smb: client: add mid_counter_lock to protect the mid counter counter

	wait_queue_head_t response_q;

	wait_queue_head_t request_q; /* if more than maxmpx to srvr must block*/

	spinlock_t mid_queue_lock;  /* protect mid queue */

	spinlock_t mid_counter_lock;

	struct list_head pending_mid_q;

	bool noblocksnd;		/* use blocking sendmsg */

	bool noautotune;		/* do not autotune send buf sizes */

	/* SMB_COM_WRITE_RAW or SMB_COM_READ_RAW. */

	unsigned int capabilities; /* selective disabling of caps by smb sess */

	int timeAdj;  /* Adjust for difference in server time zone in sec */

	__u64 CurrentMid;         /* multiplex id - rotating counter, protected by GlobalMid_Lock */

	__u64 current_mid;	/* multiplex id - rotating counter, protected by mid_counter_lock */

	char cryptkey[CIFS_CRYPTO_KEY_SIZE]; /* used by ntlm, ntlmv2 etc */

	/* 16th byte of RFC1001 workstation name is always null */

	char workstation_RFC1001_name[RFC1001_NAME_LEN_WITH_NULL];

 *				GlobalTotalActiveXid

 * TCP_Server_Info->srv_lock	(anything in struct not protected by another lock and can change)

 * TCP_Server_Info->mid_queue_lock	TCP_Server_Info->pending_mid_q	cifs_get_tcp_session

 *				->CurrentMid

 *				(any changes in mid_q_entry fields)

 * TCP_Server_Info->mid_counter_lock    TCP_Server_Info->current_mid    cifs_get_tcp_session

 * TCP_Server_Info->req_lock	TCP_Server_Info->in_flight	cifs_get_tcp_session

 *				->credits

 *				->echo_credits

	}

	cifs_dbg(FYI, "Mark tcp session as need reconnect\n");

	trace_smb3_reconnect(server->CurrentMid, server->conn_id,

	trace_smb3_reconnect(server->current_mid, server->conn_id,

			     server->hostname);

	server->tcpStatus = CifsNeedReconnect;

		spin_unlock(&server->req_lock);

		wake_up(&server->request_q);

		trace_smb3_hdr_credits(server->CurrentMid,

		trace_smb3_hdr_credits(server->current_mid,

				server->conn_id, server->hostname, scredits,

				le16_to_cpu(shdr->CreditRequest), in_flight);

		cifs_server_dbg(FYI, "%s: added %u credits total=%d\n",

	spin_lock_init(&tcp_ses->req_lock);

	spin_lock_init(&tcp_ses->srv_lock);

	spin_lock_init(&tcp_ses->mid_queue_lock);

	spin_lock_init(&tcp_ses->mid_counter_lock);

	INIT_LIST_HEAD(&tcp_ses->tcp_ses_list);

	INIT_LIST_HEAD(&tcp_ses->smb_ses_list);

	INIT_DELAYED_WORK(&tcp_ses->echo, cifs_echo_request);

	__u16 last_mid, cur_mid;

	bool collision, reconnect = false;

	spin_lock(&server->mid_queue_lock);

	spin_lock(&server->mid_counter_lock);

	/* mid is 16 bit only for CIFS/SMB */

	cur_mid = (__u16)((server->CurrentMid) & 0xffff);

	cur_mid = (__u16)((server->current_mid) & 0xffff);

	/* we do not want to loop forever */

	last_mid = cur_mid;

	cur_mid++;

			cur_mid++;

		num_mids = 0;

		spin_lock(&server->mid_queue_lock);

		list_for_each_entry(mid_entry, &server->pending_mid_q, qhead) {

			++num_mids;

			if (mid_entry->mid == cur_mid &&

				break;

			}

		}

		spin_unlock(&server->mid_queue_lock);

		/*

		 * if we have more than 32k mids in the list, then something

		if (!collision) {

			mid = (__u64)cur_mid;

			server->CurrentMid = mid;

			server->current_mid = mid;

			break;

		}

		cur_mid++;

	}

	spin_unlock(&server->mid_queue_lock);

	spin_unlock(&server->mid_counter_lock);

	if (reconnect) {

		cifs_signal_cifsd_for_reconnect(server, false);

	if (*val > 65000) {

		*val = 65000; /* Don't get near 64K credits, avoid srv bugs */

		pr_warn_once("server overflowed SMB3 credits\n");

		trace_smb3_overflow_credits(server->CurrentMid,

		trace_smb3_overflow_credits(server->current_mid,

					    server->conn_id, server->hostname, *val,

					    add, server->in_flight);

	}

	wake_up(&server->request_q);

	if (reconnect_detected) {

		trace_smb3_reconnect_detected(server->CurrentMid,

		trace_smb3_reconnect_detected(server->current_mid,

			server->conn_id, server->hostname, scredits, add, in_flight);

		cifs_dbg(FYI, "trying to put %d credits from the old server instance %d\n",

	}

	if (reconnect_with_invalid_credits) {

		trace_smb3_reconnect_with_invalid_credits(server->CurrentMid,

		trace_smb3_reconnect_with_invalid_credits(server->current_mid,

			server->conn_id, server->hostname, scredits, add, in_flight);

		cifs_dbg(FYI, "Negotiate operation when server credits is non-zero. Optype: %d, server credits: %d, credits added: %d\n",

			 optype, scredits, add);

		break;

	}

	trace_smb3_add_credits(server->CurrentMid,

	trace_smb3_add_credits(server->current_mid,

			server->conn_id, server->hostname, scredits, add, in_flight);

	cifs_dbg(FYI, "%s: added %u credits total=%d\n", __func__, add, scredits);

}

	in_flight = server->in_flight;

	spin_unlock(&server->req_lock);

	trace_smb3_set_credits(server->CurrentMid,

	trace_smb3_set_credits(server->current_mid,

			server->conn_id, server->hostname, scredits, val, in_flight);

	cifs_dbg(FYI, "%s: set %u credits\n", __func__, val);

	in_flight = server->in_flight;

	spin_unlock(&server->req_lock);

	trace_smb3_wait_credits(server->CurrentMid,

	trace_smb3_wait_credits(server->current_mid,

			server->conn_id, server->hostname, scredits, -(credits->value), in_flight);

	cifs_dbg(FYI, "%s: removed %u credits total=%d\n",

			__func__, credits->value, scredits);

				      server->credits, server->in_flight,

				      new_val - credits->value,

				      cifs_trace_rw_credits_no_adjust_up);

		trace_smb3_too_many_credits(server->CurrentMid,

		trace_smb3_too_many_credits(server->current_mid,

				server->conn_id, server->hostname, 0, credits->value - new_val, 0);

		cifs_server_dbg(VFS, "R=%x[%x] request has less credits (%d) than required (%d)",

				subreq->rreq->debug_id, subreq->subreq.debug_index,

				      server->credits, server->in_flight,

				      new_val - credits->value,

				      cifs_trace_rw_credits_old_session);

		trace_smb3_reconnect_detected(server->CurrentMid,

		trace_smb3_reconnect_detected(server->current_mid,

			server->conn_id, server->hostname, scredits,

			credits->value - new_val, in_flight);

		cifs_server_dbg(VFS, "R=%x[%x] trying to return %d credits to old session\n",

	spin_unlock(&server->req_lock);

	wake_up(&server->request_q);

	trace_smb3_adj_credits(server->CurrentMid,

	trace_smb3_adj_credits(server->current_mid,

			server->conn_id, server->hostname, scredits,

			credits->value - new_val, in_flight);

	cifs_dbg(FYI, "%s: adjust added %u credits total=%d\n",

{

	__u64 mid;

	/* for SMB2 we need the current value */

	spin_lock(&server->mid_queue_lock);

	mid = server->CurrentMid++;

	spin_unlock(&server->mid_queue_lock);

	spin_lock(&server->mid_counter_lock);

	mid = server->current_mid++;

	spin_unlock(&server->mid_counter_lock);

	return mid;

}

static void

smb2_revert_current_mid(struct TCP_Server_Info *server, const unsigned int val)

{

	spin_lock(&server->mid_queue_lock);

	if (server->CurrentMid >= val)

		server->CurrentMid -= val;

	spin_unlock(&server->mid_queue_lock);

	spin_lock(&server->mid_counter_lock);

	if (server->current_mid >= val)

		server->current_mid -= val;

	spin_unlock(&server->mid_counter_lock);

}

static struct mid_q_entry *

{

	int rc;

	spin_lock(&server->mid_queue_lock);

	server->CurrentMid = 0;

	spin_unlock(&server->mid_queue_lock);

	spin_lock(&server->mid_counter_lock);

	server->current_mid = 0;

	spin_unlock(&server->mid_counter_lock);

	rc = SMB2_negotiate(xid, ses, server);

	return rc;

}

		spin_unlock(&server->req_lock);

		wake_up(&server->request_q);

		trace_smb3_pend_credits(server->CurrentMid,

		trace_smb3_pend_credits(server->current_mid,

				server->conn_id, server->hostname, scredits,

				le16_to_cpu(shdr->CreditRequest), in_flight);

		cifs_dbg(FYI, "%s: status pending add %u credits total=%d\n",

		 * socket so the server throws away the partial SMB

		 */

		cifs_signal_cifsd_for_reconnect(server, false);

		trace_smb3_partial_send_reconnect(server->CurrentMid,

		trace_smb3_partial_send_reconnect(server->current_mid,

						  server->conn_id, server->hostname);

	}

smbd_done:

		in_flight = server->in_flight;

		spin_unlock(&server->req_lock);

		trace_smb3_nblk_credits(server->CurrentMid,

		trace_smb3_nblk_credits(server->current_mid,

				server->conn_id, server->hostname, scredits, -1, in_flight);

		cifs_dbg(FYI, "%s: remove %u credits total=%d\n",

				__func__, 1, scredits);

				in_flight = server->in_flight;

				spin_unlock(&server->req_lock);

				trace_smb3_credit_timeout(server->CurrentMid,

				trace_smb3_credit_timeout(server->current_mid,

						server->conn_id, server->hostname, scredits,

						num_credits, in_flight);

				cifs_server_dbg(VFS, "wait timed out after %d ms\n",

					spin_unlock(&server->req_lock);

					trace_smb3_credit_timeout(

							server->CurrentMid,

							server->current_mid,

							server->conn_id, server->hostname,

							scredits, num_credits, in_flight);

					cifs_server_dbg(VFS, "wait timed out after %d ms\n",

			in_flight = server->in_flight;

			spin_unlock(&server->req_lock);

			trace_smb3_waitff_credits(server->CurrentMid,

			trace_smb3_waitff_credits(server->current_mid,

					server->conn_id, server->hostname, scredits,

					-(num_credits), in_flight);

			cifs_dbg(FYI, "%s: remove %u credits total=%d\n",

		 */

		if (server->in_flight == 0) {

			spin_unlock(&server->req_lock);

			trace_smb3_insufficient_credits(server->CurrentMid,

			trace_smb3_insufficient_credits(server->current_mid,

					server->conn_id, server->hostname, scredits,

					num, in_flight);

			cifs_dbg(FYI, "%s: %d requests in flight, needed %d total=%d\n",