extracted x509Octets parsing logic into IpAddressAndPrefix

Author: StjepanovicSrdjan

cidre/src/commonMain/kotlin/at/asitplus/cidre/IpAddressAndPrefix.kt

@@ -2,6 +2,7 @@ package at.asitplus.cidre
 
 import at.asitplus.cidre.byteops.CidrNumber
 import at.asitplus.cidre.byteops.invInPlace
+import at.asitplus.cidre.byteops.toPrefix
 import kotlin.contracts.ExperimentalContracts
 import kotlin.contracts.contract
 
@@ -44,6 +45,39 @@ sealed interface IpAddressAndPrefix<N : Number, S : CidrNumber<S>> {
     /**`true` if this is (part of)  the [IpNetwork.SpecialRanges.multicast] network */
     val isMulticast: Boolean
 
+    /**
+     * Encodes this network into X.509 iPAddressName ByteArray (RFC 5280).
+     * IPv4: [4 bytes base address][4 bytes subnet mask]  (8 bytes)
+     * IPv6: [16 bytes base address][16 bytes subnet mask] (32 bytes)
+     */
+    fun toX509Octets(): ByteArray = address.octets + netmask
+
+    companion object {
+
+        /**
+         * Low-level helper used by [IpNetwork.fromX509Octets] and [IpInterface.fromX509Octets]
+         * to extract base address and CIDR prefix
+         * IPv4: [4 bytes base address][4 bytes subnet mask]  (8 bytes)
+         * IPv6: [16 bytes base address][16 bytes subnet mask] (32 bytes)
+         */
+        internal fun parseX509Octets(bytes: ByteArray): Pair<IpAddress<*, *>, Prefix> =
+            when (bytes.size) {
+                2 * IpFamily.V4.numberOfOctets -> {
+                    val address = bytes.copyOfRange(0, 4)
+                    val mask = bytes.copyOfRange(4, 8)
+                    IpAddress.V4(address) to mask.toPrefix()
+                }
+
+                2 * IpFamily.V6.numberOfOctets -> {
+                    val address = bytes.copyOfRange(0, 16)
+                    val mask = bytes.copyOfRange(16, 32)
+                    IpAddress.V6(address) to mask.toPrefix()
+                }
+
+                else -> throw IllegalArgumentException("Invalid iPAddress length: ${bytes.size}")
+            }
+    }
+
     /**
      * Sealed base interface of [IpAddress.V4] and [IpInterface.V4] with IPv4-specific add-ons.
      *

cidre/src/commonMain/kotlin/at/asitplus/cidre/IpInterface.kt

@@ -1,5 +1,6 @@
 package at.asitplus.cidre
 
+import at.asitplus.cidre.IpAddressAndPrefix.Companion.parseX509Octets
 import at.asitplus.cidre.byteops.CidrNumber
 
 
@@ -13,6 +14,8 @@ constructor(override val prefix: Prefix, val network: IpNetwork<N, S>) :
 
     override fun toString(): String = "$address/$prefix"
 
+    override fun toX509Octets(): ByteArray = super.toX509Octets()
+
     companion object {
         @Suppress("UNCHECKED_CAST")
         internal fun <N : Number, S: CidrNumber<S>> unsafe(
@@ -39,6 +42,20 @@ constructor(override val prefix: Prefix, val network: IpNetwork<N, S>) :
             val (addr, prefix) = parseIpAndPrefix(stringRepresentation)
             return IpInterface(addr, prefix)
         }
+
+        /**
+         * Decodes an IpInterface from X.509 iPAddressName ByteArray (RFC 5280).
+         * IPv4: [4 bytes base address][4 bytes subnet mask]  (8 bytes)
+         * IPv6: [16 bytes base address][16 bytes subnet mask] (32 bytes)
+         */
+        @Throws(IllegalArgumentException::class)
+        fun fromX509Octets(bytes: ByteArray): IpInterface<*, *> {
+            val (address, prefix) = parseX509Octets(bytes)
+            return when (address) {
+                is IpAddress.V4 -> V4(address, prefix)
+                is IpAddress.V6 -> V6(address, prefix)
+            }
+        }
     }
 
     class V4 internal constructor(override val address: IpAddress.V4, prefix: Prefix, network: IpNetwork.V4) :

cidre/src/commonMain/kotlin/at/asitplus/cidre/IpNetwork.kt

@@ -1,10 +1,10 @@
 package at.asitplus.cidre
 
+import at.asitplus.cidre.IpAddressAndPrefix.Companion.parseX509Octets
 import at.asitplus.cidre.byteops.CidrNumber
 import at.asitplus.cidre.byteops.and
 import at.asitplus.cidre.byteops.or
 import at.asitplus.cidre.byteops.toNetmask
-import at.asitplus.cidre.byteops.toPrefix
 
 
 sealed class IpNetwork<N : Number, S : CidrNumber<S>>
@@ -211,11 +211,6 @@ constructor(address: IpAddress<N, S>, override val prefix: Prefix, strict: Boole
         return address.octets contentEquals (network.address.octets and netmask)
     }
 
-    /**
-     * Encodes this network into X.509 iPAddressName ByteArray (RFC 5280).
-     */
-    fun toX509Octets(): ByteArray = address.octets + netmask
-
     override fun equals(other: Any?): Boolean {
         if (this === other) return true
         if (other !is IpNetwork<*, *>) return false
@@ -536,27 +531,17 @@ constructor(address: IpAddress<N, S>, override val prefix: Prefix, strict: Boole
 
         /**
          * Decodes an IpNetwork from X.509 iPAddressName ByteArray (RFC 5280).
-         * 8 bytes (IPv4 base+mask)
-         * 32 bytes (IPv6 base+mask)
+         * IPv4: [4 bytes base address][4 bytes subnet mask]  (8 bytes)
+         * IPv6: [16 bytes base address][16 bytes subnet mask] (32 bytes)
          */
-        @Throws(IllegalArgumentException::class)
-        fun fromX509Octets(bytes: ByteArray, strict: Boolean = false): IpNetwork<*, *> {
-            return when (bytes.size) {
-                8 -> {
-                    val address = bytes.copyOfRange(0, 4)
-                    val mask = bytes.copyOfRange(4, 8)
-                    val prefix = mask.toPrefix()
-                    V4(IpAddress.V4(address), prefix, strict = strict)
-                }
-                32 -> {
-                    val address = bytes.copyOfRange(0, 16)
-                    val mask = bytes.copyOfRange(16, 32)
-                    val prefix = mask.toPrefix()
-                    V6(IpAddress.V6(address), prefix, strict = strict)
-                }
-                else -> throw IllegalArgumentException("Invalid iPAddress length: ${bytes.size}")
+        fun fromX509Octets(bytes: ByteArray): IpNetwork<*, *> {
+            val (addr, prefix) = parseX509Octets(bytes)
+            return when (addr) {
+                is IpAddress.V4 -> V4(addr, prefix)
+                is IpAddress.V6 -> V6(addr, prefix)
             }
         }
+
     }
 
 

cidre/src/jvmTest/kotlin/IpAddressNameParsingTest.kt

@@ -1,3 +1,4 @@
+import at.asitplus.cidre.IpInterface
 import at.asitplus.cidre.IpNetwork
 import kotlin.reflect.KClass
 import kotlin.test.Test
@@ -24,13 +25,6 @@ class IpAddressNameParsingTest {
         0xff.toByte(), 0xff.toByte(), 0x00, 0x00,
         0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00
     )
-    private val ipv6aMasked = byteArrayOf(
-        0x20, 0x01, 0x0d, 0xb8.toByte(), 0x85.toByte(), 0xa3.toByte(), 0x00, 0x00,
-        0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
-        0xff.toByte(), 0xff.toByte(), 0xff.toByte(), 0xff.toByte(),
-        0xff.toByte(), 0xff.toByte(), 0x00, 0x00,
-        0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00
-    )
 
     private val ipv6b = byteArrayOf(
         0x20, 0x01, 0x0d, 0xb8.toByte(), 0x85.toByte(), 0xa3.toByte(), 0x00, 0x00,
@@ -54,48 +48,35 @@ class IpAddressNameParsingTest {
         0xff.toByte(), 0xff.toByte(), 0xff.toByte(), 0xfe.toByte(),
         0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00
     )
-    private val ipv6dMasked = byteArrayOf(
-        0x20, 0x01, 0x0d, 0xb8.toByte(), 0x85.toByte(), 0xa2.toByte(), 0x00, 0x00,
-        0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
-        0xff.toByte(), 0xff.toByte(), 0xff.toByte(), 0xff.toByte(), 0xff.toByte(), 0xfe.toByte(),
-        0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00
-    )
 
     private val ipv6e = byteArrayOf(
-        0x20, 0x01, 0x0d, 0xb8.toByte(), 0x85.toByte(), 0xa3.toByte(), 0x00, 0x00,
-        0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
-        0xff.toByte(), 0xff.toByte(), 0xff.toByte(), 0xff.toByte(), 0xff.toByte(), 0xff.toByte(),
-        0xff.toByte(), 0xff.toByte(), 0x80.toByte(), 0x00, 0x00, 0x00,
-        0x00, 0x00, 0x00, 0x00, 0x00, 0x00
-    )
-    private val ipv6eMasked = byteArrayOf(
         0x20, 0x01, 0x0d, 0xb8.toByte(), 0x85.toByte(), 0xa3.toByte(), 0x00, 0x00,
         0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
         0xff.toByte(), 0xff.toByte(), 0xff.toByte(), 0xff.toByte(),
         0xff.toByte(), 0xff.toByte(), 0x80.toByte(), 0x00, 0x00, 0x00,
         0x00, 0x00, 0x00, 0x00, 0x00, 0x00
     )
 
-    private val ipv6aStr = "2001:db8:85a3::/48"
+    private val ipv6aStr = "2001:db8:85a3::8a2e:a09:800/48"
     private val ipv6bStr = "2001:db8:85a3::8a2e:a09:800/128"
     private val ipv6cStr = "2001:db8:85a3::/48"
-    private val ipv6dStr = "2001:db8:85a2::/47"
+    private val ipv6dStr = "2001:db8:85a3::/47"
     private val ipv6eStr = "2001:db8:85a3::/49"
 
-    @Test fun parseIPv6a() = parseCheck(ipv6a, IpNetwork.V6::class, ipv6aStr, ipv6aMasked)
-    @Test fun parseIPv6b() = parseCheck(ipv6b, IpNetwork.V6::class, ipv6bStr)
-    @Test fun parseIPv6c() = parseCheck(ipv6c, IpNetwork.V6::class, ipv6cStr)
-    @Test fun parseIPv6d() = parseCheck(ipv6d, IpNetwork.V6::class, ipv6dStr, ipv6dMasked)
-    @Test fun parseIPv6e() = parseCheck(ipv6e, IpNetwork.V6::class, ipv6eStr, ipv6eMasked)
+    @Test fun parseIPv6a() = parseCheck(ipv6a, IpInterface.V6::class, ipv6aStr)
+    @Test fun parseIPv6b() = parseCheck(ipv6b, IpInterface.V6::class, ipv6bStr)
+    @Test fun parseIPv6c() = parseCheck(ipv6c, IpInterface.V6::class, ipv6cStr)
+    @Test fun parseIPv6d() = parseCheck(ipv6d, IpInterface.V6::class, ipv6dStr)
+    @Test fun parseIPv6e() = parseCheck(ipv6e, IpInterface.V6::class, ipv6eStr)
 
-    @Test fun parseIPv4mask24() = parseCheck(ipv4WithMask1, IpNetwork.V4::class, ipv4WithMask1Str)
-    @Test fun parseIPv4mask17() = parseCheck(ipv4WithMask2, IpNetwork.V4::class, ipv4WithMask2Str)
-    @Test fun parseIPv4mask18() = parseCheck(ipv4WithMask3, IpNetwork.V4::class, ipv4WithMask3Str)
+    @Test fun parseIPv4mask24() = parseCheck(ipv4WithMask1, IpInterface.V4::class, ipv4WithMask1Str)
+    @Test fun parseIPv4mask17() = parseCheck(ipv4WithMask2, IpInterface.V4::class, ipv4WithMask2Str)
+    @Test fun parseIPv4mask18() = parseCheck(ipv4WithMask3, IpInterface.V4::class, ipv4WithMask3Str)
 
-    private fun parseCheck(bytes: ByteArray, expectedType: KClass<out IpNetwork<*, *>>, expectedString: String, expectedBytes: ByteArray? = null) {
-        val network = IpNetwork.fromX509Octets(bytes, false)
-        assertTrue(expectedType.isInstance(network), "Expected type: $expectedType, but got ${network::class}")
-        assertContentEquals(expectedBytes ?: bytes, network.toX509Octets())
-        assertEquals(expectedString, network.toString())
+    private fun parseCheck(bytes: ByteArray, expectedType: KClass<out IpInterface<*, *>>, expectedString: String) {
+        val addressAndPrefix = IpInterface.fromX509Octets(bytes)
+        assertTrue(expectedType.isInstance(addressAndPrefix))
+        assertContentEquals(bytes, addressAndPrefix.toX509Octets())
+        assertEquals(expectedString, addressAndPrefix.toString())
     }
 }