コード例 #1
0
  private L2LegacyGameServerSecurity() {
    new Updater().hashCode();
    _log.info("Generated " + getKeyPairs().length + " RSA key pairs (legacy game server).");

    try {
      warmUp(getKeyPair().getPrivate());
    } catch (GeneralSecurityException e) {
      _log.fatal("Invalid generated key pair!", e);
      Shutdown.exit(TerminationStatus.ENVIRONMENT_MISSING_COMPONENT_OR_SERVICE);
    }
  }
コード例 #2
0
    @Override
    protected void runImpl() {
      final KeyPairGenerator rsa;
      try {
        rsa = KeyPairGenerator.getInstance("RSA");
        rsa.initialize(new RSAKeyGenParameterSpec(512, RSAKeyGenParameterSpec.F4));
      } catch (GeneralSecurityException e) {
        _log.fatal("Could not generate RSA key pairs!", e);
        Shutdown.exit(TerminationStatus.ENVIRONMENT_MISSING_COMPONENT_OR_SERVICE);
        return; // never happens
      }

      final int count =
          Rnd.get(
              RSA_KEY_PAIR_COUNT / 2,
              RSA_KEY_PAIR_COUNT
                  * 3
                  / 2); // so clients will never know if they have all of them or not
      final KeyPair[] result = new KeyPair[count];

      for (int i = 0; i < count; i++) result[i] = rsa.generateKeyPair();

      _keyPairs = result;
    }
コード例 #3
0
  /**
   * Launches the interactive account manager.
   *
   * @param args ignored
   */
  public static void main(String[] args) {
    // LOW rework this crap
    Util.printSection("Account Management");

    _log.info("Please choose:");
    // _log.info("list - list registered accounts");
    _log.info("reg - register a new account");
    _log.info("rem - remove a registered account");
    _log.info("prom - promote a registered account");
    _log.info("dem - demote a registered account");
    _log.info("ban - ban a registered account");
    _log.info("unban - unban a registered account");
    _log.info("quit - exit this application");

    BufferedReader br = new BufferedReader(new InputStreamReader(System.in));
    L2AccountManager acm = new L2AccountManager();

    String line;
    try {
      while ((line = br.readLine()) != null) {
        line = line.trim();
        Connection con = null;
        switch (acm.getState()) {
          case USER_NAME:
            line = line.toLowerCase();
            try {
              con = L2Database.getConnection();
              PreparedStatement ps =
                  con.prepareStatement("SELECT superuser FROM account WHERE username LIKE ?");
              ps.setString(1, line);
              ResultSet rs = ps.executeQuery();
              if (!rs.next()) {
                acm.setUser(line);

                _log.info("Desired password:"******"User name already in use.");
                acm.setState(ManagerState.INITIAL_CHOICE);
              }
              rs.close();
              ps.close();
            } catch (SQLException e) {
              _log.error("Could not access database!", e);
              acm.setState(ManagerState.INITIAL_CHOICE);
            } finally {
              L2Database.close(con);
            }
            break;
          case PASSWORD:
            try {
              MessageDigest sha = MessageDigest.getInstance("SHA");
              byte[] pass = sha.digest(line.getBytes("US-ASCII"));
              acm.setPass(HexUtil.bytesToHexString(pass));
            } catch (NoSuchAlgorithmException e) {
              _log.fatal("SHA1 is not available!", e);
              Shutdown.exit(TerminationStatus.ENVIRONMENT_MISSING_COMPONENT_OR_SERVICE);
            } catch (UnsupportedEncodingException e) {
              _log.fatal("ASCII is not available!", e);
              Shutdown.exit(TerminationStatus.ENVIRONMENT_MISSING_COMPONENT_OR_SERVICE);
            }
            _log.info("Super user: [y/n]");
            acm.setState(ManagerState.SUPERUSER);
            break;
          case SUPERUSER:
            try {
              if (line.length() != 1) throw new IllegalArgumentException("One char required.");
              else if (line.charAt(0) == 'y') acm.setSuper(true);
              else if (line.charAt(0) == 'n') acm.setSuper(false);
              else throw new IllegalArgumentException("Invalid choice.");

              _log.info("Date of birth: [yyyy-mm-dd]");
              acm.setState(ManagerState.DOB);
            } catch (IllegalArgumentException e) {
              _log.info("[y/n]?");
            }
            break;
          case DOB:
            try {
              Date d = Date.valueOf(line);
              if (d.after(new Date(System.currentTimeMillis())))
                throw new IllegalArgumentException("Future date specified.");
              acm.setDob(d);

              _log.info("Ban reason ID or nothing:");
              acm.setState(ManagerState.SUSPENDED);
            } catch (IllegalArgumentException e) {
              _log.info("[yyyy-mm-dd] in the past:");
            }
            break;
          case SUSPENDED:
            try {
              if (line.length() > 0) {
                int id = Integer.parseInt(line);
                acm.setBan(L2BanReason.getById(id));
              } else acm.setBan(null);

              try {
                con = L2Database.getConnection();
                PreparedStatement ps =
                    con.prepareStatement(
                        "INSERT INTO account (username, password, superuser, birthDate, banReason) VALUES (?, ?, ?, ?, ?)");
                ps.setString(1, acm.getUser());
                ps.setString(2, acm.getPass());
                ps.setBoolean(3, acm.isSuper());
                ps.setDate(4, acm.getDob());
                L2BanReason lbr = acm.getBan();
                if (lbr == null) ps.setNull(5, Types.INTEGER);
                else ps.setInt(5, lbr.getId());
                ps.executeUpdate();
                _log.info("Account " + acm.getUser() + " has been registered.");
                ps.close();
              } catch (SQLException e) {
                _log.error("Could not register an account!", e);
              } finally {
                L2Database.close(con);
              }
              acm.setState(ManagerState.INITIAL_CHOICE);
            } catch (NumberFormatException e) {
              _log.info("Ban reason ID or nothing:");
            }
            break;
          case REMOVE:
            acm.setUser(line.toLowerCase());
            try {
              con = L2Database.getConnection();
              PreparedStatement ps =
                  con.prepareStatement("DELETE FROM account WHERE username LIKE ?");
              ps.setString(1, acm.getUser());
              int cnt = ps.executeUpdate();
              if (cnt > 0) _log.info("Account " + acm.getUser() + " has been removed.");
              else _log.info("Account " + acm.getUser() + " does not exist!");
              ps.close();
            } catch (SQLException e) {
              _log.error("Could not remove an account!", e);
            } finally {
              L2Database.close(con);
            }
            acm.setState(ManagerState.INITIAL_CHOICE);
            break;
          case PROMOTE:
            acm.setUser(line.toLowerCase());
            try {
              con = L2Database.getConnection();
              PreparedStatement ps =
                  con.prepareStatement("UPDATE account SET superuser = ? WHERE username LIKE ?");
              ps.setBoolean(1, true);
              ps.setString(2, acm.getUser());
              int cnt = ps.executeUpdate();
              if (cnt > 0) _log.info("Account " + acm.getUser() + " has been promoted.");
              else _log.info("Account " + acm.getUser() + " does not exist!");
              ps.close();
            } catch (SQLException e) {
              _log.error("Could not promote an account!", e);
            } finally {
              L2Database.close(con);
            }
            acm.setState(ManagerState.INITIAL_CHOICE);
            break;
          case DEMOTE:
            acm.setUser(line.toLowerCase());
            try {
              con = L2Database.getConnection();
              PreparedStatement ps =
                  con.prepareStatement("UPDATE account SET superuser = ? WHERE username LIKE ?");
              ps.setBoolean(1, false);
              ps.setString(2, acm.getUser());
              int cnt = ps.executeUpdate();
              if (cnt > 0) _log.info("Account " + acm.getUser() + " has been demoted.");
              else _log.info("Account " + acm.getUser() + " does not exist!");
              ps.close();
            } catch (SQLException e) {
              _log.error("Could not demote an account!", e);
            } finally {
              L2Database.close(con);
            }
            acm.setState(ManagerState.INITIAL_CHOICE);
            break;
          case UNBAN:
            acm.setUser(line.toLowerCase());
            try {
              con = L2Database.getConnection();
              PreparedStatement ps =
                  con.prepareStatement("UPDATE account SET banReason = ? WHERE username LIKE ?");
              ps.setNull(1, Types.INTEGER);
              ps.setString(2, acm.getUser());
              int cnt = ps.executeUpdate();
              if (cnt > 0) _log.info("Account " + acm.getUser() + " has been unbanned.");
              else _log.info("Account " + acm.getUser() + " does not exist!");
              ps.close();
            } catch (SQLException e) {
              _log.error("Could not demote an account!", e);
            } finally {
              L2Database.close(con);
            }
            acm.setState(ManagerState.INITIAL_CHOICE);
            break;
          case BAN:
            line = line.toLowerCase();
            try {
              con = L2Database.getConnection();
              PreparedStatement ps =
                  con.prepareStatement("SELECT superuser FROM account WHERE username LIKE ?");
              ps.setString(1, line);
              ResultSet rs = ps.executeQuery();
              if (rs.next()) {
                acm.setUser(line);

                _log.info("Ban reason ID:");
                acm.setState(ManagerState.REASON);
              } else {
                _log.info("Account does not exist.");
                acm.setState(ManagerState.INITIAL_CHOICE);
              }
              rs.close();
              ps.close();
            } catch (SQLException e) {
              _log.error("Could not access database!", e);
              acm.setState(ManagerState.INITIAL_CHOICE);
            } finally {
              L2Database.close(con);
            }
            break;
          case REASON:
            try {
              int ban = Integer.parseInt(line);
              con = L2Database.getConnection();
              PreparedStatement ps =
                  con.prepareStatement("UPDATE account SET banReason = ? WHERE username LIKE ?");
              ps.setInt(1, ban);
              ps.setString(2, acm.getUser());
              ps.executeUpdate();
              _log.info("Account " + acm.getUser() + " has been banned.");
              ps.close();
            } catch (NumberFormatException e) {
              _log.info("Ban reason ID:");
            } catch (SQLException e) {
              _log.error("Could not ban an account!", e);
            } finally {
              L2Database.close(con);
            }
            acm.setState(ManagerState.INITIAL_CHOICE);
            break;
          default:
            line = line.toLowerCase();
            if (line.equals("reg")) {
              _log.info("Desired user name:");
              acm.setState(ManagerState.USER_NAME);
            } else if (line.equals("rem")) {
              _log.info("User name:");
              acm.setState(ManagerState.REMOVE);
            } else if (line.equals("prom")) {
              _log.info("User name:");
              acm.setState(ManagerState.PROMOTE);
            } else if (line.equals("dem")) {
              _log.info("User name:");
              acm.setState(ManagerState.DEMOTE);
            } else if (line.equals("unban")) {
              _log.info("User name:");
              acm.setState(ManagerState.UNBAN);
            } else if (line.equals("ban")) {
              _log.info("User name:");
              acm.setState(ManagerState.BAN);
            } else if (line.equals("quit")) Shutdown.exit(TerminationStatus.MANUAL_SHUTDOWN);
            else _log.info("Incorrect command.");
            break;
        }
      }
    } catch (IOException e) {
      _log.fatal("Could not process input!", e);
    } finally {
      IOUtils.closeQuietly(br);
    }
  }