Skip to content
Snippets Groups Projects

scripts: add CVE conversion scripts

Merged scripts: add CVE conversion scripts
mrybczyn/oniro:feature/cve-scripts into kirkstone
Merged Marta Rybczynska requested to merge mrybczyn/oniro:feature/cve-scripts into kirkstone
Compare
and
2 files
+ 272
0
Compare changes
  • Side-by-side
  • Inline
Files
2
scripts/cve-json-to-csv.py 0 → 100644
+ 147
0
 
# SPDX-FileCopyrightText: Huawei Inc.
 
#
 
# SPDX-License-Identifier: Apache-2.0
 
 
# CVE-check example script
 
# Convert the cve-check JSON output to a CSV file
 
 
import sys
 
import getopt
 
 
infile = "in.json"
 
outfile = "out.csv"
 
show_all = False
 
 
 
def show_syntax_and_exit(code):
 
"""
 
Show the program syntax and exit with an errror
 
Arguments:
 
code: the error code to return
 
"""
 
print("Syntax: %s [-h][-i inputfile][-o outputfile] [-a]" % __name__)
 
print("Default files: in.json and out.csv")
 
print("Use -a or -all to list all issues, otherwise we filter only unpatched ones")
 
sys.exit(code)
 
 
 
def exit_error(code, message):
 
"""
 
Show the error message and exit with an errror
 
Arguments:
 
code: the error code to return
 
message: the message to show
 
"""
 
print("Error: %s" % message)
 
sys.exit(code)
 
 
 
def parse_args(argv):
 
"""
 
Parse the program arguments, put options in global variables
 
Arguments:
 
argv: program arguments
 
"""
 
global infile, outfile, show_all
 
try:
 
opts, args = getopt.getopt(argv, "hi:o:a", ["input", "output"])
 
except getopt.GetoptError:
 
show_syntax_and_exit(1)
 
for opt, arg in opts:
 
if opt == "-h":
 
show_syntax_and_exit(0)
 
elif opt in ("-i", "--input"):
 
infile = arg
 
elif opt in ("-o", "--output"):
 
outfile = arg
 
elif opt in ("-a", "--all"):
 
show_all = True
 
 
 
def load_json(filename):
 
"""
 
Load the JSON file, return the resulting dictionary
 
Arguments:
 
filename: the file to open
 
Returns:
 
Parsed file as a dictionary
 
"""
 
import json
 
 
out = {}
 
try:
 
with open(filename, "r") as f:
 
out = json.load(f)
 
except FileNotFoundError:
 
exit_error(1, "Input file (%s) not found" % (filename))
 
except json.decoder.JSONDecodeError as error:
 
exit_error(1, "Malformed JSON file: %s" % str(error))
 
return out
 
 
 
def write_csv(filename, data, unpatched_only):
 
"""
 
Write the resulting CSV with one line for each package
 
Arguments:
 
filename: the file to write to
 
data: dictionary from parsing the JSON file
 
unpatched_only: True if we want only unpatched issues, False otherwise
 
Returns:
 
Parsed file as a dictionary
 
"""
 
if not "version" in data or data["version"] != "1":
 
exit_error(1, "Unrecognized format version number")
 
if not "package" in data:
 
exit_error(1, "Mandatory 'package' key not found")
 
 
lines = ""
 
for package in data["package"]:
 
keys_in_package = {"name", "layer", "version", "issue"}
 
if keys_in_package - package.keys():
 
exit_error(
 
1,
 
"Missing a mandatory key in package: %s"
 
% (keys_in_package - package.keys()),
 
)
 
 
package_name = package["name"]
 
layer = package["layer"]
 
package_version = package["version"]
 
 
for issue in package["issue"]:
 
keys_in_issue = {"id", "scorev2", "scorev3", "vector", "status"}
 
if keys_in_issue - issue.keys():
 
exit_error(
 
1,
 
"Missing mandatory keys %s in 'issue' for the package '%s'"
 
% (keys_in_issue - issue.keys(), package_name),
 
)
 
 
cve_id = issue["id"]
 
scorev2 = issue["scorev2"]
 
scorev3 = issue["scorev3"]
 
vector = issue["vector"]
 
status = issue["status"]
 
if (unpatched_only == False) or (status == "Unpatched"):
 
lines += "%s;%s;%s;%s;%s;%s;%s\n" % (
 
layer,
 
package_name,
 
package_version,
 
cve_id,
 
scorev2,
 
scorev3,
 
vector,
 
)
 
 
with open(filename, "w") as f:
 
f.write(lines)
 
 
 
def main(argv):
 
parse_args(argv)
 
data = load_json(infile)
 
write_csv(outfile, data, not show_all)
 
 
 
if __name__ == "__main__":
 
main(sys.argv[1:])

Copyright © Eclipse Foundation, Inc. All Rights Reserved.     Privacy Policy | Terms of Use | Copyright Agent