-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathutils.py
116 lines (92 loc) · 3.43 KB
/
utils.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
"""Utility functions for AWS Security Group Mapper.
This module provides utility functions for the AWS Security Group Mapper project,
including CIDR handling, logging configuration, and port formatting.
"""
import logging
import ipaddress
from typing import Dict, List, Set, Optional
from config import config # Import config for CIDR settings
# Configure logging with a standardized format
logging.basicConfig(
level=logging.INFO,
format="%(asctime)s - %(name)s - %(levelname)s - %(message)s"
)
logger = logging.getLogger(__name__)
def get_friendly_cidr_name(cidr: str) -> str:
"""Get a friendly name for a CIDR block.
Converts CIDR notation into human-readable names using predefined mappings
and network type detection.
Args:
cidr: CIDR block string (e.g., "10.0.0.0/8")
Returns:
str: A friendly name for the CIDR block, including the original CIDR
in parentheses for reference
"""
# Get common CIDR names from config
common_cidrs = config.common_cidrs
if cidr in common_cidrs:
return f"{common_cidrs[cidr]} ({cidr})"
try:
network = ipaddress.ip_network(cidr)
if network.is_private:
return f"Private Network ({cidr})"
if network.is_global:
return f"Public Network ({cidr})"
return cidr
except ValueError:
return cidr
def setup_logging(debug: bool = False) -> None:
"""Configure logging level based on debug flag.
Args:
debug: If True, sets logging level to DEBUG; otherwise, uses INFO level
"""
if debug:
logging.getLogger().setLevel(logging.DEBUG)
def parse_cidr(cidr: str) -> Optional[Dict]:
"""Parse CIDR block and return network information.
Args:
cidr: CIDR block string to parse (e.g., "192.168.0.0/24")
Returns:
Optional[Dict]: Dictionary containing network information or None if invalid:
- network: String representation of the network
- netmask: Network mask
- num_addresses: Number of addresses in the network
- is_private: Boolean indicating if network is private
"""
try:
network = ipaddress.ip_network(cidr)
return {
"network": str(network),
"netmask": str(network.netmask),
"num_addresses": network.num_addresses,
"is_private": network.is_private,
}
except ValueError as e:
logger.error("Invalid CIDR block: %s - %s", cidr, str(e))
return None
def format_ports(from_port: int, to_port: int) -> str:
"""Format port range for display.
Args:
from_port: Starting port number
to_port: Ending port number
Returns:
str: Formatted port range string. If from_port equals to_port,
returns single port number as string.
"""
if from_port == to_port:
return str(from_port)
return f"{from_port}-{to_port}"
def get_unique_cidrs(security_groups: List[Dict]) -> Set[str]:
"""Extract unique CIDR blocks from security groups.
Args:
security_groups: List of security group dictionaries
Returns:
Set[str]: Set of unique CIDR blocks found in security groups
"""
cidrs = set()
for sg in security_groups:
for permission in sg.get("IpPermissions", []):
for ip_range in permission.get("IpRanges", []):
if "CidrIp" in ip_range:
cidrs.add(ip_range["CidrIp"])
return cidrs