def test_known_flags(self, time_mock):
expected_flags = [
'FAUST_XtS7wAAXDQ1BPIUAAAAAWz1i7pmtp/HY',
'FAUST_XuP+AAAXDfJgMq8AAAAA347vpisJsQcT',
'FAUST_XtS7wAAXDXBheWxvYWQxDcM2TNj0lCu7',
'FAUST_XuP+AAAXDXBheWxvYWQxmIKxwcEmDxQX',
'FAUST_XtS7wAAXDQ1BPIUAAAAAxR5C9S9LXgdi',
'FAUST_XuP+AAAXDfJgMq8AAAAAcqut7dVSvNOl',
'FAUST_XtS7wAAXDXBheWxvYWQxrwHKd/CNJgkB',
'FAUST_XuP+AAAXDXBheWxvYWQxn04LGjrQe4V8',
'FAUST_XtS7wAAXJTj0lH8AAAAArnmozMnyfMVb',
'FAUST_XuP+AAAXJcfVmlUAAAAAkUsJ65SCvAZW',
'FAUST_XtS7wAAXJXBheWxvYWQxIg0Sd0Ll06VT',
'FAUST_XuP+AAAXJXBheWxvYWQxGiKffkwjRTte',
'FAUST_XtS7wAAXJTj0lH8AAAAAUAFSjo0EF01t',
'FAUST_XuP+AAAXJcfVmlUAAAAAoeDpxI2QPjsv',
'FAUST_XtS7wAAXJXBheWxvYWQx+aIiPy4SC0+Q',
'FAUST_XuP+AAAXJXBheWxvYWQxYObaBlsWnmOE',
'FAUST_XtS7wAAqDWepdDsAAAAAfPNLsph2Jw8v',
'FAUST_XuP+AAAqDZiIehEAAAAA3Q30bTHWo1l9',
'FAUST_XtS7wAAqDXBheWxvYWQxLdYijGTcd2O3',
'FAUST_XuP+AAAqDXBheWxvYWQxsOqqEGk2u52r',
'FAUST_XtS7wAAqDWepdDsAAAAAhQontK+Uoy9h',
'FAUST_XuP+AAAqDZiIehEAAAAAYmCIMEQJotc4',
'FAUST_XtS7wAAqDXBheWxvYWQxvzsgxZioxnxY',
'FAUST_XuP+AAAqDXBheWxvYWQxLDqRTwxgE3yG',
'FAUST_XtS7wAAqJVIc3MEAAAAAdGtfQQkMd1VT',
'FAUST_XuP+AAAqJa090usAAAAAk+AN2kRqIVQs',
'FAUST_XtS7wAAqJXBheWxvYWQxjF+S/iA5tzxY',
'FAUST_XuP+AAAqJXBheWxvYWQxabGjcfYW9js/',
'FAUST_XtS7wAAqJVIc3MEAAAAAWUdMoH5KV/un',
'FAUST_XuP+AAAqJa090usAAAAAUeOaXaFLlwEj',
'FAUST_XtS7wAAqJXBheWxvYWQxFKDfL+/qydWm',
'FAUST_XuP+AAAqJXBheWxvYWQxzirUWWy6MwKe'
]
actual_flags = []
for team in (23, 42):
for service in (13, 37):
for secret in (b'secret1', b'secret2'):
for payload in (None, b'payload1'):
for timestamp in (1591000000, 1592000000):
actual_flag = flag.generate(
team, service, secret, 'FAUST_', payload,
timestamp)
actual_flags.append(actual_flag)
time_mock.return_value = timestamp - 5
actual_team, actual_service, actual_payload, actual_timestamp = \
flag.verify(actual_flag, secret, 'FAUST_')
self.assertEqual(actual_team, team)
self.assertEqual(actual_service, service)
if payload is not None:
self.assertEqual(actual_payload, payload)
self.assertEqual(actual_timestamp, timestamp)
self.assertEqual(actual_flags, expected_flags)
def test_old_flag(self):
timestamp = int(time.time() - 12)
test_flag = flag.generate(12,
13,
b'secret',
'FLAGPREFIX-',
timestamp=timestamp)
with self.assertRaises(flag.FlagExpired):
flag.verify(test_flag, b'secret', 'FLAGPREFIX-')
def test_invalid_mac(self):
testflag = flag.generate(12, 13)
s = set("0123456789")
try:
s.remove(testflag[-1])
except KeyError:
pass
wrongflag = testflag[:-1] + random.choice(list(s))
self.assertRaises(flag.InvalidFlagMAC, flag.verify, wrongflag)
def test_valid_flag(self):
payload = b'\x01\x02\x03\x04\x05\x06\x07\x08'
timestamp = int(time.time() + 12)
team = 12
service = 13
flag1 = flag.generate(team, service, b'secret', payload=payload, timestamp=timestamp)
team_, service_, payload_, timestamp_ = flag.verify(flag1, b'secret')
self.assertEqual(team, team_)
self.assertEqual(service, service_)
self.assertEqual(payload, payload_)
self.assertEqual(timestamp, timestamp_)
def test_invalid_mac(self):
test_flag = flag.generate(12, 13, b'secret')
# Replace last character of the flag with a differnt one
chars = set("0123456789")
try:
chars.remove(test_flag[-1])
except KeyError:
pass
wrong_flag = test_flag[:-1] + random.choice(list(chars))
with self.assertRaises(flag.InvalidFlagMAC):
flag.verify(wrong_flag, b'secret')
def handle_flag_request(self, task_info, params):
try:
tick = int(params['tick'])
except (KeyError, ValueError):
return None
try:
payload = base64.b64decode(params['payload'])
except KeyError:
payload = None
if payload == b'':
payload = None
# We need current value for self.contest_start which might have changed
self.refresh_control_info()
expiration = self.contest_start + (self.flag_valid_ticks + tick) * self.tick_duration
return flag_lib.generate(task_info['team'], self.service['id'], self.flag_secret, self.flag_prefix,
payload, expiration.timestamp())
def get_flag(self, tick, payload=None):
generatedflag = flag.generate(
self._team, self._service, self._secret, payload,
self._starttime + self._tickduration * tick)
return generatedflag
def test_old_flag(self):
timestamp = int(time.time() - 12)
testflag = flag.generate(12, 13, b'secret', timestamp=timestamp)
self.assertRaises(flag.FlagExpired, flag.verify, testflag, b'secret')
def test_deterministic(self):
tstamp = time.time()
flag1 = flag.generate(12, 13, b'secret', timestamp=tstamp)
flag2 = flag.generate(12, 13, b'secret', timestamp=tstamp)
self.assertEqual(flag1, flag2)
def test_not_against_self(self):
with mock.patch.object(self._handler, '_reply') as reply:
testflag = flag.generate(113, 12, b'secret')
self._handler.buffer = testflag.encode('us-ascii')
self._handler._handle_flag()
reply.assert_called_with(b"Can't submit a flag for your own team")
