public void doPost(HttpServletRequest request, HttpServletResponse response)
throws ServletException, IOException {
PrintWriter writer = response.getWriter();
HttpSession session = request.getSession();
String username = request.getParameter("username");
String password = request.getParameter("password");
String type = request.getParameter("type");
System.out.println(username + password + type);
session.setAttribute("user", username);
try {
writer.println("<html>");
writer.println("<body bgcolor=green>");
writer.println("<center>");
ps.setString(1, username);
ps.setString(2, password);
ps.setString(3, type);
ResultSet rs = ps.executeQuery();
if (rs.next()) {
writer.println("<h1>LOGIN SUCCESSFUL</h1><br><br>");
writer.println("<a href=account.html>click here to see your account</a>");
} else {
writer.println("<h1>LOGIN FAILED</h1><br><br>");
writer.println("<a href=login.html>click here to login again</a>");
}
writer.println("</center>");
writer.println("</body>");
writer.println("</html>");
} catch (Exception e) {
e.printStackTrace();
}
}
/* goodB2G1() - use badsource and goodsink by changing second IO.staticTrue to IO.staticFalse */
private void goodB2G1() throws Throwable {
String data;
if (IO.staticTrue) {
/* get environment variable ADD */
/* POTENTIAL FLAW: Read data from an environment variable */
data = System.getenv("ADD");
} else {
/* INCIDENTAL: CWE 561 Dead Code, the code below will never run
* but ensure data is inititialized before the Sink to avoid compiler errors */
data = null;
}
if (IO.staticFalse) {
/* INCIDENTAL: CWE 561 Dead Code, the code below will never run */
IO.writeLine("Benign, fixed string");
} else {
Connection dbConnection = null;
PreparedStatement sqlStatement = null;
ResultSet resultSet = null;
try {
/* FIX: Use prepared statement and executeQuery (properly) */
dbConnection = IO.getDBConnection();
sqlStatement = dbConnection.prepareStatement("select * from users where name=?");
sqlStatement.setString(1, data);
resultSet = sqlStatement.executeQuery();
IO.writeLine(resultSet.getRow()); /* Use ResultSet in some way */
} catch (SQLException exceptSql) {
IO.logger.log(Level.WARNING, "Error getting database connection", exceptSql);
} finally {
try {
if (resultSet != null) {
resultSet.close();
}
} catch (SQLException exceptSql) {
IO.logger.log(Level.WARNING, "Error closing ResultSet", exceptSql);
}
try {
if (sqlStatement != null) {
sqlStatement.close();
}
} catch (SQLException exceptSql) {
IO.logger.log(Level.WARNING, "Error closing PreparedStatement", exceptSql);
}
try {
if (dbConnection != null) {
dbConnection.close();
}
} catch (SQLException exceptSql) {
IO.logger.log(Level.WARNING, "Error closing Connection", exceptSql);
}
}
}
}
/**
* Determine whether or a not a User with the supplied researcherID exists
*
* @param username The researcherID to test
* @return true if the user exists, false if not
* @throws SQLException if a database error was encountered
*/
public static boolean userExists(int researcherID) throws SQLException {
boolean returnVal = false;
// Get our connection to the database.
Connection conn = DBConnectionManager.getConnection("yrc");
PreparedStatement stmt = null;
ResultSet rs = null;
try {
stmt = conn.prepareStatement("SELECT researcherID FROM tblUsers WHERE researcherID = ?");
stmt.setInt(1, researcherID);
rs = stmt.executeQuery();
// No rows returned.
if (!rs.next()) {
returnVal = false;
} else {
returnVal = true;
}
rs.close();
rs = null;
stmt.close();
stmt = null;
conn.close();
conn = null;
} finally {
// Always make sure result sets and statements are closed,
// and the connection is returned to the pool
if (rs != null) {
try {
rs.close();
} catch (SQLException e) {;
}
rs = null;
}
if (stmt != null) {
try {
stmt.close();
} catch (SQLException e) {;
}
stmt = null;
}
if (conn != null) {
try {
conn.close();
} catch (SQLException e) {;
}
conn = null;
}
}
return returnVal;
}
public void doGet(HttpServletRequest request, HttpServletResponse response)
throws ServletException, IOException {
response.setContentType("text/html");
PrintWriter out = response.getWriter();
Connection conn = null;
PreparedStatement pstmt = null;
try {
System.out.println("Enrollno: 130050131049");
// STEP 2: Register JDBC driver
Class.forName(JDBC_DRIVER);
// STEP 3: Open a connection
System.out.println("Connecting to a selected database...");
conn = DriverManager.getConnection(DB_URL, USER, PASS);
System.out.println("Connected database successfully...");
// STEP 2: Executing query
String sql = "SELECT * FROM logindetails WHERE name = ?";
pstmt = conn.prepareStatement(sql);
pstmt.setString(1, "Krut");
ResultSet rs = pstmt.executeQuery();
out.print("| <b>Name</b>| ");
out.print("<b>Password</b>| ");
out.println("</br>\n-------------------------------</br>");
while (rs.next()) {
out.println();
out.print("| " + rs.getString(1));
out.print("| " + rs.getString(2) + "|");
out.println("</br>");
}
} catch (SQLException se) {
// Handle errors for JDBC
se.printStackTrace();
} catch (Exception e) {
// Handle errors for Class.forName
e.printStackTrace();
} finally {
// finally block used to close resources
try {
if (pstmt != null) conn.close();
} catch (SQLException se) {
} // do nothing
try {
if (conn != null) conn.close();
} catch (SQLException se) {
se.printStackTrace();
} // end finally try
} // end try
}
protected void processRequest(HttpServletRequest request, HttpServletResponse response)
throws ServletException, IOException {
response.setContentType("text/html;charset=UTF-8");
PrintWriter out = response.getWriter();
try {
Class.forName("com.mysql.jdbc.Driver").newInstance();
Connection con =
DriverManager.getConnection(Utility.connection, Utility.username, Utility.password);
String email = request.getParameter("email_id");
String number = "";
boolean exists = false;
String user_name = "";
int user_id = -1;
String str1 = "SELECT USER_ID,NAME,PHONE_NUMBER FROM USERS WHERE EMAIL_ID=?";
PreparedStatement prep1 = con.prepareStatement(str1);
prep1.setString(1, email);
ResultSet rs1 = prep1.executeQuery();
if (rs1.next()) {
exists = true;
user_id = rs1.getInt("USER_ID");
user_name = rs1.getString("NAME");
number = rs1.getString("PHONE_NUMBER");
}
int verification = 0;
JSONObject data = new JSONObject();
if (exists) {
verification = (int) (Math.random() * 9535641 % 999999);
System.out.println("Number " + number + "\nVerification: " + verification);
SMSProvider.sendSMS(
number, "Your One Time Verification Code for PeopleConnect Is " + verification);
}
data.put("user_name", user_name);
data.put("user_id", user_id);
data.put("verification_code", "" + verification);
data.put("phone_number", number);
String toSend = data.toJSONString();
out.print(toSend);
System.out.println(toSend);
} catch (Exception e) {
e.printStackTrace();
} finally {
out.close();
}
}
/* goodB2G1() - use badsource and goodsink by setting the static variable to false instead of true */
public void goodB2G1Sink(String data) throws Throwable {
if (CWE89_SQL_Injection__connect_tcp_executeQuery_22a.goodB2G1PublicStatic) {
/* INCIDENTAL: CWE 561 Dead Code, the code below will never run
* but ensure data is inititialized before the Sink to avoid compiler errors */
data = null;
} else {
Connection dbConnection = null;
PreparedStatement sqlStatement = null;
ResultSet resultSet = null;
try {
/* FIX: Use prepared statement and executeQuery (properly) */
dbConnection = IO.getDBConnection();
sqlStatement = dbConnection.prepareStatement("select * from users where name=?");
sqlStatement.setString(1, data);
resultSet = sqlStatement.executeQuery();
IO.writeLine(resultSet.getRow()); /* Use ResultSet in some way */
} catch (SQLException exceptSql) {
IO.logger.log(Level.WARNING, "Error getting database connection", exceptSql);
} finally {
try {
if (resultSet != null) {
resultSet.close();
}
} catch (SQLException exceptSql) {
IO.logger.log(Level.WARNING, "Error closing ResultSet", exceptSql);
}
try {
if (sqlStatement != null) {
sqlStatement.close();
}
} catch (SQLException exceptSql) {
IO.logger.log(Level.WARNING, "Error closing PreparedStatement", exceptSql);
}
try {
if (dbConnection != null) {
dbConnection.close();
}
} catch (SQLException exceptSql) {
IO.logger.log(Level.WARNING, "Error closing Connection", exceptSql);
}
}
}
}
private void goodB2G1Sink(String data) throws Throwable {
if (goodB2G1Private) {
/* INCIDENTAL: CWE 561 Dead Code, the code below will never run */
IO.writeLine("Benign, fixed string");
} else {
Connection dbConnection = null;
PreparedStatement sqlStatement = null;
ResultSet resultSet = null;
try {
/* FIX: Use prepared statement and executeQuery (properly) */
dbConnection = IO.getDBConnection();
sqlStatement = dbConnection.prepareStatement("select * from users where name=?");
sqlStatement.setString(1, data);
resultSet = sqlStatement.executeQuery();
IO.writeLine(resultSet.getRow()); /* Use ResultSet in some way */
} catch (SQLException exceptSql) {
IO.logger.log(Level.WARNING, "Error getting database connection", exceptSql);
} finally {
try {
if (resultSet != null) {
resultSet.close();
}
} catch (SQLException exceptSql) {
IO.logger.log(Level.WARNING, "Error closing ResultSet", exceptSql);
}
try {
if (sqlStatement != null) {
sqlStatement.close();
}
} catch (SQLException exceptSql) {
IO.logger.log(Level.WARNING, "Error closing PreparedStatement", exceptSql);
}
try {
if (dbConnection != null) {
dbConnection.close();
}
} catch (SQLException exceptSql) {
IO.logger.log(Level.WARNING, "Error closing Connection", exceptSql);
}
}
}
}
protected void processRequest(HttpServletRequest request, HttpServletResponse response)
throws ServletException, IOException {
response.setContentType("text/html;charset=UTF-8");
PrintWriter out = response.getWriter();
try {
Class.forName("com.mysql.jdbc.Driver").newInstance();
Connection con =
DriverManager.getConnection(Utility.connection, Utility.username, Utility.password);
int user_id = Integer.parseInt(request.getParameter("user_id"));
int question_id = Integer.parseInt(request.getParameter("question_id"));
int option = Integer.parseInt(request.getParameter("option"));
System.out.println("uid: " + user_id + "\nquestion: " + question_id + "\noption: " + option);
String str1 = "INSERT INTO VOTES(USER_ID, QUESTION_ID,OPTION_VOTED) VALUES (?,?,?)";
PreparedStatement prep1 = con.prepareStatement(str1);
prep1.setInt(1, user_id);
prep1.setInt(3, option);
prep1.setInt(2, question_id);
prep1.execute();
String str2 = "SELECT OPTION_" + option + " FROM ARCHIVE_VOTES WHERE QUESTION_ID=?";
PreparedStatement prep2 = con.prepareStatement(str2);
prep2.setInt(1, question_id);
int count = 0;
ResultSet rs2 = prep2.executeQuery();
if (rs2.next()) {
count = rs2.getInt("OPTION_" + option);
}
count++;
String str3 = "UPDATE ARCHIVE_VOTES SET OPTION_" + option + "=? WHERE QUESTION_ID=?";
PreparedStatement prep3 = con.prepareStatement(str3);
prep3.setInt(1, count);
prep3.setInt(2, question_id);
prep3.executeUpdate();
out.print("You Vote has been recorded! Thank you!");
System.out.println(
"Voted for question " + question_id + ", by user " + user_id + ", for option " + option);
} catch (Exception e) {
e.printStackTrace();
} finally {
out.close();
}
}
/* goodB2G() - use badsource and goodsink */
public void goodB2G_sink(String data, HttpServletRequest request, HttpServletResponse response)
throws Throwable {
Logger log2 = Logger.getLogger("local-logger");
Connection conn_tmp2 = null;
PreparedStatement sqlstatement = null;
ResultSet sqlrs = null;
try {
/* FIX: use prepared sqlstatement */
conn_tmp2 = IO.getDBConnection();
sqlstatement = conn_tmp2.prepareStatement("select * from users where name=?");
sqlstatement.setString(1, data);
sqlrs = sqlstatement.executeQuery();
IO.writeString(sqlrs.toString());
} catch (SQLException se) {
log2.warning("Error getting database connection");
} finally {
try {
if (sqlrs != null) {
sqlrs.close();
}
} catch (SQLException e) {
log2.warning("Error closing sqlrs");
} finally {
try {
if (sqlstatement != null) {
sqlstatement.close();
}
} catch (SQLException e) {
log2.warning("Error closing sqlstatement");
} finally {
try {
if (conn_tmp2 != null) {
conn_tmp2.close();
}
} catch (SQLException e) {
log2.warning("Error closing conn_tmp2");
}
}
}
}
}
/* goodB2G() - use BadSource and GoodSink */
public void goodB2GSink(HashMap<Integer, String> dataHashMap) throws Throwable {
String data = dataHashMap.get(2);
Connection dbConnection = null;
PreparedStatement sqlStatement = null;
ResultSet resultSet = null;
try {
/* FIX: Use prepared statement and executeQuery (properly) */
dbConnection = IO.getDBConnection();
sqlStatement = dbConnection.prepareStatement("select * from users where name=?");
sqlStatement.setString(1, data);
resultSet = sqlStatement.executeQuery();
IO.writeLine(resultSet.getRow()); /* Use ResultSet in some way */
} catch (SQLException exceptSql) {
IO.logger.log(Level.WARNING, "Error getting database connection", exceptSql);
} finally {
try {
if (resultSet != null) {
resultSet.close();
}
} catch (SQLException exceptSql) {
IO.logger.log(Level.WARNING, "Error closing ResultSet", exceptSql);
}
try {
if (sqlStatement != null) {
sqlStatement.close();
}
} catch (SQLException exceptSql) {
IO.logger.log(Level.WARNING, "Error closing PreparedStatement", exceptSql);
}
try {
if (dbConnection != null) {
dbConnection.close();
}
} catch (SQLException exceptSql) {
IO.logger.log(Level.WARNING, "Error closing Connection", exceptSql);
}
}
}
public void doGet(HttpServletRequest req, HttpServletResponse resp) throws IOException {
String fName = req.getParameter("fName");
String lName = req.getParameter("lName");
String party = req.getParameter("party");
String area = req.getParameter("area");
Connection c = null;
try {
DriverManager.registerDriver(new AppEngineDriver());
c =
DriverManager.getConnection(
"jdbc:google:rdbms://netivalimised2013:netivalimised/evalimised");
String statement;
if ((fName.equals("") || fName == null)
&& (lName.equals("") || lName == null)
&& (party.equals("") || party == null)
&& (area.equals("") || area == null)) {
System.out.println("Getting all candidates");
statement =
"SELECT Person.FirstName, Person.LastName, Party.PartyName, Area.AreaName "
+ "FROM Person JOIN Party ON Person.PartyID = Party.Party_Id JOIN Area ON Person.AreaID = Area.Area_Id";
} else statement = createQuery(fName, lName, party, area);
PreparedStatement stmt = c.prepareStatement(statement);
ResultSet rs = stmt.executeQuery();
String jsonData = createJSON(rs, party, area);
resp.setContentType("application/json");
resp.setCharacterEncoding("UTF-8");
resp.getWriter().write(jsonData);
} catch (SQLException e) {
e.printStackTrace();
} finally {
if (c != null) {
try {
c.close();
} catch (SQLException ignore) {
}
}
}
// resp.setHeader("Refresh","3; url=/evalimised.jsp");
}
private void loadFromDb() throws WareNotFoundException {
Connection con = null;
PreparedStatement pstmt = null;
try {
con = DbConnectionManager.getConnection();
pstmt = con.prepareStatement(LOAD_WARE_BY_ID);
pstmt.setInt(1, Id);
ResultSet rs = pstmt.executeQuery();
if (!rs.next()) {
throw new WareNotFoundException("从数据表[ware]中读取用户数据失败,欲读取的用户ID:[ " + Id + "]!");
}
this.Id = rs.getInt("Id");
this.Pname = rs.getString("Pname");
this.Pmodel = rs.getString("Pmodel");
this.Pcost = rs.getString("Pcost");
this.Pheft = rs.getString("Pheft");
this.Pfacturer = rs.getString("Pfacturer");
this.Pnote = rs.getString("Pnote");
this.Createdate = rs.getString("Createdate");
this.Status = rs.getInt("Status");
} catch (SQLException sqle) {
throw new WareNotFoundException("从数据表[WARE]中读取用户数据失败,欲读取的用户ID:[ " + Id + "]!");
} finally {
try {
pstmt.close();
} catch (Exception e) {
e.printStackTrace();
}
try {
con.close();
} catch (Exception e) {
e.printStackTrace();
}
}
}
// New -- returns data in HashMap
private static Map viewSignups(
HttpServletRequest req, PrintWriter out, Connection con, boolean json_mode) {
int wait_list_id = 0;
int wait_list_signup_id = 0;
int sum_players = 0;
int date = 0;
int pos = 1;
int time = SystemUtils.getTime(con);
int today_date = (int) SystemUtils.getDate(con);
int start_time = 0;
int end_time = 0;
int count = 0;
int index = 0;
int player_index = 0;
Map waitlist_map = new HashMap();
waitlist_map.put("options", new HashMap());
waitlist_map.put("signups", new LinkedHashMap());
String sindex =
req.getParameter(
"index"); // index value of day (needed by Proshop_waitlist_slot when returning)
String id = req.getParameter("waitListId"); // uid of the wait list we are working with
String course = (req.getParameter("course") == null) ? "" : req.getParameter("course");
String returnCourse =
(req.getParameter("returnCourse") == null) ? "" : req.getParameter("returnCourse");
String sdate = (req.getParameter("sdate") == null) ? "" : req.getParameter("sdate");
String name = (req.getParameter("name") == null) ? "" : req.getParameter("name");
String day_name = (req.getParameter("day_name") == null) ? "" : req.getParameter("day_name");
String sstart_time =
(req.getParameter("start_time") == null) ? "" : req.getParameter("start_time");
String send_time = (req.getParameter("end_time") == null) ? "" : req.getParameter("end_time");
// String count = (req.getParameter("count") == null) ? "" : req.getParameter("count");
String jump = req.getParameter("jump");
String fullName = "";
String cw = "";
String notes = "";
String nineHole = "";
PreparedStatement pstmt = null;
PreparedStatement pstmt2 = null;
boolean tmp_found = false;
boolean tmp_found2 = false;
boolean master =
(req.getParameter("view") != null && req.getParameter("view").equals("master"));
boolean show_notes =
(req.getParameter("show_notes") != null && req.getParameter("show_notes").equals("yes"));
boolean alt_row = false;
boolean tmp_converted = false;
try {
date = Integer.parseInt(sdate);
index = Integer.parseInt(sindex);
wait_list_id = Integer.parseInt(id);
start_time = Integer.parseInt(sstart_time);
end_time = Integer.parseInt(send_time);
} catch (NumberFormatException e) {
}
try {
count = getWaitList.getListCount(wait_list_id, date, index, time, !master, con);
} catch (Exception exp) {
out.println(exp.getMessage());
}
//
// isolate yy, mm, dd
//
int yy = date / 10000;
int temp = yy * 10000;
int mm = date - temp;
temp = mm / 100;
temp = temp * 100;
int dd = mm - temp;
mm = mm / 100;
String report_date = SystemUtils.getLongDateTime(today_date, time, " at ", con);
if (!json_mode) {
out.println("<br>");
out.println(
"<h3 align=center>"
+ ((master) ? "Master Wait List Sign-up Sheet" : "Current Wait List Sign-ups")
+ "</h3>");
out.println("<p align=center><font size=3><b><i>\"" + name + "\"</i></b></font></p>");
out.println("<table border=0 align=center>");
out.println("<tr><td><font size=\"2\">");
out.println(
"Date: <b>"
+ day_name
+ " "
+ mm
+ "/"
+ dd
+ "/"
+ yy
+ "</b></td>");
out.println("<td> </td><td>");
if (!course.equals("")) {
out.println("<font size=\"2\">Course: <b>" + course + "</b></font>");
}
out.println("</td></tr>");
out.println(
"<tr><td><font size=\"2\">Time: <b>"
+ SystemUtils.getSimpleTime(start_time)
+ " to "
+ SystemUtils.getSimpleTime(end_time)
+ "</b></font></td>");
out.println("<td></td>");
out.println("<td><font size=\"2\">Signups: <b>" + count + "</b></font></td>");
out.println("</table>");
out.println(
"<p align=center><font size=2><b><i>List Generated on "
+ report_date
+ "</i></b></font></p>");
out.println("<table align=center border=1 bgcolor=\"#F5F5DC\">");
if (master) {
out.println(
"<tr bgcolor=\"#8B8970\" align=center style=\"color: black; font-weight: bold\">"
+ "<td height=35> Pos </td>"
+ "<td>Sign-up Time</td>"
+ "<td>Members</td>"
+ "<td>Desired Time</td>"
+ "<td> Players </td>"
+ "<td> On Sheet </td>"
+ "<td>Converted At</td>"
+ "<td> Converted By </td>"
+ ((show_notes) ? "<td> Notes </td>" : "")
+ "</tr>");
} else {
out.println(
"<tr bgcolor=\"#8B8970\" align=center style=\"color: black; font-weight: bold\">"
+ "<td height=35> Pos </td>"
+ "<td>Members</td>"
+ "<td>Desired Time</td>"
+ "<td> Players </td>"
+ ((show_notes) ? "<td> Notes </td>" : "")
+ "</tr>"); // +
// "<td> On Sheet </td>" +
// "</tr>");
// ((multi == 0) ? "" : "<td>Course</td>") +
}
out.println(
"<!-- wait_list_id=" + wait_list_id + ", date=" + date + ", time=" + time + " -->");
}
try {
pstmt =
con.prepareStatement(
""
+ "SELECT *, "
+ "DATE_FORMAT(created_datetime, '%c/%e/%y %r') AS created_time, "
+ "DATE_FORMAT(converted_at, '%c/%e/%y %r') AS converted_time "
+ // %l:%i %p
"FROM wait_list_signups "
+ "WHERE wait_list_id = ? AND date = ? "
+ ((master) ? "" : "AND converted = 0 ")
+ ((!master && sindex.equals("0")) ? "AND ok_etime > ? " : "")
+ "ORDER BY created_datetime");
pstmt.clearParameters();
pstmt.setInt(1, wait_list_id);
pstmt.setInt(2, date);
if (!master && sindex.equals("0")) {
pstmt.setInt(3, time);
}
ResultSet rs = pstmt.executeQuery();
while (rs.next()) {
wait_list_signup_id = rs.getInt("wait_list_signup_id");
if (json_mode) {
((Map) waitlist_map.get("signups"))
.put("signup_id_" + wait_list_signup_id, new LinkedHashMap());
((Map) ((Map) waitlist_map.get("signups")).get("signup_id_" + wait_list_signup_id))
.put("players", new LinkedHashMap());
((Map) ((Map) waitlist_map.get("signups")).get("signup_id_" + wait_list_signup_id))
.put("options", new HashMap());
} else {
out.print(
"<tr align=center"
+ ((alt_row) ? " style=\"background-color:white\"" : "")
+ "><td>"
+ pos
+ "</td>");
if (master) {
out.println("<td> " + rs.getString("created_time") + " </td>");
}
out.print("<td align=left>");
}
// if (multi == 1) out.println("<td>" + rs.getString("course") + "</td>");
//
// Display players in this signup
//
pstmt2 =
con.prepareStatement(
""
+ "SELECT * "
+ "FROM wait_list_signups_players "
+ "WHERE wait_list_signup_id = ? "
+ "ORDER BY pos");
pstmt2.clearParameters();
pstmt2.setInt(1, wait_list_signup_id);
ResultSet rs2 = pstmt2.executeQuery();
tmp_found2 = false;
player_index = 0;
while (rs2.next()) {
if (json_mode) {
player_index++;
((Map)
((Map)
((Map) waitlist_map.get("signups"))
.get("signup_id_" + wait_list_signup_id))
.get("players"))
.put("player_" + player_index, new HashMap());
((Map)
((Map)
((Map)
((Map) waitlist_map.get("signups"))
.get("signup_id_" + wait_list_signup_id))
.get("players"))
.get("player_" + player_index))
.put("player_name", rs2.getString("player_name"));
((Map)
((Map)
((Map)
((Map) waitlist_map.get("signups"))
.get("signup_id_" + wait_list_signup_id))
.get("players"))
.get("player_" + player_index))
.put("player_name", rs2.getString("player_name"));
((Map)
((Map)
((Map)
((Map) waitlist_map.get("signups"))
.get("signup_id_" + wait_list_signup_id))
.get("players"))
.get("player_" + player_index))
.put("cw", rs2.getString("cw"));
((Map)
((Map)
((Map)
((Map) waitlist_map.get("signups"))
.get("signup_id_" + wait_list_signup_id))
.get("players"))
.get("player_" + player_index))
.put("9hole", rs2.getInt("9hole"));
} else {
fullName = rs2.getString("player_name");
cw = rs2.getString("cw");
if (rs2.getInt("9hole") == 1) {
cw = cw + "9";
}
if (tmp_found2) {
out.print(", ");
} else {
out.print(" ");
}
out.print(fullName + " <font style=\"font-size:9px\">(" + cw + ")</font>");
tmp_found2 = true;
}
sum_players++;
nineHole = ""; // reset
}
pstmt2.close();
if (json_mode) {
((Map)
((Map)
((Map) waitlist_map.get("signups"))
.get("signup_id_" + wait_list_signup_id))
.get("options"))
.put("notes", notes);
((Map)
((Map)
((Map) waitlist_map.get("signups"))
.get("signup_id_" + wait_list_signup_id))
.get("options"))
.put("created_time", rs.getInt("created_time"));
((Map)
((Map)
((Map) waitlist_map.get("signups"))
.get("signup_id_" + wait_list_signup_id))
.get("options"))
.put("converted", rs.getInt("converted"));
((Map)
((Map)
((Map) waitlist_map.get("signups"))
.get("signup_id_" + wait_list_signup_id))
.get("options"))
.put("converted_time", rs.getString("converted_time"));
((Map)
((Map)
((Map) waitlist_map.get("signups"))
.get("signup_id_" + wait_list_signup_id))
.get("options"))
.put("converted_by", rs.getString("converted_by"));
((Map)
((Map)
((Map) waitlist_map.get("signups"))
.get("signup_id_" + wait_list_signup_id))
.get("options"))
.put("start_time", SystemUtils.getSimpleTime(rs.getInt("ok_stime")));
((Map)
((Map)
((Map) waitlist_map.get("signups"))
.get("signup_id_" + wait_list_signup_id))
.get("options"))
.put("end_time", SystemUtils.getSimpleTime(rs.getInt("ok_etime")));
((Map)
((Map)
((Map) waitlist_map.get("signups"))
.get("signup_id_" + wait_list_signup_id))
.get("options"))
.put("wait_list_signup_id", wait_list_signup_id);
((Map)
((Map)
((Map) waitlist_map.get("signups"))
.get("signup_id_" + wait_list_signup_id))
.get("options"))
.put("player_count", sum_players);
} else {
out.print("</td>");
out.println(
"<td> "
+ SystemUtils.getSimpleTime(rs.getInt("ok_stime"))
+ " - "
+ SystemUtils.getSimpleTime(rs.getInt("ok_etime"))
+ " </td>");
out.println("<td>" + sum_players + "</td>");
if (master) {
tmp_converted = rs.getInt("converted") == 1;
out.println("<td>" + ((tmp_converted) ? "Yes" : "No") + "</td>");
out.println(
"<td>" + ((tmp_converted) ? rs.getString("converted_time") : " ") + "</td>");
out.println(
"<td>" + ((tmp_converted) ? rs.getString("converted_by") : " ") + "</td>");
}
if (show_notes) {
notes = rs.getString("notes").trim();
if (notes.equals("")) {
notes = " ";
}
out.println("<td>" + notes + "</td>");
}
out.print("</tr>");
}
pos++;
sum_players = 0;
alt_row = alt_row == false;
}
pstmt.close();
} catch (Exception exc) {
SystemUtils.buildDatabaseErrMsg(
"Error loading wait list signups.", exc.toString(), out, false);
}
if (json_mode) {
((Map) waitlist_map.get("options")).put("index", sindex);
((Map) waitlist_map.get("options")).put("wait_list_id", wait_list_id);
((Map) waitlist_map.get("options")).put("date", "" + mm + "/" + dd + "/" + yy);
((Map) waitlist_map.get("options")).put("name", name);
((Map) waitlist_map.get("options")).put("time", time);
((Map) waitlist_map.get("options")).put("jump", jump);
((Map) waitlist_map.get("options")).put("returnCourse", returnCourse);
((Map) waitlist_map.get("options")).put("course", course);
((Map) waitlist_map.get("options")).put("master", master);
((Map) waitlist_map.get("options")).put("report_date", report_date);
((Map) waitlist_map.get("options")).put("show_notes", show_notes);
} else {
out.println("</table><br>");
out.println("<table align=center><tr>");
out.println("<form action=\"Member_jump\" method=\"POST\" target=\"_top\">");
out.println("<input type=\"hidden\" name=\"jump\" value=\"0\">");
out.println("<input type=\"hidden\" name=\"index\" value=" + sindex + ">");
out.println(
"<input type=\"hidden\" name=\"course\" value=\""
+ ((!returnCourse.equals("")) ? returnCourse : course)
+ "\">");
out.println("<td><input type=\"submit\" value=\"Tee Sheet\"></td></form>");
out.println("<td> </td>");
out.println("<form action=\"Member_waitlist\" method=\"POST\">");
out.println("<input type=\"hidden\" name=\"waitListId\" value=\"" + wait_list_id + "\">");
out.println("<input type=\"hidden\" name=\"date\" value=\"" + date + "\">");
out.println("<input type=\"hidden\" name=\"day\" value=\"" + day_name + "\">");
out.println("<input type=\"hidden\" name=\"index\" value=\"" + sindex + "\">");
out.println("<input type=\"hidden\" name=\"course\" value=\"" + course + "\">");
out.println("<input type=\"hidden\" name=\"returnCourse\" value=\"" + returnCourse + "\">");
out.println("<input type=\"hidden\" name=\"jump\" value=\"" + jump + "\">");
out.println("<td><input type=\"submit\" value=\"Return\"></td></form>");
out.println("</tr></table></form>");
out.println("<br>");
}
return waitlist_map;
} // end viewSignups
public void _jspService(
javax.servlet.http.HttpServletRequest request,
javax.servlet.http.HttpServletResponse response)
throws java.io.IOException, javax.servlet.ServletException {
javax.servlet.http.HttpSession session = request.getSession(true);
com.caucho.server.webapp.Application _jsp_application = _caucho_getApplication();
javax.servlet.ServletContext application = _jsp_application;
com.caucho.jsp.PageContextImpl pageContext =
com.caucho.jsp.QJspFactory.allocatePageContext(
this, _jsp_application, request, response, "/error.jsp", session, 8192, true);
javax.servlet.jsp.JspWriter out = pageContext.getOut();
javax.servlet.ServletConfig config = getServletConfig();
javax.servlet.Servlet page = this;
response.setContentType("text/html");
try {
out.write(_jsp_string0, 0, _jsp_string0.length);
out.print(((String) session.getAttribute("user")));
out.write(_jsp_string1, 0, _jsp_string1.length);
out.print(((String) session.getAttribute("db")));
out.write(_jsp_string2, 0, _jsp_string2.length);
// get all tables in the database
ConDB dbcon = (ConDB) session.getAttribute("dbcon");
Connection conn = dbcon.get();
int total_rec = 0;
int total_table = 0;
String sql = "show tables";
PreparedStatement pstm = null;
ResultSet rs = null;
try {
pstm = conn.prepareStatement(sql);
rs = pstm.executeQuery();
} catch (SQLException e) {
out.println(e);
}
// count the records of each table
while (rs.next()) {
String curr_tb = rs.getString(1);
int curr_rec = 0;
PreparedStatement pstm_rec = null;
ResultSet rs_rec = null;
sql = "select count(*) from " + curr_tb;
try {
pstm_rec = conn.prepareStatement(sql);
rs_rec = pstm_rec.executeQuery();
} catch (SQLException e) {
out.println(e);
}
try {
if (rs_rec.next()) {
curr_rec = rs_rec.getInt(1);
total_rec += curr_rec;
}
} catch (SQLException e) {
out.println(e.getErrorCode() + "---" + e.getSQLState());
}
total_table++;
out.write(_jsp_string3, 0, _jsp_string3.length);
out.print((total_table & 1));
out.write(_jsp_string4, 0, _jsp_string4.length);
out.print((curr_tb));
out.write(_jsp_string5, 0, _jsp_string5.length);
out.print((curr_tb));
out.write(_jsp_string6, 0, _jsp_string6.length);
out.print((curr_tb));
out.write(_jsp_string7, 0, _jsp_string7.length);
out.print((curr_tb));
out.write(_jsp_string8, 0, _jsp_string8.length);
out.print((curr_tb));
out.write(_jsp_string9, 0, _jsp_string9.length);
out.print((curr_rec));
out.write(_jsp_string10, 0, _jsp_string10.length);
}
out.write(_jsp_string11, 0, _jsp_string11.length);
out.print((total_table));
out.write(_jsp_string12, 0, _jsp_string12.length);
out.print((total_rec));
out.write(_jsp_string13, 0, _jsp_string13.length);
out.print((session.getAttribute("db")));
out.write(_jsp_string14, 0, _jsp_string14.length);
} catch (java.lang.Throwable _jsp_e) {
pageContext.handlePageException(_jsp_e);
} finally {
com.caucho.jsp.QJspFactory.freePageContext(pageContext);
}
}
/**
* 设置进入查看详细信息页面的初始值 setEditDefault
*
* @param aWebForm EditForm
* @param request HttpServletRequest
* @param response HttpServletResponse
*/
public static void setEditDefault(
EditForm pWebForm, HttpServletRequest request, HttpServletResponse response)
throws CDealException {
try {
// 初始化页面,初始化投诉形式下拉菜单
int type = 0;
Connection mConn = null;
PreparedStatement pstmt = null;
try {
mConn = CDBManager.getConn(); // 创建数据库连接
// 设置进入修改页面的初始值SQL
String mSQL =
"select A.CHENGPIID,A.COMPLAINEDPERSON,A.COMPLAINPERSON, A.COMPLAINEDUNIT, A.COMPLAINUNIT, A.COMPLAINEDDUTY, A.COMPLAINDUTY, A.QUESTIONKIND, A.COMPLAINVERSION, "
+ " A.CONTENTABSTRACT, A.SUGGESTION, A.SIGN1, to_char(A.DATE1, 'yyyy-mm-dd') DATE1,A.LEADERCONFIRM, A.SIGN2, to_char(A.DATE2, 'yyyy-mm-dd') DATE2, A.REMARK, A.BUSINESSID, "
+ " decode(A.BUSINESSTYPE,'1','建设工程','2','行政许可','3','政府采购','4','重大事项','5','行政执法','6','财政预算','7','信访','8','应急预案') BUSINESSTYPE,"
+ " t.abbrname,A.COMPLAINEDGRADE,A.XZGCXYFL,A.SUBXZGCXYFL,A.XZGLFL,A.XZGCBXXS from T_YW_ZDSX_JCJ_TSCHENGPIBIAO A,t_Sys_Department t where A.COMPLAINEDUNIT = t.id and A.CHENGPIID = ?";
pstmt = mConn.prepareStatement(mSQL);
pstmt.setString(1, pWebForm.getCHENGPIID()); // 主键
ResultSet rs = pstmt.executeQuery();
if (rs.next()) {
pWebForm.getTTsChengpibiao().setCHENGPIID(rs.getString(1)); // 呈批表编号
pWebForm.getTTsChengpibiao().setCOMPLAINEDPERSON(rs.getString(2)); // 呈批表被投诉人姓名
pWebForm.getTTsChengpibiao().setCOMPLAINPERSON(rs.getString(3)); // 呈批表投诉人姓名
pWebForm.getTTsChengpibiao().setCOMPLAINEDUNIT(rs.getString(4)); // 呈批表被投诉人单位
pWebForm.getTTsChengpibiao().setCOMPLAINUNIT(rs.getString(5)); // 呈批表投诉人单位
pWebForm.getTTsChengpibiao().setCOMPLAINEDDUTY(rs.getString(6)); // 呈批表被投诉人职务
pWebForm.getTTsChengpibiao().setCOMPLAINDUTY(rs.getString(7)); // 呈批表投诉人职务
pWebForm.getTTsChengpibiao().setQUESTIONKIND(rs.getString(8)); // 呈批表问题性质
pWebForm.getTTsChengpibiao().setCOMPLAINVERSION(rs.getInt(9)); // 呈批表投诉形式
type = rs.getInt(9);
pWebForm.getTTsChengpibiao().setCONTENTABSTRACT(rs.getString(10)); // 呈批表内容摘要
pWebForm.getTTsChengpibiao().setSUGGESTION(rs.getString(11)); // 呈批表拟办意见
pWebForm.getTTsChengpibiao().setSIGN1(rs.getString(12)); // 呈批表拟办人签字
pWebForm.getTTsChengpibiao().setDATE1_STR(rs.getString(13)); // 呈批表拟办人签字日期
pWebForm.getTTsChengpibiao().setLEADERCONFIRM(rs.getString(14)); // 呈批表局领导批示
pWebForm.getTTsChengpibiao().setSIGN2(rs.getString(15)); // 呈批表局领导签字
pWebForm.getTTsChengpibiao().setDATE2_STR(rs.getString(16)); // 呈批表局领导签字日期
pWebForm.getTTsChengpibiao().setREMARK(rs.getString(17)); // 呈批表备注
pWebForm.getTTsChengpibiao().setBUSINESSID(rs.getString(18));
pWebForm.setTypename(rs.getString(19));
pWebForm.setDepartmentname(rs.getString(20));
pWebForm.getTTsChengpibiao().setCOMPLAINEDGRADE(rs.getInt(21));
pWebForm.getTTsChengpibiao().setXZGCXYFL(rs.getInt(22));
pWebForm.getTTsChengpibiao().setSUBXZGCXYFL(rs.getInt(23));
pWebForm.getTTsChengpibiao().setXZGLFL(rs.getInt(24));
pWebForm.getTTsChengpibiao().setXZGCBXXS(rs.getInt(25));
} else {
throw new CDealException(
"使用编号 " + pWebForm.getCHENGPIID() + "未能找到数据。", new Exception("查询数据失败。"));
}
TreeMap COMPLAINVERSIONList = new TreeMap();
CCodeMap aCodeMap = new CCodeMap();
COMPLAINVERSIONList = aCodeMap.getMapByType("行政效能投诉形式");
String busitypename = (String) COMPLAINVERSIONList.get("" + type);
pWebForm.setTsxingshu(busitypename);
// 处理附件
UploadForm aUploadForm = new UploadForm();
aUploadForm.setType("行政效能");
aUploadForm.setBid2("办理呈批表");
aUploadForm.setBid(Long.parseLong(pWebForm.getTTsChengpibiao().getCHENGPIID()));
com.tjsoft.system.upload.CDeal.setUploadDefault(aUploadForm, request, response);
pWebForm.setUploadedFile(aUploadForm.getUploadedFile());
} catch (Exception e) {
throw e;
} finally {
if (pstmt != null)
try {
pstmt.close();
} catch (Exception e) {
}
;
if (mConn != null)
try {
mConn.close();
} catch (Exception e) {
}
;
}
} catch (Exception e) {
throw new CDealException("进入修改" + mModuleName + "时失败。", e);
}
}
/**
* Determine whether or a not a Researcher with the supplied email exists
*
* @param email The email to test
* @return The researcher ID of the researcher if it exists, -1 if it doesn't
* @throws SQLException if a database error was encountered
*/
public static int emailExists(String email) throws SQLException {
int returnVal = -1;
if (email == null || email.equals("")) {
return -1;
}
// Get our connection to the database.
Connection conn = DBConnectionManager.getConnection("yrc");
PreparedStatement stmt = null;
ResultSet rs = null;
try {
stmt =
conn.prepareStatement(
"SELECT researcherID FROM tblResearchers WHERE researcherEmail = ?");
stmt.setString(1, email);
rs = stmt.executeQuery();
// No rows returned.
if (!rs.next()) {
returnVal = -1;
} else {
returnVal = rs.getInt("researcherID");
}
rs.close();
rs = null;
stmt.close();
stmt = null;
conn.close();
conn = null;
} finally {
// Always make sure result sets and statements are closed,
// and the connection is returned to the pool
if (rs != null) {
try {
rs.close();
} catch (SQLException e) {;
}
rs = null;
}
if (stmt != null) {
try {
stmt.close();
} catch (SQLException e) {;
}
stmt = null;
}
if (conn != null) {
try {
conn.close();
} catch (SQLException e) {;
}
conn = null;
}
}
return returnVal;
}
/** Business logic to execute. */
public final Response executeCommand(
Object inputPar,
UserSessionParameters userSessionPars,
HttpServletRequest request,
HttpServletResponse response,
HttpSession userSession,
ServletContext context) {
String serverLanguageId = ((JAIOUserSessionParameters) userSessionPars).getServerLanguageId();
Connection conn = null;
PreparedStatement pstmt = null;
try {
conn = ConnectionManager.getConnection(context);
// fires the GenericEvent.CONNECTION_CREATED event...
EventsManager.getInstance()
.processEvent(
new GenericEvent(
this,
getRequestName(),
GenericEvent.CONNECTION_CREATED,
(JAIOUserSessionParameters) userSessionPars,
request,
response,
userSession,
context,
conn,
inputPar,
null));
// retrieve companies list...
GridParams gridParams = (GridParams) inputPar;
String companies =
(String)
gridParams
.getOtherGridParams()
.get(ApplicationConsts.COMPANY_CODE_SYS01); // used in lookup grid...
if (companies == null) {
ArrayList companiesList =
((JAIOUserSessionParameters) userSessionPars).getCompanyBa().getCompaniesList("SAL06");
companies = "";
for (int i = 0; i < companiesList.size(); i++)
companies += "'" + companiesList.get(i).toString() + "',";
companies = companies.substring(0, companies.length() - 1);
} else companies = "'" + companies + "'";
String sql =
"select SAL06_CHARGES.COMPANY_CODE_SYS01,SAL06_CHARGES.CHARGE_CODE,SAL06_CHARGES.PROGRESSIVE_SYS10,"
+ "SYS10_TRANSLATIONS.DESCRIPTION,SAL06_CHARGES.VALUE,SAL06_CHARGES.PERC,SAL06_CHARGES.VAT_CODE_REG01,"
+ "SAL06_CHARGES.CURRENCY_CODE_REG03,SAL06_CHARGES.ENABLED"
+ " from SAL06_CHARGES,SYS10_TRANSLATIONS where "
+ "SAL06_CHARGES.PROGRESSIVE_SYS10=SYS10_TRANSLATIONS.PROGRESSIVE and "
+ "SYS10_TRANSLATIONS.LANGUAGE_CODE=? and "
+ "SAL06_CHARGES.ENABLED='Y' and "
+ "SAL06_CHARGES.COMPANY_CODE_SYS01 in ("
+ companies
+ ")";
Map attribute2dbField = new HashMap();
attribute2dbField.put("companyCodeSys01SAL06", "SAL06_CHARGES.COMPANY_CODE_SYS01");
attribute2dbField.put("chargeCodeSAL06", "SAL06_CHARGES.CHARGE_CODE");
attribute2dbField.put("descriptionSYS10", "SYS10_TRANSLATIONS.DESCRIPTION");
attribute2dbField.put("progressiveSys10SAL06", "SAL06_CHARGES.PROGRESSIVE_SYS10");
attribute2dbField.put("valueSAL06", "SAL06_CHARGES.VALUE");
attribute2dbField.put("percSAL06", "SAL06_CHARGES.PERC");
attribute2dbField.put("vatCodeReg01SAL06", "SAL06_CHARGES.VAT_CODE_REG01");
attribute2dbField.put("currencyCodeReg03SAL06", "SAL06_CHARGES.CURRENCY_CODE_REG03");
attribute2dbField.put("enabledSAL06", "SAL06_CHARGES.ENABLED");
ArrayList values = new ArrayList();
values.add(serverLanguageId);
// read from SAL06 table...
Response res =
CustomizeQueryUtil.getQuery(
conn,
userSessionPars,
sql,
values,
attribute2dbField,
ChargeVO.class,
"Y",
"N",
context,
gridParams,
50,
true,
new BigDecimal(292) // window identifier...
);
if (res.isError()) return res;
ArrayList list = ((VOListResponse) res).getRows();
ChargeVO vo = null;
sql =
"select SYS10_TRANSLATIONS.DESCRIPTION,REG01_VATS.VALUE,REG01_VATS.DEDUCTIBLE "
+ "from SYS10_TRANSLATIONS,REG01_VATS where "
+ "REG01_VATS.PROGRESSIVE_SYS10=SYS10_TRANSLATIONS.PROGRESSIVE and "
+ "SYS10_TRANSLATIONS.LANGUAGE_CODE=? and "
+ "REG01_VATS.VAT_CODE=?";
pstmt = conn.prepareStatement(sql);
ResultSet rset = null;
for (int i = 0; i < list.size(); i++) {
vo = (ChargeVO) list.get(i);
if (vo.getVatCodeReg01SAL06() != null) {
// retrieve vat data from REG01...
pstmt.setString(1, serverLanguageId);
pstmt.setString(2, vo.getVatCodeReg01SAL06());
rset = pstmt.executeQuery();
if (rset.next()) {
vo.setVatDescriptionSYS10(rset.getString(1));
vo.setVatValueREG01(rset.getBigDecimal(2));
vo.setVatDeductibleREG01(rset.getBigDecimal(3));
}
rset.close();
}
}
Response answer = res;
// fires the GenericEvent.BEFORE_COMMIT event...
EventsManager.getInstance()
.processEvent(
new GenericEvent(
this,
getRequestName(),
GenericEvent.BEFORE_COMMIT,
(JAIOUserSessionParameters) userSessionPars,
request,
response,
userSession,
context,
conn,
inputPar,
answer));
return answer;
} catch (Throwable ex) {
Logger.error(
userSessionPars.getUsername(),
this.getClass().getName(),
"executeCommand",
"Error while fetching charges list",
ex);
return new ErrorResponse(ex.getMessage());
} finally {
try {
pstmt.close();
} catch (Exception ex2) {
}
try {
ConnectionManager.releaseConnection(conn, context);
} catch (Exception ex1) {
}
}
}
public void bad(HttpServletRequest request, HttpServletResponse response) throws Throwable {
String data;
Logger log_bad = Logger.getLogger("local-logger");
data = "";
/* parse the query string for value of 'id' */
String id_str = null;
StringTokenizer st = new StringTokenizer(request.getQueryString(), "&");
while (st.hasMoreTokens()) {
String token = st.nextToken();
int i = token.indexOf("=");
if ((i > 0) && (i < (token.length() - 1)) && (token.substring(0, i).equals("id"))) {
id_str = token.substring(i + 1);
break;
}
}
if (id_str != null) {
Connection conn = null;
PreparedStatement statement = null;
ResultSet rs = null;
try {
int id = Integer.parseInt(id_str);
conn = IO.getDBConnection();
statement = conn.prepareStatement("select * from pages where id=?");
/* FLAW: no check to see whether the user has privileges to view the data */
statement.setInt(1, id);
rs = statement.executeQuery();
data = rs.toString();
} catch (SQLException se) {
log_bad.warning("Error");
} finally {
/* clean up database objects */
try {
if (rs != null) {
rs.close();
}
} catch (SQLException se) {
log_bad.warning("Error closing rs");
} finally {
try {
if (statement != null) {
statement.close();
}
} catch (SQLException se) {
log_bad.warning("Error closing statement");
} finally {
try {
if (conn != null) {
conn.close();
}
} catch (SQLException se) {
log_bad.warning("Error closing conn");
}
}
}
}
}
(new CWE89_SQL_Injection__getQueryStringServlet_executeUpdate_53b())
.bad_sink(data, request, response);
}
/* goodB2G() - use badsource and goodsink */
private void goodB2G() throws Throwable {
String data_copy;
{
String data;
Logger log_bad = Logger.getLogger("local-logger");
data = ""; /* init data */
/* read user input from console with readLine*/
BufferedReader buffread = null;
InputStreamReader instrread = null;
try {
instrread = new InputStreamReader(System.in);
buffread = new BufferedReader(instrread);
data = buffread.readLine();
} catch (IOException ioe) {
log_bad.warning("Error with stream reading");
} finally {
/* clean up stream reading objects */
try {
if (buffread != null) {
buffread.close();
}
} catch (IOException ioe) {
log_bad.warning("Error closing buffread");
} finally {
try {
if (instrread != null) {
instrread.close();
}
} catch (IOException ioe) {
log_bad.warning("Error closing instrread");
}
}
}
data_copy = data;
}
{
String data = data_copy;
Logger log2 = Logger.getLogger("local-logger");
Connection conn_tmp2 = null;
PreparedStatement sqlstatement = null;
ResultSet sqlrs = null;
try {
/* FIX: use prepared sqlstatement */
conn_tmp2 = IO.getDBConnection();
sqlstatement = conn_tmp2.prepareStatement("select * from users where name=?");
sqlstatement.setString(1, data);
sqlrs = sqlstatement.executeQuery();
IO.writeString(sqlrs.toString());
} catch (SQLException se) {
log2.warning("Error getting database connection");
} finally {
try {
if (sqlrs != null) {
sqlrs.close();
}
} catch (SQLException e) {
log2.warning("Error closing sqlrs");
} finally {
try {
if (sqlstatement != null) {
sqlstatement.close();
}
} catch (SQLException e) {
log2.warning("Error closing sqlstatement");
} finally {
try {
if (conn_tmp2 != null) {
conn_tmp2.close();
}
} catch (SQLException e) {
log2.warning("Error closing conn_tmp2");
}
}
}
}
}
}
/* goodB2G() - use badsource and goodsink */
private void goodB2G(HttpServletRequest request, HttpServletResponse response) throws Throwable {
String data;
Logger log_bad = Logger.getLogger("local-logger");
data = "";
/* parse the query string for value of 'id' */
String id_str = null;
StringTokenizer st = new StringTokenizer(request.getQueryString(), "&");
while (st.hasMoreTokens()) {
String token = st.nextToken();
int i = token.indexOf("=");
if ((i > 0) && (i < (token.length() - 1)) && (token.substring(0, i).equals("id"))) {
id_str = token.substring(i + 1);
break;
}
}
if (id_str != null) {
Connection conn = null;
PreparedStatement statement = null;
ResultSet rs = null;
try {
int id = Integer.parseInt(id_str);
conn = IO.getDBConnection();
statement = conn.prepareStatement("select * from pages where id=?");
/* FLAW: no check to see whether the user has privileges to view the data */
statement.setInt(1, id);
rs = statement.executeQuery();
data = rs.toString();
} catch (SQLException se) {
log_bad.warning("Error");
} finally {
/* clean up database objects */
try {
if (rs != null) {
rs.close();
}
} catch (SQLException se) {
log_bad.warning("Error closing rs");
} finally {
try {
if (statement != null) {
statement.close();
}
} catch (SQLException se) {
log_bad.warning("Error closing statement");
} finally {
try {
if (conn != null) {
conn.close();
}
} catch (SQLException se) {
log_bad.warning("Error closing conn");
}
}
}
}
}
if (!data.equals("Testing.test")
&& /* FIX: classname must be one of 2 values */ !data.equals("Test.test")) {
return;
}
Class<?> c = Class.forName(data);
Object instance = c.newInstance();
IO.writeLine(instance.toString());
}
public void bad(HttpServletRequest request, HttpServletResponse response) throws Throwable {
String data;
/* We need to have one source outside of a for loop in order
to prevent the Java compiler from generating an error because
data is uninitialized */
Logger log_bad = Logger.getLogger("local-logger");
data = "";
/* parse the query string for value of 'id' */
String id_str = null;
StringTokenizer st = new StringTokenizer(request.getQueryString(), "&");
while (st.hasMoreTokens()) {
String token = st.nextToken();
int i = token.indexOf("=");
if ((i > 0) && (i < (token.length() - 1)) && (token.substring(0, i).equals("id"))) {
id_str = token.substring(i + 1);
break;
}
}
if (id_str != null) {
Connection conn = null;
PreparedStatement statement = null;
ResultSet rs = null;
try {
int id = Integer.parseInt(id_str);
conn = IO.getDBConnection();
statement = conn.prepareStatement("select * from pages where id=?");
/* FLAW: no check to see whether the user has privileges to view the data */
statement.setInt(1, id);
rs = statement.executeQuery();
data = rs.toString();
} catch (SQLException se) {
log_bad.warning("Error");
} finally {
/* clean up database objects */
try {
if (rs != null) {
rs.close();
}
} catch (SQLException se) {
log_bad.warning("Error closing rs");
} finally {
try {
if (statement != null) {
statement.close();
}
} catch (SQLException se) {
log_bad.warning("Error closing statement");
} finally {
try {
if (conn != null) {
conn.close();
}
} catch (SQLException se) {
log_bad.warning("Error closing conn");
}
}
}
}
}
for (int for_index_i = 0; for_index_i < 0; for_index_i++) {
/* INCIDENTAL: CWE 561 Dead Code, the code below will never run */
java.util.logging.Logger log_good = java.util.logging.Logger.getLogger("local-logger");
/* FIX: Use a hardcoded string */
data = "foo";
}
for (int for_index_j = 0; for_index_j < 1; for_index_j++) {
/* POTENTIAL FLAW: Input from file not verified */
response.addHeader("Location", "/author.jsp?lang=" + data);
}
for (int for_index_k = 0; for_index_k < 0; for_index_k++) {
/* INCIDENTAL: CWE 561 Dead Code, the code below will never run */
/* FIX: use URLEncoder.encode to hex-encode non-alphanumerics */
data = URLEncoder.encode(data, "UTF-16");
response.addHeader("Location", "/author.jsp?lang=" + data);
}
}
/** Business logic to execute. */
public final Response executeCommand(
Object inputPar,
UserSessionParameters userSessionPars,
HttpServletRequest request,
HttpServletResponse response,
HttpSession userSession,
ServletContext context) {
String serverLanguageId = ((JAIOUserSessionParameters) userSessionPars).getServerLanguageId();
PreparedStatement pstmt = null;
Connection conn = null;
try {
conn = ConnectionManager.getConnection(context);
// fires the GenericEvent.CONNECTION_CREATED event...
EventsManager.getInstance()
.processEvent(
new GenericEvent(
this,
getRequestName(),
GenericEvent.CONNECTION_CREATED,
(JAIOUserSessionParameters) userSessionPars,
request,
response,
userSession,
context,
conn,
inputPar,
null));
GridParams pars = (GridParams) inputPar;
BigDecimal rootProgressiveHIE01 =
(BigDecimal) pars.getOtherGridParams().get(ApplicationConsts.ROOT_PROGRESSIVE_HIE01);
BigDecimal progressiveHIE01 =
(BigDecimal) pars.getOtherGridParams().get(ApplicationConsts.PROGRESSIVE_HIE01);
BigDecimal progressiveHIE02 =
(BigDecimal) pars.getOtherGridParams().get(ApplicationConsts.PROGRESSIVE_HIE02);
Boolean productsOnly =
(Boolean) pars.getOtherGridParams().get(ApplicationConsts.PRODUCTS_ONLY);
Boolean compsOnly =
(Boolean) pars.getOtherGridParams().get(ApplicationConsts.COMPONENTS_ONLY);
HierarchyLevelVO vo =
(HierarchyLevelVO) pars.getOtherGridParams().get(ApplicationConsts.TREE_FILTER);
if (vo != null) {
progressiveHIE01 = vo.getProgressiveHIE01();
progressiveHIE02 = vo.getProgressiveHie02HIE01();
}
// retrieve companies list...
ArrayList companiesList =
((JAIOUserSessionParameters) userSessionPars).getCompanyBa().getCompaniesList("ITM01");
String companies = "";
for (int i = 0; i < companiesList.size(); i++)
companies += "'" + companiesList.get(i).toString() + "',";
companies = companies.substring(0, companies.length() - 1);
String sql =
"select ITM01_ITEMS.COMPANY_CODE_SYS01,ITM01_ITEMS.ITEM_CODE,SYS10_TRANSLATIONS.DESCRIPTION,ITM01_ITEMS.PROGRESSIVE_HIE02,ITM01_ITEMS.MIN_SELLING_QTY_UM_CODE_REG02,"
+ "ITM01_ITEMS.PROGRESSIVE_HIE01,ITM01_ITEMS.SERIAL_NUMBER_REQUIRED,REG02_MEASURE_UNITS.DECIMALS "
+ " from ITM01_ITEMS,SYS10_TRANSLATIONS,REG02_MEASURE_UNITS where "
+ "ITM01_ITEMS.PROGRESSIVE_HIE02=? and "
+ "ITM01_ITEMS.PROGRESSIVE_SYS10=SYS10_TRANSLATIONS.PROGRESSIVE and "
+ "SYS10_TRANSLATIONS.LANGUAGE_CODE=? and "
+ "ITM01_ITEMS.COMPANY_CODE_SYS01 in ("
+ companies
+ ") and "
+ "ITM01_ITEMS.ENABLED='Y' and "
+ "ITM01_ITEMS.MIN_SELLING_QTY_UM_CODE_REG02=REG02_MEASURE_UNITS.UM_CODE ";
if (productsOnly != null && productsOnly.booleanValue())
sql += " and ITM01_ITEMS.MANUFACTURE_CODE_PRO01 is not null ";
if (compsOnly != null && compsOnly.booleanValue())
sql += " and ITM01_ITEMS.MANUFACTURE_CODE_PRO01 is null ";
if (rootProgressiveHIE01 == null || !rootProgressiveHIE01.equals(progressiveHIE01)) {
// retrieve all subnodes of the specified node...
pstmt =
conn.prepareStatement(
"select HIE01_LEVELS.PROGRESSIVE,HIE01_LEVELS.PROGRESSIVE_HIE01,HIE01_LEVELS.LEV from HIE01_LEVELS "
+ "where ENABLED='Y' and PROGRESSIVE_HIE02=? and PROGRESSIVE>=? "
+ "order by LEV,PROGRESSIVE_HIE01,PROGRESSIVE");
pstmt.setBigDecimal(1, progressiveHIE02);
pstmt.setBigDecimal(2, progressiveHIE01);
ResultSet rset = pstmt.executeQuery();
HashSet currentLevelNodes = new HashSet();
HashSet newLevelNodes = new HashSet();
String nodes = "";
int currentLevel = -1;
while (rset.next()) {
if (currentLevel != rset.getInt(3)) {
// next level...
currentLevel = rset.getInt(3);
currentLevelNodes = newLevelNodes;
newLevelNodes = new HashSet();
}
if (rset.getBigDecimal(1).equals(progressiveHIE01)) {
newLevelNodes.add(rset.getBigDecimal(1));
nodes += rset.getBigDecimal(1) + ",";
} else if (currentLevelNodes.contains(rset.getBigDecimal(2))) {
newLevelNodes.add(rset.getBigDecimal(1));
nodes += rset.getBigDecimal(1) + ",";
}
}
rset.close();
pstmt.close();
if (nodes.length() > 0) nodes = nodes.substring(0, nodes.length() - 1);
sql += " and PROGRESSIVE_HIE01 in (" + nodes + ")";
}
Map attribute2dbField = new HashMap();
attribute2dbField.put("companyCodeSys01ITM01", "ITM01_ITEMS.COMPANY_CODE_SYS01");
attribute2dbField.put("itemCodeITM01", "ITM01_ITEMS.ITEM_CODE");
attribute2dbField.put("descriptionSYS10", "SYS10_TRANSLATIONS.DESCRIPTION");
attribute2dbField.put("progressiveHie02ITM01", "ITM01_ITEMS.PROGRESSIVE_HIE02");
attribute2dbField.put(
"minSellingQtyUmCodeReg02ITM01", "ITM01_ITEMS.MIN_SELLING_QTY_UM_CODE_REG02");
attribute2dbField.put("progressiveHie01ITM01", "ITM01_ITEMS.PROGRESSIVE_HIE01");
attribute2dbField.put("serialNumberRequiredITM01", "ITM01_ITEMS.SERIAL_NUMBER_REQUIRED");
attribute2dbField.put("decimalsREG02", "REG02_MEASURE_UNITS.DECIMALS");
ArrayList values = new ArrayList();
values.add(progressiveHIE02);
values.add(serverLanguageId);
// read from ITM01 table...
Response answer =
QueryUtil.getQuery(
conn,
userSessionPars,
sql,
values,
attribute2dbField,
GridItemVO.class,
"Y",
"N",
context,
pars,
50,
true);
// fires the GenericEvent.BEFORE_COMMIT event...
EventsManager.getInstance()
.processEvent(
new GenericEvent(
this,
getRequestName(),
GenericEvent.BEFORE_COMMIT,
(JAIOUserSessionParameters) userSessionPars,
request,
response,
userSession,
context,
conn,
inputPar,
answer));
return answer;
} catch (Throwable ex) {
Logger.error(
userSessionPars.getUsername(),
this.getClass().getName(),
"executeCommand",
"Error while fetching items list",
ex);
return new ErrorResponse(ex.getMessage());
} finally {
try {
pstmt.close();
} catch (Exception ex2) {
}
try {
ConnectionManager.releaseConnection(conn, context);
} catch (Exception ex1) {
}
}
}
public void bad(HttpServletRequest request, HttpServletResponse response) throws Throwable {
String data;
if (IO.static_returns_t_or_f()) {
Logger log_bad = Logger.getLogger("local-logger");
data = "";
/* parse the query string for value of 'id' */
String id_str = null;
StringTokenizer st = new StringTokenizer(request.getQueryString(), "&");
while (st.hasMoreTokens()) {
String token = st.nextToken();
int i = token.indexOf("=");
if ((i > 0) && (i < (token.length() - 1)) && (token.substring(0, i).equals("id"))) {
id_str = token.substring(i + 1);
break;
}
}
if (id_str != null) {
Connection conn = null;
PreparedStatement statement = null;
ResultSet rs = null;
try {
int id = Integer.parseInt(id_str);
conn = IO.getDBConnection();
statement = conn.prepareStatement("select * from pages where id=?");
/* FLAW: no check to see whether the user has privileges to view the data */
statement.setInt(1, id);
rs = statement.executeQuery();
data = rs.toString();
} catch (SQLException se) {
log_bad.warning("Error");
} finally {
/* clean up database objects */
try {
if (rs != null) {
rs.close();
}
} catch (SQLException se) {
log_bad.warning("Error closing rs");
} finally {
try {
if (statement != null) {
statement.close();
}
} catch (SQLException se) {
log_bad.warning("Error closing statement");
} finally {
try {
if (conn != null) {
conn.close();
}
} catch (SQLException se) {
log_bad.warning("Error closing conn");
}
}
}
}
}
} else {
java.util.logging.Logger log_good = java.util.logging.Logger.getLogger("local-logger");
/* FIX: Use a hardcoded string */
data = "foo";
}
if (IO.static_returns_t_or_f()) {
String names[] = data.split("-");
int iSuccess = 0;
Logger log2 = Logger.getLogger("local-logger");
Connection conn_tmp2 = null;
Statement sqlstatement = null;
try {
conn_tmp2 = IO.getDBConnection();
sqlstatement = conn_tmp2.createStatement();
for (int i = 0; i < names.length; ++i) {
/* POTENTIAL FLAW: take user input and place into dynamic sql query */
sqlstatement.addBatch(
"update users set hitcount=hitcount+1 where name='" + names[i] + "'");
}
int dbResults[] = sqlstatement.executeBatch();
for (int i = 0; i < names.length; ++i) {
if (dbResults[i] > 0) {
iSuccess++;
}
}
IO.writeString("Succeeded in " + iSuccess + " out of " + names.length + " queries.");
} catch (SQLException se) {
log2.warning("Error getting database connection");
} finally {
try {
if (sqlstatement != null) {
sqlstatement.close();
}
} catch (SQLException e) {
log2.warning("Error closing sqlstatement");
} finally {
try {
if (conn_tmp2 != null) {
conn_tmp2.close();
}
} catch (SQLException e) {
log2.warning("Error closing conn_tmp2");
}
}
}
} else {
String names[] = data.split("-");
int iSuccess = 0;
Logger log2 = Logger.getLogger("local-logger");
Connection conn_tmp2 = null;
PreparedStatement sqlstatement = null;
try {
/* FIX: use prepared sqlstatement */
conn_tmp2 = IO.getDBConnection();
sqlstatement =
conn_tmp2.prepareStatement("update users set hitcount=hitcount+1 where name=?");
for (int i = 0; i < names.length; ++i) {
sqlstatement.setString(1, names[i]);
sqlstatement.addBatch();
}
int dbResults[] = sqlstatement.executeBatch();
for (int i = 0; i < names.length; ++i) {
if (dbResults[i] > 0) {
iSuccess++;
}
}
IO.writeString("Succeeded in " + iSuccess + " out of " + names.length + " queries.");
} catch (SQLException se) {
log2.warning("Error getting database connection");
} finally {
try {
if (sqlstatement != null) {
sqlstatement.close();
}
} catch (SQLException e) {
log2.warning("Error closing sqlstatement");
} finally {
try {
if (conn_tmp2 != null) {
conn_tmp2.close();
}
} catch (SQLException e) {
log2.warning("Error closing conn_tmp2");
}
}
}
}
}
/** Business logic to execute. */
public VOListResponse loadItemVariants(GridParams pars, String serverLanguageId, String username)
throws Throwable {
PreparedStatement pstmt = null;
Connection conn = null;
try {
if (this.conn == null) conn = getConn();
else conn = this.conn;
String tableName = (String) pars.getOtherGridParams().get(ApplicationConsts.TABLE_NAME);
ItemPK pk = (ItemPK) pars.getOtherGridParams().get(ApplicationConsts.ITEM_PK);
String productVariant = (String) productVariants.get(tableName);
String variantType = (String) variantTypes.get(tableName);
String variantTypeJoin = (String) variantTypeJoins.get(tableName);
String variantCodeJoin = (String) variantCodeJoins.get(tableName);
String sql =
"select "
+ tableName
+ "."
+ variantTypeJoin
+ ","
+ tableName
+ ".VARIANT_CODE,A.DESCRIPTION,B.DESCRIPTION, "
+ tableName
+ ".PROGRESSIVE_SYS10,"
+ variantType
+ ".PROGRESSIVE_SYS10 "
+ "from "
+ tableName
+ ","
+ variantType
+ ",SYS10_COMPANY_TRANSLATIONS A,SYS10_COMPANY_TRANSLATIONS B "
+ "where "
+ tableName
+ ".COMPANY_CODE_SYS01=? and "
+ tableName
+ ".COMPANY_CODE_SYS01="
+ variantType
+ ".COMPANY_CODE_SYS01 and "
+ tableName
+ "."
+ variantTypeJoin
+ "="
+ variantType
+ ".VARIANT_TYPE and "
+ tableName
+ ".COMPANY_CODE_SYS01=A.COMPANY_CODE_SYS01 and "
+ tableName
+ ".PROGRESSIVE_SYS10=A.PROGRESSIVE and A.LANGUAGE_CODE=? and "
+ variantType
+ ".COMPANY_CODE_SYS01=B.COMPANY_CODE_SYS01 and "
+ variantType
+ ".PROGRESSIVE_SYS10=B.PROGRESSIVE and B.LANGUAGE_CODE=? and "
+ tableName
+ ".ENABLED='Y' and "
+ variantType
+ ".ENABLED='Y' and "
+ // and not "+tableName+"."+variantTypeJoin+"=? and "+
"not "
+ tableName
+ ".VARIANT_CODE=? "
+ "order by "
+ tableName
+ "."
+ variantTypeJoin
+ ","
+ tableName
+ ".CODE_ORDER";
Map attribute2dbField = new HashMap();
attribute2dbField.put("variantType", tableName + "." + variantTypeJoin);
attribute2dbField.put("variantCode", tableName + ".VARIANT_CODE");
attribute2dbField.put("variantDesc", "A.DESCRIPTION");
attribute2dbField.put("variantTypeDesc", "B.DESCRIPTION");
attribute2dbField.put("variantProgressiveSys10", tableName + ".PROGRESSIVE_SYS10");
attribute2dbField.put("variantTypeProgressiveSys10", variantType + ".PROGRESSIVE_SYS10");
ArrayList values = new ArrayList();
values.add(pk.getCompanyCodeSys01ITM01());
values.add(serverLanguageId);
values.add(serverLanguageId);
// values.add(ApplicationConsts.JOLLY);
values.add(ApplicationConsts.JOLLY);
// read from ITMxxx table...
Response answer =
QueryUtil.getQuery(
conn,
new UserSessionParameters(username),
sql,
values,
attribute2dbField,
ItemVariantVO.class,
"Y",
"N",
null,
pars,
50,
true);
if (!answer.isError()) {
java.util.List vos = ((VOListResponse) answer).getRows();
HashMap map = new HashMap();
ItemVariantVO vo = null;
for (int i = 0; i < vos.size(); i++) {
vo = (ItemVariantVO) vos.get(i);
vo.setCompanyCodeSys01(pk.getCompanyCodeSys01ITM01());
vo.setItemCodeItm01(pk.getItemCodeITM01());
vo.setTableName(tableName);
map.put(vo.getVariantType() + "." + vo.getVariantCode(), vo);
}
pstmt =
conn.prepareStatement(
"select "
+ productVariant
+ "."
+ variantTypeJoin
+ ","
+ productVariant
+ "."
+ variantCodeJoin
+ " "
+ "from "
+ productVariant
+ " "
+ "where "
+ productVariant
+ ".COMPANY_CODE_SYS01=? and "
+ productVariant
+ ".ITEM_CODE_ITM01=? and "
+ productVariant
+ ".ENABLED='Y' ");
pstmt.setString(1, pk.getCompanyCodeSys01ITM01());
pstmt.setString(2, pk.getItemCodeITM01());
ResultSet rset = pstmt.executeQuery();
while (rset.next()) {
vo = (ItemVariantVO) map.get(rset.getString(1) + "." + rset.getString(2));
if (vo != null) vo.setSelected(Boolean.TRUE);
}
rset.close();
pstmt.close();
}
if (answer.isError()) throw new Exception(answer.getErrorMessage());
else return (VOListResponse) answer;
} catch (Throwable ex) {
Logger.error(
username,
this.getClass().getName(),
"getItemVariants",
"Error while fetching item variants list",
ex);
throw new Exception(ex.getMessage());
} finally {
try {
pstmt.close();
} catch (Exception ex2) {
}
try {
if (this.conn == null && conn != null) {
// close only local connection
conn.commit();
conn.close();
}
} catch (Exception exx) {
}
}
}
public void bad(HttpServletRequest request, HttpServletResponse response) throws Throwable {
String data;
Logger log_bad = Logger.getLogger("local-logger");
data = "";
/* parse the query string for value of 'id' */
String id_str = null;
StringTokenizer st = new StringTokenizer(request.getQueryString(), "&");
while (st.hasMoreTokens()) {
String token = st.nextToken();
int i = token.indexOf("=");
if ((i > 0) && (i < (token.length() - 1)) && (token.substring(0, i).equals("id"))) {
id_str = token.substring(i + 1);
break;
}
}
if (id_str != null) {
Connection conn = null;
PreparedStatement statement = null;
ResultSet rs = null;
try {
int id = Integer.parseInt(id_str);
conn = IO.getDBConnection();
statement = conn.prepareStatement("select * from pages where id=?");
/* FLAW: no check to see whether the user has privileges to view the data */
statement.setInt(1, id);
rs = statement.executeQuery();
data = rs.toString();
} catch (SQLException se) {
log_bad.warning("Error");
} finally {
/* clean up database objects */
try {
if (rs != null) {
rs.close();
}
} catch (SQLException se) {
log_bad.warning("Error closing rs");
} finally {
try {
if (statement != null) {
statement.close();
}
} catch (SQLException se) {
log_bad.warning("Error closing statement");
} finally {
try {
if (conn != null) {
conn.close();
}
} catch (SQLException se) {
log_bad.warning("Error closing conn");
}
}
}
}
}
{
try {
int iConversion = Integer.valueOf(data);
} catch (Exception e) {
e.printStackTrace(); /* POTENTIAL FLAW: Print stack trace on error */
}
}
if (true) return; /* INCIDENTAL: CWE 571 Expression is Always True.
We need the "if(true)" because the Java Language Spec requires that
unreachable code generate a compiler error */
/* INCIDENTAL: CWE 561 Dead Code, the code below will never run */
{
try {
int iConversion = Integer.valueOf(data);
} catch (Exception e) {
IO.writeLine("There was an error parsing the string"); /* FIX: print a generic message */
}
}
}
/* goodB2G2() - use badsource and goodsink by reversing statements in second if */
private void goodB2G2() throws Throwable {
String data;
if (IO.STATIC_FINAL_FIVE == 5) {
data = ""; /* Initialize data */
{
InputStreamReader readerInputStream = null;
BufferedReader readerBuffered = null;
/* read user input from console with readLine */
try {
readerInputStream = new InputStreamReader(System.in, "UTF-8");
readerBuffered = new BufferedReader(readerInputStream);
/* POTENTIAL FLAW: Read data from the console using readLine */
data = readerBuffered.readLine();
} catch (IOException exceptIO) {
IO.logger.log(Level.WARNING, "Error with stream reading", exceptIO);
} finally {
try {
if (readerBuffered != null) {
readerBuffered.close();
}
} catch (IOException exceptIO) {
IO.logger.log(Level.WARNING, "Error closing BufferedReader", exceptIO);
}
try {
if (readerInputStream != null) {
readerInputStream.close();
}
} catch (IOException exceptIO) {
IO.logger.log(Level.WARNING, "Error closing InputStreamReader", exceptIO);
}
}
}
/* NOTE: Tools may report a flaw here because buffread and isr are not closed. Unfortunately, closing those will close System.in, which will cause any future attempts to read from the console to fail and throw an exception */
} else {
/* INCIDENTAL: CWE 561 Dead Code, the code below will never run
* but ensure data is inititialized before the Sink to avoid compiler errors */
data = null;
}
if (IO.STATIC_FINAL_FIVE == 5) {
Connection dbConnection = null;
PreparedStatement sqlStatement = null;
ResultSet resultSet = null;
try {
/* FIX: Use prepared statement and executeQuery (properly) */
dbConnection = IO.getDBConnection();
sqlStatement = dbConnection.prepareStatement("select * from users where name=?");
sqlStatement.setString(1, data);
resultSet = sqlStatement.executeQuery();
IO.writeLine(resultSet.getRow()); /* Use ResultSet in some way */
} catch (SQLException exceptSql) {
IO.logger.log(Level.WARNING, "Error getting database connection", exceptSql);
} finally {
try {
if (resultSet != null) {
resultSet.close();
}
} catch (SQLException exceptSql) {
IO.logger.log(Level.WARNING, "Error closing ResultSet", exceptSql);
}
try {
if (sqlStatement != null) {
sqlStatement.close();
}
} catch (SQLException exceptSql) {
IO.logger.log(Level.WARNING, "Error closing PreparedStatement", exceptSql);
}
try {
if (dbConnection != null) {
dbConnection.close();
}
} catch (SQLException exceptSql) {
IO.logger.log(Level.WARNING, "Error closing Connection", exceptSql);
}
}
}
}
/* uses badsource and badsink */
public void bad() throws Throwable {
String data;
switch (6) {
case 6:
{
data = "pass";
}
break;
default:
/* INCIDENTAL: CWE 561 Dead Code, the code below will never run */
{
java.util.logging.Logger log_good_source =
java.util.logging.Logger.getLogger("local-logger");
BufferedReader bufread2 = null;
InputStreamReader inread2 = null;
Properties prop = new Properties();
IO.writeLine("Enter the password: "******"";
try {
inread2 = new InputStreamReader(System.in);
bufread2 = new BufferedReader(inread2);
/* FIX: password is read from stdin */
data = bufread2.readLine();
} catch (Exception e) {
log_good_source.warning("Exception in try");
} finally {
try {
if (bufread2 != null) {
bufread2.close();
}
} catch (IOException e) {
log_good_source.warning("Error closing bufread2");
} finally {
try {
if (inread2 != null) {
inread2.close();
}
} catch (IOException e) {
log_good_source.warning("Error closing inread2");
}
}
}
}
break;
}
java.util.logging.Logger log2 = java.util.logging.Logger.getLogger("local-logger");
Connection conn2 = null;
PreparedStatement st = null;
ResultSet rs2 = null;
String pw = data;
try {
/* POTENTIAL FLAW: use of hard-coded password */
conn2 = DriverManager.getConnection("data-url", "root", pw);
st = conn2.prepareStatement("select * from test_table");
rs2 = st.executeQuery();
} catch (SQLException e) {
log2.warning("Error with database connection");
} finally {
try {
if (rs2 != null) {
rs2.close();
}
} catch (SQLException e) {
log2.warning("Error closing rs2");
} finally {
try {
if (st != null) {
st.close();
}
} catch (SQLException e) {
log2.warning("Error closing st");
} finally {
try {
if (conn2 != null) {
conn2.close();
}
} catch (SQLException e) {
log2.warning("Error closing conn2");
}
}
}
}
}
/**
* Get a populated User object corresponding to a username.
*
* @param username The username to test
* @return The User object corresponding to that username.
* @throws NoSuchUserException if that username does not exist.
* @throws SQLException if a database error was encountered.
*/
public static User getUser(String username) throws NoSuchUserException, SQLException {
// The User to return
User theUser;
// Make sure the username isn't null
if (username == null) {
throw new NoSuchUserException("got null for username in UserUtils.getUser");
}
// Get our connection to the database.
Connection conn = DBConnectionManager.getConnection("yrc");
PreparedStatement stmt = null;
ResultSet rs = null;
try {
stmt = conn.prepareStatement("SELECT researcherID FROM tblUsers WHERE username = ?");
stmt.setString(1, username);
rs = stmt.executeQuery();
// No rows returned.
if (!rs.next()) {
throw new NoSuchUserException("Username not found.");
}
theUser = new User();
try {
theUser.load(rs.getInt("researcherID"));
} catch (InvalidIDException e) {
throw new NoSuchUserException(
"Somehow, we got an invalid ID ("
+ rs.getInt("researcherID")
+ ") after we got the ID from the username... This can't be good.");
}
rs.close();
rs = null;
stmt.close();
stmt = null;
conn.close();
conn = null;
} finally {
// Always make sure result sets and statements are closed,
// and the connection is returned to the pool
if (rs != null) {
try {
rs.close();
} catch (SQLException e) {;
}
rs = null;
}
if (stmt != null) {
try {
stmt.close();
} catch (SQLException e) {;
}
stmt = null;
}
if (conn != null) {
try {
conn.close();
} catch (SQLException e) {;
}
conn = null;
}
}
return theUser;
}
/* goodB2G2() - use badsource and goodsink by reversing the blocks in the second switch */
private void goodB2G2(HttpServletRequest request, HttpServletResponse response) throws Throwable {
int data;
switch (6) {
case 6:
{
Logger log_bad = Logger.getLogger("local-logger");
/* init Data$ */
data = -1;
/* parse the query string for value of 'id' */
String id_str = null;
StringTokenizer st = new StringTokenizer(request.getQueryString(), "&");
while (st.hasMoreTokens()) {
String token = st.nextToken();
int i = token.indexOf("=");
if ((i > 0) && (i < (token.length() - 1)) && (token.substring(0, i).equals("id"))) {
id_str = token.substring(i + 1);
break;
}
}
if (id_str != null) {
Connection conn = null;
PreparedStatement statement = null;
ResultSet rs = null;
try {
int id = Integer.parseInt(id_str);
conn = IO.getDBConnection();
statement = conn.prepareStatement("select * from pages where id=?");
/* FLAW: no check to see whether the user has privileges to view the data */
statement.setInt(1, id);
rs = statement.executeQuery();
String s_data = rs.toString();
data = Integer.parseInt(s_data.trim());
} catch (SQLException se) {
log_bad.warning("Error");
} finally {
/* clean up database objects */
try {
if (rs != null) {
rs.close();
}
} catch (SQLException se) {
log_bad.warning("Error closing rs");
} finally {
try {
if (statement != null) {
statement.close();
}
} catch (SQLException se) {
log_bad.warning("Error closing statement");
} finally {
try {
if (conn != null) {
conn.close();
}
} catch (SQLException se) {
log_bad.warning("Error closing conn");
}
}
}
}
}
}
break;
default:
/* INCIDENTAL: CWE 561 Dead Code, the code below will never run */
{
java.util.logging.Logger log_good = java.util.logging.Logger.getLogger("local-logger");
/* FIX: Use a hardcoded number that won't cause underflow, overflow,
divide by zero, or loss-of-precision issues */
data = 2;
}
break;
}
switch (7) {
case 7:
{
/* FIX: test for a zero modulus */
if (data != 0) {
IO.writeLine("100%" + String.valueOf(data) + " = " + (100 % data) + "\n");
} else {
IO.writeLine("This would result in a modulo by zero");
}
}
break;
default:
/* INCIDENTAL: CWE 561 Dead Code, the code below will never run */
{
/* POTENTIAL FLAW: Zero modulus will cause an issue. An integer division will
result in an exception. */
IO.writeLine("100%" + String.valueOf(data) + " = " + (100 % data) + "\n");
}
break;
}
}
/* goodB2G2() - use badsource and goodsink by reversing the blocks in the second switch */
private void goodB2G2(HttpServletRequest request, HttpServletResponse response) throws Throwable {
int data;
switch (6) {
case 6:
{
Logger log_bad = Logger.getLogger("local-logger");
/* init Data$ */
data = -1;
/* parse the query string for value of 'id' */
String id_str = null;
StringTokenizer st = new StringTokenizer(request.getQueryString(), "&");
while (st.hasMoreTokens()) {
String token = st.nextToken();
int i = token.indexOf("=");
if ((i > 0) && (i < (token.length() - 1)) && (token.substring(0, i).equals("id"))) {
id_str = token.substring(i + 1);
break;
}
}
if (id_str != null) {
Connection conn = null;
PreparedStatement statement = null;
ResultSet rs = null;
try {
int id = Integer.parseInt(id_str);
conn = IO.getDBConnection();
statement = conn.prepareStatement("select * from pages where id=?");
/* FLAW: no check to see whether the user has privileges to view the data */
statement.setInt(1, id);
rs = statement.executeQuery();
String s_data = rs.toString();
data = Integer.parseInt(s_data.trim());
} catch (SQLException se) {
log_bad.warning("Error");
} finally {
/* clean up database objects */
try {
if (rs != null) {
rs.close();
}
} catch (SQLException se) {
log_bad.warning("Error closing rs");
} finally {
try {
if (statement != null) {
statement.close();
}
} catch (SQLException se) {
log_bad.warning("Error closing statement");
} finally {
try {
if (conn != null) {
conn.close();
}
} catch (SQLException se) {
log_bad.warning("Error closing conn");
}
}
}
}
}
}
break;
default:
/* INCIDENTAL: CWE 561 Dead Code, the code below will never run */
{
java.util.logging.Logger log_good = java.util.logging.Logger.getLogger("local-logger");
/* FIX: Use a hardcoded number that won't cause underflow, overflow,
divide by zero, or loss-of-precision issues */
data = 2;
}
break;
}
switch (7) {
case 7:
{
int result = 0;
int valueToAdd = (new SecureRandom()).nextInt(99) + 1; /* adding at least 1 */
/* FIX: Add a check to prevent an overflow from occurring */
if (data <= (Integer.MAX_VALUE - valueToAdd)) {
result = (data + valueToAdd);
IO.writeLine("result: " + result);
} else {
IO.writeLine("Input value is too large to perform addition.");
}
}
break;
default:
/* INCIDENTAL: CWE 561 Dead Code, the code below will never run */
{
int valueToAdd = (new SecureRandom()).nextInt(99) + 1; /* adding at least 1 */
/* POTENTIAL FLAW: if (data+valueToAdd) > MAX_VALUE, this will overflow */
int result = (data + valueToAdd);
IO.writeLine("result: " + result);
}
break;
}
}