`	`111`
`112`	`112`	`srv:=&ssh.Server{`
`113`	`113`	`ChannelHandlers:map[string]ssh.ChannelHandler{`
`114`		`-"direct-tcpip":ssh.DirectTCPIPHandler,`
	`114`	`+"direct-tcpip":func(srvssh.Server,conngossh.ServerConn,newChan gossh.NewChannel,ctx ssh.Context) {`
	`115`	`+// wrapper is designed to find and track jetbrains gateway connections.`
	`116`	`+wrapped:=NewChannelAcceptWatcher(s.logger,newChan,&s.connCountJetBrains)`
	`117`	`+ssh.DirectTCPIPHandler(srv,conn,wrapped,ctx)`
	`118`	`+},`
`115`	`119`	`"direct-streamlocal@openssh.com":directStreamLocalHandler,`
`116`	`120`	`"session":ssh.DefaultSessionHandler,`
`117`	`121`	`},`

`‎agent/agentssh/jetbrainstrack.go‎`

Lines changed: 63 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,63 @@`
	`1`	`+package agentssh`
	`2`	`+`
	`3`	`+import (`
	`4`	`+"cdr.dev/slog"`
	`5`	`+"go.uber.org/atomic"`
	`6`	`+gossh"golang.org/x/crypto/ssh"`
	`7`	`+)`
	`8`	`+`
	`9`	`+typelocalForwardChannelDatastruct {`
	`10`	`+DestAddrstring`
	`11`	`+DestPortuint32`
	`12`	`+`
	`13`	`+OriginAddrstring`
	`14`	`+OriginPortuint32`
	`15`	`+}`
	`16`	`+`
	`17`	`+typeChannelAcceptWatcherstruct {`
	`18`	`+gossh.NewChannel`
	`19`	`+jetbrainsCounter*atomic.Int64`
	`20`	`+}`
	`21`	`+`
	`22`	`+funcNewChannelAcceptWatcher(logger slog.Logger,newChannel gossh.NewChannel,counter*atomic.Int64) gossh.NewChannel {`
	`23`	`+d:=localForwardChannelData{}`
	`24`	`+iferr:=gossh.Unmarshal(newChannel.ExtraData(),&d);err!=nil {`
	`25`	`+// If the data fails to unmarshal, do nothing`
	`26`	`+returnnewChannel`
	`27`	`+}`
	`28`	`+`
	`29`	`+//if !jetbrains {`
	`30`	`+// If this isn't jetbrains, then we don't need to do anything special.`
	`31`	`+//return newChannel`
	`32`	`+//}`
	`33`	`+`
	`34`	`+return&ChannelAcceptWatcher{`
	`35`	`+NewChannel:newChannel,`
	`36`	`+jetbrainsCounter:counter,`
	`37`	`+}`
	`38`	`+}`
	`39`	`+`
	`40`	`+func (wChannelAcceptWatcher)Accept() (gossh.Channel,<-changossh.Request,error) {`
	`41`	`+c,r,err:=w.NewChannel.Accept()`
	`42`	`+iferr!=nil {`
	`43`	`+returnc,r,err`
	`44`	`+}`
	`45`	`+w.jetbrainsCounter.Add(1)`
	`46`	`+`
	`47`	`+return&ChannelOnClose{`
	`48`	`+Channel:c,`
	`49`	`+done:func() {`
	`50`	`+w.jetbrainsCounter.Add(-1)`
	`51`	`+},`
	`52`	`+},r,err`
	`53`	`+}`
	`54`	`+`
	`55`	`+typeChannelOnClosestruct {`
	`56`	`+gossh.Channel`
	`57`	`+donefunc()`
	`58`	`+}`
	`59`	`+`
	`60`	`+func (c*ChannelOnClose)Close()error {`
	`61`	`+c.done()`
	`62`	`+returnc.Channel.Close()`
	`63`	`+}`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commitc9a226f

File tree

2 files changed

2 files changed

`‎agent/agentssh/agentssh.go‎`

`‎agent/agentssh/jetbrainstrack.go‎`

0 commit comments