Supports PY3, refinements to chal editor and viewer, model changes to resolve issues

2025-12-17 22:14:25 +01:00 · 2015-10-10 21:09:25 -04:00
parent 09594892f9
commit df21544f13
23 changed files with 382 additions and 194 deletions
--- a/CTFd/challenges.py
+++ b/CTFd/challenges.py
@@ -6,6 +6,7 @@ from CTFd.models import db, Challenges, Files, Solves, WrongKeys, Keys
 import time
 import re
 import logging
+import json

 challenges = Blueprint('challenges', __name__)

@@ -21,7 +22,7 @@ def challenges_view():
    if can_view_challenges():
        return render_template('chals.html', ctftime=ctftime())
    else:
-        return redirect(url_for('login', next="challenges"))
+        return redirect('/login')


@challenges.route('/chals', methods=['GET'])
@@ -55,7 +56,7 @@ def chals_per_solves():
        for chal, count in solves:
            json[chal.chal.name] = count
        return jsonify(json)
-    return redirect(url_for('login', next="/chals/solves"))
+    return redirect('/login')


@challenges.route('/solves')
@@ -80,7 +81,7 @@ def attempts():
    chals = Challenges.query.add_columns('id').all()
    json = {'maxattempts':[]}
    for chal, chalid in chals:
-        fails = WrongKeys.query.filter_by(team=session['id'], chal=chalid).count()
+        fails = WrongKeys.query.filter_by(team=session['id'], chalid=chalid).count()
        if fails >= int(get_config("max_tries")) and int(get_config("max_tries")) > 0:
            json['maxattempts'].append({'chalid':chalid})
    return jsonify(json)
@@ -97,7 +98,7 @@ def fails(teamid):

@challenges.route('/chal/<chalid>/solves', methods=['GET'])
 def who_solved(chalid):
-    solves = Solves.query.filter_by(chalid=chalid)
+    solves = Solves.query.filter_by(chalid=chalid).order_by(Solves.date.asc())
    json = {'teams':[]}
    for solve in solves:
        json['teams'].append({'id':solve.team.id, 'name':solve.team.name, 'date':solve.date})
@@ -109,12 +110,16 @@ def chal(chalid):
    if not ctftime():
        return redirect('/challenges')
    if authed():
-        fails = WrongKeys.query.filter_by(team=session['id'],chal=chalid).count()
+        fails = WrongKeys.query.filter_by(team=session['id'], chalid=chalid).count()
        logger = logging.getLogger('keys')
        data = (time.strftime("%m/%d/%Y %X"), session['username'].encode('utf-8'), request.form['key'].encode('utf-8'), get_kpm(session['id']))
-        print "[{0}] {1} submitted {2} with kpm {3}".format(*data)
+        print("[{0}] {1} submitted {2} with kpm {3}".format(*data))
+
+        # Hit max attempts
        if fails >= int(get_config("max_tries")) and int(get_config("max_tries")) > 0:
            return "4" #too many tries on this challenge
+
+        # Anti-bruteforce / submitting keys too quickly
        if get_kpm(session['id']) > 10:
            wrong = WrongKeys(session['id'], chalid, request.form['key'])
            db.session.add(wrong)
@@ -122,21 +127,26 @@ def chal(chalid):
            db.session.close()
            logger.warn("[{0}] {1} submitted {2} with kpm {3} [TOO FAST]".format(*data))
            return "3" # Submitting too fast
+
        solves = Solves.query.filter_by(teamid=session['id'], chalid=chalid).first()
+
+        # Challange not solved yet
        if not solves:
-            keys = Keys.query.filter_by(chal=chalid).all()
-            key = request.form['key'].strip().lower()
+            chal = Challenges.query.filter_by(id=chalid).first()
+            key = str(request.form['key'].strip().lower())
+            keys = json.loads(chal.flags)
            for x in keys:
-                if x.key_type == 0: #static key
-                    if x.flag.strip().lower() == key:
+                if x['type'] == 0: #static key
+                    print(x['flag'], key.strip().lower())
+                    if x['flag'] == key.strip().lower():
                        solve = Solves(chalid=chalid, teamid=session['id'], ip=request.remote_addr, flag=key)
                        db.session.add(solve)
                        db.session.commit()
                        db.session.close()
                        logger.info("[{0}] {1} submitted {2} with kpm {3} [CORRECT]".format(*data))
                        return "1" # key was correct
-                elif x.key_type == 1: #regex
-                    res = re.match(str(x), key, re.IGNORECASE)
+                elif x['type'] == 1: #regex
+                    res = re.match(str(x['flag']), key, re.IGNORECASE)
                    if res and res.group() == key:
                        solve = Solves(chalid=chalid, teamid=session['id'], ip=request.remote_addr, flag=key)
                        db.session.add(solve)
@@ -151,6 +161,8 @@ def chal(chalid):
            db.session.close()
            logger.info("[{0}] {1} submitted {2} with kpm {3} [WRONG]".format(*data))
            return '0' # key was wrong
+
+        # Challenge already solved
        else:
            logger.info("{0} submitted {1} with kpm {2} [ALREADY SOLVED]".format(*data))
            return "2" # challenge was already solved