Fix unbounded-length malloc, controlled from usermode. The added check

Fix unbounded-length malloc, controlled from usermode. The added check
is performed before exact size of the buffer is calculated, but the
buffer cannot have size greater then the total space allocated for
extended attributes. The existing check is executing with precise
size, but it is too late, since buffer needs to be allocated in
advance.

Also, adapt to uio_resid being of ssize_t type.  Use lblktosize instead of
multiplying by fs block size by hand as well.

git-svn-id: svn://svn.freebsd.org/base/stable/9@237713 ccf9f872-aa2e-dd11-9fc8-001c23d0bc1f