Forward SSH agent to container

shamilnunhuck · November 8, 2023, 1:46pm

I am using the SDK to start a container, and I need to forward the host’s SSH agent to the container.

How do I do this with the Go SDK? The primary deployment target for the Go app is a Mac for now, and I’m aware of some trickery with ssh-agent.

So far, I’m mounting SSH_AUTH_SOCK as such:

Mounts: []mount.Mount{
				{
					Type:   mount.TypeBind,
					Source: "/run/host-services/ssh-auth.sock",
					Target: "/run/host-services/ssh-auth.sock",
				},
			}

However, it’s not forwarding SSH identities: ssh-add -L returns no identities.

bluepuma77 · November 9, 2023, 7:20am

SSH credentials are usually stored in a .ssh folder in every users home folder, so you would probably need to mount those, too.

dataheadless · November 9, 2023, 7:49am

Did you verify if ssh agent is running? also you can double check paths when mounting. Besides when creating GO container you can try to set the SSH_AUTH_SOCK Environment Variable: Within your container, you need to set the SSH_AUTH_SOCK environment variable to point to the mounted socket.

shamilnunhuck · November 9, 2023, 12:56pm

Yep, the agent is running; I’ve also set the SSH_AUTH_SOCK env var, which I’ve validated is set in the container.

I wonder if “/run/host-services/ssh-auth.sock” is not available outside docker desktop for Mac, and whether I need to do something different for the SDK?

Topic		Replies	Views
Is there any way to forward Mac OS ssh-agent into container yet? Docker Desktop macos	0	2282	July 11, 2017
What precisely does --ssh do inside a docker-build? General docker , build	1	4077	May 4, 2021
Can we re-use the OSX ssh-agent socket in a container? Docker Desktop macos	30	37320	June 19, 2022
Ssh-agent forwarding into docker-compose environment is not working Compose	1	14557	May 6, 2020
Port forwarding from container to remote server General	1	14250	September 15, 2015

Forward SSH agent to container

Related topics