Merge pull request rxwx#3 from mgeeky/master

Added exception handling in case of a corrupted database exfiltrated.
noostudent · Jul 5, 2021 · ebfc0ee · ebfc0ee
2 parents cfeb858 + 6ebff27
commit ebfc0ee
Showing 1 changed file with 97 additions and 10 deletions.
diff --git a/ChloniumUI/ChloniumUI/MainWindow.xaml.cs b/ChloniumUI/ChloniumUI/MainWindow.xaml.cs
@@ -95,6 +95,7 @@ private void Import_Click(object sender, RoutedEventArgs e)
 
             string backupFile;
             List<Item> items = new List<Item>();
+            int count = 0;
 
             switch (dbType)
             {
@@ -109,6 +110,7 @@ private void Import_Click(object sender, RoutedEventArgs e)
                     {
                         c.encrypted_value = crypto.Encrypt(c.decrypted_value);
                     }
+                    count = items.Count();
                     ImportCookies(items);
                     break;
                 case "logins":
@@ -123,12 +125,13 @@ private void Import_Click(object sender, RoutedEventArgs e)
                     {
                         i.password_value = crypto.Encrypt(i.decrypted_password_value);
                     }
+                    count = items.Count();
                     ImportLogins(items);
                     break;
                 default:
                     return;
             }
-            MessageBox.Show("Imported!");
+            MessageBox.Show($"Imported {count} {dbType}!");
         }
 
         private void File_Click(object sender, RoutedEventArgs e)
@@ -227,6 +230,8 @@ private void ImportCookies(List<Item> items)
             SQLiteCommand cmd = new SQLiteCommand("DELETE FROM cookies;", con);
             cmd.ExecuteNonQuery();
 
+            int exceptionsCount = 0;
+
             foreach (Cookie c in items)
             {
                 cmd = new SQLiteCommand("INSERT INTO cookies (creation_utc, host_key, name, value, " +
@@ -257,7 +262,11 @@ private void ImportCookies(List<Item> items)
                 }
                 catch (Exception ex)
                 {
-                    MessageBox.Show(ex.Message);
+                    if (exceptionsCount < 3)
+                    {
+                        MessageBox.Show(ex.Message);
+                        exceptionsCount++;
+                    }
                 }
             }
         }
@@ -272,6 +281,8 @@ private void ImportLogins(List<Item> items)
             SQLiteCommand cmd = new SQLiteCommand("DELETE FROM logins;", con);
             cmd.ExecuteNonQuery();
 
+            int exceptionsCount = 0;
+
             foreach (Login c in items)
             {
                 cmd = new SQLiteCommand("INSERT INTO logins (origin_url, action_url, username_element, username_value, " +
@@ -314,7 +325,11 @@ private void ImportLogins(List<Item> items)
                 }
                 catch (Exception ex)
                 {
-                    MessageBox.Show(ex.Message);
+                    if (exceptionsCount < 3)
+                    {
+                        MessageBox.Show(ex.Message);
+                        exceptionsCount++;
+                    }
                 }
             }
         }
@@ -338,11 +353,34 @@ private List<Item> ExportCookies()
             var cmd = new SQLiteCommand(stm, con);
             SQLiteDataReader reader = cmd.ExecuteReader();
 
+            int exceptionsCount = 0;
+
             if (reader.HasRows)
             {
-                while (reader.Read())
+                bool ret = true;
+                int errCount = 0;
+
+                while (ret)
                 {
-                    byte[] encrypted_value = (byte[])reader["encrypted_value"];
+                    byte[] encrypted_value;
+                    try
+                    {
+                        ret = reader.Read();
+                        encrypted_value = (byte[])reader["encrypted_value"];
+                    }
+                    catch (Exception e)
+                    {
+                        errCount++;
+
+                        if (errCount > 3)
+                        {
+                            MessageBox.Show("Some cookies could not be imported.", "Warning");
+                            break;
+                        }
+
+                        continue;
+                    }
+
                     byte[] decrypted_value = null;
 
                     if (encrypted_value[0] == 'v' && encrypted_value[1] == '1' && encrypted_value[2] == '0')
@@ -353,7 +391,11 @@ private List<Item> ExportCookies()
                         }
                         catch (Exception e)
                         {
-                            MessageBox.Show(e.Message);
+                            if (exceptionsCount < 3)
+                            {
+                                MessageBox.Show(e.Message);
+                                exceptionsCount++;
+                            }
                             continue;
                         }
                     }
@@ -389,7 +431,19 @@ private List<Item> ExportCookies()
             {
                 Console.WriteLine("No rows found.");
             }
-            reader.Close();
+
+            try
+            {
+                reader.Close();
+            }
+            catch (Exception e)
+            { }
+
+            if(items.Count() == 0)
+            {
+                MessageBox.Show("No cookies were exported from specified input database!", "Error");
+            }
+
             return items;
         }
 
@@ -409,11 +463,34 @@ private List<Item> ExportLogins()
             var cmd = new SQLiteCommand(stm, con);
             SQLiteDataReader reader = cmd.ExecuteReader();
 
+            int exceptionsCount = 0;
+
             if (reader.HasRows)
             {
-                while (reader.Read())
+                bool ret = true;
+                int errCount = 0;
+
+                while (ret)
                 {
-                    byte[] encrypted_value = (byte[])reader["password_value"];
+                    byte[] encrypted_value;
+                    try
+                    {
+                        ret = reader.Read();
+                        encrypted_value = (byte[])reader["password_value"];
+                    }
+                    catch (Exception e)
+                    {
+                        errCount++;
+
+                        if (errCount > 3)
+                        {
+                            MessageBox.Show("Some logins could not be imported.", "Warning");
+                            break;
+                        }
+
+                        continue;
+                    }
+
                     byte[] decrypted_value = null;
 
                     if (encrypted_value[0] == 'v' && encrypted_value[1] == '1' && encrypted_value[2] == '0')
@@ -424,7 +501,11 @@ private List<Item> ExportLogins()
                         }
                         catch (Exception e)
                         {
-                            MessageBox.Show(e.Message);
+                            if (exceptionsCount < 3)
+                            {
+                                MessageBox.Show(e.Message);
+                                exceptionsCount++;
+                            }
                             continue;
                         }
                     }
@@ -471,6 +552,12 @@ private List<Item> ExportLogins()
                 Console.WriteLine("No rows found.");
             }
             reader.Close();
+
+            if(items.Count() == 0)
+            {
+                MessageBox.Show("No logins were exported from specified input database!", "Error");
+            }
+
             return items;
         }