Remove old file

diff --git a/bin/mk-cvepage b/bin/mk-cvepage
deleted file mode 100755 (executable)
index 08fd1da..0000000
--- a/bin/mk-cvepage
+++ /dev/null
@@ -1,173 +0,0 @@
-#! /usr/bin/python3
-#
-# Convert our XML file to a HTML file for the web page
-# let's replace vulnerabilities.xsl
-#
-
-from xml.dom import minidom
-import simplejson as json
-import codecs
-import re
-from optparse import OptionParser
-import datetime
-import sys
-
-# Versions of OpenSSL we never released, to allow us to display ranges, it's not a big deal if they
-# are not included here, it just makes things look better if they are.
-neverreleased = "1.0.0h,";
-
-def merge_affects(issue,base):
-    # let's merge the affects into a nice list which is better for Mitre text but we have to take into account our stange lettering scheme
-    prev = ""
-    anext = ""
-    alist = list()
-    vlist = list()
-    for affects in issue.getElementsByTagName('affects'): # so we can sort them
-       version = affects.getAttribute("version")
-       if (not base or base in version):
-           vlist.append(version)
-    for ver in sorted(vlist):
-       # print "version %s (last was %s, next was %s)" %(ver,prev,anext)
-       if (ver != anext):
-          alist.append([ver])
-       elif len(alist[-1]) > 1:
-          alist[-1][-1] = ver
-       else:
-          alist[-1].append(ver)
-       prev = ver
-       if (str.isdigit(ver[-1])):   # First version after 1.0.1 is 1.0.1a
-           anext = ver + "a"
-       elif (ver[-1] == "y"):
-           anext = ver[:-1] + "za"    # We ran out of letters once so y->za->zb....
-       else:
-           anext = ver[:-1]+chr(ord(ver[-1])+1) # otherwise after 1.0.1a is 1.0.1b
-       while (anext in neverreleased): # skip unreleased versions
-          anext = anext[:-1]+chr(ord(anext[-1])+1)
-
-    return ",".join(['-'.join(map(str,aff)) for aff in alist])
-
-def allyourbase(issues):
-    allbase = []
-    # find all the major versions of OpenSSL we have vulnerabilities fixed in
-    for affects in issues.getElementsByTagName('fixed'):
-        if (affects.getAttribute("base") not in allbase):
-            if ("fips" not in affects.getAttribute("base")):  # temporary hack 
-                allbase.append(affects.getAttribute("base"))
-    return sorted(allbase, reverse=True)
-
-
-parser = OptionParser()
-parser.add_option("-i", "--input", help="input vulnerability file live openssl-web/news/vulnerabilities.xml", dest="input")
-parser.add_option("-b", "--base", help="only include vulnerabilities for this major version (i.e. 1.0.1)", dest="base")
-(options, args) = parser.parse_args()
-
-# We need an output directory not stdout because we might write multiple files
-if not options.input:
-   print("needs input file")
-   parser.print_help()
-   exit();
-
-cvej = list()
-    
-with codecs.open(options.input,"r","utf-8") as vulnfile:
-    vulns = vulnfile.read()
-dom = minidom.parseString(vulns.encode("utf-8"))
-issues = dom.getElementsByTagName('issue')
-
-thisyear = ""
-allyears = []
-# Display issues latest by date first, if same date then by highest CVE
-allissues = ""
-for issue in sorted(issues, key=lambda x: (x.getAttribute('public'), x.getElementsByTagName('cve')[0].getAttribute('name')),reverse=True):
-
-    if options.base:
-        include = 0
-        for affects in issue.getElementsByTagName('fixed'):
-            if (affects.getAttribute("base") in options.base):
-                include = 1
-        if (include == 0):
-            continue
-    
-    date = issue.getAttribute('public')
-    year = date[:-4]
-    if (year != thisyear):
-        if (thisyear != ""):
-            allissues += "</dl>";
-        allissues += "<h3><a name=\"y%s\">%s</a></h3><dl>" %(year,year)
-        allyears.append(year)
-        thisyear = year
-    cve = issue.getElementsByTagName('cve')[0].getAttribute('name')
-
-    allissues += "<dt>"
-    if cve:
-        allissues += "<a href=\"https://cve.org/CVERecord?id=CVE-%s\" name=\"CVE-%s\">CVE-%s</a> " %(cve,cve,cve)
-    for adv in issue.getElementsByTagName('advisory'):
-        allissues += "<a href=\"%s\">(OpenSSL advisory)</a> " %(adv.getAttribute("url"))
-    for sev in issue.getElementsByTagName('impact'):
-        allissues += "<a href=\"/policies/secpolicy.html#%s\">[%s severity]</a> " %(sev.getAttribute('severity').lower(),sev.getAttribute('severity'))
-    t = datetime.datetime(int(date[:4]), int(date[4:6]), int(date[6:8]), 0, 0)
-    allissues += t.strftime("%d %B %Y: ")
-
-    allissues += "<a href=\"#toc\"><img src=\"/img/up.gif\"/></a></dt><dd>"
-    allissues += issue.getElementsByTagName('description')[0].childNodes[0].nodeValue.strip()
-    for reported in issue.getElementsByTagName('reported'):
-       allissues += " Reported by %s. " %(reported.getAttribute("source"))
-    allissues += "<ul>"
-
-    also = []
-    for affects in sorted(issue.getElementsByTagName('fixed'), key=lambda x: (x.getAttribute("base")), reverse=True):
-        if options.base:
-            if (affects.getAttribute("base") not in options.base):
-                also.append("OpenSSL <a href=\"vulnerabilities-%s.html#CVE-%s\">%s</a>" %( affects.getAttribute('base'), cve, affects.getAttribute('version')))
-                continue
-        allissues += "<li>Fixed in OpenSSL %s " %(affects.getAttribute('version'))
-        for git in affects.getElementsByTagName('git'):
-            if (affects.getAttribute('premium')):
-                allissues += "<a href=\"/support/contracts.html?githash=%s\">(premium support)</a> " %(git.getAttribute('hash'))
-            else:
-                allissues += "<a href=\"https://github.com/openssl/openssl/commit/%s\">(git commit)</a> " %(git.getAttribute('hash'))
-        allissues += "(Affected "+merge_affects(issue,affects.getAttribute("base"))+")"       
-        allissues += "</li>"
-    if also:
-        allissues += "<li>This issue was also addressed in "+ ", ".join( also)
-    allissues += "</ul></dd>"
-
-preface = "<!-- do not edit this file it is autogenerated, edit vulnerabilities.xml -->"
-bases = []
-for base in allyourbase(dom):
-    if (options.base and base in options.base):
-        bases.append("%s" %(base))
-    else:
-        bases.append( "<a href=\"vulnerabilities-%s.html\">%s</a>" %(base,base))
-preface += "<p>Show issues fixed only in OpenSSL " + ", ".join(bases)
-if options.base:
-    preface += ", or <a href=\"vulnerabilities.html\">all versions</a></p>"
-    preface += "<h2>Fixed in OpenSSL %s</h2>" %(options.base)
-else:
-    preface += "</p>"
-for statement in dom.getElementsByTagName('statement'):
-    if (statement.getAttribute("base") in (options.base or "none")):
-        preface += "<p>"+statement.firstChild.data.strip()+"</p>"
-if len(allyears)>1: # If only vulns in this year no need for the year table of contents
-    preface += "<p><a name=\"toc\">Jump to year: </a>" + ", ".join( "<a href=\"#y%s\">%s</a>" %(year,year) for year in allyears)
-preface += "</p>"
-if allissues != "":
-    preface += allissues + "</dl>"
-else:
-    preface += "No vulnerabilities fixed"
-
-nonissues = ""
-for nonissue in dom.getElementsByTagName("nonissue"):
-    if (not options.base or nonissue.getAttribute("base") in (options.base or "none")):
-        cve = "CVE-"+nonissue.getAttribute("cve")
-        ref = nonissue.getAttribute("ref")
-        nonissues += "<li><a href=\"https://cve.org/CVERecord?id=%s\" name=\"%s\">%s</a>: " %(cve,cve,cve)        
-        nonissues += nonissue.firstChild.data.strip()
-        if (ref):
-            nonissues += ": <a href=\""+ref+"\">"+ref+"</a>"
-        nonissues +="</li>"
-if (nonissues != ""):
-    preface += "<h3>Not Vulnerabilities</h3><ul>" + nonissues + "</ul>"
-    
-sys.stdout.reconfigure(encoding='utf-8')
-sys.stdout.write(preface)