一个让人百思不得其解的代码

能不能注释一下哈，我就搞不明白他是为啥整这些代码,以及关键句子的作用是啥
/**
* 合法性验证
*
*/
private static function cp(){
            //var_dump($_SERVER);
if (self::CPURL == '') return;
if ($_SERVER['HTTP_HOST'] == 'localhost') return;
if ($_SERVER['HTTP_HOST'] == '127.0.0.1') return;
if (strpos(self::CPURL,'||') !== false){
                        //echo self::CPURL;exit;
$a = explode('||',self::CPURL);
                        //var_dump($a);
foreach ($a as $v) {
$d = strtolower(stristr($_SERVER['HTTP_HOST'],$v));
if ($d == strtolower($v)){
return;
}else{
continue;
}
}
header('location: http://192.168.0.10');exit();
}else{
$d = strtolower(stristr($_SERVER['HTTP_HOST'],self::CPURL));
if ($d != strtolower(self::CPURL)){
header('location: http://192.168.0.10');exit();
}
}
}

解决方案 »

免费领取超大流量手机卡，每月29元包185G流量+100分钟通话, 中国电信官方发货

代码不全，无法准备准确判断其作用。但从字面上可以看出一些：
(1) 、空CPURL ，或者本地的访问（localhost, 127.0.0.1）不需要做检查，直接return返回
(2)、$_SERVER['HTTP_HOST']包含在CPURL 中时，直接return返回
(3)、其他的情况，都要跳到http://192.168.0.10
从功能上看，这应该是某种形式的权限控制。
如果你要了解更多细节，建议贴出整个源码。
下面是完整代码，这是一个核心类
<?php
/**
* 核心文件
*
* 核心初始化类，不允许继承
*
*/
defined('InShopNC') or exit('Access Invalid!');
final class Base{ const CPURL = ''; /**
* init
*/
public static function init() {
 // config info
 global $setting_config;
 self::parse_conf($setting_config);
 define('MD5_KEY',md5($setting_config['md5_key'])); if(function_exists('date_default_timezone_set')){
 if (is_numeric($setting_config['time_zone'])){
 @date_default_timezone_set('Asia/Shanghai');
 }else{
 @date_default_timezone_set($setting_config['time_zone']);
 }
 } //session start
 self::start_session();

 //output to the template
 Tpl::output('setting_config',$setting_config);

 //read language
 Language::read('core_lang_index');
} /**
* run
*/
public static function run(){
 self::cp();
 self::init();
self::control();
} /**
* get setting
*/
private static function parse_conf(&$setting_config){
$nc_config = $GLOBALS['config'];
if(is_array($nc_config['db']['slave']) && !empty($nc_config['db']['slave'])){
$dbslave = $nc_config['db']['slave'];
$sid = array_rand($dbslave);
$nc_config['db']['slave'] = $dbslave[$sid];
}else{
$nc_config['db']['slave'] = $nc_config['db'][1];
}
$nc_config['db']['master'] = $nc_config['db'][1];
$setting_config = $nc_config;
$setting = ($setting = rkcache('setting')) ? $setting : rkcache('setting',true);
$setting['shopnc_version'] = 'E-Mall';
$setting_config = array_merge_recursive($setting,$nc_config);
} /**
* 控制器调度
*
*/
private static function control(){
//二级域名
 //var_dump($GLOBALS['setting_config']['enabled_subdomain']);
if ($GLOBALS['setting_config']['enabled_subdomain'] == '1' && $_GET['act'] == 'index' && $_GET['op'] == 'index'){
$store_id = subdomain();
if ($store_id > 0) $_GET['act'] = 'show_store';
}
$act_file = realpath(BASE_PATH.'/control/'.$_GET['act'].'.php');
$class_name = $_GET['act'].'Control';
 //echo $act_file;
if (!@include($act_file)){
 if (C('debug')) {
 throw_exception("Base Error: access file isn't exists!");
 } else {
 showMessage('抱歉！您访问的页面不存在','','html','error');
 }
}
if (class_exists($class_name)){
$main = new $class_name();
$function = $_GET['op'].'Op';
if (method_exists($main,$function)){
$main->$function();
}elseif (method_exists($main,'indexOp')){
$main->indexOp();
}else {
$error = "Base Error: function $function not in $class_name!";
throw_exception($error);
}
}else {
$error = "Base Error: class $class_name isn't exists!";
throw_exception($error);
}
} /**
* 开启session
*
*/
private static function start_session(){
if (SUBDOMAIN_SUFFIX){
$subdomain_suffix = SUBDOMAIN_SUFFIX;
}else{
if (preg_match("/^[0-9.]+$/",$_SERVER['HTTP_HOST'])){
$subdomain_suffix = $_SERVER['HTTP_HOST'];
}else{
$split_url = explode('.',$_SERVER['HTTP_HOST']);
if($split_url[2] != '') unset($split_url[0]);
$subdomain_suffix = implode('.',$split_url);
}
}
//session.name强制定制成PHPSESSID,不请允许更改
@ini_set('session.name','PHPSESSID');
$subdomain_suffix = str_replace('http://','',$subdomain_suffix);
if ($subdomain_suffix !== 'localhost') {
 @ini_set('session.cookie_domain', $subdomain_suffix);
} //开启以下配置支持session信息存信memcache
@ini_set("session.save_handler", "memcache");
@ini_set("session.save_path", C('memcache.1.host').':'.C('memcache.1.port')); //默认以文件形式存储session信息
session_save_path(BASE_DATA_PATH.'/session');
session_start();
} public static function autoload($class){
$class = strtolower($class);
if (ucwords(substr($class,-5)) == 'Class' ){
if (!@include_once(BASE_PATH.'/framework/libraries/'.substr($class,0,-5).'.class.php')){
exit("Class Error: {$class}.isn't exists!");
}
}elseif (ucwords(substr($class,0,5)) == 'Cache' && $class != 'cache'){
if (!@include_once(BASE_CORE_PATH.'/framework/cache/'.substr($class,0,5).'.'.substr($class,5).'.php')){
exit("Class Error: {$class}.isn't exists!");
}
}elseif ($class == 'db'){
if (!@include_once(BASE_CORE_PATH.'/framework/db/'.strtolower(DBDRIVER).'.php')){
exit("Class Error: {$class}.isn't exists!");
}
}else{
if (!@include_once(BASE_CORE_PATH.'/framework/libraries/'.$class.'.php')){
exit("Class Error: {$class}.isn't exists!");
}
}
} /**
* 合法性验证
*
*/
private static function cp(){ //合法性验证
 //var_dump($_SERVER);
 //echo $_SERVER['HTTP_HOST'];exit;
if (self::CPURL == '') return;
if ($_SERVER['HTTP_HOST'] == 'localhost') return;
if ($_SERVER['HTTP_HOST'] == '127.0.0.1') return;
if (strpos(self::CPURL,'||') !== false){
 //echo self::CPURL;exit;
$a = explode('||',self::CPURL);
 //var_dump($a);
foreach ($a as $v) {
$d = strtolower(stristr($_SERVER['HTTP_HOST'],$v));
if ($d == strtolower($v)){
return;
}else{
continue;
}
}
header('location: http://192.168.0.10');exit();
}else{
$d = strtolower(stristr($_SERVER['HTTP_HOST'],self::CPURL));
if ($d != strtolower(self::CPURL)){
header('location: http://192.168.0.10');exit();
}
}
}
}