SslCertificate - Code Metrics - Inspection of "Add support for detecting Pre-Certificates (#81)" - spatie/ssl-certificate - Measure and Improve Code Quality continuously with Scrutinizer

Completed

Push — master ( 55601d...9f9f9c )

by Freek

created 2018-12-06 15:57 UTC

SslCertificate B

↳ Parent: Project

Complexity

Total Complexity

Size/Duplication

Total Lines	230
Duplicated Lines	0 %

Coupling/Cohesion

Components	1
Dependencies	4

Importance

Changes

Metric	Value
dl	0
loc	230
rs	8.96
c	0
b	0
f	0
wmc	43
lcom	1
cbo	4

25 Methods

Rating	Name	Size	Complexity
A	download()	4	1
A	createForHostName()	6	1
A	__construct()	6	1
A	getRawCertificateFields()	4	1
A	getIssuer()	4	1
A	getDomain()	16	4
A	getSignatureAlgorithm()	4	1
A	getFingerprint()	4	1
A	getAdditionalDomains()	8	1
A	validFromDate()	4	1
A	expirationDate()	4	1
A	isExpired()	4	1
A	isValid()	12	3
A	isSelfSigned()	4	1
A	usesSha1Hash()	14	3
A	isValidUntil()	8	2
A	daysUntilExpirationDate()	8	1
A	getDomains()	8	1
A	appliesToUrl()	20	4
A	wildcardHostCoversHost()	20	4
A	getRawCertificateFieldsJson()	4	1
A	getHash()	4	1
A	__toString()	4	1
A	containsDomain()	16	4
A	isPreCertificate()	5	2

How to fix Complexity

<?php

namespace Spatie\SslCertificate;

use Carbon\Carbon;
use Spatie\Macroable\Macroable;

class SslCertificate
{
    use Macroable;

    /** @var array */
    protected $rawCertificateFields = [];

    /** @var string */
    protected $fingerprint = '';

    public static function download(): Downloader
    {
        return new Downloader();
    }

    public static function createForHostName(string $url, int $timeout = 30): self
    {
        $sslCertificate = Downloader::downloadCertificateFromUrl($url, $timeout);

        return $sslCertificate;
    }

    public function __construct(array $rawCertificateFields, string $fingerprint = '')
    {
        $this->rawCertificateFields = $rawCertificateFields;

        $this->fingerprint = $fingerprint;
    }

    public function getRawCertificateFields(): array
    {
        return $this->rawCertificateFields;
    }

    public function getIssuer(): string
    {
        return $this->rawCertificateFields['issuer']['CN'] ?? '';
    }

    public function getDomain(): string
    {
        if (! array_key_exists('CN', $this->rawCertificateFields['subject'])) {
            return '';
        }

        if (is_string($this->rawCertificateFields['subject']['CN'])) {
            return $this->rawCertificateFields['subject']['CN'];
        }

        if (is_array($this->rawCertificateFields['subject']['CN'])) {
            return $this->rawCertificateFields['subject']['CN'][0];
        }

        return '';
    }

    public function getSignatureAlgorithm(): string
    {
        return $this->rawCertificateFields['signatureTypeSN'] ?? '';
    }

    public function getFingerprint(): string
    {
        return $this->fingerprint;
    }

    public function getAdditionalDomains(): array
    {
        $additionalDomains = explode(', ', $this->rawCertificateFields['extensions']['subjectAltName'] ?? '');

        return array_map(function (string $domain) {
            return str_replace('DNS:', '', $domain);
        }, $additionalDomains);
    }

    public function validFromDate(): Carbon
    {
        return Carbon::createFromTimestampUTC($this->rawCertificateFields['validFrom_time_t']);
    }

    public function expirationDate(): Carbon
    {
        return Carbon::createFromTimestampUTC($this->rawCertificateFields['validTo_time_t']);
    }

    public function isExpired(): bool
    {
        return $this->expirationDate()->isPast();
    }

    public function isValid(string $url = null)
    {
        if (! Carbon::now()->between($this->validFromDate(), $this->expirationDate())) {
class A
{
    public function foo() { }
}

class B extends A
{
    public function bar() { }
}

/**
 * @param A|B $x
 */
function someFunction($x)
{
    $x->foo(); // This call is fine as the method exists in A and B.
    $x->bar(); // This method only exists in B and might cause an error.
}
            return false;
        }

        if (! empty($url)) {
            return $this->appliesToUrl($url ?? $this->getDomain());
        }

        return true;
    }

    public function isSelfSigned(): bool
    {
        return $this->getIssuer() === $this->getDomain();
    }

    public function usesSha1Hash(): bool
    {
        $certificateFields = $this->getRawCertificateFields();

        if ($certificateFields['signatureTypeSN'] === 'RSA-SHA1') {
            return true;
        }

        if ($certificateFields['signatureTypeLN'] === 'sha1WithRSAEncryption') {
            return true;
        }

        return false;
    }

    public function isValidUntil(Carbon $carbon, string $url = null): bool
    {
        if ($this->expirationDate()->lte($carbon)) {
            return false;
        }

        return $this->isValid($url);
    }

    public function daysUntilExpirationDate(): int
    {
        $endDate = $this->expirationDate();

        $interval = Carbon::now()->diff($endDate);
class A
{
    public function foo() { }
}

class B extends A
{
    public function bar() { }
}

/**
 * @param A|B $x
 */
function someFunction($x)
{
    $x->foo(); // This call is fine as the method exists in A and B.
    $x->bar(); // This method only exists in B and might cause an error.
}

        return (int) $interval->format('%r%a');
    }

    public function getDomains(): array
    {
        $allDomains = $this->getAdditionalDomains();
        $allDomains[] = $this->getDomain();
        $uniqueDomains = array_unique($allDomains);

        return array_values(array_filter($uniqueDomains));
    }

    public function appliesToUrl(string $url): bool
    {
        $host = (new Url($url))->getHostName();

        $certificateHosts = $this->getDomains();

        foreach ($certificateHosts as $certificateHost) {
            $certificateHost = strtolower($certificateHost);

            if ($host === $certificateHost) {
                return true;
            }

            if ($this->wildcardHostCoversHost($certificateHost, $host)) {
                return true;
            }
        }

        return false;
    }

    protected function wildcardHostCoversHost(string $wildcardHost, string $host): bool
    {
        if ($host === $wildcardHost) {
            return true;
        }

        if (! starts_with($wildcardHost, '*')) {
            return false;
        }

        if (substr_count($wildcardHost, '.') < substr_count($host, '.')) {
            return false;
        }

        $wildcardHostWithoutWildcard = substr($wildcardHost, 1);

        $hostWithDottedPrefix = ".{$host}";

        return ends_with($hostWithDottedPrefix, $wildcardHostWithoutWildcard);
    }

    public function getRawCertificateFieldsJson(): string
    {
        return json_encode($this->getRawCertificateFields());
    }

    public function getHash(): string
    {
        return md5($this->getRawCertificateFieldsJson());
    }

    public function __toString(): string
    {
        return $this->getRawCertificateFieldsJson();
    }

    public function containsDomain(string $domain): bool
    {
        $certificateHosts = $this->getDomains();

        foreach ($certificateHosts as $certificateHost) {
            if ($certificateHost == $domain) {
                return true;
            }

            if (ends_with($domain, '.'.$certificateHost)) {
                return true;
            }
        }

        return false;
    }

    public function isPreCertificate()
    {
        return array_key_exists('extensions', $this->rawCertificateFields)
                && array_key_exists('ct_precert_poison', $this->rawCertificateFields['extensions']);
    }
}


GitHub Access Token became invalid

Push — master ( 55601d...9f9f9c )

SslCertificate B

Complexity

Size/Duplication

Coupling/Cohesion

Importance

25 Methods

How to fix Complexity

Complex Class

Available Fixes

Available Fixes

1			<?php
2
3			namespace Spatie\SslCertificate;
4
5			use Carbon\Carbon;
6			use Spatie\Macroable\Macroable;
7
8			class SslCertificate
9			{
10			use Macroable;
11
12			/** @var array */
13			protected $rawCertificateFields = [];
14
15			/** @var string */
16			protected $fingerprint = '';
17
18			public static function download(): Downloader
19			{
20			return new Downloader();
21			}
22
23			public static function createForHostName(string $url, int $timeout = 30): self
24			{
25			$sslCertificate = Downloader::downloadCertificateFromUrl($url, $timeout);
26
27			return $sslCertificate;
28			}
29
30			public function __construct(array $rawCertificateFields, string $fingerprint = '')
31			{
32			$this->rawCertificateFields = $rawCertificateFields;
33
34			$this->fingerprint = $fingerprint;
35			}
36
37			public function getRawCertificateFields(): array
38			{
39			return $this->rawCertificateFields;
40			}
41
42			public function getIssuer(): string
43			{
44			return $this->rawCertificateFields['issuer']['CN'] ?? '';
45			}
46
47			public function getDomain(): string
48			{
49			if (! array_key_exists('CN', $this->rawCertificateFields['subject'])) {
50			return '';
51			}
52
53			if (is_string($this->rawCertificateFields['subject']['CN'])) {
54			return $this->rawCertificateFields['subject']['CN'];
55			}
56
57			if (is_array($this->rawCertificateFields['subject']['CN'])) {
58			return $this->rawCertificateFields['subject']['CN'][0];
59			}
60
61			return '';
62			}
63
64			public function getSignatureAlgorithm(): string
65			{
66			return $this->rawCertificateFields['signatureTypeSN'] ?? '';
67			}
68
69			public function getFingerprint(): string
70			{
71			return $this->fingerprint;
72			}
73
74			public function getAdditionalDomains(): array
75			{
76			$additionalDomains = explode(', ', $this->rawCertificateFields['extensions']['subjectAltName'] ?? '');
77
78			return array_map(function (string $domain) {
79			return str_replace('DNS:', '', $domain);
80			}, $additionalDomains);
81			}
82
83			public function validFromDate(): Carbon
84			{
85			return Carbon::createFromTimestampUTC($this->rawCertificateFields['validFrom_time_t']);
86			}
87
88			public function expirationDate(): Carbon
89			{
90			return Carbon::createFromTimestampUTC($this->rawCertificateFields['validTo_time_t']);
91			}
92
93			public function isExpired(): bool
94			{
95			return $this->expirationDate()->isPast();
96			}
97
98			public function isValid(string $url = null)
99			{
100			if (! Carbon::now()->between($this->validFromDate(), $this->expirationDate())) {
			0 ignored issues – show Bug introduced 2018-12-03 20:46 UTC by Report Bug Copy Issue Report The method `between` does only exist in `Carbon\CarbonInterface`, but not in `Carbon\Traits\Creator`. It seems like the method you are trying to call exists only in some of the possible types. Let’s take a look at an example: class A { public function foo() { } } class B extends A { public function bar() { } } /** * @param A\|B $x / function someFunction($x) { $x->foo(); // This call is fine as the method exists in A and B. $x->bar(); // This method only exists in B and might cause an error. } Available Fixes Add an additional type-check: /* * @param A\|B $x / function someFunction($x) { $x->foo(); if ($x instanceof B) { $x->bar(); } } Only allow a single type to be passed if the variable comes from a parameter: function someFunction(B $x) { /* ... */ } Loading history...
101			return false;
102			}
103
104			if (! empty($url)) {
105			return $this->appliesToUrl($url ?? $this->getDomain());
106			}
107
108			return true;
109			}
110
111			public function isSelfSigned(): bool
112			{
113			return $this->getIssuer() === $this->getDomain();
114			}
115
116			public function usesSha1Hash(): bool
117			{
118			$certificateFields = $this->getRawCertificateFields();
119
120			if ($certificateFields['signatureTypeSN'] === 'RSA-SHA1') {
121			return true;
122			}
123
124			if ($certificateFields['signatureTypeLN'] === 'sha1WithRSAEncryption') {
125			return true;
126			}
127
128			return false;
129			}
130
131			public function isValidUntil(Carbon $carbon, string $url = null): bool
132			{
133			if ($this->expirationDate()->lte($carbon)) {
134			return false;
135			}
136
137			return $this->isValid($url);
138			}
139
140			public function daysUntilExpirationDate(): int
141			{
142			$endDate = $this->expirationDate();
143
144			$interval = Carbon::now()->diff($endDate);
			0 ignored issues – show Bug introduced 2018-12-03 20:46 UTC by Report Bug Copy Issue Report The method `diff` does only exist in `Carbon\CarbonInterface`, but not in `Carbon\Traits\Creator`. It seems like the method you are trying to call exists only in some of the possible types. Let’s take a look at an example: class A { public function foo() { } } class B extends A { public function bar() { } } /** * @param A\|B $x / function someFunction($x) { $x->foo(); // This call is fine as the method exists in A and B. $x->bar(); // This method only exists in B and might cause an error. } Available Fixes Add an additional type-check: /* * @param A\|B $x / function someFunction($x) { $x->foo(); if ($x instanceof B) { $x->bar(); } } Only allow a single type to be passed if the variable comes from a parameter: function someFunction(B $x) { /* ... */ } Loading history...
145
146			return (int) $interval->format('%r%a');
147			}
148
149			public function getDomains(): array
150			{
151			$allDomains = $this->getAdditionalDomains();
152			$allDomains[] = $this->getDomain();
153			$uniqueDomains = array_unique($allDomains);
154
155			return array_values(array_filter($uniqueDomains));
156			}
157
158			public function appliesToUrl(string $url): bool
159			{
160			$host = (new Url($url))->getHostName();
161
162			$certificateHosts = $this->getDomains();
163
164			foreach ($certificateHosts as $certificateHost) {
165			$certificateHost = strtolower($certificateHost);
166
167			if ($host === $certificateHost) {
168			return true;
169			}
170
171			if ($this->wildcardHostCoversHost($certificateHost, $host)) {
172			return true;
173			}
174			}
175
176			return false;
177			}
178
179			protected function wildcardHostCoversHost(string $wildcardHost, string $host): bool
180			{
181			if ($host === $wildcardHost) {
182			return true;
183			}
184
185			if (! starts_with($wildcardHost, '*')) {
186			return false;
187			}
188
189			if (substr_count($wildcardHost, '.') < substr_count($host, '.')) {
190			return false;
191			}
192
193			$wildcardHostWithoutWildcard = substr($wildcardHost, 1);
194
195			$hostWithDottedPrefix = ".{$host}";
196
197			return ends_with($hostWithDottedPrefix, $wildcardHostWithoutWildcard);
198			}
199
200			public function getRawCertificateFieldsJson(): string
201			{
202			return json_encode($this->getRawCertificateFields());
203			}
204
205			public function getHash(): string
206			{
207			return md5($this->getRawCertificateFieldsJson());
208			}
209
210			public function __toString(): string
211			{
212			return $this->getRawCertificateFieldsJson();
213			}
214
215			public function containsDomain(string $domain): bool
216			{
217			$certificateHosts = $this->getDomains();
218
219			foreach ($certificateHosts as $certificateHost) {
220			if ($certificateHost == $domain) {
221			return true;
222			}
223
224			if (ends_with($domain, '.'.$certificateHost)) {
225			return true;
226			}
227			}
228
229			return false;
230			}
231
232			public function isPreCertificate()
233			{
234			return array_key_exists('extensions', $this->rawCertificateFields)
235			&& array_key_exists('ct_precert_poison', $this->rawCertificateFields['extensions']);
236			}
237			}
238

spatie / ssl-certificate

GitHub Access Token became invalid

Push — master ( 55601d...9f9f9c )

SslCertificate B

Complexity

Size/Duplication

Coupling/Cohesion

Importance

25 Methods

How to fix Complexity

Complex Class

Available Fixes

Available Fixes

Duplication Side-by-Side

Filter issues like