using System; using System.Collections.Generic; using System.Text; using OpenGrid.Framework.Data; namespace OpenGrid.Framework.Data.MySQL { public class MySQLGridData : IGridData { MySQLManager database; public void Initialise() { database = new MySQLManager("localhost", "db", "user", "password", "false"); } public SimProfileData GetProfileByHandle(ulong handle) { Dictionary param = new Dictionary(); param["handle"] = handle.ToString(); System.Data.IDbCommand result = database.Query("SELECT * FROM regions WHERE handle = @handle", param); System.Data.IDataReader reader = result.ExecuteReader(); SimProfileData row = database.getRow( reader ); reader.Close(); result.Dispose(); return row; } public SimProfileData GetProfileByLLUUID(libsecondlife.LLUUID uuid) { Dictionary param = new Dictionary(); param["uuid"] = uuid.ToStringHyphenated(); System.Data.IDbCommand result = database.Query("SELECT * FROM regions WHERE uuid = @uuid", param); System.Data.IDataReader reader = result.ExecuteReader(); SimProfileData row = database.getRow(reader); reader.Close(); result.Dispose(); return row; } public bool AuthenticateSim(libsecondlife.LLUUID uuid, ulong handle, string authkey) { bool throwHissyFit = false; // Should be true by 1.0 if (throwHissyFit) throw new Exception("CRYPTOWEAK AUTHENTICATE: Refusing to authenticate due to replay potential."); SimProfileData data = GetProfileByLLUUID(uuid); return (handle == data.regionHandle && authkey == data.regionSecret); } /// /// Provides a cryptographic authentication of a region /// /// This requires a security audit. /// /// /// /// /// public bool AuthenticateSim(libsecondlife.LLUUID uuid, ulong handle, string authhash, string challenge) { System.Security.Cryptography.SHA512Managed HashProvider = new System.Security.Cryptography.SHA512Managed(); System.Text.ASCIIEncoding TextProvider = new ASCIIEncoding(); byte[] stream = TextProvider.GetBytes(uuid.ToStringHyphenated() + ":" + handle.ToString() + ":" + challenge); byte[] hash = HashProvider.ComputeHash(stream); return false; } } }