{"id":2220914,"url":"http://patchwork.ozlabs.org/api/1.1/patches/2220914/?format=json","web_url":"http://patchwork.ozlabs.org/project/linuxppc-dev/patch/aafb835339cafc1544280c027200db8b28df6edb.1775648406.git.ritesh.list@gmail.com/","project":{"id":2,"url":"http://patchwork.ozlabs.org/api/1.1/projects/2/?format=json","name":"Linux PPC development","link_name":"linuxppc-dev","list_id":"linuxppc-dev.lists.ozlabs.org","list_email":"linuxppc-dev@lists.ozlabs.org","web_url":"https://github.com/linuxppc/wiki/wiki","scm_url":"https://git.kernel.org/pub/scm/linux/kernel/git/powerpc/linux.git","webscm_url":"https://git.kernel.org/pub/scm/linux/kernel/git/powerpc/linux.git/"},"msgid":"<aafb835339cafc1544280c027200db8b28df6edb.1775648406.git.ritesh.list@gmail.com>","date":"2026-04-08T12:01:32","name":"[RFC,v2,02/10] pseries/papr-hvpipe: Prevent kernel stack memory leak to userspace","commit_ref":null,"pull_url":null,"state":"new","archived":false,"hash":"fcfbfea92e7db62ca634e78d45abd49af1bc7c4a","submitter":{"id":79126,"url":"http://patchwork.ozlabs.org/api/1.1/people/79126/?format=json","name":"Ritesh Harjani (IBM)","email":"ritesh.list@gmail.com"},"delegate":null,"mbox":"http://patchwork.ozlabs.org/project/linuxppc-dev/patch/aafb835339cafc1544280c027200db8b28df6edb.1775648406.git.ritesh.list@gmail.com/mbox/","series":[{"id":499129,"url":"http://patchwork.ozlabs.org/api/1.1/series/499129/?format=json","web_url":"http://patchwork.ozlabs.org/project/linuxppc-dev/list/?series=499129","date":"2026-04-08T12:01:30","name":"pseries/papr-hvpipe: Fix deadlock, races and misc cleanups","version":2,"mbox":"http://patchwork.ozlabs.org/series/499129/mbox/"}],"comments":"http://patchwork.ozlabs.org/api/patches/2220914/comments/","check":"pending","checks":"http://patchwork.ozlabs.org/api/patches/2220914/checks/","tags":{},"headers":{"Return-Path":"\n <linuxppc-dev+bounces-19498-incoming=patchwork.ozlabs.org@lists.ozlabs.org>","X-Original-To":["incoming@patchwork.ozlabs.org","linuxppc-dev@lists.ozlabs.org"],"Delivered-To":"patchwork-incoming@legolas.ozlabs.org","Authentication-Results":["legolas.ozlabs.org;\n\tdkim=pass (2048-bit key;\n unprotected) header.d=gmail.com header.i=@gmail.com header.a=rsa-sha256\n header.s=20251104 header.b=UgoaCnvs;\n\tdkim-atps=neutral","legolas.ozlabs.org;\n spf=pass (sender SPF authorized) smtp.mailfrom=lists.ozlabs.org\n (client-ip=112.213.38.117; helo=lists.ozlabs.org;\n envelope-from=linuxppc-dev+bounces-19498-incoming=patchwork.ozlabs.org@lists.ozlabs.org;\n receiver=patchwork.ozlabs.org)","lists.ozlabs.org;\n arc=none smtp.remote-ip=\"2607:f8b0:4864:20::432\"","lists.ozlabs.org;\n dmarc=pass (p=none dis=none) header.from=gmail.com","lists.ozlabs.org;\n\tdkim=pass (2048-bit key;\n unprotected) header.d=gmail.com header.i=@gmail.com header.a=rsa-sha256\n header.s=20251104 header.b=UgoaCnvs;\n\tdkim-atps=neutral","lists.ozlabs.org;\n spf=pass (sender SPF authorized) smtp.mailfrom=gmail.com\n (client-ip=2607:f8b0:4864:20::432; helo=mail-pf1-x432.google.com;\n envelope-from=ritesh.list@gmail.com; receiver=lists.ozlabs.org)"],"Received":["from lists.ozlabs.org (lists.ozlabs.org [112.213.38.117])\n\t(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)\n\t key-exchange x25519)\n\t(No client certificate requested)\n\tby legolas.ozlabs.org (Postfix) with ESMTPS id 4frMBC4sGlz1xv0\n\tfor <incoming@patchwork.ozlabs.org>; Wed, 08 Apr 2026 22:02:11 +1000 (AEST)","from boromir.ozlabs.org (localhost [127.0.0.1])\n\tby lists.ozlabs.org (Postfix) with ESMTP id 4frMB61KdPz2yqc;\n\tWed, 08 Apr 2026 22:02:06 +1000 (AEST)","from mail-pf1-x432.google.com (mail-pf1-x432.google.com\n [IPv6:2607:f8b0:4864:20::432])\n\t(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)\n\t key-exchange x25519 server-signature RSA-PSS (2048 bits) server-digest\n SHA256)\n\t(No client certificate requested)\n\tby lists.ozlabs.org (Postfix) with ESMTPS id 4frMB52Q8fz2xc8\n\tfor <linuxppc-dev@lists.ozlabs.org>; Wed, 08 Apr 2026 22:02:04 +1000 (AEST)","by mail-pf1-x432.google.com with SMTP id\n d2e1a72fcca58-82a7ebc729dso2669270b3a.3\n        for <linuxppc-dev@lists.ozlabs.org>;\n Wed, 08 Apr 2026 05:02:04 -0700 (PDT)","from Mac.localdomain ([49.205.216.49])\n        by smtp.gmail.com with ESMTPSA id\n d2e1a72fcca58-82cf9b3e169sm21209322b3a.18.2026.04.08.05.01.58\n        (version=TLS1_3 cipher=TLS_CHACHA20_POLY1305_SHA256 bits=256/256);\n        Wed, 08 Apr 2026 05:02:01 -0700 (PDT)"],"ARC-Seal":"i=1; a=rsa-sha256; d=lists.ozlabs.org; s=201707; t=1775649726;\n\tcv=none;\n b=Uk0mQ19dZPaVPB6psh3S4ELbfaFBnBFjGvPGnfygxctwyR6fDTVePc0oiLXVCf8Bll0hHNEcIWvj6nUHn21gYeJZ0JlUlWakX1b1CS4Sp9MkCNBGCSBDSnaqMBl7c6/ZY8QpnSCCF27lT9Y4+Bl7X+3Vn2zwIvkucIizMBM+DOxzZlPeuJiiQwc48EROnR0psNQbPIYNUu/e/QXXj4ZKr9hePt0CjttYMhCvfv626hXxe/m0lwfK4Jy/Xu9iwCGWn8ah5s2FrCoWZyGbGpyoPpnhcsbFyqfp8reLEo/AMAUKwkiq1iyKXaaNFNsLqfwsC4J0MTE14LxSNvVPfT2OsQ==","ARC-Message-Signature":"i=1; a=rsa-sha256; d=lists.ozlabs.org; s=201707;\n\tt=1775649726; c=relaxed/relaxed;\n\tbh=PHdUj5TFH9dKxJLMiJUsQpHQaLsjedD8VYK/u5ysz28=;\n\th=From:To:Cc:Subject:Date:Message-ID:In-Reply-To:References:\n\t MIME-Version;\n b=DEb1maL+8SMNv/4vDHhvG5PbMjBTYJL0LDA/hy1VZLO4jyG8XZ9UwRYT6+NatWyJs2TK/+a5WMPFoz7NCEH7yFB48uFo96VwC3rJZukNKqr90y4KCd0PWx6jtCY+ip/1vhY9lNa+vPU+p3XY7hHB9UgCW0KEa8Yftfpxyq+FqaA+AOPHiA18LJ/zLamRzq9PKVGzXnbZOkiVBYI6l/U7wk/lBDQp2hYNHVl8BjzpWjD/CD/24rmvgMFiqeLp9+VpCOtYg3h8047+R5O2Vq7TOVAXg77glic0xQ65VEjhFc2Od7G9gKAiXsYk6zZjpqwSzYqS2PvGmfWwkINOe60+MQ==","ARC-Authentication-Results":"i=1; lists.ozlabs.org;\n dmarc=pass (p=none dis=none) header.from=gmail.com; dkim=pass (2048-bit key;\n unprotected) header.d=gmail.com header.i=@gmail.com header.a=rsa-sha256\n header.s=20251104 header.b=UgoaCnvs; dkim-atps=neutral;\n spf=pass (client-ip=2607:f8b0:4864:20::432; helo=mail-pf1-x432.google.com;\n envelope-from=ritesh.list@gmail.com;\n receiver=lists.ozlabs.org) smtp.mailfrom=gmail.com","DKIM-Signature":"v=1; a=rsa-sha256; c=relaxed/relaxed;\n        d=gmail.com; s=20251104; t=1775649722; x=1776254522;\n darn=lists.ozlabs.org;\n        h=content-transfer-encoding:mime-version:references:in-reply-to\n         :message-id:date:subject:cc:to:from:from:to:cc:subject:date\n         :message-id:reply-to;\n        bh=PHdUj5TFH9dKxJLMiJUsQpHQaLsjedD8VYK/u5ysz28=;\n        b=UgoaCnvsqI3vYJXcGZ/lNTiBNVXX+JGlZBMooeHFbpfOEjshRzbgWcTJbZYMljebXA\n         2hqLsjIrWv+tgsEZtbd4XEpq04Y3vbG4f9cd5p8DvKY6JswpugJ93sCKRaxyUsPcTvS+\n         A1sgInbqRQykCcKQpSuDb/PlFHwrhL+M9PqknPw22jTHZwoTKito4gJALbuUp96bj5xg\n         csUW/aunmu10Pg8SCdIPdEgGaKAkLuiGjoXUF9zNcCx/WkJpKngqH6qmkKqnOa7l2BgZ\n         uBvza7nHOByGSw5h+jWQk5kOClEX7B8KI1O2f1WE+w8iHr9T8NXa92krJjrDphpvXUXw\n         cqJA==","X-Google-DKIM-Signature":"v=1; a=rsa-sha256; c=relaxed/relaxed;\n        d=1e100.net; s=20251104; t=1775649722; x=1776254522;\n        h=content-transfer-encoding:mime-version:references:in-reply-to\n         :message-id:date:subject:cc:to:from:x-gm-gg:x-gm-message-state:from\n         :to:cc:subject:date:message-id:reply-to;\n        bh=PHdUj5TFH9dKxJLMiJUsQpHQaLsjedD8VYK/u5ysz28=;\n        b=GyeABLITpVpBtPRil8FqJFIVChoKtRtqdFL9w2MLvQ6VUM+1FUBT+kQeg36FIian4a\n         LO3ygFYQyCsxfo2mnGe/qVNrRA3gVmix9PXm5iHgbxaY5UvbDR0eIisxlKpYu7y0GFrh\n         xQbSIj79/I5Ql3q6Wh1Y4qplueFGkDz4rcJF2qqQkI6QXjPb/JR/7vl+NVXOfeDSd5lg\n         d+H2IMfTyA4p7s4+5GhwMR/gcIqkc6RFvfK96me4uoei2nNoC2sl7t8+5hqhV+9wpYMg\n         moNNHV32VBYgUbmpgIJRRuAvSL17b9rP/JRrqoO5xRzeNNGAD8fjGuuzRcjq8v/oOUAH\n         0SyA==","X-Gm-Message-State":"AOJu0YzwG0tJjmmSSWV7qx2cDynRRsyCQYcFvk9XmCcbtiF5mNvD9G6G\n\teZpuGFNezCqXLir+anOk6btkdSrKtF+6WAVzVoVtkES85Fg4LBqCnPUvCfHFtQ==","X-Gm-Gg":"AeBDieu3rz+kvEAgCHsPoFFMQ8H7/g1F57mH//JoH3szdcAGDg9dHarahFSBqFpsGdk\n\tx7e7GWLwsI1yp9hIGRBWqykgQh1FSg+VigM3l0V3uEl6oJnXR9a45OxzfTaumz8ZKtI/P8Tqjq7\n\tPQYHxY2pYu2jy7Hkns+OK5+HcqSXRK2UVDEfmC2GHkZ9XPtfs2f/3ULw2GU48B2/j8dd9HDWye0\n\tnfpLoQeoz4Y/ml3dPM/f0l6mvwsPIDe/ym5f6iCHnmowSJeOgK7xJd3pUJR4kA2EWsQNW9P9zGw\n\t0ROT/AV2clHo69TJKn0bXwSBWWCpH6c+BTuilacvls6CYutaI8pnScHfSyyALVFZkkrM7c/4UNC\n\tVPSlQJu4S7nJYsqz2u03lulzdvq7knbK7sLSZMwruAh+ZMgzJTxDliTupIczZbg/PG4DoDhaFDh\n\tPno1sNhIIy7iimGoaopYCSLqOXAdBiM6yaPwTXEZMzvDIk","X-Received":"by 2002:a05:6a00:4b50:b0:820:2f9b:fe31 with SMTP id\n d2e1a72fcca58-82d0db53786mr21789802b3a.30.1775649722177;\n        Wed, 08 Apr 2026 05:02:02 -0700 (PDT)","From":"\"Ritesh Harjani (IBM)\" <ritesh.list@gmail.com>","To":"linuxppc-dev@lists.ozlabs.org,\n\tHaren Myneni <haren@linux.ibm.com>","Cc":"Madhavan Srinivasan <maddy@linux.ibm.com>,\n\tChristophe Leroy <chleroy@kernel.org>,\n\tVenkat Rao Bagalkote <venkat88@linux.ibm.com>,\n\tNicholas Piggin <npiggin@gmail.com>,\n\tlinux-kernel@vger.kernel.org,\n\t\"Ritesh Harjani (IBM)\" <ritesh.list@gmail.com>,\n\tstable@vger.kernel.org","Subject":"[RFC v2 02/10] pseries/papr-hvpipe: Prevent kernel stack memory leak\n to userspace","Date":"Wed,  8 Apr 2026 17:31:32 +0530","Message-ID":"\n <aafb835339cafc1544280c027200db8b28df6edb.1775648406.git.ritesh.list@gmail.com>","X-Mailer":"git-send-email 2.50.1","In-Reply-To":"<cover.1775648406.git.ritesh.list@gmail.com>","References":"<cover.1775648406.git.ritesh.list@gmail.com>","X-Mailing-List":"linuxppc-dev@lists.ozlabs.org","List-Id":"<linuxppc-dev.lists.ozlabs.org>","List-Help":"<mailto:linuxppc-dev+help@lists.ozlabs.org>","List-Owner":"<mailto:linuxppc-dev+owner@lists.ozlabs.org>","List-Post":"<mailto:linuxppc-dev@lists.ozlabs.org>","List-Archive":"<https://lore.kernel.org/linuxppc-dev/>,\n  <https://lists.ozlabs.org/pipermail/linuxppc-dev/>","List-Subscribe":"<mailto:linuxppc-dev+subscribe@lists.ozlabs.org>,\n  <mailto:linuxppc-dev+subscribe-digest@lists.ozlabs.org>,\n  <mailto:linuxppc-dev+subscribe-nomail@lists.ozlabs.org>","List-Unsubscribe":"<mailto:linuxppc-dev+unsubscribe@lists.ozlabs.org>","Precedence":"list","MIME-Version":"1.0","Content-Transfer-Encoding":"8bit","X-Spam-Status":"No, score=-0.2 required=3.0 tests=DKIM_SIGNED,DKIM_VALID,\n\tDKIM_VALID_AU,DKIM_VALID_EF,FREEMAIL_FROM,RCVD_IN_DNSWL_NONE,\n\tSPF_HELO_NONE,SPF_PASS autolearn=disabled version=4.0.1 OzLabs 8","X-Spam-Checker-Version":"SpamAssassin 4.0.1 (2024-03-25) on lists.ozlabs.org"},"content":"The hdr variable is allocated on the stack and only hdr.version and\nhdr.flags are initialized explicitly. Because the struct papr_hvpipe_hdr\ncontains reserved padding bytes (reserved[3] and reserved2[40]), these\ncould leak the uninitialized bytes to userspace after copy_to_user().\n\nThis patch fixes that by initializing the whole struct to 0.\n\nCc: stable@vger.kernel.org\nFixes: 814ef095f12c9 (\"powerpc/pseries: Add papr-hvpipe char driver for HVPIPE interfaces\")\nSigned-off-by: Ritesh Harjani (IBM) <ritesh.list@gmail.com>\n---\n arch/powerpc/platforms/pseries/papr-hvpipe.c | 2 +-\n 1 file changed, 1 insertion(+), 1 deletion(-)","diff":"diff --git a/arch/powerpc/platforms/pseries/papr-hvpipe.c b/arch/powerpc/platforms/pseries/papr-hvpipe.c\nindex c41d45e1986d..3392874ebdf6 100644\n--- a/arch/powerpc/platforms/pseries/papr-hvpipe.c\n+++ b/arch/powerpc/platforms/pseries/papr-hvpipe.c\n@@ -327,7 +327,7 @@ static ssize_t papr_hvpipe_handle_read(struct file *file,\n {\n \n \tstruct hvpipe_source_info *src_info = file->private_data;\n-\tstruct papr_hvpipe_hdr hdr;\n+\tstruct papr_hvpipe_hdr hdr = {};\n \tlong ret;\n \n \t/*\n","prefixes":["RFC","v2","02/10"]}