NotificationsYou must be signed in to change notification settings
Fork920
Star10.1k

Commiteec7378

committed

feat(cli): add capability for SSH command to connect to a running container

1 parentcccdf1e commiteec7378Copy full SHA for eec7378

File tree

4 files changed

+153

-12

lines changed

agent
- agent.go
- agentssh
  - agentssh.go
cli
- ssh.go
- ssh_test.go

4 files changed

+153

-12

lines changed

`‎agent/agent.go`

Lines changed: 2 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -307,6 +307,8 @@ func (a *agent) init() {`
`307`	`307`
`308`	`308`	`returna.reportConnection(id,connectionType,ip)`
`309`	`309`	`},`
	`310`	`+`
	`311`	`+ExperimentalContainersEnabled:a.experimentalDevcontainersEnabled,`
`310`	`312`	`})`
`311`	`313`	`iferr!=nil {`
`312`	`314`	`panic(err)`

`‎agent/agentssh/agentssh.go`

Lines changed: 48 additions & 12 deletions

Original file line number	Diff line number	Diff line change
`@@ -29,6 +29,7 @@ import (`
`29`	`29`
`30`	`30`	`"cdr.dev/slog"`
`31`	`31`
	`32`	`+"github.com/coder/coder/v2/agent/agentcontainers"`
`32`	`33`	`"github.com/coder/coder/v2/agent/agentexec"`
`33`	`34`	`"github.com/coder/coder/v2/agent/agentrsa"`
`34`	`35`	`"github.com/coder/coder/v2/agent/usershell"`
`@@ -104,6 +105,9 @@ type Config struct {`
`104`	`105`	`BlockFileTransferbool`
`105`	`106`	`// ReportConnection.`
`106`	`107`	`ReportConnectionreportConnectionFunc`
	`108`	`+// Experimental: allow connecting to running containers if`
	`109`	`+// CODER_AGENT_DEVCONTAINERS_ENABLE=true.`
	`110`	`+ExperimentalContainersEnabledbool`
`107`	`111`	`}`
`108`	`112`
`109`	`113`	`typeServerstruct {`
`@@ -324,6 +328,22 @@ func (s *sessionCloseTracker) Close() error {`
`324`	`328`	`returns.Session.Close()`
`325`	`329`	`}`
`326`	`330`
	`331`	`+funcextractContainerInfo(env []string) (container,containerUserstring,filteredEnv []string) {`
	`332`	`+for_,kv:=rangeenv {`
	`333`	`+ifstrings.HasPrefix(kv,"CODER_CONTAINER=") {`
	`334`	`+container=strings.TrimPrefix(kv,"CODER_CONTAINER=")`
	`335`	`+}`
	`336`	`+`
	`337`	`+ifstrings.HasPrefix(kv,"CODER_CONTAINER_USER=") {`
	`338`	`+containerUser=strings.TrimPrefix(kv,"CODER_CONTAINER_USER=")`
	`339`	`+}`
	`340`	`+}`
	`341`	`+`
	`342`	`+returncontainer,containerUser,slices.DeleteFunc(env,func(kvstring)bool {`
	`343`	`+returnstrings.HasPrefix(kv,"CODER_CONTAINER=")\|\|strings.HasPrefix(kv,"CODER_CONTAINER_USER=")`
	`344`	`+})`
	`345`	`+}`
	`346`	`+`
`327`	`347`	`func (s*Server)sessionHandler(session ssh.Session) {`
`328`	`348`	`ctx:=session.Context()`
`329`	`349`	`id:=uuid.New()`
`@@ -353,6 +373,13 @@ func (s *Server) sessionHandler(session ssh.Session) {`
`353`	`373`	`defers.trackSession(session,false)`
`354`	`374`
`355`	`375`	`reportSession:=true`
	`376`	`+`
	`377`	`+container,containerUser,env:=extractContainerInfo(env)`
	`378`	`+s.logger.Debug(ctx,"container info",`
	`379`	`+slog.F("container",container),`
	`380`	`+slog.F("container_user",containerUser),`
	`381`	`+)`
	`382`	`+`
`356`	`383`	`switchmagicType {`
`357`	`384`	`caseMagicSessionTypeVSCode:`
`358`	`385`	`s.connCountVSCode.Add(1)`
`@@ -398,6 +425,10 @@ func (s *Server) sessionHandler(session ssh.Session) {`
`398`	`425`	`switchss:=session.Subsystem();ss {`
`399`	`426`	`case"":`
`400`	`427`	`case"sftp":`
	`428`	`+ifs.config.ExperimentalContainersEnabled&&container!="" {`
	`429`	`+closeCause("sftp not yet supported with containers")`
	`430`	`+return`
	`431`	`+}`
`401`	`432`	`err:=s.sftpHandler(logger,session)`
`402`	`433`	`iferr!=nil {`
`403`	`434`	`closeCause(err.Error())`
`@@ -422,7 +453,7 @@ func (s *Server) sessionHandler(session ssh.Session) {`
`422`	`453`	`env=append(env,fmt.Sprintf("DISPLAY=localhost:%d.%d",display,x11.ScreenNumber))`
`423`	`454`	`}`
`424`	`455`
`425`		`-err:=s.sessionStart(logger,session,env,magicType)`
	`456`	`+err:=s.sessionStart(logger,session,env,magicType,container,containerUser)`
`426`	`457`	`varexitError*exec.ExitError`
`427`	`458`	`ifxerrors.As(err,&exitError) {`
`428`	`459`	`code:=exitError.ExitCode()`
`@@ -495,30 +526,35 @@ func (s *Server) fileTransferBlocked(session ssh.Session) bool {`
`495`	`526`	`returnfalse`
`496`	`527`	`}`
`497`	`528`
`498`		`-func (s*Server)sessionStart(logger slog.Logger,session ssh.Session,env []string,magicTypeMagicSessionType) (retErrerror) {`
	`529`	`+func (s*Server)sessionStart(logger slog.Logger,session ssh.Session,env []string,magicTypeMagicSessionType,container,containerUserstring) (retErrerror) {`
`499`	`530`	`ctx:=session.Context()`
`500`	`531`
`501`	`532`	`magicTypeLabel:=magicTypeMetricLabel(magicType)`
`502`	`533`	`sshPty,windowSize,isPty:=session.Pty()`
	`534`	`+ptyLabel:="no"`
	`535`	`+ifisPty {`
	`536`	`+ptyLabel="yes"`
	`537`	`+}`
`503`	`538`
`504`		`-cmd,err:=s.CreateCommand(ctx,session.RawCommand(),env,nil)`
`505`		`-iferr!=nil {`
`506`		`-ptyLabel:="no"`
`507`		`-ifisPty {`
`508`		`-ptyLabel="yes"`
	`539`	`+// plumb in envinfoer here to modify command for container exec?`
	`540`	`+varei usershell.EnvInfoer`
	`541`	`+varerrerror`
	`542`	`+ifs.config.ExperimentalContainersEnabled&&container!="" {`
	`543`	`+ei,err=agentcontainers.EnvInfo(ctx,s.Execer,container,containerUser)`
	`544`	`+iferr!=nil {`
	`545`	`+s.metrics.sessionErrors.WithLabelValues(magicTypeLabel,ptyLabel,"container_env_info").Add(1)`
	`546`	`+returnerr`
`509`	`547`	`}`
	`548`	`+}`
	`549`	`+cmd,err:=s.CreateCommand(ctx,session.RawCommand(),env,ei)`
	`550`	`+iferr!=nil {`
`510`	`551`	`s.metrics.sessionErrors.WithLabelValues(magicTypeLabel,ptyLabel,"create_command").Add(1)`
`511`	`552`	`returnerr`
`512`	`553`	`}`
`513`	`554`
`514`	`555`	`ifssh.AgentRequested(session) {`
`515`	`556`	`l,err:=ssh.NewAgentListener()`
`516`	`557`	`iferr!=nil {`
`517`		`-ptyLabel:="no"`
`518`		`-ifisPty {`
`519`		`-ptyLabel="yes"`
`520`		`-}`
`521`		`-`
`522`	`558`	`s.metrics.sessionErrors.WithLabelValues(magicTypeLabel,ptyLabel,"listener").Add(1)`
`523`	`559`	`returnxerrors.Errorf("new agent listener: %w",err)`
`524`	`560`	`}`

`‎cli/ssh.go`

Lines changed: 28 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -76,6 +76,9 @@ func (r RootCmd) ssh() serpent.Command {`
`76`	`76`	`appearanceConfig codersdk.AppearanceConfig`
`77`	`77`	`networkInfoDirstring`
`78`	`78`	`networkInfoInterval time.Duration`
	`79`	`+`
	`80`	`+containerstring`
	`81`	`+containerUserstring`
`79`	`82`	`)`
`80`	`83`	`client:=new(codersdk.Client)`
`81`	`84`	`cmd:=&serpent.Command{`
`@@ -454,6 +457,17 @@ func (r RootCmd) ssh() serpent.Command {`
`454`	`457`	`}`
`455`	`458`	`}`
`456`	`459`
	`460`	`+ifcontainer!="" {`
	`461`	`+fork,v:=rangemap[string]string{`
	`462`	`+"CODER_CONTAINER":container,`
	`463`	`+"CODER_CONTAINER_USER":containerUser,`
	`464`	`+} {`
	`465`	`+iferr:=sshSession.Setenv(k,v);err!=nil {`
	`466`	`+returnxerrors.Errorf("setenv: %w",err)`
	`467`	`+}`
	`468`	`+}`
	`469`	`+}`
	`470`	`+`
`457`	`471`	`err=sshSession.RequestPty("xterm-256color",128,128, gossh.TerminalModes{})`
`458`	`472`	`iferr!=nil {`
`459`	`473`	`returnxerrors.Errorf("request pty: %w",err)`
`@@ -594,6 +608,20 @@ func (r RootCmd) ssh() serpent.Command {`
`594`	`608`	`Default:"5s",`
`595`	`609`	`Value:serpent.DurationOf(&networkInfoInterval),`
`596`	`610`	`},`
	`611`	`+{`
	`612`	`+Flag:"container",`
	`613`	`+FlagShorthand:"c",`
	`614`	`+Description:"Specifies a container inside the workspace to connect to.",`
	`615`	`+Value:serpent.StringOf(&container),`
	`616`	`+Hidden:true,// Hidden until this features is at least in beta.`
	`617`	`+},`
	`618`	`+{`
	`619`	`+Flag:"container-user",`
	`620`	`+FlagShorthand:"u",`
	`621`	`+Description:"When connecting to a container, specifies the user to connect as.",`
	`622`	`+Value:serpent.StringOf(&containerUser),`
	`623`	`+Hidden:true,// Hidden until this features is at least in beta.`
	`624`	`+},`
`597`	`625`	`sshDisableAutostartOption(serpent.BoolOf(&disableAutostart)),`
`598`	`626`	`}`
`599`	`627`	`returncmd`

`‎cli/ssh_test.go`

Lines changed: 75 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -24,6 +24,8 @@ import (`
`24`	`24`	`"time"`
`25`	`25`
`26`	`26`	`"github.com/google/uuid"`
	`27`	`+"github.com/ory/dockertest/v3"`
	`28`	`+"github.com/ory/dockertest/v3/docker"`
`27`	`29`	`"github.com/spf13/afero"`
`28`	`30`	`"github.com/stretchr/testify/assert"`
`29`	`31`	`"github.com/stretchr/testify/require"`
`@@ -1924,6 +1926,79 @@ Expire-Date: 0`
`1924`	`1926`	`<-cmdDone`
`1925`	`1927`	`}`
`1926`	`1928`
	`1929`	`+funcTestSSH_Container(t*testing.T) {`
	`1930`	`+t.Parallel()`
	`1931`	`+`
	`1932`	`+t.Run("OK",func(t*testing.T) {`
	`1933`	`+t.Parallel()`
	`1934`	`+ifruntime.GOOS!="linux" {`
	`1935`	`+t.Skip("Skipping test on non-Linux platform")`
	`1936`	`+}`
	`1937`	`+`
	`1938`	`+client,workspace,agentToken:=setupWorkspaceForAgent(t)`
	`1939`	`+ctx:=testutil.Context(t,testutil.WaitLong)`
	`1940`	`+pool,err:=dockertest.NewPool("")`
	`1941`	`+require.NoError(t,err,"Could not connect to docker")`
	`1942`	`+ct,err:=pool.RunWithOptions(&dockertest.RunOptions{`
	`1943`	`+Repository:"busybox",`
	`1944`	`+Tag:"latest",`
	`1945`	`+Cmd: []string{"sleep","infnity"},`
	`1946`	`+},func(config*docker.HostConfig) {`
	`1947`	`+config.AutoRemove=true`
	`1948`	`+config.RestartPolicy= docker.RestartPolicy{Name:"no"}`
	`1949`	`+})`
	`1950`	`+require.NoError(t,err,"Could not start container")`
	`1951`	`+// Wait for container to start`
	`1952`	`+require.Eventually(t,func()bool {`
	`1953`	`+ct,ok:=pool.ContainerByName(ct.Container.Name)`
	`1954`	`+returnok&&ct.Container.State.Running`
	`1955`	`+},testutil.WaitShort,testutil.IntervalSlow,"Container did not start in time")`
	`1956`	`+t.Cleanup(func() {`
	`1957`	`+err:=pool.Purge(ct)`
	`1958`	`+require.NoError(t,err,"Could not stop container")`
	`1959`	`+})`
	`1960`	`+`
	`1961`	`+inv,root:=clitest.New(t,"ssh",workspace.Name,"-c",ct.Container.ID)`
	`1962`	`+clitest.SetupConfig(t,client,root)`
	`1963`	`+ptty:=ptytest.New(t).Attach(inv)`
	`1964`	`+`
	`1965`	`+cmdDone:=tGo(t,func() {`
	`1966`	`+err:=inv.WithContext(ctx).Run()`
	`1967`	`+assert.NoError(t,err)`
	`1968`	`+})`
	`1969`	`+`
	`1970`	`+_=agenttest.New(t,client.URL,agentToken,func(o*agent.Options) {`
	`1971`	`+o.ExperimentalContainersEnabled=true`
	`1972`	`+})`
	`1973`	`+_=coderdtest.NewWorkspaceAgentWaiter(t,client,workspace.ID).Wait()`
	`1974`	`+`
	`1975`	`+ptty.ExpectMatch(" #")`
	`1976`	`+ptty.WriteLine("hostname")`
	`1977`	`+ptty.ExpectMatch(ct.Container.Config.Hostname)`
	`1978`	`+ptty.WriteLine("exit")`
	`1979`	`+<-cmdDone`
	`1980`	`+})`
	`1981`	`+`
	`1982`	`+t.Run("NotFound",func(t*testing.T) {`
	`1983`	`+t.Parallel()`
	`1984`	`+ifruntime.GOOS!="linux" {`
	`1985`	`+t.Skip("Skipping test on non-Linux platform")`
	`1986`	`+}`
	`1987`	`+`
	`1988`	`+ctx:=testutil.Context(t,testutil.WaitShort)`
	`1989`	`+client,workspace,agentToken:=setupWorkspaceForAgent(t)`
	`1990`	`+_=agenttest.New(t,client.URL,agentToken,func(o*agent.Options) {`
	`1991`	`+o.ExperimentalContainersEnabled=true`
	`1992`	`+})`
	`1993`	`+_=coderdtest.NewWorkspaceAgentWaiter(t,client,workspace.ID).Wait()`
	`1994`	`+`
	`1995`	`+inv,root:=clitest.New(t,"ssh",workspace.Name,"-c",uuid.NewString())`
	`1996`	`+clitest.SetupConfig(t,client,root)`
	`1997`	`+err:=inv.WithContext(ctx).Run()`
	`1998`	`+require.Error(t,err)// TODO(Cian): nicer error message?`
	`1999`	`+})`
	`2000`	`+}`
	`2001`	`+`
`1927`	`2002`	`// tGoContext runs fn in a goroutine passing a context that will be`
`1928`	`2003`	`// canceled on test completion and wait until fn has finished executing.`
`1929`	`2004`	`// Done and cancel are returned for optionally waiting until completion`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commiteec7378

File tree

4 files changed

4 files changed

`‎agent/agent.go`

`‎agent/agentssh/agentssh.go`

`‎cli/ssh.go`

`‎cli/ssh_test.go`

0 commit comments