Gitiles
Code Review Sign In
code.v1.dodo.cloud / sketch / 7013e9ee282ef58104f91d64d85d4aec62f9c022^! / . / dockerimg / dockerimg.go
commit7013e9ee282ef58104f91d64d85d4aec62f9c022[log] [tgz]
authorSean McCullough <banksean@gmail.com>Wed May 14 02:03:58 2025 +0000
committerSean McCullough <banksean@gmail.com>Wed May 14 11:15:45 2025 -0700
treebaa2d5484c5a5e7add5f9caef2833a3da4abbe29
parent00442413a2d0e6d6978982f9eeec0268e533ba56 [diff] [blame]
ssh: use local CA, add mutual container/host auth

See loop/server/local_ssh.md for a detailed description of how sketch uses
now uses a local CA to sign each container certificate instead of adding
a new entry to known_hosts for each container.

This also adds another layer of security by having the container's ssh
server verify that incoming ssh connections have valid host certificates,
whereas prior to this change the authentication was only one-way (verifying
that the sketch container you think you're ssh'ing into really is the one
you think you're ssh'ing into).

This is somewhat inspired by https://github.com/FiloSottile/mkcert - which
plays a similar role as ssh_theater.go local for ssh connections, but mkcert
uses a local CA to address local development use cases for TLS/https rather
than for ssh.

Co-Authored-By: sketch <hello@sketch.dev>
Change-ID: sc7b3928295277d5dk

diff --git a/dockerimg/dockerimg.go b/dockerimg/dockerimg.go
index 7ff0f90..966373b 100644
--- a/dockerimg/dockerimg.go
+++ b/dockerimg/dockerimg.go

@@ -21,6 +21,7 @@
 	"sync/atomic"
 	"time"
 
+	"golang.org/x/crypto/ssh"
 	"sketch.dev/browser"
 	"sketch.dev/llm/ant"
 	"sketch.dev/loop/server"
@@ -284,7 +285,7 @@
 		return appendInternalErr(fmt.Errorf("failed to split ssh host and port: %w", err))
 	}
 
-	var sshServerIdentity, sshUserIdentity []byte
+	var sshServerIdentity, sshUserIdentity, containerCAPublicKey, hostCertificate []byte
 
 	cst, err := NewSSHTheater(cntrName, sshHost, sshPort)
 	if err != nil {
@@ -309,6 +310,16 @@
 `, cntrName, cntrName, cntrName)
 		sshUserIdentity = cst.userIdentity
 		sshServerIdentity = cst.serverIdentity
+
+		// Get the Container CA public key for mutual auth
+		if cst.containerCAPublicKey != nil {
+			containerCAPublicKey = ssh.MarshalAuthorizedKey(cst.containerCAPublicKey)
+			fmt.Println("🔒 SSH Mutual Authentication enabled (container will verify host)")
+		}
+
+		// Get the host certificate for mutual auth
+		hostCertificate = cst.hostCertificate
+
 		defer func() {
 			if err := cst.Cleanup(); err != nil {
 				appendInternalErr(err)
@@ -323,7 +334,7 @@
 		// the scrollback (which is not good, but also not fatal).  I can't see why it does this
 		// though, since none of the calls in postContainerInitConfig obviously write to stdout
 		// or stderr.
-		if err := postContainerInitConfig(ctx, localAddr, commit, gitSrv.gitPort, gitSrv.pass, sshAvailable, sshErrMsg, sshServerIdentity, sshUserIdentity); err != nil {
+		if err := postContainerInitConfig(ctx, localAddr, commit, gitSrv.gitPort, gitSrv.pass, sshAvailable, sshErrMsg, sshServerIdentity, sshUserIdentity, containerCAPublicKey, hostCertificate); err != nil {
 			slog.ErrorContext(ctx, "LaunchContainer.postContainerInitConfig", slog.String("err", err.Error()))
 			errCh <- appendInternalErr(err)
 		}
@@ -589,19 +600,21 @@
 }
 
 // Contact the container and configure it.
-func postContainerInitConfig(ctx context.Context, localAddr, commit, gitPort, gitPass string, sshAvailable bool, sshError string, sshServerIdentity, sshAuthorizedKeys []byte) error {
+func postContainerInitConfig(ctx context.Context, localAddr, commit, gitPort, gitPass string, sshAvailable bool, sshError string, sshServerIdentity, sshAuthorizedKeys, sshContainerCAKey, sshHostCertificate []byte) error {
 	localURL := "http://" + localAddr
 
 	initMsg, err := json.Marshal(
 		server.InitRequest{
-			Commit:            commit,
-			OutsideHTTP:       fmt.Sprintf("http://sketch:%s@host.docker.internal:%s", gitPass, gitPort),
-			GitRemoteAddr:     fmt.Sprintf("http://sketch:%s@host.docker.internal:%s/.git", gitPass, gitPort),
-			HostAddr:          localAddr,
-			SSHAuthorizedKeys: sshAuthorizedKeys,
-			SSHServerIdentity: sshServerIdentity,
-			SSHAvailable:      sshAvailable,
-			SSHError:          sshError,
+			Commit:             commit,
+			OutsideHTTP:        fmt.Sprintf("http://sketch:%s@host.docker.internal:%s", gitPass, gitPort),
+			GitRemoteAddr:      fmt.Sprintf("http://sketch:%s@host.docker.internal:%s/.git", gitPass, gitPort),
+			HostAddr:           localAddr,
+			SSHAuthorizedKeys:  sshAuthorizedKeys,
+			SSHServerIdentity:  sshServerIdentity,
+			SSHContainerCAKey:  sshContainerCAKey,
+			SSHHostCertificate: sshHostCertificate,
+			SSHAvailable:       sshAvailable,
+			SSHError:           sshError,
 		})
 	if err != nil {
 		return fmt.Errorf("init msg: %w", err)