~gv6SSKrSSKrSSKJr "SS\5rg)N)SoSMapcd\rSrSrSr/SQr0rSr/SQrSr Sr Sr S r S r S rS rS rSrSrg)SoSIPMapaA mapping store for IP addresses Each IP address added to this map is chcked for subnet membership. If that subnet already exists in the map, then IP addresses are deterministically generated sequentially within that subnet. For example, if a given IP is matched to subnet 192.168.1.0/24 then 192.168.1 may be obfuscated to 100.11.12.0/24. Each IP address in the original 192.168.1.0/24 subnet will then be assigned an address in 100.11.12.0/24 sequentially, such as 100.11.12.1, 100.11.12.2, etc... Internally, the ipaddress library is used to manipulate the address objects however, when retrieved by SoSCleaner any values will be strings. )z127.*z::1z0\.(.*)?z1\.(.*)?z8.8.8.8z8.8.4.4z 169.254.*z255.*d)127169172192FcURR5H7n[U5RSSS9SURS5S:XdM7 g g)zThere are multiple ways in which an ip address could be handed to us in a way where we're matching against a previously obfuscated address. Here, match the ip address to any of the obfuscated addresses we've already created /)maxsplitrTF)datasetvaluesstrsplit)selfipaddr_ips =/usr/lib/python3/dist-packages/sos/cleaner/mappings/ip_map.py ip_in_datasetSoSIPMap.ip_in_dataset1sQ<<&&(C6{  q 1!4 #q8II)cSnURU5(a URSRU55nXR;aURU$UR U5(dUR U5(aU$SU;aOURR 5H1up4URU5(dMURS5Ss $ URU5$)zoEnsure that when requesting an obfuscated address, we return a str object instead of an IPv(4|6)Address object )r =])r r) startswithlstripjoinr ignore_itemritemsradd)ritem filt_startkeyvalues rget SoSIPMap.get=s* ??: & &;;rwwz23D << <<% %   D ! !T%7%7%=%=K d?"ll002 >>$'' ;;s+A..3 xx~rc/nURHHnURUR:XaX1l gURU;dM7UR U5 MJ U(aUR SSS9 USUlgg)aDetermine if a given address is in a subnet of an already obfuscated network and if it is, then set the address' network to the network object we're tracking. This allows us to match ip addresses with or without a CIDR notation and maintain proper network relationships. NcUR$)N) prefixlen)ns r;SoSIPMap.set_ip_cidr_from_existing_subnet..hsAKKrT)r(reverser) _networksipbroadcast_addressnetworkappendsort)raddrnetsnets r set_ip_cidr_from_existing_subnet)SoSIPMap.set_ip_cidr_from_existing_subnetVsn >>Cww#///" ww#~ C "  II/I >7DL rc6[R"U5nUR n[ UR5S:XaURU5 OURU5 URU5$![a URR U5 ef=f)zYGiven an IP address, sanitize it to an obfuscated network or host address as appropriate z255.255.255.255) ipaddress ip_interface ValueErrorignore_matchesr7r6rnetmaskr<sanitize_networksanitize_ipaddr)rr&r9r6s r sanitize_itemSoSIPMap.sanitize_itemks  ))$/D ,, w #4 4  1 1$ 7  ! !' *##D))!     & &t ,  s A11'BcFXR;aURU5 gg)zoObfuscate the network address provided, and if there are host bits in the address then obfuscate those as well N)r3_new_obfuscated_network)rr6s rrDSoSIPMap.sanitize_networks! .. (  ( ( 1 )rcURUR;aURURnURURR:Xa[ UR5$UR 5H5nUR U5(aM[ U5SUR3s $ UR5$)zEObfuscate the IP address within the known obfuscated network r ) r6r3r4r5rhostsrr._new_obfuscated_single_address)rr9 _obf_networkrs rrESoSIPMap.sanitize_ipaddrs <<4>> )>>$,,7L ww$,,888<99::$))+))#.."#hZq)?)?(@AA ,2244rctSnU"5nX RR5;aUR5$U$)Nc/n[SS5H)nUR[R"SS55 M+ USSUSSUSSUS3$) Nr c.r)ranger7randomrandint)_octets_s r _gen_address=SoSIPMap._new_obfuscated_single_address.._gen_addresss[G1a[v~~b"56!aj\71:,a |1WQZLI Ir)rrrM)rr]_addrs rrM'SoSIPMap._new_obfuscated_single_addresss8 J  LL'') )668 8 rc Sn[U[R5(aURUR;aU=RS- slURS3nUR R S5Sn[R"USU35nU=RS- sl[U[R5(aU(a0X RU'[U5UR[U5'gg)zGenerate an obfuscated network address for the network address given which will allow us to maintain network relationships without divulging actual network details Positional arguments: :param network: An ipaddress.IPv{4|6)Network object Nrz.0.0.0r ) isinstancer? IPv4Networknetwork_first_octetskip_network_octets with_netmaskr IPv6Networkr3rr)rr6rN _obf_address _obf_masks rrI SoSIPMap._new_obfuscated_networks gy44 5 5''4+C+CC((A-("667v>L,,2237:I$00L>9+1NOL  $ $ ) $ gy44 5 5  &2NN7 #),\):DLLW & rN)__name__ __module__ __qualname____firstlineno____doc__rBr3rdrecompile_regexesrr*r<rFrDrErMrI__static_attributes__rkrrrrsN  NI6O 2#**2250 ;rr)r?rYsos.cleaner.mappingsrrrkrrrts 'x;vx;r