MyFavMirrors/lc-core
1
0
Fork 0
mirror of https://github.com/librecaptcha/lc-core.git synced 2025-01-14 15:25:00 -05:00
Code Issues Packages Projects Releases Wiki Activity

labelcaptcha: store filenames in the token

Browse Source 
This is a hack, for the purposes of the POC.
This commit is contained in:
hrj 2020-07-04 01:22:26 +05:30
parent b300fa2178
commit 245521017a
1 changed files with 26 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

34
src/main/scala/lc/LabelCaptcha.scala
View File

@ -18,17 +18,28 @@ class LabelCaptcha extends ChallengeProvider {
unknownAnswers += file -> Map[String, Int]() unknownAnswers += file -> Map[String, Int]()
total += file -> 0 total += file -> 0
} }
def getId = "LabelCaptcha" def getId = "LabelCaptcha"
def returnChallenge(): Challenge = synchronized { def returnChallenge(): Challenge = synchronized {
val r = scala.util.Random.nextInt(knownFiles.length) val r = scala.util.Random.nextInt(knownFiles.length)
val s = scala.util.Random.nextInt(unknownFiles.length) val s = scala.util.Random.nextInt(unknownFiles.length)
val knownImageFile = knownFiles(r) val knownImageFile = knownFiles(r)
val unknownImageFile = unknownFiles(s) val unknownImageFile = unknownFiles(s)
val ip = new ImagePair(knownImageFile, unknownImageFile) val ip = new ImagePair(knownImageFile, unknownImageFile)
val token = scala.util.Random.nextInt(10000).toString
tokenImagePair += (token -> ip)
var knownImage = ImageIO.read(new File("known/"+knownImageFile)) var knownImage = ImageIO.read(new File("known/"+knownImageFile))
var unknownImage = ImageIO.read(new File("unknown/"+unknownImageFile)) var unknownImage = ImageIO.read(new File("unknown/"+unknownImageFile))
val mergedImage = merge(knownImage, unknownImage)
val token = encrypt(knownImageFile + "," + unknownImageFile)
val baos = new ByteArrayOutputStream()
ImageIO.write(mergedImage,"png",baos)
new Challenge(baos.toByteArray(), "image/png", token)
}
private def merge(knownImage: BufferedImage, unknownImage: BufferedImage) = {
val width = knownImage.getWidth()+unknownImage.getWidth() val width = knownImage.getWidth()+unknownImage.getWidth()
val height = List(knownImage.getHeight(), unknownImage.getHeight()).max val height = List(knownImage.getHeight(), unknownImage.getHeight()).max
val imageType = knownImage.getType() val imageType = knownImage.getType()
@ -39,16 +50,17 @@ class LabelCaptcha extends ChallengeProvider {
g.drawImage(knownImage, null, 0, 0) g.drawImage(knownImage, null, 0, 0)
g.drawImage(unknownImage, null, knownImage.getWidth(), 0) g.drawImage(unknownImage, null, knownImage.getWidth(), 0)
g.dispose() g.dispose()
val baos = new ByteArrayOutputStream() finalImage
ImageIO.write(finalImage,"png",baos)
new Challenge(baos.toByteArray(), "image/png", token)
} }
def checkAnswer(token: String, input: String): Boolean = synchronized { def checkAnswer(token: String, input: String): Boolean = synchronized {
val imagePair = tokenImagePair(token) val parts = decrypt(token).split(",")
val expectedAnswer = imagePair.known.split('.')(0) val knownImage = parts(0)
val unknownImage = parts(1)
val expectedAnswer = knownImage.split('.')(0)
val userAnswer = input.split(' ') val userAnswer = input.split(' ')
if(userAnswer(0)==expectedAnswer) { if(userAnswer(0)==expectedAnswer) {
val unknownFile = tokenImagePair(token).unknown val unknownFile = unknownImage
if((unknownAnswers(unknownFile)).contains(userAnswer(1))) { if((unknownAnswers(unknownFile)).contains(userAnswer(1))) {
unknownAnswers(unknownFile)(userAnswer(1)) += 1 unknownAnswers(unknownFile)(userAnswer(1)) += 1
total(unknownFile) += 1 total(unknownFile) += 1
@ -69,6 +81,12 @@ class LabelCaptcha extends ChallengeProvider {
false false
} }
} }
// TODO: Encryption is not implemented for the POC, since the API re-maps the tokens anyway.
// But we need to encrypt after POC, to avoid leaking file-names.
// There are good ideas here: https://stackoverflow.com/questions/1205135/how-to-encrypt-string-in-java
private def encrypt(s: String) = s
private def decrypt(s: String) = s
} }
class ImagePair(val known: String, val unknown: String) class ImagePair(val known: String, val unknown: String)