adapted to esse-CTF

[ctf/pub/submit_bot.git] / submitbot.py

#!/usr/bin/env python

# 2014 by Jan "Someone" Vales <someone@somenet.org>
# do not publish!

import psycopg2
import psycopg2.extras
import sys
import time
import signal
import mechanize

def submit(flag):
    submission_success = False
    print "submitting flag: "+flag
    browser = mechanize.Browser()
    browser.open('http://10.10.40.200/SubmitFlagServlet')
    
    browser.select_form(nr=1)
    browser.form["teamInput"] = "16"
    browser.form["flagInput"] = flag

    response = browser.submit()
    resp = response.read()

    if 'Status:scored' in resp:
        return (1, 'Status:scored')
      
    if 'Status:resubmission' in resp:
        return (2, 'Status:resubmission')
      
    if 'Status:denied' in resp:
        return (3, 'Status:denied')
      
    if 'Status:expired' in resp:
        return (2, 'Status:expired')
      
    if 'Status:error' in resp:
        wantnext = False
        servresponse = ""
        for line in resp.splitlines():
            if wantnext == True:
                wantnext = False
                servresponse = line
            if 'Status:error' in line:
                wantnext = True
        return (2, 'Status:error::'+servresponse)
    
    # RETURN (success?, srvresponse)
    print resp
    return (0, '')
  
def main():
    sleeptime = 5
    dbconn = None
    while True:
        try:
            print "*** sleeping "+str(sleeptime)+" sec..."
            time.sleep(sleeptime)
            dbconn = psycopg2.connect("host=127.0.0.1 dbname=postgres user=postgres password=dba")
            cur = dbconn.cursor()
            cur.execute("CREATE TABLE IF NOT EXISTS flags ("
                "fid serial NOT NULL PRIMARY KEY,"
                "flag character varying(32) NOT NULL UNIQUE,"
                "service character varying(32),"
                "received timestamp without time zone NOT NULL DEFAULT date_trunc('second', NOW()),"
                "submitted timestamp without time zone,"
                "status integer NOT NULL DEFAULT 0,"
                "srvresponse character varying(128)"
                ")")
            dbconn.commit()
            cur.close()
            print "Connected to DB + table created"

            cur = None
            while True:
                print "*** sleeping another "+str(sleeptime)+" sec..."
                time.sleep(sleeptime)
                try:
                    cur = dbconn.cursor(cursor_factory=psycopg2.extras.DictCursor)
                    cur.execute("SELECT * from flags where status = 0 or status = 3")
                    print "Fetched " + str(cur.rowcount) + " rows"
    #                rows = cur.fetchall()
                    for row in cur.fetchall():
                        (success, resp) = submit(row['flag'])
                        if success != 0:
                            cur.execute("UPDATE flags SET submitted = date_trunc('second', NOW()), "
                                "status = %s, srvresponse = %s WHERE fid = %s",
                                (success, resp, row['fid']))
                            dbconn.commit()
                except psycopg2.DatabaseError as e:
                    print 'Error %s' % e
                try:
                    cur.close()
                    dbconn.rollback()
                except psycopg2.DatabaseError as e:
                    print 'Error %s' % e
                cur = None
                dbconn.rollback()
            
        except psycopg2.DatabaseError as e:
            print 'Error %s' % e
        try:
            dbconn.close()
        except psycopg2.DatabaseError as e:
            print 'Error %s' % e
        dbconn = None
    print "should never be reached"

if __name__ == "__main__":
    def signal_handler(signal, frame):
        print 'SIG received. exitting!'
        sys.exit(0)
    signal.signal(signal.SIGINT, signal_handler)
    main()