mirror of
https://github.com/zxing/zxing.git
synced 2025-03-05 20:48:51 -08:00
Tighten up some stuff I saw from the logs
git-svn-id: https://zxing.googlecode.com/svn/trunk@1344 59b500cc-1b3d-0410-9834-0bbf25fbcc57
This commit is contained in:
srowen
parent
52e6d56a63
commit
87b0b9c8aa
|
|
@ -79,8 +79,7 @@ public final class BenchmarkActivity extends Activity {
|
||||||
List<BenchmarkItem> items = (List<BenchmarkItem>) message.obj;
|
List<BenchmarkItem> items = (List<BenchmarkItem>) message.obj;
|
||||||
int count = 0;
|
int count = 0;
|
||||||
int time = 0;
|
int time = 0;
|
||||||
for (int x = 0; x < items.size(); x++) {
|
for (BenchmarkItem item : items) {
|
||||||
BenchmarkItem item = items.get(x);
|
|
||||||
if (item != null) {
|
if (item != null) {
|
||||||
Log.v(TAG, item.toString());
|
Log.v(TAG, item.toString());
|
||||||
count++;
|
count++;
|
||||||
|
|
|
||||||
|
|
@ -420,7 +420,8 @@ final class DecodedBitStreamParser {
|
||||||
/**
|
/**
|
||||||
* See ISO 16022:2006, 5.2.9 and Annex B, B.2
|
* See ISO 16022:2006, 5.2.9 and Annex B, B.2
|
||||||
*/
|
*/
|
||||||
private static void decodeBase256Segment(BitSource bits, StringBuffer result, Vector byteSegments) {
|
private static void decodeBase256Segment(BitSource bits, StringBuffer result, Vector byteSegments)
|
||||||
|
throws FormatException {
|
||||||
// Figure out how long the Base 256 Segment is.
|
// Figure out how long the Base 256 Segment is.
|
||||||
int d1 = bits.readBits(8);
|
int d1 = bits.readBits(8);
|
||||||
int count;
|
int count;
|
||||||
|
|
@ -433,6 +434,11 @@ final class DecodedBitStreamParser {
|
||||||
}
|
}
|
||||||
byte[] bytes = new byte[count];
|
byte[] bytes = new byte[count];
|
||||||
for (int i = 0; i < count; i++) {
|
for (int i = 0; i < count; i++) {
|
||||||
|
// Have seen this particular error in the wild, such as at
|
||||||
|
// http://www.bcgen.com/demo/IDAutomationStreamingDataMatrix.aspx?MODE=3&D=Fred&PFMT=3&PT=F&X=0.3&O=0&LM=0.2
|
||||||
|
if (bits.available() < 8) {
|
||||||
|
throw FormatException.getFormatInstance();
|
||||||
|
}
|
||||||
bytes[i] = unrandomize255State(bits.readBits(8), i);
|
bytes[i] = unrandomize255State(bits.readBits(8), i);
|
||||||
}
|
}
|
||||||
byteSegments.addElement(bytes);
|
byteSegments.addElement(bytes);
|
||||||
|
|
|
||||||
|
|
@ -62,10 +62,8 @@ import java.io.IOException;
|
||||||
import java.io.InputStream;
|
import java.io.InputStream;
|
||||||
import java.io.OutputStreamWriter;
|
import java.io.OutputStreamWriter;
|
||||||
import java.io.Writer;
|
import java.io.Writer;
|
||||||
import java.net.SocketException;
|
|
||||||
import java.net.URI;
|
import java.net.URI;
|
||||||
import java.net.URISyntaxException;
|
import java.net.URISyntaxException;
|
||||||
import java.net.UnknownHostException;
|
|
||||||
import java.util.ArrayList;
|
import java.util.ArrayList;
|
||||||
import java.util.Arrays;
|
import java.util.Arrays;
|
||||||
import java.util.Collection;
|
import java.util.Collection;
|
||||||
|
|
@ -90,7 +88,10 @@ import javax.servlet.http.HttpServletResponse;
|
||||||
*/
|
*/
|
||||||
public final class DecodeServlet extends HttpServlet {
|
public final class DecodeServlet extends HttpServlet {
|
||||||
|
|
||||||
|
// No real reason to let people upload more than a 2MB image
|
||||||
private static final long MAX_IMAGE_SIZE = 2000000L;
|
private static final long MAX_IMAGE_SIZE = 2000000L;
|
||||||
|
// No real reason to deal with more than maybe 2.5 megapixels
|
||||||
|
private static final int MAX_PIXELS = 1 << 16;
|
||||||
|
|
||||||
private static final Logger log = Logger.getLogger(DecodeServlet.class.getName());
|
private static final Logger log = Logger.getLogger(DecodeServlet.class.getName());
|
||||||
|
|
||||||
|
|
@ -148,6 +149,8 @@ public final class DecodeServlet extends HttpServlet {
|
||||||
return;
|
return;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
imageURIString = imageURIString.trim();
|
||||||
|
|
||||||
if (!(imageURIString.startsWith("http://") || imageURIString.startsWith("https://"))) {
|
if (!(imageURIString.startsWith("http://") || imageURIString.startsWith("https://"))) {
|
||||||
imageURIString = "http://" + imageURIString;
|
imageURIString = "http://" + imageURIString;
|
||||||
}
|
}
|
||||||
|
|
@ -176,12 +179,12 @@ public final class DecodeServlet extends HttpServlet {
|
||||||
getRequest.abort();
|
getRequest.abort();
|
||||||
response.sendRedirect("badurl.jspx");
|
response.sendRedirect("badurl.jspx");
|
||||||
return;
|
return;
|
||||||
} catch (SocketException se) {
|
} catch (IOException ioe) {
|
||||||
// Thrown if hostname is bad or null
|
// Encompasses lots of stuff, including
|
||||||
getRequest.abort();
|
// java.net.SocketException, java.net.UnknownHostException,
|
||||||
response.sendRedirect("badurl.jspx");
|
// javax.net.ssl.SSLPeerUnverifiedException,
|
||||||
return;
|
// org.apache.http.NoHttpResponseException,
|
||||||
} catch (UnknownHostException uhe) {
|
// org.apache.http.client.ClientProtocolException,
|
||||||
getRequest.abort();
|
getRequest.abort();
|
||||||
response.sendRedirect("badurl.jspx");
|
response.sendRedirect("badurl.jspx");
|
||||||
return;
|
return;
|
||||||
|
|
@ -255,14 +258,21 @@ public final class DecodeServlet extends HttpServlet {
|
||||||
try {
|
try {
|
||||||
image = ImageIO.read(is);
|
image = ImageIO.read(is);
|
||||||
} catch (IOException ioe) {
|
} catch (IOException ioe) {
|
||||||
|
// Includes javax.imageio.IIOException
|
||||||
response.sendRedirect("badimage.jspx");
|
response.sendRedirect("badimage.jspx");
|
||||||
return;
|
return;
|
||||||
} catch (CMMException cmme) {
|
} catch (CMMException cmme) {
|
||||||
// Have seen this in logs
|
// Have seen this in logs
|
||||||
response.sendRedirect("badimage.jspx");
|
response.sendRedirect("badimage.jspx");
|
||||||
return;
|
return;
|
||||||
|
} catch (IllegalArgumentException iae) {
|
||||||
|
// Have seen this in logs for some JPEGs
|
||||||
|
response.sendRedirect("badimage.jspx");
|
||||||
|
return;
|
||||||
}
|
}
|
||||||
if (image == null) {
|
if (image == null ||
|
||||||
|
image.getHeight() <= 1 || image.getWidth() >= 1 ||
|
||||||
|
image.getHeight() * image.getWidth() > MAX_PIXELS) {
|
||||||
response.sendRedirect("badimage.jspx");
|
response.sendRedirect("badimage.jspx");
|
||||||
return;
|
return;
|
||||||
}
|
}
|
||||||
|
|
|
||||||
|
|
@ -27,13 +27,11 @@ import javax.servlet.http.HttpServletResponse;
|
||||||
import java.io.IOException;
|
import java.io.IOException;
|
||||||
import java.net.InetAddress;
|
import java.net.InetAddress;
|
||||||
import java.net.UnknownHostException;
|
import java.net.UnknownHostException;
|
||||||
import java.util.Collection;
|
|
||||||
import java.util.Collections;
|
import java.util.Collections;
|
||||||
import java.util.HashSet;
|
import java.util.HashSet;
|
||||||
import java.util.Set;
|
import java.util.Set;
|
||||||
import java.util.Timer;
|
import java.util.Timer;
|
||||||
import java.util.TimerTask;
|
import java.util.TimerTask;
|
||||||
import java.util.regex.Pattern;
|
|
||||||
|
|
||||||
/**
|
/**
|
||||||
* A {@link Filter} that rejects requests from hosts that are sending too many
|
* A {@link Filter} that rejects requests from hosts that are sending too many
|
||||||
|
|
@ -46,29 +44,20 @@ public final class DoSFilter implements Filter {
|
||||||
private static final int MAX_ACCESSES_PER_IP_PER_TIME = 10;
|
private static final int MAX_ACCESSES_PER_IP_PER_TIME = 10;
|
||||||
private static final long MAX_ACCESS_INTERVAL_MSEC = 10L * 1000L;
|
private static final long MAX_ACCESS_INTERVAL_MSEC = 10L * 1000L;
|
||||||
private static final long UNBAN_INTERVAL_MSEC = 60L * 60L * 1000L;
|
private static final long UNBAN_INTERVAL_MSEC = 60L * 60L * 1000L;
|
||||||
private static final Pattern COMMA_PATTERN = Pattern.compile(",");
|
|
||||||
|
|
||||||
private final IPTrie numRecentAccesses;
|
private final IPTrie numRecentAccesses;
|
||||||
private final Timer timer;
|
private final Timer timer;
|
||||||
private final Set<String> bannedIPAddresses;
|
private final Set<String> bannedIPAddresses;
|
||||||
private final Collection<String> manuallyBannedIPAddresses;
|
|
||||||
private ServletContext context;
|
private ServletContext context;
|
||||||
|
|
||||||
public DoSFilter() {
|
public DoSFilter() {
|
||||||
numRecentAccesses = new IPTrie();
|
numRecentAccesses = new IPTrie();
|
||||||
timer = new Timer("DosFilter reset timer");
|
timer = new Timer("DosFilter reset timer");
|
||||||
bannedIPAddresses = Collections.synchronizedSet(new HashSet<String>());
|
bannedIPAddresses = Collections.synchronizedSet(new HashSet<String>());
|
||||||
manuallyBannedIPAddresses = new HashSet<String>();
|
|
||||||
}
|
}
|
||||||
|
|
||||||
public void init(FilterConfig filterConfig) {
|
public void init(FilterConfig filterConfig) {
|
||||||
context = filterConfig.getServletContext();
|
context = filterConfig.getServletContext();
|
||||||
String bannedIPs = filterConfig.getInitParameter("bannedIPs");
|
|
||||||
if (bannedIPs != null) {
|
|
||||||
for (String ip : COMMA_PATTERN.split(bannedIPs)) {
|
|
||||||
manuallyBannedIPAddresses.add(ip.trim());
|
|
||||||
}
|
|
||||||
}
|
|
||||||
timer.scheduleAtFixedRate(new ResetTask(), 0L, MAX_ACCESS_INTERVAL_MSEC);
|
timer.scheduleAtFixedRate(new ResetTask(), 0L, MAX_ACCESS_INTERVAL_MSEC);
|
||||||
timer.scheduleAtFixedRate(new UnbanTask(), 0L, UNBAN_INTERVAL_MSEC);
|
timer.scheduleAtFixedRate(new UnbanTask(), 0L, UNBAN_INTERVAL_MSEC);
|
||||||
}
|
}
|
||||||
|
|
@ -86,8 +75,7 @@ public final class DoSFilter implements Filter {
|
||||||
|
|
||||||
private boolean isBanned(ServletRequest request) {
|
private boolean isBanned(ServletRequest request) {
|
||||||
String remoteIPAddressString = request.getRemoteAddr();
|
String remoteIPAddressString = request.getRemoteAddr();
|
||||||
if (bannedIPAddresses.contains(remoteIPAddressString) ||
|
if (bannedIPAddresses.contains(remoteIPAddressString)) {
|
||||||
manuallyBannedIPAddresses.contains(remoteIPAddressString)) {
|
|
||||||
return true;
|
return true;
|
||||||
}
|
}
|
||||||
InetAddress remoteIPAddress;
|
InetAddress remoteIPAddress;
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue