SSHCredentials implementation

Author: mdarocha

src/Docker.DotNet.SSH/Docker.DotNet.SSH.csproj

@@ -8,4 +8,7 @@
   <ItemGroup>
     <ProjectReference Include="..\Docker.DotNet\Docker.DotNet.csproj" />
   </ItemGroup>
+  <ItemGroup>
+    <PackageReference Include="TrapTech.SSH.NET" Version="2020.0.3" />
+  </ItemGroup>
 </Project>

src/Docker.DotNet.SSH/SSHCredentials.cs

@@ -1,12 +1,41 @@
 using System.IO;
 using System.Net.Http;
 using System.Threading;
+using System.Threading.Tasks;
 using Microsoft.Net.Http.Client;
+using Renci.SshNet;
 
 namespace Docker.DotNet.SSH
 {
     public class SSHCredentials : Credentials
     {
+        private PrivateKeyFile _privateKey;
+
+        /// <summary>
+        /// Creates SSH credentials to handle connecting over SSH.
+        /// </summary>
+        /// <param name="privateKey">The private key contents</param>
+        public SSHCredentials(string privateKey) : this(privateKey, null) { }
+
+        /// <summary>
+        /// Creates SSH credentials to handle connecting over SSH.
+        /// </summary>
+        /// <param name="privateKey">The private key contents</param>
+        /// <param name="password">Password for the private key</param>
+        public SSHCredentials(string privateKey, string password)
+        {
+            var stream = new MemoryStream();
+            using (var writer = new StreamWriter(stream))
+            {
+                writer.Write(privateKey);
+                writer.Flush();
+
+                stream.Position = 0;
+                // This needs to be created *before* the StreamWriter (which closes the stream) is disposed
+                _privateKey = new PrivateKeyFile(stream, password);
+            }
+        }
+
         public override HttpMessageHandler GetHandler(HttpMessageHandler innerHandler)
         {
             return innerHandler;
@@ -22,11 +51,20 @@ public override bool IsTlsCredentials()
             return false;
         }
 
-        public override ManagedHandler.StreamOpener GetStreamOpener()
+        public override ManagedHandler.StreamOpener GetSshStreamOpener(string user)
         {
-            // TODO
-            return async (string host, int port, CancellationToken cancellationToken) => {
-                return File.OpenRead("/dev/null");
+            return (string host, int port, CancellationToken cancellationToken) => {
+                var authMethod = new PrivateKeyAuthenticationMethod(user, _privateKey);
+                var connectionInfo = new ConnectionInfo(host, port, user, authMethod);
+                var client = new SshClient(connectionInfo);
+                client.Connect();
+
+                var cmd = client.CreateCommand("docker system dial-stdio");
+                cmd.BeginExecute();
+
+                var result = new JoinedReadWriteStream(cmd.OutputStream, cmd.InputStream);
+
+                return Task.FromResult((Stream) result);
             };
         }
     }

src/Docker.DotNet/Credentials.cs

@@ -12,7 +12,7 @@ public abstract class Credentials : IDisposable
 
         public abstract HttpMessageHandler GetHandler(HttpMessageHandler innerHandler);
 
-        public virtual ManagedHandler.StreamOpener GetStreamOpener()
+        public virtual ManagedHandler.StreamOpener GetSshStreamOpener(string username)
         {
             return null;
         }

src/Docker.DotNet/DockerClient.cs

@@ -118,9 +118,15 @@ await sock.ConnectAsync(new Microsoft.Net.Http.Client.UnixDomainSocketEndPoint(p
                     {
                         throw new ArgumentException("ssh:// protocol can only be used with SSHCredentials");
                     };
-                    handler = new ManagedHandler(Configuration.Credentials.GetStreamOpener());
+
+                    var username = uri.UserInfo;
+                    if(username.Contains(":"))
+                    {
+                        throw new ArgumentException("ssh:// protocol only supports authentication with private keys");
+                    };
+
+                    handler = new ManagedHandler(Configuration.Credentials.GetSshStreamOpener(username));
                     uri = new UriBuilder("http", uri.Host, uri.IsDefaultPort ? 22 : uri.Port).Uri;
-                    Console.WriteLine(uri.ToString());
                     break;
 
                 default:

src/Docker.DotNet/Microsoft.Net.Http.Client/HttpConnection.cs

@@ -106,6 +106,7 @@ private async Task<List<string>> ReadResponseLinesAsync(CancellationToken cancel
         private HttpResponseMessage CreateResponseMessage(List<string> responseLines)
         {
             string responseLine = responseLines.First();
+
             // HTTP/1.1 200 OK
             string[] responseLineParts = responseLine.Split(new[] { ' ' }, 3);
             // TODO: Verify HTTP/1.0 or 1.1.