From 11bd32c5f009fcab336e8359ebc343e8829f4fee Mon Sep 17 00:00:00 2001
From: Kohei Tamura <ktamura.biz.80@gmail.com>
Date: Mon, 26 Dec 2016 17:46:36 +0900
Subject: [PATCH] Improve overall.

---
 pom.xml                                       |  5 ++
 .../others/IntegerOverflowServlet.java        |  2 +-
 .../others/LossOfTrailingDigitsServlet.java   |  2 +-
 .../others/RoundOffErrorServlet.java          |  2 +-
 .../easybuggy/troubles/DeadlockServlet2.java  | 35 ++++++++---
 .../easybuggy/utils/ApplicationUtils.java     | 26 +++++++++
 .../vulnerabilities/SQLInjectionServlet.java  | 23 ++++++--
 .../easybuggy/vulnerabilities/XSSServlet.java |  2 +-
 src/main/resources/application.properties     | 10 +++-
 src/main/webapp/WEB-INF/jsp/index.jsp         | 58 +++++++++----------
 10 files changed, 117 insertions(+), 48 deletions(-)

diff --git a/pom.xml b/pom.xml
index accb959b..926ab3c7 100644
--- a/pom.xml
+++ b/pom.xml
@@ -59,6 +59,11 @@
       <artifactId>jol-core</artifactId>
       <version>0.6</version>
     </dependency>
+    <!-- <dependency>
+      <groupId>mysql</groupId>
+      <artifactId>mysql-connector-java</artifactId>
+      <version>5.1.17</version>
+    </dependency> -->
   </dependencies>
   <build>
       <plugins>
diff --git a/src/main/java/org/t246osslab/easybuggy/others/IntegerOverflowServlet.java b/src/main/java/org/t246osslab/easybuggy/others/IntegerOverflowServlet.java
index a65c94e1..1ce68508 100644
--- a/src/main/java/org/t246osslab/easybuggy/others/IntegerOverflowServlet.java
+++ b/src/main/java/org/t246osslab/easybuggy/others/IntegerOverflowServlet.java
@@ -30,7 +30,7 @@ protected void service(HttpServletRequest req, HttpServletResponse res) throws S
             writer.write("<TITLE>" + MessageUtils.getMsg("title.integer.overflow.page", locale) + "</TITLE>");
             writer.write("</HEAD>");
             writer.write("<BODY>");
-            writer.write("<form action=\"/iof\" method=\"post\">");
+            writer.write("<form action=\"iof\" method=\"post\">");
             writer.write("<input type=\"text\" name=\"days\" size=\"8\" maxlength=\"8\">");
             writer.write(MessageUtils.getMsg("label.days", locale));
             writer.write("<br>");
diff --git a/src/main/java/org/t246osslab/easybuggy/others/LossOfTrailingDigitsServlet.java b/src/main/java/org/t246osslab/easybuggy/others/LossOfTrailingDigitsServlet.java
index 12a9c23b..3191576c 100644
--- a/src/main/java/org/t246osslab/easybuggy/others/LossOfTrailingDigitsServlet.java
+++ b/src/main/java/org/t246osslab/easybuggy/others/LossOfTrailingDigitsServlet.java
@@ -32,7 +32,7 @@ protected void service(HttpServletRequest req, HttpServletResponse res) throws S
             writer.write("<TITLE>" + MessageUtils.getMsg("title.loss.of.trailing.digits.page", locale) + "</TITLE>");
             writer.write("</HEAD>");
             writer.write("<BODY>");
-            writer.write("<form action=\"/lotd\" method=\"post\">");
+            writer.write("<form action=\"lotd\" method=\"post\">");
             writer.write("<input type=\"text\" name=\"number\" size=\"18\" maxlength=\"18\">");
             writer.write(" + 1 = ");
             String strNumber = req.getParameter("number");
diff --git a/src/main/java/org/t246osslab/easybuggy/others/RoundOffErrorServlet.java b/src/main/java/org/t246osslab/easybuggy/others/RoundOffErrorServlet.java
index 3a422f71..afbc4041 100644
--- a/src/main/java/org/t246osslab/easybuggy/others/RoundOffErrorServlet.java
+++ b/src/main/java/org/t246osslab/easybuggy/others/RoundOffErrorServlet.java
@@ -32,7 +32,7 @@ protected void service(HttpServletRequest req, HttpServletResponse res) throws S
             writer.write("<TITLE>" + MessageUtils.getMsg("title.round.off.error.page", locale) + "</TITLE>");
             writer.write("</HEAD>");
             writer.write("<BODY>");
-            writer.write("<form action=\"/roe\" method=\"post\">");
+            writer.write("<form action=\"roe\" method=\"post\">");
             writer.write("<input type=\"text\" name=\"number\" size=\"1\" maxlength=\"1\">");
             writer.write(" - 0.9 = ");
             String strNumber = req.getParameter("number");
diff --git a/src/main/java/org/t246osslab/easybuggy/troubles/DeadlockServlet2.java b/src/main/java/org/t246osslab/easybuggy/troubles/DeadlockServlet2.java
index 6c1697df..98fffb72 100644
--- a/src/main/java/org/t246osslab/easybuggy/troubles/DeadlockServlet2.java
+++ b/src/main/java/org/t246osslab/easybuggy/troubles/DeadlockServlet2.java
@@ -18,6 +18,7 @@
 import javax.servlet.http.HttpServletResponse;
 
 import org.pmw.tinylog.Logger;
+import org.t246osslab.easybuggy.utils.ApplicationUtils;
 import org.t246osslab.easybuggy.utils.Closer;
 import org.t246osslab.easybuggy.utils.MessageUtils;
 
@@ -40,7 +41,7 @@ protected void service(HttpServletRequest req, HttpServletResponse res) throws S
             writer.write("<TITLE>" + MessageUtils.getMsg("title.sql.deadlock.page", locale) + "</TITLE>");
             writer.write("</HEAD>");
             writer.write("<BODY>");
-            writer.write("<form action=\"/deadlock2\" method=\"post\">");
+            writer.write("<form action=\"deadlock2\" method=\"post\">");
             writer.write(MessageUtils.getMsg("msg.reset.all.users.passwd", locale));
             writer.write("<br><br>");
             writer.write(MessageUtils.getMsg("msg.note.sql.deadlock", locale));
@@ -78,23 +79,34 @@ protected void service(HttpServletRequest req, HttpServletResponse res) throws S
 
 class EmbeddedJavaDb2 {
 
-    // static final String dbUrl = "jdbc:derby:demo;create=true";
-    // In-memory database URL
-    static final String dbUrl = "jdbc:derby:memory:demo;create=true";
+    static final String dbUrl = ApplicationUtils.getDatabaseURL();
+    static final String dbDriver = ApplicationUtils.getDatabaseDriver();
 
     static {
         Connection conn = null;
         Statement stmt = null;
         try {
+            if (dbDriver != null && !dbDriver.equals("")) {
+                try {
+                    Class.forName("com.mysql.jdbc.Driver");
+                } catch (ClassNotFoundException e) {
+                    Logger.error(e);
+                }
+            }
             conn = DriverManager.getConnection(dbUrl);
             stmt = conn.createStatement();
 
+            try {
+                stmt.executeUpdate("drop table users2");
+            } catch (SQLException e) {
+                // ignore exception if exist the table
+            }
             // create users table
-            stmt.executeUpdate("Create table users (id int primary key, name varchar(30), password varchar(100))");
+            stmt.executeUpdate("create table users2 (id int primary key, name varchar(30), password varchar(100))");
 
             // insert rows
-            stmt.executeUpdate("insert into users values (0,'Mark','password')");
-            stmt.executeUpdate("insert into users values (1,'James','pathwood')");
+            stmt.executeUpdate("insert into users2 values (0,'Mark','password')");
+            stmt.executeUpdate("insert into users2 values (1,'James','pathwood')");
 
         } catch (SQLException e) {
             Logger.error(e);
@@ -123,10 +135,17 @@ public String update(String[] names, Locale locale) {
         int executeUpdate = 0;
         String message = "";
         try {
+            if (dbDriver != null && !dbDriver.equals("")) {
+                try {
+                    Class.forName("com.mysql.jdbc.Driver");
+                } catch (ClassNotFoundException e) {
+                    Logger.error(e);
+                }
+            }
             conn = DriverManager.getConnection(dbUrl);
             conn.setAutoCommit(false);
 
-            stmt = conn.prepareStatement("Update users set password = ?  where name = ?");
+            stmt = conn.prepareStatement("Update users2 set password = ?  where name = ?");
             stmt.setString(1, UUID.randomUUID().toString());
             stmt.setString(2, names[0]);
             executeUpdate = stmt.executeUpdate();
diff --git a/src/main/java/org/t246osslab/easybuggy/utils/ApplicationUtils.java b/src/main/java/org/t246osslab/easybuggy/utils/ApplicationUtils.java
index dd70da93..0f2d7c81 100644
--- a/src/main/java/org/t246osslab/easybuggy/utils/ApplicationUtils.java
+++ b/src/main/java/org/t246osslab/easybuggy/utils/ApplicationUtils.java
@@ -9,6 +9,12 @@ public class ApplicationUtils {
     // default port: 8989
     private static int openBuggyPort = 8989;
     
+    // default database url: derby in-memory
+    private static String databaseURL = "jdbc:derby:memory:demo;create=true";
+    
+    // default database url: null
+    private static String databaseDriver = null;
+    
     static {
         ResourceBundle bundle = null;
         try {
@@ -21,9 +27,29 @@ public class ApplicationUtils {
         } catch (Exception e) {
             Logger.error(e);
         }
+        try {
+            databaseURL = bundle.getString("database.url");
+        } catch (Exception e) {
+            Logger.error(e);
+        }
+        try {
+            if (!databaseURL.startsWith("jdbc:derby:memory")) {
+                databaseDriver = bundle.getString("database.driver");
+            }
+        } catch (Exception e) {
+            Logger.error(e);
+        }
     }
 
     public static int getEasyBuggyPort() {
         return openBuggyPort;
     }
+
+    public static String getDatabaseURL() {
+        return databaseURL;
+    }
+
+    public static String getDatabaseDriver() {
+        return databaseDriver;
+    }
 }
diff --git a/src/main/java/org/t246osslab/easybuggy/vulnerabilities/SQLInjectionServlet.java b/src/main/java/org/t246osslab/easybuggy/vulnerabilities/SQLInjectionServlet.java
index 762895d2..efd5c6e0 100644
--- a/src/main/java/org/t246osslab/easybuggy/vulnerabilities/SQLInjectionServlet.java
+++ b/src/main/java/org/t246osslab/easybuggy/vulnerabilities/SQLInjectionServlet.java
@@ -16,6 +16,7 @@
 import javax.servlet.http.HttpServletResponse;
 
 import org.pmw.tinylog.Logger;
+import org.t246osslab.easybuggy.utils.ApplicationUtils;
 import org.t246osslab.easybuggy.utils.Closer;
 import org.t246osslab.easybuggy.utils.MessageUtils;
 
@@ -39,7 +40,7 @@ protected void service(HttpServletRequest req, HttpServletResponse res) throws S
             writer.write("<TITLE>" + MessageUtils.getMsg("title.sql.injection.page", locale) + "</TITLE>");
             writer.write("</HEAD>");
             writer.write("<BODY>");
-            writer.write("<form action=\"/sqlijc\" method=\"post\">");
+            writer.write("<form action=\"sqlijc\" method=\"post\">");
             writer.write(MessageUtils.getMsg("msg.enter.name.and.passwd", locale));
             writer.write("<br><br>");
             writer.write(MessageUtils.getMsg("msg.example.name.and.passwd", locale));
@@ -79,15 +80,25 @@ class EmbeddedJavaDb {
 
     static {
         Statement stmt = null;
-        // In-memory database URL
-        String dbUrl = "jdbc:derby:memory:demo;create=true";
         try {
+            String dbDriver = ApplicationUtils.getDatabaseDriver();
+            if (dbDriver != null && !dbDriver.equals("")) {
+                try {
+                    Class.forName("com.mysql.jdbc.Driver");
+                } catch (ClassNotFoundException e) {
+                    Logger.error(e);
+                }
+            }
+            String dbUrl = ApplicationUtils.getDatabaseURL();
             conn = DriverManager.getConnection(dbUrl);
             stmt = conn.createStatement();
-
+            try {
+                stmt.executeUpdate("drop table users");
+            } catch (SQLException e) {
+                // ignore exception if exist the table
+            }
             // create users table
-            stmt.executeUpdate(
-                    "Create table users (id int primary key, name varchar(30), password varchar(30), secret varchar(30))");
+            stmt.executeUpdate("create table users (id int primary key, name varchar(30), password varchar(30), secret varchar(30))");
 
             // insert rows
             stmt.executeUpdate("insert into users values (0,'Mark','password','57249037993')");
diff --git a/src/main/java/org/t246osslab/easybuggy/vulnerabilities/XSSServlet.java b/src/main/java/org/t246osslab/easybuggy/vulnerabilities/XSSServlet.java
index ab424a56..b56dc1f2 100644
--- a/src/main/java/org/t246osslab/easybuggy/vulnerabilities/XSSServlet.java
+++ b/src/main/java/org/t246osslab/easybuggy/vulnerabilities/XSSServlet.java
@@ -33,7 +33,7 @@ protected void service(HttpServletRequest req, HttpServletResponse res) throws S
             writer.write("<TITLE>" + MessageUtils.getMsg("title.xss.page", locale) + "</TITLE>");
             writer.write("</HEAD>");
             writer.write("<BODY>");
-            writer.write("<form action=\"/xss\" method=\"post\">");
+            writer.write("<form action=\"xss\" method=\"post\">");
             writer.write(MessageUtils.getMsg("msg.enter.name", locale));
             writer.write("<br><br>");
             writer.write(MessageUtils.getMsg("msg.example.name", locale));
diff --git a/src/main/resources/application.properties b/src/main/resources/application.properties
index a8b038ce..cac5fce8 100644
--- a/src/main/resources/application.properties
+++ b/src/main/resources/application.properties
@@ -1 +1,9 @@
-easybuggy.port=8989
\ No newline at end of file
+# EasyBuggy port
+easybuggy.port=8989
+
+# In-memory database URL (derby)
+database.url=jdbc:derby:memory:demo;create=true
+
+# Local MySQL server
+#database.url=jdbc:mysql://localhost:3306/easybuggy?user=easybuggy&password=password
+#database.driver=com.mysql.jdbc.Driver
diff --git a/src/main/webapp/WEB-INF/jsp/index.jsp b/src/main/webapp/WEB-INF/jsp/index.jsp
index 04c7bbf9..b5645e2a 100644
--- a/src/main/webapp/WEB-INF/jsp/index.jsp
+++ b/src/main/webapp/WEB-INF/jsp/index.jsp
@@ -21,12 +21,12 @@
 	</p>
 	<ul>
 		<li><p>
-				<a href="../memoryleak" target="_blank"><fmt:message
+				<a href="memoryleak" target="_blank"><fmt:message
 						key="function.name.memory.leak" /></a>:
 				<fmt:message key="function.description.memory.leak" />
 			</p></li>
 		<li><p>
-				<a href="../memoryleak2" target="_blank"><fmt:message
+				<a href="memoryleak2" target="_blank"><fmt:message
 						key="function.name.memory.leak2" /></a>:
 				<fmt:message key="function.description.memory.leak2" />
 			</p></li>
@@ -36,26 +36,26 @@
 				<fmt:message key="function.description.memory.leak3" />
 			</p></li>
 		<li><p>
-				<a href="../infiniteloop" target="_blank"><fmt:message
+				<a href="infiniteloop" target="_blank"><fmt:message
 						key="function.name.infinite.loop" /></a>:
 				<fmt:message key="function.description.infinite.loop" /></li>
 		<li><p>
-				<a href="../deadlock" target="_blank"><fmt:message
+				<a href="deadlock" target="_blank"><fmt:message
 						key="function.name.dead.lock" /></a>:
 				<fmt:message key="function.description.dead.lock" />
 			</p></li>
 		<li><p>
-				<a href="../deadlock2" target="_blank"><fmt:message
+				<a href="deadlock2" target="_blank"><fmt:message
 						key="function.name.dead.lock2" /></a>:
 				<fmt:message key="function.description.dead.lock2" />
 			</p></li>
 		<li><p>
-				<a href="../jvmcrasheav" target="_blank"><fmt:message
+				<a href="jvmcrasheav" target="_blank"><fmt:message
 						key="function.name.jvm.crash.eav" /> </a>:
 				<fmt:message key="function.description.jvm.crash.eav" />
 			</p></li>
 		<li><p>
-				<a href="../redirectloop" target="_blank"><fmt:message
+				<a href="redirectloop" target="_blank"><fmt:message
 						key="function.name.redirect.loop" /></a>:
 				<fmt:message key="function.description.redirect.loop" />
 			</p></li>
@@ -65,7 +65,7 @@
 				<fmt:message key="function.description.native.library.error" />
 			</p></li>
 		<li><p>
-				<a href="../netsocketleak" target="_blank"><fmt:message
+				<a href="netsocketleak" target="_blank"><fmt:message
 						key="function.name.network.socket.leak" /></a>:
 				<fmt:message key="function.description.network.socket.leak" />
 			</p></li>
@@ -94,12 +94,12 @@
 	</p>
 	<ul>
 		<li><p>
-				<a href="../xss" target="_blank"><fmt:message
+				<a href="xss" target="_blank"><fmt:message
 						key="function.name.xss" /></a>:
 				<fmt:message key="function.description.xss" />
 			</p></li>
 		<li><p>
-				<a href="../sqlijc" target="_blank"><fmt:message
+				<a href="sqlijc" target="_blank"><fmt:message
 						key="function.name.sql.injection" /></a>:
 				<fmt:message key="function.description.sql.injection" />
 			</p></li>
@@ -118,37 +118,37 @@
 	</p>
 	<ul>
 		<li><p>
-				<a href="../sofe" target="_blank"><fmt:message
+				<a href="sofe" target="_blank"><fmt:message
 						key="function.name.sof.error" /></a>:
 				<fmt:message key="function.description.sof.error" />
 			</p></li>
 		<li><p>
-				<a href="../oome" target="_blank"><fmt:message
+				<a href="oome" target="_blank"><fmt:message
 						key="function.name.oome.error" /> </a>:
 				<fmt:message key="function.description.oome.error" />
 			</p></li>
 		<li><p>
-				<a href="../oome2" target="_blank"><fmt:message
+				<a href="oome2" target="_blank"><fmt:message
 						key="function.name.oome.error2" /></a>:
 				<fmt:message key="function.description.oome.error2" />
 			</p></li>
 		<li><p>
-				<a href="../oome3" target="_blank"><fmt:message
-						key="function.name.oome.error3" /> </a>:
+				<a href="oome3" target="_blank"><fmt:message
+						key="function.name.oome.error3" /></a>:
 				<fmt:message key="function.description.oome.error3" />
 			</p></li>
 		<li><p>
-				<a href="../oome4" target="_blank"><fmt:message
+				<a href="oome4" target="_blank"><fmt:message
 						key="function.name.oome.error4" /></a>:
 				<fmt:message key="function.description.oome.error4" />
 			</p></li>
 		<li><p>
-				<a href="../oome5" target="_blank"><fmt:message
+				<a href="oome5" target="_blank"><fmt:message
 						key="function.name.oome.error5" /></a>:
 				<fmt:message key="function.description.oome.error5" />
 			</p></li>
 		<li><p>
-				<a href="../jnicall" target="_blank"><fmt:message
+				<a href="jnicall" target="_blank"><fmt:message
 						key="function.name.ul.error" /></a>:
 				<fmt:message key="function.description.ul.error" />
 			</p></li>
@@ -162,12 +162,12 @@
 	</p>
 	<ul>
 		<li><p>
-				<a href="../iof" target="_blank"><fmt:message
+				<a href="iof" target="_blank"><fmt:message
 						key="function.name.int.overflow" /></a>:
 				<fmt:message key="function.description.int.overflow" />
 			</p></li>
 		<li><p>
-				<a href="../roe" target="_blank"><fmt:message
+				<a href="roe" target="_blank"><fmt:message
 						key="function.name.round.off.error" /></a>:
 				<fmt:message key="function.description.round.off.error" />
 			</p></li>
@@ -182,7 +182,7 @@
 				<fmt:message key="function.description.cancellation.of.significant.digits" />
 			</p></li>
 		<li><p>
-				<a href="../lotd" target="_blank"><fmt:message
+				<a href="lotd" target="_blank"><fmt:message
 						key="function.name.loss.of.trailing.digits" /></a>:
 				<fmt:message key="function.description.loss.of.trailing.digits" />
 			</p></li>
@@ -196,42 +196,42 @@
 	</p>
 	<ul>
 		<li><p>
-				<a href="../ae" target="_blank"><fmt:message
+				<a href="ae" target="_blank"><fmt:message
 						key="function.name.artm.exception" /></a>:
 				<fmt:message key="function.description.artm.exception" />
 			</p></li>
 		<li><p>
-				<a href="../cce" target="_blank"><fmt:message
+				<a href="cce" target="_blank"><fmt:message
 						key="function.name.cc.exception" /></a>:
 				<fmt:message key="function.description.cc.exception" />
 			</p></li>
 		<li><p>
-				<a href="../cme" target="_blank"><fmt:message
+				<a href="cme" target="_blank"><fmt:message
 						key="function.name.cm.exception" /></a>:
 				<fmt:message key="function.description.cm.exception" />
 			</p></li>
 		<li><p>
-				<a href="../ioobe" target="_blank"><fmt:message
+				<a href="ioobe" target="_blank"><fmt:message
 						key="function.name.iob.exception" /></a>:
 				<fmt:message key="function.description.iob.exception" />
 			</p></li>
 		<li><p>
-				<a href="../murle" target="_blank"><fmt:message
+				<a href="murle" target="_blank"><fmt:message
 						key="function.name.murl.exception" /></a>:
 				<fmt:message key="function.description.murl.exception" />
 			</p></li>
 		<li><p>
-				<a href="../npe" target="_blank"><fmt:message
+				<a href="npe" target="_blank"><fmt:message
 						key="function.name.np.exception" /></a>:
 				<fmt:message key="function.description.np.exception" />
 			</p></li>
 		<li><p>
-				<a href="../nfe" target="_blank"><fmt:message
+				<a href="nfe" target="_blank"><fmt:message
 						key="function.name.nf.exception" /></a>:
 				<fmt:message key="function.description.nf.exception" />
 			</p></li>
 		<li><p>
-				<a href="../uhe" target="_blank"><fmt:message
+				<a href="uhe" target="_blank"><fmt:message
 						key="function.name.uh.exception" /></a>:
 				<fmt:message key="function.description.uh.exception" />
 			</p></li>