Leverage str_contains/str_starts_with

derrabus · nicolas-grekas · commit bcda44d8f722 · 2021-07-21T14:19:41.000+02:00
Signed-off-by: Alexander M. Turek &lt;me@derrabus.de&gt;
diff --git a/Authorization/Voter/RoleVoter.php b/Authorization/Voter/RoleVoter.php
@@ -41,7 +41,7 @@ public function vote(TokenInterface $token, $subject, array $attributes)
                 $attribute = $attribute->getRole();
             }
 
-            if (!\is_string($attribute) || 0 !== strpos($attribute, $this->prefix)) {
+            if (!\is_string($attribute) || !str_starts_with($attribute, $this->prefix)) {
                 continue;
             }
 
diff --git a/Encoder/Argon2iPasswordEncoder.php b/Encoder/Argon2iPasswordEncoder.php
@@ -83,7 +83,7 @@ public function isPasswordValid($encoded, $raw, $salt)
     {
         // If $encoded was created via "sodium_crypto_pwhash_str()", the hashing algorithm may be "argon2id" instead of "argon2i".
         // In this case, "password_verify()" cannot be used.
-        if (\PHP_VERSION_ID >= 70200 && \defined('PASSWORD_ARGON2I') && (false === strpos($encoded, '$argon2id$'))) {
+        if (\PHP_VERSION_ID >= 70200 && \defined('PASSWORD_ARGON2I') && (!str_contains($encoded, '$argon2id$'))) {
             return !$this->isPasswordTooLong($raw) && password_verify($raw, $encoded);
         }
         if (\function_exists('sodium_crypto_pwhash_str_verify')) {
diff --git a/Encoder/MessageDigestPasswordEncoder.php b/Encoder/MessageDigestPasswordEncoder.php
@@ -73,7 +73,7 @@ public function encodePassword($raw, $salt)
      */
     public function isPasswordValid($encoded, $raw, $salt)
     {
-        if (\strlen($encoded) !== $this->encodedLength || false !== strpos($encoded, '$')) {
+        if (\strlen($encoded) !== $this->encodedLength || str_contains($encoded, '$')) {
             return false;
         }
 
diff --git a/Encoder/NativePasswordEncoder.php b/Encoder/NativePasswordEncoder.php
@@ -97,9 +97,9 @@ public function isPasswordValid($encoded, $raw, $salt): bool
             return false;
         }
 
-        if (0 !== strpos($encoded, '$argon')) {
+        if (!str_starts_with($encoded, '$argon')) {
             // BCrypt encodes only the first 72 chars
-            return (72 >= \strlen($raw) || 0 !== strpos($encoded, '$2')) && password_verify($raw, $encoded);
+            return (72 >= \strlen($raw) || !str_starts_with($encoded, '$2')) && password_verify($raw, $encoded);
         }
 
         if (\extension_loaded('sodium') && version_compare(\SODIUM_LIBRARY_VERSION, '1.0.14', '>=')) {
diff --git a/Encoder/Pbkdf2PasswordEncoder.php b/Encoder/Pbkdf2PasswordEncoder.php
@@ -80,7 +80,7 @@ public function encodePassword($raw, $salt)
      */
     public function isPasswordValid($encoded, $raw, $salt)
     {
-        if (\strlen($encoded) !== $this->encodedLength || false !== strpos($encoded, '$')) {
+        if (\strlen($encoded) !== $this->encodedLength || str_contains($encoded, '$')) {
             return false;
         }
 
diff --git a/Encoder/SodiumPasswordEncoder.php b/Encoder/SodiumPasswordEncoder.php
@@ -84,9 +84,9 @@ public function isPasswordValid($encoded, $raw, $salt): bool
             return false;
         }
 
-        if (0 !== strpos($encoded, '$argon')) {
+        if (!str_starts_with($encoded, '$argon')) {
             // Accept validating non-argon passwords for seamless migrations
-            return (72 >= \strlen($raw) || 0 !== strpos($encoded, '$2')) && password_verify($raw, $encoded);
+            return (72 >= \strlen($raw) || !str_starts_with($encoded, '$2')) && password_verify($raw, $encoded);
         }
 
         if (\function_exists('sodium_crypto_pwhash_str_verify')) {
diff --git a/composer.json b/composer.json
@@ -18,6 +18,7 @@
     "require": {
         "php": ">=7.1.3",
         "symfony/event-dispatcher-contracts": "^1.1|^2",
+        "symfony/polyfill-php80": "^1.16",
         "symfony/service-contracts": "^1.1.6|^2"
     },
     "require-dev": {

Original file line number	Diff line number	Diff line change
`@@ -41,7 +41,7 @@ public function vote(TokenInterface $token, $subject, array $attributes)`
`41`	`41`	`$attribute = $attribute->getRole();`
`42`	`42`	`}`
`43`	`43`
`44`		`- if (!\is_string($attribute) \|\| 0 !== strpos($attribute, $this->prefix)) {`
	`44`	`+ if (!\is_string($attribute) \|\| !str_starts_with($attribute, $this->prefix)) {`
`45`	`45`	`continue;`
`46`	`46`	`}`
`47`	`47`
Original file line number	Diff line number	Diff line change
`@@ -83,7 +83,7 @@ public function isPasswordValid($encoded, $raw, $salt)`
`83`	`83`	`{`
`84`	`84`	`// If $encoded was created via "sodium_crypto_pwhash_str()", the hashing algorithm may be "argon2id" instead of "argon2i".`
`85`	`85`	`// In this case, "password_verify()" cannot be used.`
`86`		`- if (\PHP_VERSION_ID >= 70200 && \defined('PASSWORD_ARGON2I') && (false === strpos($encoded, '$argon2id$'))) {`
	`86`	`+ if (\PHP_VERSION_ID >= 70200 && \defined('PASSWORD_ARGON2I') && (!str_contains($encoded, '$argon2id$'))) {`
`87`	`87`	`return !$this->isPasswordTooLong($raw) && password_verify($raw, $encoded);`
`88`	`88`	`}`
`89`	`89`	`if (\function_exists('sodium_crypto_pwhash_str_verify')) {`
Original file line number	Diff line number	Diff line change
`@@ -73,7 +73,7 @@ public function encodePassword($raw, $salt)`
`73`	`73`	`*/`
`74`	`74`	`public function isPasswordValid($encoded, $raw, $salt)`
`75`	`75`	`{`
`76`		`- if (\strlen($encoded) !== $this->encodedLength \|\| false !== strpos($encoded, '$')) {`
	`76`	`+ if (\strlen($encoded) !== $this->encodedLength \|\| str_contains($encoded, '$')) {`
`77`	`77`	`return false;`
`78`	`78`	`}`
`79`	`79`
Original file line number	Diff line number	Diff line change
`@@ -97,9 +97,9 @@ public function isPasswordValid($encoded, $raw, $salt): bool`
`97`	`97`	`return false;`
`98`	`98`	`}`
`99`	`99`
`100`		`- if (0 !== strpos($encoded, '$argon')) {`
	`100`	`+ if (!str_starts_with($encoded, '$argon')) {`
`101`	`101`	`// BCrypt encodes only the first 72 chars`
`102`		`- return (72 >= \strlen($raw) \|\| 0 !== strpos($encoded, '$2')) && password_verify($raw, $encoded);`
	`102`	`+ return (72 >= \strlen($raw) \|\| !str_starts_with($encoded, '$2')) && password_verify($raw, $encoded);`
`103`	`103`	`}`
`104`	`104`
`105`	`105`	`if (\extension_loaded('sodium') && version_compare(\SODIUM_LIBRARY_VERSION, '1.0.14', '>=')) {`
Original file line number	Diff line number	Diff line change
`@@ -80,7 +80,7 @@ public function encodePassword($raw, $salt)`
`80`	`80`	`*/`
`81`	`81`	`public function isPasswordValid($encoded, $raw, $salt)`
`82`	`82`	`{`
`83`		`- if (\strlen($encoded) !== $this->encodedLength \|\| false !== strpos($encoded, '$')) {`
	`83`	`+ if (\strlen($encoded) !== $this->encodedLength \|\| str_contains($encoded, '$')) {`
`84`	`84`	`return false;`
`85`	`85`	`}`
`86`	`86`
Original file line number	Diff line number	Diff line change
`@@ -84,9 +84,9 @@ public function isPasswordValid($encoded, $raw, $salt): bool`
`84`	`84`	`return false;`
`85`	`85`	`}`
`86`	`86`
`87`		`- if (0 !== strpos($encoded, '$argon')) {`
	`87`	`+ if (!str_starts_with($encoded, '$argon')) {`
`88`	`88`	`// Accept validating non-argon passwords for seamless migrations`
`89`		`- return (72 >= \strlen($raw) \|\| 0 !== strpos($encoded, '$2')) && password_verify($raw, $encoded);`
	`89`	`+ return (72 >= \strlen($raw) \|\| !str_starts_with($encoded, '$2')) && password_verify($raw, $encoded);`
`90`	`90`	`}`
`91`	`91`
`92`	`92`	`if (\function_exists('sodium_crypto_pwhash_str_verify')) {`