-
Notifications
You must be signed in to change notification settings - Fork 83
102 lines (94 loc) · 3.64 KB
/
build-list.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
name: Build Database Update
on:
push:
paths:
- 'input/**'
- '.github/workflows/build-list.yml'
schedule:
- cron: '45 8 * * *'
workflow_dispatch:
jobs:
build_and_commit:
runs-on: ubuntu-latest
strategy:
fail-fast: false
matrix:
list:
- name: vpn
validate_low: 850000
validate_high: 1000000
- name: datacenter
validate_low: 100000000
validate_high: 150000000
steps:
- uses: actions/checkout@v2
- name: Dependencies
run: |
sudo apt-get install ipcalc
- name: Downloading ASN database
run: |
curl https://iptoasn.com/data/ip2asn-v4.tsv.gz | gzip -d > /tmp/asndb.tsv
- name: ASN -> IP Range
run: |
cat "$GITHUB_WORKSPACE/input/${{matrix.list.name}}/ASN.txt" | grep -v '^#' | awk '{print $1}' | grep '^AS' | while read asn; do
echo "Processing $asn"
awk '{if($3 == '${asn:2}') print "ipcalc -rn "$1"-"$2" | tail -n1"}' /tmp/asndb.tsv | bash >> /tmp/asn-processed.txt
done
if [[ "${{matrix.list.name}}" == "datacenter" ]]; then
cat "$GITHUB_WORKSPACE/input/vpn/ASN.txt" | grep -v '^#' | awk '{print $1}' | grep '^AS' | while read asn; do
echo "Processing $asn"
awk '{if($3 == '${asn:2}') print "ipcalc -rn "$1"-"$2" | tail -n1"}' /tmp/asndb.tsv | bash >> /tmp/asn-processed.txt
done
fi
- name: Merge Lists
run: |
# Remove too small allocations from ASN list (anything less than a /24 can't be announced)
# TODO: This might remove some SWIP'ed ranges (needs evaluation)
perl ./helpers/cleanup.pl /tmp/asn-processed.txt | grep -E '/(2[0-4]|1[0-9]|[0-9])$' > /tmp/asn-cleaned.txt
# Combine lists
cat $GITHUB_WORKSPACE/input/${{matrix.list.name}}/ips/*.txt | grep -v '^#' | awk '{print $1}' | sed '/^$/d' > /tmp/manual-processed.txt
cat /tmp/asn-cleaned.txt /tmp/manual-processed.txt | sort -n > /tmp/ipv4.txt
# Final cleanup
perl ./helpers/cleanup.pl /tmp/ipv4.txt > ipv4.txt
- name: Test generated Lists
run: |
if [[ $(grep ^0. ipv4.txt | wc -l) != "0" ]]; then
echo "Lists can not contain 0.0.0.0/8"
exit 1
fi
if [[ $(grep ^127. ipv4.txt | wc -l) != "0" ]]; then
echo "Lists can not contain 127.0.0.1/8"
exit 1
fi
ips_covered=$(awk -F/ 'BEGIN{a=0}{if($2==""){a+=1}else{a+=2^(32-$2)}}END{print a}' ipv4.txt)
if [[ "$ips_covered" -lt ${{matrix.list.validate_low}} ]]; then
echo "Too few addresses covered ($ips_covered)"
exit 1
fi
if [[ "$ips_covered" -gt ${{matrix.list.validate_high}} ]]; then
echo "Too many addresses covered ($ips_covered)"
exit 1
fi
- name: Push Output of ipv4.txt
uses: X4BNet/copy_file_to_another_repo_action@main
env:
API_TOKEN_GITHUB: ${{ secrets.MY_GITHUB_TOKEN }}
with:
source_file: 'ipv4.txt'
destination_repo: '${{ github.repository }}'
destination_folder: '/output/${{matrix.list.name}}/'
user_email: '[email protected]'
user_name: 'listbuilder'
destination_branch: "main"
- name: Push Output of ipv4.txt
uses: X4BNet/copy_file_to_another_repo_action@main
env:
API_TOKEN_GITHUB: ${{ secrets.MY_GITHUB_TOKEN }}
if: ${{ matrix.list.name == 'datacenter' }}
with:
source_file: 'ipv4.txt'
destination_repo: '${{ github.repository }}'
destination_folder: '/'
user_email: '[email protected]'
user_name: 'listbuilder'
destination_branch: "main"