[#ZF-3570] Zend_Validate_Hostname - lengh check for idn domains incorrect - Zend Framework Issue Tracker

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 1.5.2
Fix Version/s: 1.8.0
Component/s: Zend_Validate
Labels:
None

Description

Zend_Validate_Hostname does not validate the length of idn domains correctly.

$IDN = new Net_IDNA_php5();
$validator = new Zend_Validate_Hostname();
$host = "müslikjmnhjukiüöäüökiöäüökiijhnmjkiüöäimkjnhukääumhnjuikhum123n.de";
$hostascii = $IDN->encode($host);

echo "Domain: $host - length: ".(mb_strlen($host, "utf8")-3)." (without '.de')\n";
echo "Domain: $hostascii - length: ".(mb_strlen($hostascii, "utf8")-3)." (without '.de') \n";

if ($validator->isValid($host)) {
    echo "Hostname OK\n"; 
} else {
    foreach ($validator->getMessages() as $message) echo "$message\n";
}

results in:

Domain: müslikjmnhjukiüöäüökiöäüökiijhnmjkiüöäimkjnhukääumhnjuikhum123n.de - length: 63 (without '.de'')
Domain: xn--mslikjmnhjukikikiijhnmjkiimkjnhukumhnjuikhum123n-n9dckia16gbacbk73amacfl.de - length: 76 (without '.de') 
Hostname OK

Hostname shouldn't be OK due to its length of 73 chars in Punycode.

Activity

Hide

Permalink

Thomas Weidner added a comment - 21/Mar/09 2:47 PM

New feature implemented with the last rework of Zend_Validate_Hostname

Show

Thomas Weidner added a comment - 21/Mar/09 2:47 PM New feature implemented with the last rework of Zend_Validate_Hostname

People

Assignee:

Thomas Weidner

Reporter:

Jan Schmidle

Vote (0)

Watch (2)

Dates

Created:

03/Jul/08 9:46 AM

Updated:

21/Mar/09 2:47 PM

Resolved:

21/Mar/09 2:47 PM