ranges and negations12 Mar 2007 I've been playing with ugly algorithms the last couple days. I already had an infrastructure to add separate subnets to the tree and query for them. But I had no solution for negations ( ! 10.0.36.0/24) or ranges (1023-65535). That last item already reveals my plan. The tree I'm building is meant for 32-bit IP addresses, but it can be used for 16-bit port-numbers as well. While IP-ranges are not addressed in netfilter as far as I know, port ranges are. That's why I need such a thing.
I now have the capability to specify ranges and negations in my tree. Well actually, a range just spawns a lot of other subnets (for 32-bit, the theoretical maximum would be 64 subnets) that are added to the tree. The negations are similar. Combined, they can lead to a lot of extra nodes...
But anyway. In order to implement these, I introduced the Subnet and SubnetList structures in ALL of my code. In 1 go. Without testing. You probably know where this is leading... After I had replaced all unsigned long int code (for IP-addresses) with Subnet structures, the code broke. It took me a while to track down the bug, but I squashed it now. Things like this make me appreciate my coding-style, where I code and test incrementally.
As a testcase, I negate a subnetlist with 1 subnet in it, and then negate that too. The last result should be the same as the first subnet.
(deepstar/tachyon) ~/projects/hppc$ ./a.out 126.96.36.199 24
Negated subnetlist: 0.0.0.0/8 188.8.131.52/15 184.108.40.206/23 220.127.116.11/24
18.104.22.168/22 22.214.171.124/21 126.96.36.199/20 188.8.131.52/19 184.108.40.206/18
220.127.116.11/17 18.104.22.168/16 22.214.171.124/14 126.96.36.199/13 188.8.131.52/12
184.108.40.206/11 220.127.116.11/10 18.104.22.168/9 22.214.171.124/7 126.96.36.199/6
188.8.131.52/5 184.108.40.206/4 220.127.116.11/3 18.104.22.168/2 22.214.171.124/1
Negated negated subnetlist: 126.96.36.199/24
It works! :)