diag: Fix race condition while accessing mdlog session info

	struct diag_mask_info *msg_mask;

	struct diag_mask_info *log_mask;

	struct diag_mask_info *event_mask;

	struct thread_info *md_client_thread_info;

	struct task_struct *task;

};

		mutex_unlock(&driver->md_session_lock);

		return -ENOMEM;

	}

	new_session->peripheral_mask = 0;

	new_session->pid = current->tgid;

	new_session->task = current;

	new_session->md_client_thread_info = current_thread_info();

	new_session->log_mask = kzalloc(sizeof(struct diag_mask_info),

					GFP_KERNEL);

	if (!new_session->log_mask) {

struct diag_md_session_t *diag_md_session_get_pid(int pid)

{

	int i;

	for (i = 0; i < NUM_MD_SESSIONS; i++) {

		if (driver->md_session_map[i] &&

		    driver->md_session_map[i]->pid == pid)

		 * If this session owns all the requested peripherals, then

		 * call function to switch the modes/masks for the md_session

		 */

		mutex_lock(&driver->md_session_lock);

		session_info = diag_md_session_get_pid(current->tgid);

		mutex_unlock(&driver->md_session_lock);

		if (!session_info) {

			*change_mode = 1;

			return 0;

		 * owned by this md session

		 */

		change_mask = driver->md_session_mask & param->peripheral_mask;

		mutex_lock(&driver->md_session_lock);

		session_info = diag_md_session_get_pid(current->tgid);

		mutex_unlock(&driver->md_session_lock);

		if (session_info) {

			if ((session_info->peripheral_mask & change_mask)

{

	uint8_t hdlc_support;

	struct diag_md_session_t *session_info = NULL;

	mutex_lock(&driver->md_session_lock);

	session_info = diag_md_session_get_pid(current->tgid);

	mutex_unlock(&driver->md_session_lock);

	if (copy_from_user(&hdlc_support, (void __user *)ioarg,

				sizeof(uint8_t)))

		return -EFAULT;

	} else {

		wait_event_interruptible(driver->wait_q,

					 (driver->in_busy_pktdata == 0));

		mutex_lock(&driver->md_session_lock);

		info = diag_md_session_get_pid(current->tgid);

		mutex_unlock(&driver->md_session_lock);

		ret = diag_process_apps_pkt(user_space_data, len, info);

		if (ret == 1)

			diag_send_error_rsp((void *)(user_space_data), len,

	/* send masks to local processor now */

	if (!remote_proc) {

		mutex_lock(&driver->md_session_lock);

		session_info = diag_md_session_get_pid(current->tgid);

		mutex_unlock(&driver->md_session_lock);

		if (!session_info) {

			pr_err("diag:In %s request came from invalid md session pid:%d",

				__func__, current->tgid);

		COPY_USER_SPACE_OR_EXIT(buf, data_type, sizeof(int));

		/* place holder for number of data field */

		ret += sizeof(int);

		mutex_lock(&driver->md_session_lock);

		session_info = diag_md_session_get_pid(current->tgid);

		mutex_unlock(&driver->md_session_lock);

		exit_stat = diag_md_copy_to_user(buf, &ret, count,

						 session_info);

		goto exit;

		data_type = driver->data_ready[index] & HDLC_SUPPORT_TYPE;

		driver->data_ready[index] ^= HDLC_SUPPORT_TYPE;

		COPY_USER_SPACE_OR_EXIT(buf, data_type, sizeof(int));

		mutex_lock(&driver->md_session_lock);

		session_info = diag_md_session_get_pid(current->tgid);

		mutex_unlock(&driver->md_session_lock);

		if (session_info)

			COPY_USER_SPACE_OR_EXIT(buf+4,

					session_info->hdlc_disabled,

/* Copyright (c) 2011-2016, The Linux Foundation. All rights reserved.

/* Copyright (c) 2011-2017, The Linux Foundation. All rights reserved.

 *

 * This program is free software; you can redistribute it and/or modify

 * it under the terms of the GNU General Public License version 2 and

	info.si_signo = SIGCONT;

	if (driver->md_session_map[peripheral] &&

		driver->md_session_map[peripheral]->task) {

		if (driver->md_session_map[peripheral]->pid ==

		if (driver->md_session_map[peripheral]->

			md_client_thread_info->task != NULL

			&& driver->md_session_map[peripheral]->pid ==

			driver->md_session_map[peripheral]->task->tgid) {

			DIAG_LOG(DIAG_DEBUG_PERIPHERALS,

				"md_session %d pid = %d, md_session %d task tgid = %d\n",