Update StringUtils.php

Author: sarciszewski

Util/StringUtils.php

@@ -45,8 +45,8 @@ public static function equals($knownString, $userInput)
             return hash_equals($knownString, $userInput);
         }
 
-        $knownLen = strlen($knownString);
-        $userLen = strlen($userInput);
+        $knownLen = self::safeStrlen($knownString);
+        $userLen = self::safeStrlen($userInput);
 
         // Extend the known string to avoid uninitialized string offsets
         $knownString .= $userInput;
@@ -63,4 +63,18 @@ public static function equals($knownString, $userInput)
         // They are only identical strings if $result is exactly 0...
         return 0 === $result;
     }
+    
+    /**
+     * Return the number of bytes in a string
+     * 
+     * @param string $string The string whose length we wish to obtain
+     * @return int
+     */
+    public static function safeStrlen($string)
+    {
+        if (function_exists('mb_strlen')) {
+            return mb_strlen($string, '8bit');
+        }
+        return strlen($string);
+    }
 }