SUSE-SU-2018:3003-1

The SUSE Linux Enterprise 12 SP3 kernel was updated to 4.4.156 to receive various security and bugfixes.

The following security bugs were fixed:

• CVE-2018-16597: Incorrect access checking in overlayfs mounts could have been used by local attackers to modify or truncate files in the underlying filesystem (bnc#1106512).
• CVE-2018-14613: Prevent invalid pointer dereference in ioctlmappage() when mounting and operating a crafted btrfs image, caused by a lack of block group item validation in checkleaf_item (bsc#1102896)
• CVE-2018-14617: Prevent NULL pointer dereference and panic in hfsplus_lookup() when opening a file (that is purportedly a hard link) in an hfs+ filesystem that has malformed catalog data, and is mounted read-only without a metadata directory (bsc#1102870)
• CVE-2018-16276: Incorrect bounds checking in the yurex USB driver in yurex_read allowed local attackers to use user access read/writes to crash the kernel or potentially escalate privileges (bsc#1106095)
• CVE-2018-7757: Memory leak in the sassmpgetphyevents function in drivers/scsi/libsas/sasexpander.c allowed local users to cause a denial of service (memory consumption) via many read accesses to files in the /sys/class/sasphy directory, as demonstrated by the /sys/class/sasphy/phy-1:0:12/invaliddword_count file (bnc#1084536)
• CVE-2018-7480: The blkcginitqueue function allowed local users to cause a denial of service (double free) or possibly have unspecified other impact by triggering a creation failure (bsc#1082863).
• CVE-2018-17182: The vmacacheflushall function in mm/vmacache.c mishandled sequence number overflows. An attacker can trigger a use-after-free (and possibly gain privileges) via certain thread creation, map, unmap, invalidation, and dereference operations (bnc#1108399).

The following non-security bugs were fixed:

• asm/sections: add helpers to check for section data (bsc#1063026).
• ASoC: wm8994: Fix missing break in switch (bnc#1012382).
• block: bvecnrvecs() returns value for wrong slab (bsc#1082979).
• bpf: fix overflow in prog accounting (bsc#1012382).
• btrfs: Add checker for EXTENT_CSUM (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877, bsc#1102875,).
• btrfs: Add sanity check for EXTENT_DATA when reading out leaf (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877, bsc#1102875,).
• btrfs: Check if item pointer overlaps with the item itself (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877, bsc#1102875,).
• btrfs: Check that each block group has corresponding chunk at mount time (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877, bsc#1102875,).
• btrfs: Introduce mount time chunk <-> dev extent mapping check (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877, bsc#1102875,).
• btrfs: Move leaf and node validation checker to tree-checker.c (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877, bsc#1102875,).
• btrfs: relocation: Only remove reloc rb_trees if reloc control has been initialized (bnc#1012382).
• btrfs: replace: Reset on-disk dev stats value after replace (bnc#1012382).
• btrfs: scrub: Do not use inode page cache in scrubhandleerrored_block() (bsc#1108096).
• btrfs: tree-checker: Add checker for dir item (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877, bsc#1102875,).
• btrfs: tree-checker: Detect invalid and empty essential trees (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877, bsc#1102875,).
• btrfs: tree-checker: Enhance btrfschecknode output (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877, bsc#1102875,).
• btrfs: tree-checker: Enhance output for btrfscheckleaf (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877, bsc#1102875,).
• btrfs: tree-checker: Enhance output for checkcsumitem (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877, bsc#1102875,).
• btrfs: tree-checker: Enhance output for checkextentdata_item (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877, bsc#1102875,).
• btrfs: tree-checker: Fix false panic for sanity test (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877, bsc#1102875,).
• btrfs: tree-checker: Replace root parameter with fs_info (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877, bsc#1102875,).
• btrfs: tree-checker: use %zu format string for size_t (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877, bsc#1102875,).
• btrfs: tree-checker: use %zu format string for size_t (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877, bsc#1102875,).
• btrfs: tree-checker: Verify blockgroupitem (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877, bsc#1102875,).
• btrfs: use correct compare function of dirtymetadatabytes (bnc#1012382).
• btrfs: Verify that every chunk has corresponding block group at mount time (bsc#1102882, bsc#1102896, bsc#1102879, bsc#1102877, bsc#1102875,).
• cifs: check if SMB2 PDU size has been padded and suppress the warning (bnc#1012382).
• crypto: clarify licensing of OpenSSL asm code ().
• crypto: vmx - Remove overly verbose printk from AES XTS init (git-fixes).
• debugobjects: Make stack check warning more informative (bnc#1012382).
• dm kcopyd: avoid softlockup in runcompletejob (bnc#1012382).
• dm-mpath: do not try to access NULL rq (bsc#1110337).
• EDAC: Fix memleak in module init error path (bsc#1109441).
• EDAC, i7core: Fix memleaks and use-after-free on probe and remove (1109441).
• fat: validate ->i_start before using (bnc#1012382).
• Fixes: Commit cdbf92675fad ('mm: numa: avoid waiting on freed migrated pages') (bnc#1012382).
• Follow-up fix for patches.arch/01-jumplabel-reduce-the-size-of-struct-statickey-kabi.patch (bsc#1108803).
• fork: do not copy inconsistent signal handler state to child (bnc#1012382).
• fs/dcache.c: fix kmemcheck splat at takedentryname_snapshot() (bnc#1012382).
• genirq: Delay incrementing interrupt count if it's disabled/pending (bnc#1012382).
• growcache: we still have a code which uses both _GFP_ZERO and constructors. The code seems to be correct and the warning does more harm than good so revert for the the meantime until we catch offenders. (bnc#1110297)
• hfsplus: do not return 0 when fill_super() failed (bnc#1012382).
• hfs: prevent crash on exit from failed search (bnc#1012382).
• ibsrp: Remove WARNON in srpterminateio() (bsc#1094562).
• ipvs: fix race between ipvsconnnew() and ipvsdeldest() (bnc#1012382).
• irqchip/bcm7038-l1: Hide cpu offline callback when building for !SMP (bnc#1012382).
• irqchip/gic-v3: Add missing barrier to 32bit version of gicreadiar() (bnc#1012382).
• kabi protect hnaeaeops (bsc#1107924).
• kbuild: make missing $DEPMOD a Warning instead of an Error (bnc#1012382).
• l2tp: cast l2tp traffic counter to unsigned (bsc#1099810).
• mei: me: allow runtime pm for platform with D0i3 (bnc#1012382).
• mfd: sm501: Set coherentdmamask when creating subdevices (bnc#1012382).
• mm/fadvise.c: fix signed overflow UBSAN complaint (bnc#1012382).
• net/9p: fix error path of p9virtioprobe (bnc#1012382).
• net: bcmgenet: use MAC link status for fixed phy (bnc#1012382).
• net: ena: Eliminate duplicate barriers on weakly-ordered archs (bsc#1108240).
• net: ena: fix device destruction to gracefully free resources (bsc#1108240).
• net: ena: fix driver when PAGE_SIZE == 64kB (bsc#1108240).
• net: ena: fix incorrect usage of memory barriers (bsc#1108240).
• net: ena: fix missing calls to READ_ONCE (bsc#1108240).
• net: ena: fix missing lock during device destruction (bsc#1108240).
• net: ena: fix potential double enadestroydevice() (bsc#1108240).
• net: ena: fix surprise unplug NULL dereference kernel crash (bsc#1108240).
• net: hns: add netifcarrieroff before change speed and duplex (bsc#1107924).
• net: hns: add the code for cleaning pkt in chip (bsc#1107924).
• nvmefc: add 'nvmediscovery' sysfs attribute to fc transport device (bsc#1044189).
• nvmet: fixup crash on NULL device path (bsc#1082979).
• ovl: modify ovl_permission() to do checks on two inodes (bsc#1106512)
• ovl: proper cleanup of workdir (bnc#1012382).
• ovl: rename ismerge to islowest (bnc#1012382).
• PCI: mvebu: Fix I/O space end address calculation (bnc#1012382).
• platform/x86: asus-nb-wmi: Add keymap entry for lid flip action on UX360 (bnc#1012382).
• powerpc/64: Do load of PACAKBASE in LOAD_HANDLER (bsc#1094244).
• powerpc/book3s: Fix MCE console messages for unrecoverable MCE (bsc#1094244).
• powerpc/fadump: cleanup crash memory ranges support (bsc#1103269).
• powerpc/fadump: re-register firmware-assisted dump if already registered (bsc#1108170, bsc#1108823).
• powerpc: Fix size calculation using resource_size() (bnc#1012382).
• powerpc/mce: Move 64-bit machine check code into mce.c (bsc#1094244).
• powerpc/perf/hv-24x7: Fix off-by-one error in request_buffer check (git-fixes).
• powerpc/powernv/ioda2: Reduce upper limit for DMA window size (bsc#1066223).
• powerpc/powernv: Rename machinecheckpSeries_early() to powernv (bsc#1094244).
• powerpc/pseries: Avoid using the size greater than RTASERRORLOG_MAX (bnc#1012382).
• powerpc/pseries: Disable CPU hotplug across migrations (bsc#1066223).
• powerpc/pseries: Remove prrn_work workqueue (bsc#1102495, bsc#1109337).
• powerpc/pseries: Remove unneeded uses of dlpar work queue (bsc#1102495, bsc#1109337).
• powerpc/tm: Fix userspace r13 corruption (bsc#1109333).
• RDMA/rw: Fix rdmarwctxsignatureinit() kernel-doc header (bsc#1082979).
• reiserfs: change jtimestamp type to time64t (bnc#1012382).
• Revert 'ARM: imxv6v7_defconfig: Select ULPI support' (bnc#1012382).
• s390/dasd: fix hanging offline processing due to canceled worker (bnc#1012382).
• s390/lib: use expoline for all bcr instructions (LTC#171029 bnc#1012382 bnc#1106934).
• sch_hhf: fix null pointer dereference on init failure (bnc#1012382).
• sch_htb: fix crash on init failure (bnc#1012382).
• sch_multiq: fix double free on init failure (bnc#1012382).
• sch_netem: avoid null pointer deref on init failure (bnc#1012382).
• sch_tbf: fix two null pointer dereferences on init failure (bnc#1012382).
• scripts: modpost: check memory allocation results (bnc#1012382).
• scsi: aic94xx: fix an error code in aic94xx_init() (bnc#1012382).
• scsi: ipr: System hung while dlpar adding primary ipr adapter back (bsc#1109336).
• scsi: qla2xxx: Add changes for devloss timeout in driver (bsc#1084427).
• scsi: qla2xxx: Add FC-NVMe abort processing (bsc#1084427).
• scsi: qla2xxx: Add longer window for chip reset (bsc#1094555).
• scsi: qla2xxx: Avoid double completion of abort command (bsc#1094555).
• scsi: qla2xxx: Cleanup code to improve FC-NVMe error handling (bsc#1084427).
• scsi: qla2xxx: Cleanup for N2N code (bsc#1094555).
• scsi: qla2xxx: correctly shift host byte (bsc#1094555).
• scsi: qla2xxx: Correct setting of SAMSTATCHECK_CONDITION (bsc#1094555).
• scsi: qla2xxx: Delete session for nport id change (bsc#1094555).
• scsi: qla2xxx: Fix Async GPN_FT for FCP and FC-NVMe scan (bsc#1084427).
• scsi: qla2xxx: Fix crash on qla2x00mailboxcommand (bsc#1094555).
• scsi: qla2xxx: Fix double free bug after firmware timeout (bsc#1094555).
• scsi: qla2xxx: Fix driver unload by shutting down chip (bsc#1094555).
• scsi: qla2xxx: fix error message on <qla2400 (bsc#1094555).
• scsi: qla2xxx: Fix FC-NVMe IO abort during driver reset (bsc#1084427).
• scsi: qla2xxx: Fix function argument descriptions (bsc#1094555).
• scsi: qla2xxx: Fix Inquiry command being dropped in Target mode (bsc#1094555).
• scsi: qla2xxx: Fix issue reported by static checker for qla2x00elsdcmd2spdone() (bsc#1094555).
• scsi: qla2xxx: Fix login retry count (bsc#1094555).
• scsi: qla2xxx: Fix Management Server NPort handle reservation logic (bsc#1094555).
• scsi: qla2xxx: Fix memory leak for allocating abort IOCB (bsc#1094555).
• scsi: qla2xxx: Fix n2nae flag to prevent devloss on PDB change (bsc#1084427).
• scsi: qla2xxx: Fix N2N link re-connect (bsc#1094555).
• scsi: qla2xxx: Fix NPIV deletion by calling waitforsess_deletion (bsc#1094555).
• scsi: qla2xxx: Fix race between switch cmd completion and timeout (bsc#1094555).
• scsi: qla2xxx: Fix race condition between iocb timeout and initialisation (bsc#1094555).
• scsi: qla2xxx: Fix redundant fc_rport registration (bsc#1094555).
• scsi: qla2xxx: Fix retry for PRLI RJT with reason of BUSY (bsc#1084427).
• scsi: qla2xxx: Fix Rport and session state getting out of sync (bsc#1094555).
• scsi: qla2xxx: Fix sending ADISC command for login (bsc#1094555).
• scsi: qla2xxx: Fix session state stuck in Get Port DB (bsc#1094555).
• scsi: qla2xxx: Fix stalled relogin (bsc#1094555).
• scsi: qla2xxx: Fix TMF and Multi-Queue config (bsc#1094555).
• scsi: qla2xxx: Fix unintended Logout (bsc#1094555).
• scsi: qla2xxx: Fix unintialized List head crash (bsc#1094555).
• scsi: qla2xxx: Flush mailbox commands on chip reset (bsc#1094555).
• scsi: qla2xxx: fx00 copypaste typo (bsc#1094555).
• scsi: qla2xxx: Migrate NVME N2N handling into state machine (bsc#1094555).
• scsi: qla2xxx: Move GPSC and GFPNID out of session management (bsc#1094555).
• scsi: qla2xxx: Prevent relogin loop by removing stale code (bsc#1094555).
• scsi: qla2xxx: Prevent sysfs access when chip is down (bsc#1094555).
• scsi: qla2xxx: Reduce redundant ADISC command for RSCNs (bsc#1094555).
• scsi: qla2xxx: remove irq save in qla2x00_poll() (bsc#1094555).
• scsi: qla2xxx: Remove nvmedonelist (bsc#1084427).
• scsi: qla2xxx: Remove stale debug value for login_retry flag (bsc#1094555).
• scsi: qla2xxx: Remove unneeded message and minor cleanup for FC-NVMe (bsc#1084427).
• scsi: qla2xxx: Restore ZIO threshold setting (bsc#1084427).
• scsi: qla2xxx: Return busy if rport going away (bsc#1084427).
• scsi: qla2xxx: Save frame payload size from ICB (bsc#1094555).
• scsi: qla2xxx: Set IIDMA and fcport state before qlanvmeregister_remote() (bsc#1084427).
• scsi: qla2xxx: Silent erroneous message (bsc#1094555).
• scsi: qla2xxx: Update driver version to 10.00.00.06-k (bsc#1084427).
• scsi: qla2xxx: Update driver version to 10.00.00.07-k (bsc#1094555).
• scsi: qla2xxx: Update driver version to 10.00.00.08-k (bsc#1094555).
• scsi: qla2xxx: Use dmapoolzalloc() (bsc#1094555).
• scsi: qla2xxx: Use predefined getdatalenfor_atio() inline function (bsc#1094555).
• selftests/powerpc: Kill child processes on SIGINT (bnc#1012382).
• smb3: fix reset of bytes read and written stats (bnc#1012382).
• SMB3: Number of requests sent should be displayed for SMB3 not just CIFS (bnc#1012382).
• staging: android: ion: fix IONIOC{MAP,SHARE} use-after-free (bnc#1012382).
• staging: comedi: nimiocommon: fix subdevice flags for PFI subdevice (bnc#1012382).
• tcp: do not restart timewait timer on rst reception (bnc#1012382).
• Update patches.suse/dm-Always-copy-cmd_flags-when-cloning-a-request.patch (bsc#1088087, bsc#1103156).
• usbip: vhci_sysfs: fix potential Spectre v1 (bsc#1096547).
• vti6: remove !skb->ignoredf check from vti6xmit() (bnc#1012382).
• watchdog: w83627hf_wdt: Add quirk for Inves system (bsc#1106434).
• x86/entry/64: Remove %ebx handling from error_entry/exit (bnc#1102715).
• x86/pae: use 64 bit atomic xchg function in nativeptepgetandclear (bnc#1012382).
• x86/speculation/l1tf: Fix up pte->pfn conversion for PAE (bnc#1012382).
• xen: avoid crash in disablehotplugcpu (bsc#1106594).
• xfs: add a new xfsiextlookupextentbefore helper (bsc#1095344).
• xfs: add asserts for the mmap lock in xfs{insert,collapse}file_space (bsc#1095344).
• xfs: add a xfsbmapforktostate helper (bsc#1095344).
• xfs: add a xfsiextupdate_extent helper (bsc#1095344).
• xfs: add comments documenting the rebalance algorithm (bsc#1095344).
• xfs: add some comments to xfsiextinsert/xfsiextinsert_node (bsc#1095344).
• xfs: add xfstrimextent (bsc#1095344).
• xfs: allow unaligned extent records in xfsbmbtdisksetall (bsc#1095344).
• xfs: borrow indirect blocks from freed extent when available (bsc#1095344).
• xfs: cleanup xfsbmaplast_before (bsc#1095344).
• xfs: do not create overlapping extents in xfsbmapaddextentdelay_real (bsc#1095344).
• xfs: do not rely on extent indices in xfsbmapcollapse_extents (bsc#1095344).
• xfs: do not rely on extent indices in xfsbmapinsert_extents (bsc#1095344).
• xfs: do not set XFSBTCURBPRVWASDEL in xfsbunmapi (bsc#1095344).
• xfs: during btree split, save new block key and ptr for future insertion (bsc#1095344).
• xfs: factor out a helper to initialize a local format inode fork (bsc#1095344).
• xfs: fix memory leak in xfsiextfreelastleaf (bsc#1095344).
• xfs: fix number of records handling in xfsiextsplit_leaf (bsc#1095344).
• xfs: fix transaction allocation deadlock in IO path (bsc#1090535).
• xfs: handle indlen shortage on delalloc extent merge (bsc#1095344).
• xfs: handle zero entries case in xfsiextrebalance_leaf (bsc#1095344).
• xfs: improve kmem_realloc (bsc#1095344).
• xfs: inline xfsshiftfile_space into callers (bsc#1095344).
• xfs: introduce the xfsiextcursor abstraction (bsc#1095344).
• xfs: iterate over extents in xfsbmapextentstobtree (bsc#1095344).
• xfs: iterate over extents in xfsiextentscopy (bsc#1095344).
• xfs: make better use of the 'state' variable in xfsbmapdelextentreal (bsc#1095344).
• xfs: merge xfsbmapreadextents into xfsiread_extents (bsc#1095344).
• xfs: move pre/post-bmap tracing into xfsiextupdate_extent (bsc#1095344).
• xfs: move some code around inside xfsbmapshift_extents (bsc#1095344).
• xfs: move some more code into xfsbmapdelextentreal (bsc#1095344).
• xfs: move xfsbmbtirec and xfsexntstt to xfs_types.h (bsc#1095344).
• xfs: move xfsiextinsert tracepoint to report useful information (bsc#1095344).
• xfs: new inode extent list lookup helpers (bsc#1095344).
• xfs: only run torn log write detection on dirty logs (bsc#1095753).
• xfs: pass an on-disk extent to xfsbmbtvalidate_extent (bsc#1095344).
• xfs: pass a struct xfsbmbtirec to xfsbmbtlookup_eq (bsc#1095344).
• xfs: pass a struct xfsbmbtirec to xfsbmbtupdate (bsc#1095344).
• xfs: pass struct xfsbmbtirec to xfsbmbtvalidate_extent (bsc#1095344).
• xfs: provide helper for counting extents from if_bytes (bsc#1095344).
• xfs: refactor delalloc accounting in xfsbmapaddextentdelay_real (bsc#1095344).
• xfs: refactor delalloc indlen reservation split into helper (bsc#1095344).
• xfs: refactor dir2 leaf readahead shadow buffer cleverness (bsc#1095344).
• xfs: refactor in-core log state update to helper (bsc#1095753).
• xfs: refactor unmount record detection into helper (bsc#1095753).
• xfs: refactor xfsbmapaddextentdelay_real (bsc#1095344).
• xfs: refactor xfsbmapaddextenthole_delay (bsc#1095344).
• xfs: refactor xfsbmapaddextenthole_real (bsc#1095344).
• xfs: refactor xfsbmapaddextentunwritten_real (bsc#1095344).
• xfs: refactor xfsbunmapicow (bsc#1095344).
• xfs: refactor xfsdelextent_real (bsc#1095344).
• xfs: remove a duplicate assignment in xfsbmapaddextentdelay_real (bsc#1095344).
• xfs: remove all xfsbmbtset* helpers except for xfsbmbtsetall (bsc#1095344).
• xfs: remove a superflous assignment in xfsiextremove_node (bsc#1095344).
• xfs: remove if_rdev (bsc#1095344).
• xfs: remove prev argument to xfsbmapireserve_delalloc (bsc#1095344).
• xfs: remove support for inlining data/extents into the inode fork (bsc#1095344).
• xfs: remove the never fully implemented UUID fork format (bsc#1095344).
• xfs: remove the nrextents argument to xfsiext_insert (bsc#1095344).
• xfs: remove the nrextents argument to xfsiext_remove (bsc#1095344).
• xfs: remove XFSBMAPMAXSHIFTEXTENTS (bsc#1095344).
• xfs: remove XFSBMAPTRACE_EXLIST (bsc#1095344).
• xfs: remove xfsbmbtget_state (bsc#1095344).
• xfs: remove xfsbmseshift_one (bsc#1095344).
• xfs: rename bno to end in _xfsbunmapi (bsc#1095344).
• xfs: replace xfsbmbtlookupge with xfsbmbtlookupfirst (bsc#1095344).
• xfs: replace xfsqmgetrtblks with a direct call to xfsbmapcountleaves (bsc#1095344).
• xfs: rewrite getbmap using the xfsiext* helpers (bsc#1095344).
• xfs: rewrite xfsbmapcountleaves using xfsiextgetextent (bsc#1095344).
• xfs: rewrite xfsbmapfirstunused to make better use of xfsiextgetextent (bsc#1095344).
• xfs: separate log head record discovery from verification (bsc#1095753).
• xfs: simplify the xfs_getbmap interface (bsc#1095344).
• xfs: simplify validation of the unwritten extent bit (bsc#1095344).
• xfs: split indlen reservations fairly when under reserved (bsc#1095344).
• xfs: split xfsbmapshift_extents (bsc#1095344).
• xfs: switch xfsbmaplocaltoextents to use xfsiextinsert (bsc#1095344).
• xfs: treat idx as a cursor in xfsbmapaddextentdelay_real (bsc#1095344).
• xfs: treat idx as a cursor in xfsbmapaddextenthole_delay (bsc#1095344).
• xfs: treat idx as a cursor in xfsbmapaddextenthole_real (bsc#1095344).
• xfs: treat idx as a cursor in xfsbmapaddextentunwritten_real (bsc#1095344).
• xfs: treat idx as a cursor in xfsbmapcollapse_extents (bsc#1095344).
• xfs: treat idx as a cursor in xfsbmapdelextent* (bsc#1095344).
• xfs: update freeblocks counter after extent deletion (bsc#1095344).
• xfs: update got in xfsbmapshiftupdateextent (bsc#1095344).
• xfs: use a b+tree for the in-core extent list (bsc#1095344).
• xfs: use correct state defines in xfsbmapdelextent{cow,delay} (bsc#1095344).
• xfs: use new extent lookup helpers in xfsbmapiread (bsc#1095344).
• xfs: use new extent lookup helpers in xfsbmapiwrite (bsc#1095344).
• xfs: use new extent lookup helpers in _xfsbunmapi (bsc#1095344).
• xfs: use the state defines in xfsbmapdelextentreal (bsc#1095344).
• xfs: use xfsbmapdelextentdelay for the data fork as well (bsc#1095344).
• xfs: use xfsiext*extent helpers in xfsbmapshiftextents (bsc#1095344).
• xfs: use xfsiext*extent helpers in xfsbmapsplitextent_at (bsc#1095344).
• xfs: use xfsiextget_extent instead of open coding it (bsc#1095344).
• xfs: use xfsiextgetextent in xfsbmapfirstunused (bsc#1095344).