[1319047.454430] Lustre: reproducer: using old ioctl(LL_IOC_LOV_GETSTRIPE) on [0xb400060cc:0x250:0x0], use llapi_layout_get_by_path()
[1319047.465249] usercopy: kernel memory exposure attempt detected from ffff885b282d6680 (kmalloc-128) (48032 bytes)
[1319047.468116] ------------[ cut here ]------------
[1319047.469602] kernel BUG at mm/usercopy.c:72!
[1319047.469606] invalid opcode: 0000 [#1] SMP 
[1319047.469672] Modules linked in: uinput fuse osc(OE) mgc(OE) lustre(OE) lmv(OE) fld(OE) mdc(OE) fid(OE) lov(OE) ksocklnd(OE) ptlrpc(OE) obdclass(OE) lnet(OE) libcfs(OE) ppdev iosf_mbi sg pcspkr joydev virtio_balloon parport_pc parport i2c_piix4 binfmt_misc ip_tables xfs libcrc32c sd_mod crc_t10dif crct10dif_generic 8021q garp mrp stp llc virtio_net virtio_scsi virtio_console ata_generic pata_acpi crct10dif_pclmul crct10dif_common crc32_pclmul crc32c_intel qxl ghash_clmulni_intel drm_kms_helper syscopyarea sysfillrect sysimgblt fb_sys_fops ttm drm aesni_intel lrw gf128mul glue_helper ablk_helper cryptd ata_piix serio_raw scsi_transport_iscsi libata virtio_pci virtio_ring virtio drm_panel_orientation_quirks floppy sunrpc dm_mirror dm_region_hash dm_log dm_mod
[1319047.469690] CPU: 1 PID: 14601 Comm: reproducer Kdump: loaded Tainted: G           OE  ------------   3.10.0-957.21.3.el7.x86_64 #1
[1319047.469691] Hardware name: RDO OpenStack Compute, BIOS 1.10.2-3.el7_4.1 04/01/2014
[1319047.469693] task: ffff885ca0221040 ti: ffff885c6fe18000 task.ti: ffff885c6fe18000
[1319047.469757] RIP: 0010:[<ffffffff8a43e6e7>]  [<ffffffff8a43e6e7>] __check_object_size+0x87/0x250
[1319047.469759] RSP: 0018:ffff885c6fe1bc20  EFLAGS: 00010246
[1319047.469760] RAX: 0000000000000063 RBX: ffff885b282d6680 RCX: 0000000000000000
[1319047.469762] RDX: 0000000000000000 RSI: ffff885cbfc93898 RDI: ffff885cbfc93898
[1319047.469763] RBP: ffff885c6fe1bc40 R08: 0000000000000000 R09: 0000000000000000
[1319047.469764] R10: 0000000000001425 R11: ffff885c6fe1b91e R12: 000000000000bba0
[1319047.469765] R13: 0000000000000001 R14: ffff885b282e2220 R15: 000000000000bba0
[1319047.469768] FS:  00007fdd57155740(0000) GS:ffff885cbfc80000(0000) knlGS:0000000000000000
[1319047.469769] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[1319047.469771] CR2: 0000000000014001 CR3: 00000001f131c000 CR4: 00000000003606e0
[1319047.469780] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[1319047.469782] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[1319047.469783] Call Trace:
[1319047.469872]  [<ffffffffc0a0bdd4>] lov_getstripe+0x6e4/0x990 [lov]
[1319047.469908]  [<ffffffff8a464924>] ? mntput+0x24/0x40
[1319047.469911]  [<ffffffff8a44d7f9>] ? terminate_walk+0x49/0x50
[1319047.469922]  [<ffffffffc0a0a1ff>] lov_object_getstripe+0x6f/0x180 [lov]
[1319047.470183]  [<ffffffffc06af87e>] cl_object_getstripe+0x6e/0x130 [obdclass]
[1319047.471002]  [<ffffffffc0a80b90>] ll_file_getstripe+0x70/0x170 [lustre]
[1319047.471145]  [<ffffffffc0a95e42>] ll_file_ioctl+0xb82/0x3cd0 [lustre]
[1319047.471156]  [<ffffffff8a4545bd>] ? do_filp_open+0x4d/0xb0
[1319047.471161]  [<ffffffff8a4569d0>] do_vfs_ioctl+0x3a0/0x5a0
[1319047.471164]  [<ffffffff8a456c71>] SyS_ioctl+0xa1/0xc0
[1319047.471199]  [<ffffffff8a975ddb>] system_call_fastpath+0x22/0x27
[1319047.471234] Code: 45 d1 48 c7 c6 e5 bd c7 8a 48 c7 c1 f0 52 c8 8a 48 0f 45 f1 49 89 c0 4d 89 e1 48 89 d9 48 c7 c7 e0 21 c8 8a 31 c0 e8 60 e2 51 00 <0f> 0b 0f 1f 80 00 00 00 00 48 c7 c0 00 00 20 8a 4c 39 f0 73 0d 
[1319047.471240] RIP  [<ffffffff8a43e6e7>] __check_object_size+0x87/0x250
[1319047.471241]  RSP <ffff885c6fe1bc20>