Hello!
I'm new to lsh. Lshd is the default SSH server on GuixSD, and so I found myself using it over OpenSSH. However, I found that I cannot use the port forwarding features with UNIX domain sockets. I'm used to being able to do this as the OpenSSH server supports it. It would be really great to add this feature. Any estimate on how much work it would involve or other thoughts?
Thanks!
- Dave
"Thompson, David" dthompson2@worcester.edu writes:
I'm new to lsh. Lshd is the default SSH server on GuixSD, and so I found myself using it over OpenSSH.
Cool.
However, I found that I cannot use the port forwarding features with UNIX domain sockets. I'm used to being able to do this as the OpenSSH server supports it.
What's the openssh user interface for this? Is it also a protocol extension? Details would be a bit different depending on which of the forwarding endpoints is a unix socket, and in which direction we're forwarding.
What is your usecase?
It would be really great to add this feature. Any estimate on how much work it would involve or other thoughts?
It shouldn't be too hard, most of the forwarding machinery shouldn't care what type of socket it is, and there's code elsewhere to handle unix sockets (used for X11 forwarding and for lsh -G gateways).
I should also say that lsh is a somewhat dormant project, there's the stable version, currently lsh-2.1 (which needs an updated release, as is just being discussed on this list). And there's the development code, which haven't yet seen a proper release.
I the stable version, the event handlinf for forwarding is described using a "control language" which is lisp-like and compiled into SK combinators. Which is pretty cool, but makes things a little more complicated than they need be.
In the development version, the control language has been removed and there are plain C callbacks for progress, e.g., the remote end replies to a channel open request.
So if you'd like to look into adding unix soket support, you'll have to decide which version to work with, since some parts of it will be quite different.
Regards, /Niels