net/netrom: Fix socket locking

upstream commit: cc29c70dd581f85ee7a3e7980fb031f90b90a2ab Patch "af_rose/x25: Sanity check the maximum user frame size" (commit 83e0bbcbe2145f160fbaa109b0439dae7f4a38a9) from Alan Cox got locking wrong. If we bail out due to user frame size being too large, we must unlock the socket beforehand. Signed-off-by: Jean Delvare <jdelvare@suse.de> Signed-off-by: David S. Miller <davem@davemloft.net> Signed-off-by: Chris Wright <chrisw@sous-sol.org> Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
author: Jean Delvare <jdelvare@suse.de> 2009-04-22 00:49:51 -0700
committer: Greg Kroah-Hartman <gregkh@suse.de> 2009-05-02 10:24:05 -0700
commit: ce1b8904ff876fdb4bbebd0b7b850fd20e143980 (patch)
tree: ce8540957b4ba02e5e23b9a9a450bd41bd442ee3 /net
parent: e16cf6626bb2160fee3dfda596a2b1469486c585 (diff)
1 files changed, 4 insertions, 2 deletions
diff --git a/net/netrom/af_netrom.c b/net/netrom/af_netrom.c
index 24da05040fd..db9e263fa62 100644
--- a/net/netrom/af_netrom.c
+++ b/net/netrom/af_netrom.c
@@ -1084,8 +1084,10 @@ static int nr_sendmsg(struct kiocb *iocb, struct socket *sock,
 
 	/* Build a packet - the conventional user limit is 236 bytes. We can
 	   do ludicrously large NetROM frames but must not overflow */
-	if (len > 65536)
-		return -EMSGSIZE;
+	if (len > 65536) {
+		err = -EMSGSIZE;
+		goto out;
+	}
 
 	SOCK_DEBUG(sk, "NET/ROM: sendto: building packet.\n");
 	size = len + NR_NETWORK_LEN + NR_TRANSPORT_LEN;
author	Jean Delvare <jdelvare@suse.de>	2009-04-22 00:49:51 -0700
committer	Greg Kroah-Hartman <gregkh@suse.de>	2009-05-02 10:24:05 -0700
commit	ce1b8904ff876fdb4bbebd0b7b850fd20e143980 (patch)
tree	ce8540957b4ba02e5e23b9a9a450bd41bd442ee3 /net
parent	e16cf6626bb2160fee3dfda596a2b1469486c585 (diff)