gitlord
/
synapse
зеркало из https://github.com/matrix-org/synapse.git
1
0
Форкнуть 0
Код Задачи 0 Релизы 671 Вики Активность
Вы не можете выбрать более 25 тем Темы должны начинаться с буквы или цифры, могут содержать дефисы(-) и должны содержать не более 35 символов.
23441 коммит
842 Ветки
428 MiB
 
 
 
 
 
 
ветка: develop
Ветки Теги
${ item.name }
Создать ветку ${ searchTerm }
из 'develop'
${ noResults }
synapse/synapse/util/manhole.py

186 строки
8.1 KiB
Исходник Постоянная ссылка Вина История 

  1. # Copyright 2016 OpenMarket Ltd

  2. # Copyright 2019 New Vector Ltd.

  3. #

  4. # Licensed under the Apache License, Version 2.0 (the "License");

  5. # you may not use this file except in compliance with the License.

  6. # You may obtain a copy of the License at

  7. #

  8. #     http://www.apache.org/licenses/LICENSE-2.0

  9. #

  10. # Unless required by applicable law or agreed to in writing, software

  11. # distributed under the License is distributed on an "AS IS" BASIS,

  12. # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

  13. # See the License for the specific language governing permissions and

  14. # limitations under the License.

  15. import inspect

  16. import sys

  17. import traceback

  18. from typing import Any, Dict, Optional

  19. 

  20. from twisted.conch import manhole_ssh

  21. from twisted.conch.insults import insults

  22. from twisted.conch.manhole import ColoredManhole, ManholeInterpreter

  23. from twisted.conch.ssh.keys import Key

  24. from twisted.cred import checkers, portal

  25. from twisted.internet import defer

  26. from twisted.internet.protocol import ServerFactory

  27. 

  28. from synapse.config.server import ManholeConfig

  29. 

  30. PUBLIC_KEY = (

  31.     "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDHhGATaW4KhE23+7nrH4jFx3yLq9OjaEs5"

  32.     "XALqeK+7385NlLja3DE/DO9mGhnd9+bAy39EKT3sTV6+WXQ4yD0TvEEyUEMtjWkSEm6U32+C"

  33.     "DaS3TW/vPBUMeJQwq+Ydcif1UlnpXrDDTamD0AU9VaEvHq+3HAkipqn0TGpKON6aqk4vauDx"

  34.     "oXSsV5TXBVrxP/y7HpMOpU4GUWsaaacBTKKNnUaQB4UflvydaPJUuwdaCUJGTMjbhWrjVfK+"

  35.     "jslseSPxU6XvrkZMyCr4znxvuDxjMk1RGIdO7v+rbBMLEgqtSMNqJbYeVCnj2CFgc3fcTcld"

  36.     "X2uOJDrJb/WRlHulthCh"

  37. )

  38. 

  39. PRIVATE_KEY = """-----BEGIN RSA PRIVATE KEY-----

  40. MIIEpQIBAAKCAQEAx4RgE2luCoRNt/u56x+Ixcd8i6vTo2hLOVwC6nivu9/OTZS4

  41. 2twxPwzvZhoZ3ffmwMt/RCk97E1evll0OMg9E7xBMlBDLY1pEhJulN9vgg2kt01v

  42. 7zwVDHiUMKvmHXIn9VJZ6V6ww02pg9AFPVWhLx6vtxwJIqap9ExqSjjemqpOL2rg

  43. 8aF0rFeU1wVa8T/8ux6TDqVOBlFrGmmnAUyijZ1GkAeFH5b8nWjyVLsHWglCRkzI

  44. 24Vq41Xyvo7JbHkj8VOl765GTMgq+M58b7g8YzJNURiHTu7/q2wTCxIKrUjDaiW2

  45. HlQp49ghYHN33E3JXV9rjiQ6yW/1kZR7pbYQoQIDAQABAoIBAQC8KJ0q8Wzzwh5B

  46. esa1dQHZ8+4DEsL/Amae66VcVwD0X3cCN1W2IZ7X5W0Ij2kBqr8V51RYhcR+S+Ek

  47. BtzSiBUBvbKGrqcMGKaUgomDIMzai99hd0gvCCyZnEW1OQhFkNkaRNXCfqiZJ27M

  48. fqvSUiU2eOwh9fCvmxoA6Of8o3FbzcJ+1GMcobWRllDtLmj6lgVbDzuA+0jC5daB

  49. 9Tj1pBzu3wn3ufxiS+gBnJ+7NcXH3E73lqCcPa2ufbZ1haxfiGCnRIhFXuQDgxFX

  50. vKdEfDgtvas6r1ahGbc+b/q8E8fZT7cABuIU4yfOORK+MhpyWbvoyyzuVGKj3PKt

  51. KSPJu5CZAoGBAOkoJfAVyYteqKcmGTanGqQnAY43CaYf6GdSPX/jg+JmKZg0zqMC

  52. jWZUtPb93i+jnOInbrnuHOiHAxI8wmhEPed28H2lC/LU8PzlqFkZXKFZ4vLOhhRB

  53. /HeHCFIDosPFlohWi3b+GAjD7sXgnIuGmnXWe2ea/TS3yersifDEoKKjAoGBANsQ

  54. gJX2cJv1c3jhdgcs8vAt5zIOKcCLTOr/QPmVf/kxjNgndswcKHwsxE/voTO9q+TF

  55. v/6yCSTxAdjuKz1oIYWgi/dZo82bBKWxNRpgrGviU3/zwxiHlyIXUhzQu78q3VS/

  56. 7S1XVbc7qMV++XkYKHPVD+nVG/gGzFxumX7MLXfrAoGBAJit9cn2OnjNj9uFE1W6

  57. r7N254ndeLAUjPe73xH0RtTm2a4WRopwjW/JYIetTuYbWgyujc+robqTTuuOZjAp

  58. H/CG7o0Ym251CypQqaFO/l2aowclPp/dZhpPjp9GSjuxFBZLtiBB3DNBOwbRQzIK

  59. /vLTdRQvZkgzYkI4i0vjNt3JAoGBANP8HSKBLymMlShlrSx2b8TB9tc2Y2riohVJ

  60. 2ttqs0M2kt/dGJWdrgOz4mikL+983Olt/0P9juHDoxEEMK2kpcPEv40lnmBpYU7h

  61. s8yJvnBLvJe2EJYdJ8AipyAhUX1FgpbvfxmASP8eaUxsegeXvBWTGWojAoS6N2o+

  62. 0KSl+l3vAoGAFqm0gO9f/Q1Se60YQd4l2PZeMnJFv0slpgHHUwegmd6wJhOD7zJ1

  63. CkZcXwiv7Nog7AI9qKJEUXLjoqL+vJskBzSOqU3tcd670YQMi1aXSXJqYE202K7o

  64. EddTrx3TNpr1D5m/f+6mnXWrc8u9y1+GNx9yz889xMjIBTBI9KqaaOs=

  65. -----END RSA PRIVATE KEY-----"""

  66. 

  67. 

  68. def manhole(settings: ManholeConfig, globals: Dict[str, Any]) -> ServerFactory:

  69.     """Starts a ssh listener with password authentication using

  70.     the given username and password. Clients connecting to the ssh

  71.     listener will find themselves in a colored python shell with

  72.     the supplied globals.

  73. 

  74.     Args:

  75.         username: The username ssh clients should auth with.

  76.         password: The password ssh clients should auth with.

  77.         globals: The variables to expose in the shell.

  78. 

  79.     Returns:

  80.         A factory to pass to ``listenTCP``

  81.     """

  82.     username = settings.username

  83.     password = settings.password.encode("ascii")

  84.     priv_key = settings.priv_key

  85.     if priv_key is None:

  86.         priv_key = Key.fromString(PRIVATE_KEY)

  87.     pub_key = settings.pub_key

  88.     if pub_key is None:

  89.         pub_key = Key.fromString(PUBLIC_KEY)

  90. 

  91.     checker = checkers.InMemoryUsernamePasswordDatabaseDontUse(**{username: password})

  92. 

  93.     rlm = manhole_ssh.TerminalRealm()

  94.     # mypy ignored here because:

  95.     # - can't deduce types of lambdas

  96.     # - variable is Type[ServerProtocol], expr is Callable[[], ServerProtocol]

  97.     rlm.chainedProtocolFactory = lambda: insults.ServerProtocol(  # type: ignore[misc,assignment]

  98.         SynapseManhole, dict(globals, __name__="__console__")

  99.     )

  100. 

  101.     # type-ignore: This is an error in Twisted's annotations. See

  102.     # https://github.com/twisted/twisted/issues/11812 and /11813 .

  103.     factory = manhole_ssh.ConchFactory(portal.Portal(rlm, [checker]))  # type: ignore[arg-type]

  104. 

  105.     # conch has the wrong type on these dicts (says bytes to bytes,

  106.     # should be bytes to Keys judging by how it's used).

  107.     factory.privateKeys[b"ssh-rsa"] = priv_key  # type: ignore[assignment]

  108.     factory.publicKeys[b"ssh-rsa"] = pub_key  # type: ignore[assignment]

  109. 

  110.     # ConchFactory is a Factory, not a ServerFactory, but they are identical.

  111.     return factory  # type: ignore[return-value]

  112. 

  113. 

  114. class SynapseManhole(ColoredManhole):

  115.     """Overrides connectionMade to create our own ManholeInterpreter"""

  116. 

  117.     def connectionMade(self) -> None:

  118.         super().connectionMade()

  119. 

  120.         # replace the manhole interpreter with our own impl

  121.         self.interpreter = SynapseManholeInterpreter(self, self.namespace)

  122. 

  123.         # this would also be a good place to add more keyHandlers.

  124. 

  125. 

  126. class SynapseManholeInterpreter(ManholeInterpreter):

  127.     def showsyntaxerror(self, filename: Optional[str] = None) -> None:

  128.         """Display the syntax error that just occurred.

  129. 

  130.         Overrides the base implementation, ignoring sys.excepthook. We always want

  131.         any syntax errors to be sent to the terminal, rather than sentry.

  132.         """

  133.         type, value, tb = sys.exc_info()

  134.         assert value is not None

  135.         sys.last_type = type

  136.         sys.last_value = value

  137.         sys.last_traceback = tb

  138.         if filename and type is SyntaxError:

  139.             # Work hard to stuff the correct filename in the exception

  140.             try:

  141.                 msg, (dummy_filename, lineno, offset, line) = value.args

  142.             except ValueError:

  143.                 # Not the format we expect; leave it alone

  144.                 pass

  145.             else:

  146.                 # Stuff in the right filename

  147.                 value = SyntaxError(msg, (filename, lineno, offset, line))

  148.                 sys.last_value = value

  149.         lines = traceback.format_exception_only(type, value)

  150.         self.write("".join(lines))

  151. 

  152.     def showtraceback(self) -> None:

  153.         """Display the exception that just occurred.

  154. 

  155.         Overrides the base implementation, ignoring sys.excepthook. We always want

  156.         any syntax errors to be sent to the terminal, rather than sentry.

  157.         """

  158.         sys.last_type, sys.last_value, last_tb = ei = sys.exc_info()

  159.         sys.last_traceback = last_tb

  160.         assert last_tb is not None

  161. 

  162.         try:

  163.             # We remove the first stack item because it is our own code.

  164.             lines = traceback.format_exception(ei[0], ei[1], last_tb.tb_next)

  165.             self.write("".join(lines))

  166.         finally:

  167.             # On the line below, last_tb and ei appear to be dead.

  168.             # It's unclear whether there is a reason behind this line.

  169.             # It conceivably could be because an exception raised in this block

  170.             # will keep the local frame (containing these local variables) around.

  171.             # This was adapted taken from CPython's Lib/code.py; see here:

  172.             # https://github.com/python/cpython/blob/4dc4300c686f543d504ab6fa9fe600eaf11bb695/Lib/code.py#L131-L150

  173.             last_tb = ei = None  # type: ignore

  174. 

  175.     def displayhook(self, obj: Any) -> None:

  176.         """

  177.         We override the displayhook so that we automatically convert coroutines

  178.         into Deferreds. (Our superclass' displayhook will take care of the rest,

  179.         by displaying the Deferred if it's ready, or registering a callback

  180.         if it's not).

  181.         """

  182.         if inspect.iscoroutine(obj):

  183.             super().displayhook(defer.ensureDeferred(obj))

  184.         else:

  185.             super().displayhook(obj)