WIP: Add IP restriction based exclusions to ClientPeerSelection

When I saw this post: http://zzz.i2p/topics/3215-vulnerability-iprestriction-is-ignored I did some grepping and saw that TunnelPoolSettings.getIPRestrictions() was never actually called anywhere. It looks like the setting might have been added, but the code to exclude based on similar IP ranges was not? So I tried to figure out where the IPRestriction rules should be enforced to be effective and then tried to figure out how to do it. This is untested so far, but if you get a moment, I'd appreciate it if you would take a glance and tell me if I'm on the right track @zzz .