anhhung04 · February 22, 2024 07:41
diff --git a/checker.py b/checker.py
 #!/usr/bin/env python3

 import sys
 import requests

 from checklib import *
 from unsafe_notes_lib import *


 class Checker(BaseChecker):
    vulns: int = 1
    timeout: int = 5
    uses_attack_data: bool = True

    def __init__(self, *args, **kwargs):
        super(Checker, self).__init__(*args, **kwargs)
        self.mch = CheckMachine(self)

    def action(self, action, *args, **kwargs):
        try:
            super(Checker, self).action(action, *args, **kwargs)
        except requests.exceptions.ConnectionError:
            self.cquit(Status.DOWN, 'Connection error', 'Got requests connection error')

    def check(self):
        session = get_initialized_session()
        username, password = rnd_username(), rnd_password()

        note_name_full = rnd_string(10)
        note_value = rnd_string(20)

        self.mch.register(session, username, password)
        self.mch.login(session, username, password, Status.MUMBLE)
        self.mch.put_note(session, note_name_full, note_value)
        value = self.mch.get_note(session, note_name_full, Status.MUMBLE)

        self.assert_eq(value, note_value, "Note value is invalid")

        self.cquit(Status.OK)

    def put(self, flag_id: str, flag: str, vuln: str):
        session = get_initialized_session()
        username, password = rnd_username(), rnd_password()

        note_name_full = rnd_string(10)

        if vuln == "1":
            note_name_full += "_1"
        elif vuln == "2":
            note_name_full += "_2"

        note_name_public = note_name_full[:5]

        self.mch.register(session, username, password)
        self.mch.login(session, username, password, Status.MUMBLE)
        self.mch.put_note(session, note_name_full, flag)

        self.cquit(Status.OK, note_name_public, f'{username}:{password}:{note_name_full}')

    def get(self, flag_id: str, flag: str, vuln: str):
        s = get_initialized_session()
        username, password, note_name_full = flag_id.split(':')

        self.mch.login(s, username, password, Status.CORRUPT)
        value = self.mch.get_note(s, note_name_full, Status.CORRUPT)

        self.assert_eq(value, flag, "Note value is invalid", Status.CORRUPT)

        self.cquit(Status.OK)


 if __name__ == '__main__':
    c = Checker(sys.argv[2])

    try:
        c.action(sys.argv[1], *sys.argv[3:])
    except c.get_check_finished_exception():
        cquit(Status(c.status), c.public, c.private)
diff --git a/unsafe_note_lib.py b/unsafe_note_lib.py
 import requests
 from checklib import *

 PORT = 1

 class CheckMachine:
    @property
    def url(self):
        return f'http://{self.c.host}{self.port}'

    def __init__(self, checker: BaseChecker):
        self.c = checker
        self.port = PORT

    def register(self, session: requests.Session, username: str, password: str):
        pass

    def login(self, session: requests.Session, username: str, password: str, status: Status):
        pass

    def put_note(self, session: requests.Session, note_name: str, note_value: str):
        url = f'{self.url}/put_note'

        response = session.post(url, json={
            "name": note_name,
            "value": note_value,
        })

        data = self.c.get_json(response, "Invalid response on put_note")
        self.c.assert_eq(type(data), dict, "Invalid response on put_note")
        self.c.assert_in("ok", data, "Invalid response on put_note")
        self.c.assert_eq(data["ok"], True, "Can't put note")

    def get_note(self, session: requests.Session, note_name: str, status: Status) -> str:
        url = f'{self.url}/get_note'

        response = session.post(url, json={
            "name": note_name,
        })

        data = self.c.get_json(response, "Invalid response on get_note", status)
        self.c.assert_eq(type(data), dict, "Invalid response on get_note", status)
        self.c.assert_in("ok", data, "Invalid response on get_note", status)
        self.c.assert_in("note", data, "Invalid response on put_note", status)
        self.c.assert_eq(type(data["note"]), str, "Invalid response on put_note", status)
        self.c.assert_eq(data["ok"], True, "Can't get note", status)

        return data["note"]
	#!/usr/bin/env python3

	import sys
	import requests

	from checklib import *
	from unsafe_notes_lib import *


	class Checker(BaseChecker):
	vulns: int = 1
	timeout: int = 5
	uses_attack_data: bool = True

	def __init__(self, args, *kwargs):
	super(Checker, self).__init__(args, *kwargs)
	self.mch = CheckMachine(self)

	def action(self, action, args, *kwargs):
	try:
	super(Checker, self).action(action, args, *kwargs)
	except requests.exceptions.ConnectionError:
	self.cquit(Status.DOWN, 'Connection error', 'Got requests connection error')

	def check(self):
	session = get_initialized_session()
	username, password = rnd_username(), rnd_password()

	note_name_full = rnd_string(10)
	note_value = rnd_string(20)

	self.mch.register(session, username, password)
	self.mch.login(session, username, password, Status.MUMBLE)
	self.mch.put_note(session, note_name_full, note_value)
	value = self.mch.get_note(session, note_name_full, Status.MUMBLE)

	self.assert_eq(value, note_value, "Note value is invalid")

	self.cquit(Status.OK)

	def put(self, flag_id: str, flag: str, vuln: str):
	session = get_initialized_session()
	username, password = rnd_username(), rnd_password()

	note_name_full = rnd_string(10)

	if vuln == "1":
	note_name_full += "_1"
	elif vuln == "2":
	note_name_full += "_2"

	note_name_public = note_name_full[:5]

	self.mch.register(session, username, password)
	self.mch.login(session, username, password, Status.MUMBLE)
	self.mch.put_note(session, note_name_full, flag)

	self.cquit(Status.OK, note_name_public, f'{username}:{password}:{note_name_full}')

	def get(self, flag_id: str, flag: str, vuln: str):
	s = get_initialized_session()
	username, password, note_name_full = flag_id.split(':')

	self.mch.login(s, username, password, Status.CORRUPT)
	value = self.mch.get_note(s, note_name_full, Status.CORRUPT)

	self.assert_eq(value, flag, "Note value is invalid", Status.CORRUPT)

	self.cquit(Status.OK)


	if __name__ == '__main__':
	c = Checker(sys.argv[2])

	try:
	c.action(sys.argv[1], *sys.argv[3:])
	except c.get_check_finished_exception():
	cquit(Status(c.status), c.public, c.private)
	import requests
	from checklib import *

	PORT = 1

	class CheckMachine:
	@property
	def url(self):
	return f'http://{self.c.host}{self.port}'

	def __init__(self, checker: BaseChecker):
	self.c = checker
	self.port = PORT

	def register(self, session: requests.Session, username: str, password: str):
	pass

	def login(self, session: requests.Session, username: str, password: str, status: Status):
	pass

	def put_note(self, session: requests.Session, note_name: str, note_value: str):
	url = f'{self.url}/put_note'

	response = session.post(url, json={
	"name": note_name,
	"value": note_value,
	})

	data = self.c.get_json(response, "Invalid response on put_note")
	self.c.assert_eq(type(data), dict, "Invalid response on put_note")
	self.c.assert_in("ok", data, "Invalid response on put_note")
	self.c.assert_eq(data["ok"], True, "Can't put note")

	def get_note(self, session: requests.Session, note_name: str, status: Status) -> str:
	url = f'{self.url}/get_note'

	response = session.post(url, json={
	"name": note_name,
	})

	data = self.c.get_json(response, "Invalid response on get_note", status)
	self.c.assert_eq(type(data), dict, "Invalid response on get_note", status)
	self.c.assert_in("ok", data, "Invalid response on get_note", status)
	self.c.assert_in("note", data, "Invalid response on put_note", status)
	self.c.assert_eq(type(data["note"]), str, "Invalid response on put_note", status)
	self.c.assert_eq(data["ok"], True, "Can't get note", status)

	return data["note"]