X-Git-Url: http://dxcluster.net/gitweb/gitweb.cgi?a=blobdiff_plain;f=perl%2FDXCIDR.pm;h=fae0f671140925cbe3aa9cfe7536cb663da510a5;hb=d0b21f21559a63d84086b549bb7570e2e16b75cd;hp=a91d13967cf7c3db845e6e49df1c954c9fd1ba53;hpb=7e7131f3574cd4a3a4183251b35c9d91e43a6a39;p=spider.git

diff --git a/perl/DXCIDR.pm b/perl/DXCIDR.pm
index a91d1396..fae0f671 100644
--- a/perl/DXCIDR.pm
+++ b/perl/DXCIDR.pm
@@ -38,12 +38,25 @@ sub _read
 	$fn .= ".$suffix" if $suffix;
 	my $fh = IO::File->new($fn);
 	my @out;
+	my $ecount;
+	my $line;
+	
 
 	if ($fh) {
 		while (<$fh>) {
 			chomp;
+			++$line;
 			next if /^\s*\#/;
 			next unless /[\.:]/;
+			next unless $_;
+			unless (is_ipaddr($_)) {
+				++$ecount;
+				LogDbg('err', qq(DXCIDR: $fn line $line: '$_' not an ip address));
+				if ($ecount > 10) {
+					LogDbg('err', qq(DXCIDR: More than 10 errors in $fn at/after line $line: '$_' - INVALID INPUT FILE));
+					return ();
+				}
+			}
 			push @out, $_;
 		}
 		$fh->close;
@@ -55,8 +68,10 @@ sub _read
 
 sub _load
 {
+	return unless $active;
 	my $suffix = shift;
 	my @in = _read($suffix);
+	return 0 unless @in;
 	return scalar add(@in);
 }
 
@@ -108,19 +123,30 @@ sub add
 {
 	return 0 unless $active;
 	my $count = 0;
+	my @out;
 	
 	for my $ip (@_) {
 		# protect against stupid or malicious
+		next unless is_ipaddr($ip);
 		next if $ip =~ /^127\./;
 		next if $ip =~ /^::1$/;
+		next if find($ip);
 		if ($ip =~ /\./) {
-			$ipv4->add_any($ip);
-			++$count;
-			++$count4;
+			eval {$ipv4->add_any($ip)};
+			if ($@) {
+				push @out, $@;
+			} else {
+				++$count;
+				++$count4;
+			}
 		} elsif ($ip =~ /:/) {
-			$ipv6->add_any($ip);
-			++$count;
-			++$count6;
+			eval {$ipv6->add_any($ip)};
+			if ($@) {
+				push @out, $@;
+			} else {
+				++$count;
+				++$count6;
+			}
 		} else {
 			LogDbg('err', "DXCIDR::add non-ip address '$ip' read");
 		}
@@ -147,7 +173,8 @@ sub _sort
 	my @in;
 	my @out;
 	for (@_) {
-		push @in, [inet_pton(m|:|?AF_INET6:AF_INET, $_), split m|/|];
+		my @ip = split m|/|;
+		push @in, [inet_pton(m|:|?AF_INET6:AF_INET, $ip[0]), @ip];
 	}
 	@out = sort {$a->[0] <=> $b->[0]} @in;
 	return map { "$_->[1]/$_->[2]"} @out;
@@ -181,7 +208,12 @@ sub init
 		return;
 	}
 
-	import Net::CIDR::Lite;
+	eval {import Net::CIDR::Lite };
+	if ($@) {
+		LogDbg('DXProt', "DXCIDR: import Net::CIDR::Lite error $@");
+		return;
+	}
+
 	$active = 1;
 
 	my $fn = _fn();