dns: idna encode hostnames before resolution #25559
Conversation
lib/dns.js
Outdated
| @@ -213,6 +215,7 @@ function resolver(bindingName) { | |||
| throw new ERR_INVALID_CALLBACK(); | |||
| } | |||
|
|
|||
| name = toASCII(name, true); | |||
There was a problem hiding this comment.
this function can theoretically throw in
Line 335 in 2c0a751
There was a problem hiding this comment.
idk, if so, shouldn't we also handle it here to be lenient whether it uses icu or punycode?
There was a problem hiding this comment.
url.parse is synchronous so it's less of an issue. Here the error could only lead to an uncaught exception.
There was a problem hiding this comment.
Updated to ignore exceptions. Thanks
| @@ -22,6 +22,8 @@ | |||
| 'use strict'; | |||
|
|
|||
| const cares = internalBinding('cares_wrap'); | |||
| const { toASCII } = internalBinding('config').hasIntl ? | |||
| internalBinding('icu') : require('punycode'); | |||
There was a problem hiding this comment.
What's the policy here, considering punycode is deprecated?
There was a problem hiding this comment.
FWIW, we do the same thing in lib/url.js, so it's probably fine.
There was a problem hiding this comment.
Using punycode is the fallback if Node.js is compiled without ICU.
There was a problem hiding this comment.
I think it's only deprecated for userland.
| @@ -213,6 +215,11 @@ function resolver(bindingName) { | |||
| throw new ERR_INVALID_CALLBACK(); | |||
| } | |||
|
|
|||
| try { | |||
There was a problem hiding this comment.
Would this be needed if we were only using the ICU based toASCII?
|
Thanks for picking this up @santigimeno ❤️ |
I'm not sure you can remove the |
Isn't there an equivalent that does the job in ASCII instead? |
I don't know, but what's the issue being ASCII a subset of UTF-8? |
| @@ -39,7 +39,8 @@ const addresses = { | |||
| // An accessible IPv4 DNS server | |||
| DNS4_SERVER: '8.8.8.8', | |||
| // An accessible IPv4 DNS server | |||
| DNS6_SERVER: '2001:4860:4860::8888' | |||
| DNS6_SERVER: '2001:4860:4860::8888', | |||
| IDNA_HOST: 'españa.icom.museum' | |||
There was a problem hiding this comment.
domaintest.みんな might be a better testing domain name, info here.
There was a problem hiding this comment.
👍 also, I'd say a comment is missing.
|
@santigimeno Do you have access to node-private? Because this PR is a spiritual duplicate of https://github.com/nodejs-private/node-private/pull/147 :) |
Not really, first time I hear about that repo. Feel free to close this if it's already handled there. |
|
@santigimeno Sorry for the delay, Santi. I've moved it to #25679. |
|
Closing in favor of #25679. Thanks for the heads up Ben. |
Fixes: #25558
Checklist
make -j4 test(UNIX), orvcbuild test(Windows) passes