summary refs log tree commit diff
path: root/synapse/util/manhole.py
diff options
context:
space:
mode:
authorMark Haines <mjark@negativecurvature.net>2016-04-22 17:08:02 +0100
committerMark Haines <mjark@negativecurvature.net>2016-04-22 17:09:15 +0100
commit5905f36f0557f2b496e5b2759db295a3b2807574 (patch)
tree758ec7bf9e3a7cbbdb391501299063f1633be3fb /synapse/util/manhole.py
parentMerge branch 'develop' into markjh/split_out_site.py (diff)
downloadsynapse-5905f36f0557f2b496e5b2759db295a3b2807574.tar.xz
Split out setting up the manhole to a separate file
Diffstat (limited to 'synapse/util/manhole.py')
-rw-r--r--synapse/util/manhole.py50
1 files changed, 50 insertions, 0 deletions
diff --git a/synapse/util/manhole.py b/synapse/util/manhole.py
new file mode 100644
index 0000000000..e12583209f
--- /dev/null
+++ b/synapse/util/manhole.py
@@ -0,0 +1,50 @@
+# Copyright 2016 OpenMarket Ltd
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+from twisted.conch.manhole import ColoredManhole
+from twisted.conch.insults import insults
+from twisted.conch import manhole_ssh
+from twisted.cred import checkers, portal
+
+
+from twisted.internet import reactor
+
+
+def listen_manhole(bind_address, bind_port, username, password, globals):
+    """Starts a ssh listener with password authentication using
+    the given username and password. Clients connecting to the ssh
+    listener will find themselves in a colored python shell with
+    the supplied globals.
+
+    Args:
+        bind_address(str): IP address to listen on.
+        bind_port(int): TCP port to listen on.
+        username(str): The username ssh clients should auth with.
+        password(str): The password ssh clients should auth with.
+        globals(dict): The variables to expose in the shell.
+    """
+
+    checker = checkers.InMemoryUsernamePasswordDatabaseDontUse(
+        **{username: password}
+    )
+
+    rlm = manhole_ssh.TerminalRealm()
+    rlm.chainedProtocolFactory = lambda: insults.ServerProtocol(
+        ColoredManhole,
+        dict(globals, __name__="__console__")
+    )
+
+    factory = manhole_ssh.ConchFactory(portal.Portal(rlm, [checker]))
+
+    reactor.listenTCP(bind_port, factory, interface=bind_address)