\i^"FSrSSKrSSKrSSKrSSKrSSKrSSKrSSKJrJ r J r SSK J r J r SSKJr SSKJrJrJr SSKJr SSKJr \"S \S S 9r/S QrS \4SjrSrS\4SjrS\S\ S \!4Sjr"S\S\ S \!4Sjr#\RISS/S9\S55r%\RISS/S9\S55r&\RISS/S9\S55r'0r(S \S!\ S"\4S#jr)\RT"S$S%S&9S'5r+\RT"S(S%S&9S)5r,\RT"S*S%S&9S+5r-g),u) 后台 Shell 管理接口与 TTY 通道 N) Blueprintrequestjsonify) disconnectemit)socketio)db SystemConfig ShellAudit) AuthService)admin_required shell_apiz/api/admin/shell) url_prefix)rmrebootshutdownhaltmkfsz mkfs.ext4zmkfs.xfsmountumountiptablesz firewalld-cmdddchownchmoduseradduserdelgroupaddgroupdeldockerkubectl systemctlservicereturnc:[RR[5n[RR [RR [RR U555n[RR US5$)u"默认知识库根路径 /ctf/ge10ge10)ospathabspath__file__dirnamejoin) current_filectf_roots 9/Users/yu22x/Desktop/ge/ctf/app/routes/admin/shell_api.py_default_base_dirr/sU77??8,Lwwrwwrww|/LMNH 77<<& ))c.[R"SS5n[5nU(d U/[USSS.$UR SU/5 UR S[5 UR SU5 UR SS5 UR S S5 U$) Nadmin_shell_config allowed_pathsforbid_commandsdefault_workdir timeout_sec max_outputr6r7r8r9r:)r get_configr/DEFAULT_FORBID setdefault)cfg default_bases r._load_shell_configr@&s  ! !"6 =C$&L *^-+   NN?\N3NN$n5NN$l3NN=!$NN<' Jr0r>c2[R"SUSSS9 g)Nr2u后台 Shell 管理配置admin) descriptioncategory)r set_configr>s r._save_shell_configrG:s / r0r'r6c[RRU5nUH:n[RRU5nURU5(dM: g g)NTF)r&r'realpath startswith)r'r6 real_pathapap_reals r._is_path_allowedrNCsM  &I''""2&    ( ( r0cmd forbid_listcU(dg[R"U5nU(dgUSn[RR U5nXA;$![a gf=f)NFTr)shlexsplit ValueErrorr&r'basename)rOrPpartshead head_bases r._is_command_forbiddenrYLs]  C   8D  &I  ## sA AAz/configGET)methodsc2[5n[SUS.5$)u获取 Shell 配置T)successconfig)r@rrFs r.get_shell_configr_[s  C ts3 44r0POSTc[R"5=(d 0nURS/5nURS/5nURS5n[URSS55n[URSS55nU(d[ SS S .5S 4$UH<n[ R RU5(aM)[ SS U3S .5S 4s $ U(a [X15(d[ SS S .5S 4$UU=(d [U=(d USUUS.n[U5 [ SSUS.5$)u更新 Shell 配置r6r7r8r9r3r:r4Fuallowed_paths 不能为空r]messageu路径不存在: u%default_workdir 不在允许目录内rr5Tu配置已更新)r]rcr^) rget_jsongetintrr&r'existsrNr<rG)datar6r7r8r9r:pr>s r.update_shell_configrkcs3     #DHH_b1Mhh0"5Ohh01Odhh}a01KTXXlE23J 55QRSUXXXww~~a  u;LQC9PQRTWW W/OO55\]^`ccc'*mA.>"  Cs t0ASQ RRr0z/execc Z[R"5n[R"5=(d 0nUR S5nUR S5nU(d[ SSS.5S4$[ 5nUSnUSnUS nUS nU(dUS n[X55(d[ SS S.5S4$[X&5(a[ SS S.5S4$[R"5n [R"USU[R[RSSS9n U RUS9upU Rn [%U 5U:aU SUS-n [%U 5U:aU SUS-n ['[R"5U - S-5n[)U(a UR*OSUUU UU U S9n[,R.R1U5 [,R.R35 [ SU U U US.5$![Ra: U R!5 U R5upU =(d SSUS3-n Sn GNf=f!["an[ SSU3S.5S4sSnA$SnAff=f!["a! [,R.R55 Nf=f)u单次命令执行(非 TTY)rOworkdirFucmd 不能为空rbrdr6r7r9r:r8u!工作目录不在允许范围内u命令被禁止执行T /bin/bash)shellcwdstdoutstderrtext executable)timeoutu [timeout] 命令超过 u s 被终止u执行失败: iNz ...[truncated]...i)user_idcommandrm exit_code duration_msrqrr)r]rqrrrzr{)r get_current_userrrerfrr@rNrYtime subprocessPopenPIPE communicate returncodeTimeoutExpiredkill Exceptionlenrgr idr sessionaddcommitrollback)userrirOrmr>r6r7r9r:startprocrqrrrzer{audits r. exec_shellrs  ' ' )D     #D ((5/Chhy!G 55GHI3NN  C(M+,Om$K\"J '( G 3 355XYZ\___S2255LMNPSSS IIKEQ ????"  (!--k-BNFI  6{Z $'<< 6{Z $'<<tyy{U*d23K #DGG#  u  "  E((  IIK!--/NFl(A+k&ZZFI   Q5~aS5IJKSPPQ0  sV-6I$H5 IAI?A IIII I<I71I<7I<?(J*)J*rmr7sidc >^^^[R"5umn[RR 5nSUS'[ R "/SQU4SjUUUUS9n[R"U5 UU4Sjn[R"U5 UTUS.[T'g) u创建受限 TTY shell 进程z/tmp/.admin_shell_historyHISTFILE)rnz --noprofilez--norcz-rc0>[R"T5$)N)r&chdir)rmsr._spawn_shell..s288G,r0) preexec_fnstdinrqrrenvc >[R"TS5nU(dO[SSUR SS90STS9 M=[ R TS5 [R"T5 [S0STS9 g![a MFf=f![ R TS5 [R"T5 [S0STS9 f=f) Nioutputriignore)errors /admin/shell) namespacetoexit)r&readOSErrorrdecode tty_sessionspopclose)ri master_fdrs r.reader_spawn_shell..readers ?779d3DX 8 (DEQ_dgh   S$ ' HHY  ~# >   S$ ' HHY  ~# >s-B A:%B : BB BB :C)rfdforbidN) ptyopenptyr&environcopyr~rreventletspawnr)rmr7rslave_fdrrrrs` ` @r. _spawn_shellrs++-Ix **// C1C O   4,   DHHX ?  NN6!Lr0connectr)rc[R"5nU(aURS:wa[SSS05 [ 5$[ 5nUR S5=(d USSn[X!S[R5 g) NrBerrorrcu 未授权r8r6rr7) r r|rolerrr@rfrrr)rr>rms r. tty_connectrso  ' ' )D 499' Wy+./|  Cgg'(CC,@,CG/0'++>r0inputcH[R[R5nU(d[ SSS05$URSS5n[ UR 5US5(a[ SSS05$[R"US UR55 g) Nrrcu会话不存在rirvrrz[forbidden command]\nr) rrfrrrrYstripr&writeencode)rirlines r. tty_inputrsw{{+G Gi):;<< 88FB DTZZ\78+<==Hv'?@AAHHWT]DKKM*r0rc[R[RS5nU(dg[R "US5 USR5 g![ a N!f=f![ a gf=f)Nrr)rrrrr&rr terminate)rs r.tty_disconnectrsow{{D1G    !!#        s#AA, A)(A), A98A9).__doc__r&rRr~r}rrflaskrrrflask_socketiorrapp.extensionsrapp.models.databaser r r app.services.authr app.services.auth.decoratorsr __name__ shell_api_bpr<strr/r@dictrGlistboolrNrYrouter_rkrrronrrrr0r.rs  --+#<<)7h;MN *3*(D3t $s $ $$ $Iw/505 Ix0S1S>GfX.N/Nd &#&&3&R Y.1?2? W/+0+ \^4  5  r0