MFH: Added missing input validation to dio_write().

diff --git a/ext/dio/dio.c b/ext/dio/dio.c
index b237430eedb842549f054eb18fcff1233a997ff1..4e26188aa951fa96fb5e396b5924ba08af8d1434 100644 (file)
--- a/ext/dio/dio.c
+++ b/ext/dio/dio.c
@@ -249,6 +249,11 @@ PHP_FUNCTION(dio_write)
                return;
        }
 
+       if (trunc_len <= 0 || trunc_len > data_len) {
+               php_error_docref(NULL TSRMLS_CC, E_WARNING, "length must be greater then zero and less then the length of specified string.");
+               RETURN_FALSE;
+       }
+
        ZEND_FETCH_RESOURCE(f, php_fd_t *, &r_fd, -1, le_fd_name, le_fd);
 
        res = write(f->fd, data, trunc_len ? trunc_len : data_len);