ID: 49274 Updated by: j...@php.net Reported By: cel...@php.net -Status: Feedback +Status: Bogus Bug Type: Filter related Operating System: * PHP Version: 5.3SVN-2009-08-16 (SVN) New Comment:
This is not a bug. It's exactly what's supposed to happen. When you pass crap in you get crap out. The language isn't supposed to hold your hand in every corner. Previous Comments: ------------------------------------------------------------------------ [2009-08-17 11:45:09] cel...@php.net don't know, that's up to the developers to decide, don't you think? ------------------------------------------------------------------------ [2009-08-17 09:32:59] j...@php.net Does this happen ONLY with PHP_5_3 branch? If not, please use the proper version string. ------------------------------------------------------------------------ [2009-08-16 22:09:05] cel...@php.net Description: ------------ <?php filter_var(new stdClass, FILTER_VALIDATE_EMAIL); ?> throws a fatal error because stdClass can't be converted into a string. filter_var() should be more flexible and simply return false in this situation, it makes it very difficult to provide validation not just for untrusted user input but for untrusted third party use of libraries who may make it insecure by passing in the wrong value to a field for setting. ------------------------------------------------------------------------ -- Edit this bug report at http://bugs.php.net/?id=49274&edit=1