nuclei/pkg/protocols/common/randomip/randomip.go

package randomip

import (
	"crypto/rand"
	"net"

	"github.com/pkg/errors"
	iputil "github.com/projectdiscovery/utils/ip"
	randutil "github.com/projectdiscovery/utils/rand"
)

const (
	maxIterations = 255
)

func GetRandomIPWithCidr(cidrs ...string) (net.IP, error) {
	if len(cidrs) == 0 {
		return nil, errors.Errorf("must specify at least one cidr")
	}

	randIdx, err := randutil.IntN(len(cidrs))
	if err != nil {
		return nil, err
	}

	cidr := cidrs[randIdx]

	if !iputil.IsCIDR(cidr) {
		return nil, errors.Errorf("%s is not a valid cidr", cidr)
	}

	baseIp, ipnet, err := net.ParseCIDR(cidr)
	if err != nil {
		return nil, err
	}

	switch {
	case ipnet.Mask[len(ipnet.Mask)-1] == 255:
		return baseIp, nil
	case iputil.IsIPv4(baseIp.String()):
		return getRandomIP(ipnet, 4), nil
	case iputil.IsIPv6(baseIp.String()):
		return getRandomIP(ipnet, 16), nil
	default:
		return nil, errors.New("invalid base ip")
	}
}

func getRandomIP(ipnet *net.IPNet, size int) net.IP {
	ip := ipnet.IP
	var iteration int

	for iteration < maxIterations {
		iteration++
		ones, _ := ipnet.Mask.Size()
		quotient := ones / 8
		remainder := ones % 8
		var r []byte
		switch size {
		case 4, 16:
			r = make([]byte, size)
		default:
			return ip
		}

		_, err := rand.Read(r)
		if err != nil {
			break
		}

		for i := 0; i <= quotient; i++ {
			if i == quotient {
				shifted := byte(r[i]) >> remainder
				r[i] = ipnet.IP[i] + (^ipnet.IP[i] & shifted)
			} else {
				r[i] = ipnet.IP[i]
			}
		}

		ip = r

		if !ip.Equal(ipnet.IP) {
			break
		}
	}

	return ip
}
random ip helper function 2022-03-21 17:39:10 -07:00			`package randomip`

			`import (`
Adding interact keepalive to reduce server-side id pruning (#3680) * adding interact keepalive + improving init logic * dep update * go version update * readme update * version bump * fixing invalid format --------- Co-authored-by: Sandeep Singh <sandeep@projectdiscovery.io> Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com> 2023-05-20 22:26:13 +02:00			`"crypto/rand"`
random ip helper function 2022-03-21 17:39:10 -07:00			`"net"`
small code refactor 2022-03-22 15:16:22 +01:00
			`"github.com/pkg/errors"`
Use utils helpers libraries (#2809) (#2810) * Use utils helpers libraries (#2809) * Use utils helpers libraries (#2809) 2022-11-06 21:24:23 +01:00			`iputil "github.com/projectdiscovery/utils/ip"`
Adding interact keepalive to reduce server-side id pruning (#3680) * adding interact keepalive + improving init logic * dep update * go version update * readme update * version bump * fixing invalid format --------- Co-authored-by: Sandeep Singh <sandeep@projectdiscovery.io> Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com> 2023-05-20 22:26:13 +02:00			`randutil "github.com/projectdiscovery/utils/rand"`
random ip helper function 2022-03-21 17:39:10 -07:00			`)`

small code refactor 2022-03-22 15:16:22 +01:00			`const (`
			`maxIterations = 255`
			`)`
random ip helper function 2022-03-21 17:39:10 -07:00
Squashed commit of the following: commit b590de2de14923e4cb35dd19845e12833a4ccbfa Author: Xavier Stevens <xstevens@users.noreply.github.com> Date: Wed Mar 23 08:29:37 2022 -0700 Updated rand_ip to use variadic args commit ea883be8c0aa56174a1301252129289334659f3f Author: Xavier Stevens <xstevens@users.noreply.github.com> Date: Tue Mar 22 16:59:19 2022 -0700 Updated rand_ip function to handle multiple CIDRs 2022-03-23 08:37:05 -07:00			`func GetRandomIPWithCidr(cidrs ...string) (net.IP, error) {`
			`if len(cidrs) == 0 {`
			`return nil, errors.Errorf("must specify at least one cidr")`
			`}`
Adding interact keepalive to reduce server-side id pruning (#3680) * adding interact keepalive + improving init logic * dep update * go version update * readme update * version bump * fixing invalid format --------- Co-authored-by: Sandeep Singh <sandeep@projectdiscovery.io> Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com> 2023-05-20 22:26:13 +02:00
			`randIdx, err := randutil.IntN(len(cidrs))`
			`if err != nil {`
			`return nil, err`
			`}`

			`cidr := cidrs[randIdx]`
Squashed commit of the following: commit b590de2de14923e4cb35dd19845e12833a4ccbfa Author: Xavier Stevens <xstevens@users.noreply.github.com> Date: Wed Mar 23 08:29:37 2022 -0700 Updated rand_ip to use variadic args commit ea883be8c0aa56174a1301252129289334659f3f Author: Xavier Stevens <xstevens@users.noreply.github.com> Date: Tue Mar 22 16:59:19 2022 -0700 Updated rand_ip function to handle multiple CIDRs 2022-03-23 08:37:05 -07:00
small code refactor 2022-03-22 15:16:22 +01:00			`if !iputil.IsCIDR(cidr) {`
			`return nil, errors.Errorf("%s is not a valid cidr", cidr)`
random ip helper function 2022-03-21 17:39:10 -07:00			`}`

small code refactor 2022-03-22 15:16:22 +01:00			`baseIp, ipnet, err := net.ParseCIDR(cidr)`
			`if err != nil {`
			`return nil, err`
random ip helper function 2022-03-21 17:39:10 -07:00			`}`

small code refactor 2022-03-22 15:16:22 +01:00			`switch {`
build: bump all direct modules (#6290) * chore: fix non-constant fmt string in call Signed-off-by: Dwi Siswanto <git@dw1.io> * build: bump all direct modules Signed-off-by: Dwi Siswanto <git@dw1.io> * chore(hosterrorscache): update import path Signed-off-by: Dwi Siswanto <git@dw1.io> * fix(charts): break changes Signed-off-by: Dwi Siswanto <git@dw1.io> * build: pinned `github.com/zmap/zcrypto` to v0.0.0-20240512203510-0fef58d9a9db Signed-off-by: Dwi Siswanto <git@dw1.io> * chore: golangci-lint auto fixes Signed-off-by: Dwi Siswanto <git@dw1.io> * chore: satisfy lints Signed-off-by: Dwi Siswanto <git@dw1.io> * build: migrate `github.com/xanzy/go-gitlab` => `gitlab.com/gitlab-org/api/client-go` Signed-off-by: Dwi Siswanto <git@dw1.io> * feat(json): update build constraints Signed-off-by: Dwi Siswanto <git@dw1.io> * chore: dont panicking on close err Signed-off-by: Dwi Siswanto <git@dw1.io> --------- Signed-off-by: Dwi Siswanto <git@dw1.io> 2025-07-01 00:40:44 +07:00			`case ipnet.Mask[len(ipnet.Mask)-1] == 255:`
Added unit test for GetRandomIPWithCidr Fixed an issue with handling non-zero based networks Fixed an issue handling network addresses with single IPs 2022-10-03 18:30:55 -05:00			`return baseIp, nil`
small code refactor 2022-03-22 15:16:22 +01:00			`case iputil.IsIPv4(baseIp.String()):`
			`return getRandomIP(ipnet, 4), nil`
			`case iputil.IsIPv6(baseIp.String()):`
			`return getRandomIP(ipnet, 16), nil`
			`default:`
			`return nil, errors.New("invalid base ip")`
			`}`
random ip helper function 2022-03-21 17:39:10 -07:00			`}`

small code refactor 2022-03-22 15:16:22 +01:00			`func getRandomIP(ipnet *net.IPNet, size int) net.IP {`
			`ip := ipnet.IP`
			`var iteration int`
random ip helper function 2022-03-21 17:39:10 -07:00
small code refactor 2022-03-22 15:16:22 +01:00			`for iteration < maxIterations {`
			`iteration++`
			`ones, _ := ipnet.Mask.Size()`
			`quotient := ones / 8`
			`remainder := ones % 8`
			`var r []byte`
			`switch size {`
			`case 4, 16:`
			`r = make([]byte, size)`
			`default:`
			`return ip`
			`}`
random ip helper function 2022-03-21 17:39:10 -07:00
Adding support for code templates (#2930) * Adding support for code templates * adding support for python, powershell and echo (test) * removing debug code * introducing command + trivial trust store mechanism * updating tests * adding basic tests * removing deprecated oracle * mod tidy * adding signature proto with debug prints * removing debug code * fixing test * fixing param order * improving test conditional build * disable file+offlinehttp+code with cloud * adding env vars * removing debug code * reorganizing test folders * adding code template test prototype with dummy priv/pub keys * bump go to 1.20 * fixing go version * fixing lint errors * adding fatal on pub-key test failure * switching to ecdsa asn1 * removing unused signature * fixing signature * adding more tests * extending core with engine args + powershell win test * adding unsigned code test * skip template signing in particular test case * improving test coverage * refactoring key names + adding already signed algo * removing debug code * fixing syntax * fixing lint issues * removing test template * fixing dns tests path * output fmt * adding interact * fixing lint issues * adding -sign cli helper * fixing nil pointer + parse inline keys * making rsa default * adding code prot. ref * moving file to correct loc * moving test * Issue 3339 headless fuzz (#3790) * Basic headless fuzzing * Remove debug statements * Add integration tests * Update template * Fix recognize payload value in matcher * Update tempalte * use req.SetURL() --------- Co-authored-by: Tarun Koyalwar <tarun@projectdiscovery.io> * Auto Generate Syntax Docs + JSONSchema [Fri Jun 9 00:23:32 UTC 2023] :robot: * Add headless header and status matchers (#3794) * add headless header and status matchers * rename headers as header * add integration test for header+status * fix typo * add retry to py-interactsh integration test --------- Co-authored-by: Sandeep Singh <sandeep@projectdiscovery.io> Co-authored-by: Shubham Rasal <shubham@projectdiscovery.io> Co-authored-by: Tarun Koyalwar <tarun@projectdiscovery.io> Co-authored-by: GitHub Action <action@github.com> Co-authored-by: Dogan Can Bakir <65292895+dogancanbakir@users.noreply.github.com> Co-authored-by: Tarun Koyalwar <45962551+tarunKoyalwar@users.noreply.github.com> 2023-06-09 17:24:24 +02:00			`_, err := rand.Read(r)`
			`if err != nil {`
			`break`
			`}`
random ip helper function 2022-03-21 17:39:10 -07:00
small code refactor 2022-03-22 15:16:22 +01:00			`for i := 0; i <= quotient; i++ {`
			`if i == quotient {`
			`shifted := byte(r[i]) >> remainder`
Added unit test for GetRandomIPWithCidr Fixed an issue with handling non-zero based networks Fixed an issue handling network addresses with single IPs 2022-10-03 18:30:55 -05:00			`r[i] = ipnet.IP[i] + (^ipnet.IP[i] & shifted)`
small code refactor 2022-03-22 15:16:22 +01:00			`} else {`
			`r[i] = ipnet.IP[i]`
			`}`
random ip helper function 2022-03-21 17:39:10 -07:00			`}`

small code refactor 2022-03-22 15:16:22 +01:00			`ip = r`
random ip helper function 2022-03-21 17:39:10 -07:00
small code refactor 2022-03-22 15:16:22 +01:00			`if !ip.Equal(ipnet.IP) {`
			`break`
			`}`
random ip helper function 2022-03-21 17:39:10 -07:00			`}`

			`return ip`
			`}`