xfs: validate explicit directory data buffer owners

extern int xfs_dir_ino_validate(struct xfs_mount *mp, xfs_ino_t ino);

xfs_failaddr_t xfs_dir3_leaf_header_check(struct xfs_buf *bp, xfs_ino_t owner);

xfs_failaddr_t xfs_dir3_data_header_check(struct xfs_buf *bp, xfs_ino_t owner);

extern const struct xfs_buf_ops xfs_dir3_block_buf_ops;

extern const struct xfs_buf_ops xfs_dir3_leafn_buf_ops;

	 * Read the data block if we don't already have it, give up if it fails.

	 */

	if (!dbp) {

		error = xfs_dir3_data_read(tp, dp, args->geo->datablk, 0, &dbp);

		error = xfs_dir3_data_read(tp, dp, args->owner,

				args->geo->datablk, 0, &dbp);

		if (error)

			return error;

	}

	.verify_write = xfs_dir3_data_write_verify,

};

static xfs_failaddr_t

xfs_failaddr_t

xfs_dir3_data_header_check(

	struct xfs_inode	*dp,

	struct xfs_buf		*bp)

	struct xfs_buf		*bp,

	xfs_ino_t		owner)

{

	struct xfs_mount	*mp = dp->i_mount;

	struct xfs_mount	*mp = bp->b_mount;

	if (xfs_has_crc(mp)) {

		struct xfs_dir3_data_hdr *hdr3 = bp->b_addr;

		if (be64_to_cpu(hdr3->hdr.owner) != dp->i_ino)

		if (hdr3->hdr.magic != cpu_to_be32(XFS_DIR3_DATA_MAGIC))

			return __this_address;

		if (be64_to_cpu(hdr3->hdr.owner) != owner)

			return __this_address;

	}

xfs_dir3_data_read(

	struct xfs_trans	*tp,

	struct xfs_inode	*dp,

	xfs_ino_t		owner,

	xfs_dablk_t		bno,

	unsigned int		flags,

	struct xfs_buf		**bpp)

		return err;

	/* Check things that we can't do in the verifier. */

	fa = xfs_dir3_data_header_check(dp, *bpp);

	fa = xfs_dir3_data_header_check(*bpp, owner);

	if (fa) {

		__xfs_buf_mark_corrupt(*bpp, fa);

		xfs_trans_brelse(tp, *bpp);

		 * Already had space in some data block.

		 * Just read that one in.

		 */

		error = xfs_dir3_data_read(tp, dp,

				   xfs_dir2_db_to_da(args->geo, use_block),

				   0, &dbp);

		error = xfs_dir3_data_read(tp, dp, args->owner,

				xfs_dir2_db_to_da(args->geo, use_block), 0,

				&dbp);

		if (error) {

			xfs_trans_brelse(tp, lbp);

			return error;

		if (newdb != curdb) {

			if (dbp)

				xfs_trans_brelse(tp, dbp);

			error = xfs_dir3_data_read(tp, dp,

					   xfs_dir2_db_to_da(args->geo, newdb),

					   0, &dbp);

			error = xfs_dir3_data_read(tp, dp, args->owner,

					xfs_dir2_db_to_da(args->geo, newdb), 0,

					&dbp);

			if (error) {

				xfs_trans_brelse(tp, lbp);

				return error;

		ASSERT(cidb != -1);

		if (cidb != curdb) {

			xfs_trans_brelse(tp, dbp);

			error = xfs_dir3_data_read(tp, dp,

					   xfs_dir2_db_to_da(args->geo, cidb),

					   0, &dbp);

			error = xfs_dir3_data_read(tp, dp, args->owner,

					xfs_dir2_db_to_da(args->geo, cidb), 0,

					&dbp);

			if (error) {

				xfs_trans_brelse(tp, lbp);

				return error;

	/*

	 * Read the offending data block.  We need its buffer.

	 */

	error = xfs_dir3_data_read(tp, dp, xfs_dir2_db_to_da(geo, db), 0, &dbp);

	error = xfs_dir3_data_read(tp, dp, args->owner,

			xfs_dir2_db_to_da(geo, db), 0, &dbp);

	if (error)

		return error;

				ASSERT(state->extravalid);

				curbp = state->extrablk.bp;

			} else {

				error = xfs_dir3_data_read(tp, dp,

				error = xfs_dir3_data_read(tp, dp, args->owner,

						xfs_dir2_db_to_da(args->geo,

								  newdb),

						0, &curbp);

						  &freehdr, &findex);

	} else {

		/* Read the data block in. */

		error = xfs_dir3_data_read(tp, dp,

					   xfs_dir2_db_to_da(args->geo, dbno),

					   0, &dbp);

		error = xfs_dir3_data_read(tp, dp, args->owner,

				xfs_dir2_db_to_da(args->geo, dbno), 0, &dbp);

	}

	if (error)

		return error;