IPRange::matchesOne() - Code Metrics - Inspection of "IPRange::matches() accepts a list of CIDR #9573" - Ecodev/felix - Measure and Improve Code Quality continuously with Scrutinizer

Passed

Push — master ( b978c0...c5c7e6 )

by Adrien

created 2023-10-21 05:06 UTC

IPRange::matchesOne() A

↳ Parent: IPRange

Complexity

Conditions	2
Paths	2

Size

Total Lines	7
Code Lines	3

Duplication

Lines	0
Ratio	0 %

Code Coverage

Tests	4
CRAP Score	2

Importance

Changes

Metric	Value
eloc	3
c	0
b	0
f	0
dl	0
loc	7
ccs	4
cts	4
cp	1
rs	10
cc	2
nc	2
nop	2
crap	2

<?php

declare(strict_types=1);

namespace Ecodev\Felix\Validator;

abstract class IPRange
{
    /**
     * Whether the given IP address matches at least one of the given CIDR.
     *
     * @param string[] $cidrs
     */
    final public static function matches(string $ip, array $cidrs): bool
    {
        foreach ($cidrs as $cidr) {
            if (self::matchesOne($ip, $cidr)) {
                return true;
            }
        }

        return false;
    }

    private static function matchesOne(string $ip, string $cidr): bool
    {
        if (str_contains($ip, ':')) {
            return self::matchesIPv6($ip, $cidr);
        }

        return self::matchesIPv4($ip, $cidr);
    }

    private static function matchesIPv4(string $ip, string $cidr): bool
    {
        $mask = 32;
        $subnet = $cidr;

        if (str_contains($cidr, '/')) {
            [$subnet, $mask] = explode('/', $cidr, 2);
            $mask = (int) $mask;
        }

        if ($mask < 0 || $mask > 32) {
            return false;
        }

        $ip = ip2long($ip);
        $subnet = ip2long($subnet);
        if (false === $ip || false === $subnet) {
            // Invalid data
            return false;
        }

        return 0 === substr_compare(
            sprintf('%032b', $ip),
            sprintf('%032b', $subnet),
            0,
            $mask
        );
    }

    private static function matchesIPv6(string $ip, string $cidr): bool
    {
        $mask = 128;
        $subnet = $cidr;

        if (str_contains($cidr, '/')) {
            [$subnet, $mask] = explode('/', $cidr, 2);
            $mask = (int) $mask;
        }

        if ($mask < 0 || $mask > 128) {
            return false;
        }

        $ip = inet_pton($ip);
        $subnet = inet_pton($subnet);

        if (false === $ip || false === $subnet) {
            // Invalid data
            return false;
        }

        // mask 0: if it's a valid IP, it's valid
        if ($mask === 0) {
            return (bool) unpack('n*', $ip);
        }

        /** @see http://stackoverflow.com/questions/7951061/matching-ipv6-address-to-a-cidr-subnet, MW answer */
        $binMask = str_repeat('f', (int) ($mask / 4));
        switch ($mask % 4) {
            case 0:
                break;
            case 1:
                $binMask .= '8';

                break;
            case 2:
                $binMask .= 'c';

                break;
            case 3:
                $binMask .= 'e';

                break;
        }

        $binMask = str_pad($binMask, 32, '0');
        $binMask = pack('H*', $binMask);

        return ($ip & $binMask) === $subnet;

    }
}


1		<?php
2
3		declare(strict_types=1);
4
5		namespace Ecodev\Felix\Validator;
6
7		abstract class IPRange
8		{
9		/**
10		* Whether the given IP address matches at least one of the given CIDR.
11		*
12		* @param string[] $cidrs
13		*/
14	23	final public static function matches(string $ip, array $cidrs): bool
15		{
16	23	foreach ($cidrs as $cidr) {
17	23	if (self::matchesOne($ip, $cidr)) {
18	10	return true;
19		}
20		}
21
22	13	return false;
23		}
24
25	23	private static function matchesOne(string $ip, string $cidr): bool
26		{
27	23	if (str_contains($ip, ':')) {
28	9	return self::matchesIPv6($ip, $cidr);
29		}
30
31	14	return self::matchesIPv4($ip, $cidr);
32		}
33
34	14	private static function matchesIPv4(string $ip, string $cidr): bool
35		{
36	14	$mask = 32;
37	14	$subnet = $cidr;
38
39	14	if (str_contains($cidr, '/')) {
40	7	[$subnet, $mask] = explode('/', $cidr, 2);
41	7	$mask = (int) $mask;
42		}
43
44	14	if ($mask < 0 \|\| $mask > 32) {
45	1	return false;
46		}
47
48	13	$ip = ip2long($ip);
49	13	$subnet = ip2long($subnet);
50	13	if (false === $ip \|\| false === $subnet) {
51		// Invalid data
52	5	return false;
53		}
54
55	8	return 0 === substr_compare(
56	8	sprintf('%032b', $ip),
57	8	sprintf('%032b', $subnet),
58	8	0,
59	8	$mask
60	8	);
61		}
62
63	9	private static function matchesIPv6(string $ip, string $cidr): bool
64		{
65	9	$mask = 128;
66	9	$subnet = $cidr;
67
68	9	if (str_contains($cidr, '/')) {
69	4	[$subnet, $mask] = explode('/', $cidr, 2);
70	4	$mask = (int) $mask;
71		}
72
73	9	if ($mask < 0 \|\| $mask > 128) {
74		return false;
75		}
76
77	9	$ip = inet_pton($ip);
78	9	$subnet = inet_pton($subnet);
79
80	9	if (false === $ip \|\| false === $subnet) {
81		// Invalid data
82	2	return false;
83		}
84
85		// mask 0: if it's a valid IP, it's valid
86	7	if ($mask === 0) {
87	2	return (bool) unpack('n*', $ip);
88		}
89
90		/** @see http://stackoverflow.com/questions/7951061/matching-ipv6-address-to-a-cidr-subnet, MW answer */
91	5	$binMask = str_repeat('f', (int) ($mask / 4));
92	5	switch ($mask % 4) {
93	5	case 0:
94	3	break;
95	2	case 1:
96	2	$binMask .= '8';
97
98	2	break;
99		case 2:
100		$binMask .= 'c';
101
102		break;
103		case 3:
104		$binMask .= 'e';
105
106		break;
107		}
108
109	5	$binMask = str_pad($binMask, 32, '0');
110	5	$binMask = pack('H*', $binMask);
111
112	5	return ($ip & $binMask) === $subnet;
		0 ignored issues – show Bug introduced 2023-07-24 15:47 UTC by Report Bug Copy Issue Report Are you sure you want to use the bitwise `&` or did you mean `&&`? Loading history...
113		}
114		}
115

Ecodev / felix

Push — master ( b978c0...c5c7e6 )

IPRange::matchesOne() A

Complexity

Size

Duplication

Code Coverage

Importance

Duplication Side-by-Side

Filter issues like