summaryrefslogtreecommitdiffhomepage
path: root/tsnet/tsnet.go
diff options
context:
space:
mode:
Diffstat (limited to 'tsnet/tsnet.go')
-rw-r--r--tsnet/tsnet.go27
1 files changed, 27 insertions, 0 deletions
diff --git a/tsnet/tsnet.go b/tsnet/tsnet.go
index 4a116cf34..57cd5a004 100644
--- a/tsnet/tsnet.go
+++ b/tsnet/tsnet.go
@@ -1074,6 +1074,33 @@ func (s *Server) Listen(network, addr string) (net.Listener, error) {
return s.listen(network, addr, listenOnTailnet)
}
+// ListenSSH listens on the Tailscale network for SSH connections at the given
+// addr (e.g. ":2222"). The returned listener's Accept method yields net.Conn
+// values that are actually *tailssh.Session, providing access to the
+// connecting peer's Tailscale identity, PTY information, signals, and more.
+//
+// Basic applications can use the returned connections as plain net.Conn
+// (Read/Write/Close). Applications that need richer SSH semantics should
+// type-assert to *tailssh.Session.
+//
+// SSH support must be linked into the binary by importing
+// _ "tailscale.com/feature/ssh". Without that import, ListenSSH returns an
+// error.
+//
+// If s has not been started yet, it will be started.
+func (s *Server) ListenSSH(addr string) (net.Listener, error) {
+ rawLn, err := s.Listen("tcp", addr)
+ if err != nil {
+ return nil, err
+ }
+ sshLn, err := s.lb.ListenSSH(rawLn, s.logf)
+ if err != nil {
+ rawLn.Close()
+ return nil, err
+ }
+ return sshLn, nil
+}
+
// ListenPacket announces on the Tailscale network.
//
// The network must be "udp", "udp4" or "udp6". The addr must be of the form
Copyright © 2025 - 2026 Wayne Cole. WTFPL. Attribution appreciated. No warranty. Not liable for bodily damages.