Review

finding-3

/mubench/checkouts/chensun/cf23b99/build/CS5430/src/database/DatabaseDBA.java

createAcappellaGroup(Connection, String, String, String, String)

class DatabaseDBA {
	/**ATOMIC DATABASE UPDATE
	 * Inserts Acappella Group, and the new user as an SA for this group.
	 * Used as a DBA Function.
	 * 
	 * Since this function is intended to be used server side, it does not
	 * return anything. It prints things itself.
	 */
	public static void createAcappellaGroup(Connection conn, String aname, String username, String pwhash, String answerStore) {

		String insertACappella = "INSERT INTO main.acappella VALUES (null, ?)";
		String getACappellaID = "SELECT aid FROM main.acappella WHERE aname = ?";
		String insertSA = "INSERT INTO main.users VALUES (?, ?, ?, 'sa', ?, ?)";
		
		PreparedStatement pstmtInsertAC = null;
		PreparedStatement pstmtGetID = null;
		PreparedStatement pstmtInsertSA = null;
		int success;
		ResultSet rs = null;
		
		try {
			conn.setAutoCommit(false);
			pstmtInsertAC = conn.prepareStatement(insertACappella);
			pstmtInsertAC.setString(1, aname);
			success = pstmtInsertAC.executeUpdate();
			if (success == 1) {
				pstmtGetID = conn.prepareStatement(getACappellaID);
				pstmtGetID.setString(1, aname);
				rs = pstmtGetID.executeQuery();
				if (rs.next()) {
					//need the ID for insertion into the user DB
					int aid = rs.getInt("aid");
					pstmtInsertSA = conn.prepareStatement(insertSA);
					pstmtInsertSA.setString(1, username);
					pstmtInsertSA.setString(2, SharedKeyCrypto.encrypt(pwhash));
					pstmtInsertSA.setInt(3, aid);
					pstmtInsertSA.setString(4, SharedKeyCrypto.encrypt(answerStore));
					
					//create checksum to add as 5th element
					byte[] userBytes = username.getBytes("UTF8");
					byte[] pwBytes = pwhash.getBytes("UTF8");
					byte[] ansBytes = answerStore.getBytes("UTF8");
					
					byte[] toChecksum = new byte[userBytes.length + pwBytes.length + ansBytes.length];
					System.arraycopy(userBytes, 0, toChecksum, 0, userBytes.length);
					System.arraycopy(pwBytes, 0, toChecksum, userBytes.length, pwBytes.length);
					System.arraycopy(ansBytes, 0, toChecksum, pwBytes.length + userBytes.length, ansBytes.length);
					
					pstmtInsertSA.setString(5, CryptoUtil.encode(Hash.generateChecksum(toChecksum)));

					success = pstmtInsertSA.executeUpdate();
					if (success == 1) {
						conn.commit();
						System.out.println("Group & SA creation success");
					}
					else {
						System.out.println("Error creating the new user");
						conn.rollback();
					}
				}
				else {
					System.out.println("Error fetching the new group's id");
					conn.rollback();
				}
			}
			else {
				System.out.println("Error creating the new group");
				conn.rollback();
			}
		}
		catch (SQLException e) {
			DBManager.rollback(conn);
			if (e.getErrorCode() == DBManager.DUPLICATE_KEY_CODE) {
				System.out.println("Error: Duplicate user being inserted into the database, or A Cappella group already exists.");
			}
			else {
				e.printStackTrace();
				System.out.println("Error: Database error during creation of group / user (stack trace above)");
			}
		} catch (UnsupportedEncodingException e) {
			//never should happen
		}
		finally {
			DBManager.closeResultSet(rs);
			DBManager.closePreparedStatement(pstmtInsertAC);
			DBManager.closePreparedStatement(pstmtGetID);
			DBManager.closePreparedStatement(pstmtInsertSA);
		}
	}

}