<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40"><head><meta http-equiv=Content-Type content="text/html; charset=utf-8"><meta name=Generator content="Microsoft Word 15 (filtered medium)"><!--[if !mso]><style>v\:* {behavior:url(#default#VML);}
o\:* {behavior:url(#default#VML);}
w\:* {behavior:url(#default#VML);}
.shape {behavior:url(#default#VML);}
</style><![endif]--><style><!--
/* Font Definitions */
@font-face
{font-family:宋体;
panose-1:2 1 6 0 3 1 1 1 1 1;}
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:等线;
panose-1:2 1 6 0 3 1 1 1 1 1;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:"\@等线";
panose-1:2 1 6 0 3 1 1 1 1 1;}
@font-face
{font-family:"\@宋体";
panose-1:2 1 6 0 3 1 1 1 1 1;}
@font-face
{font-family:微软雅黑;
panose-1:2 11 5 3 2 2 4 2 2 4;}
@font-face
{font-family:"\@微软雅黑";}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0cm;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
span.EmailStyle21
{mso-style-type:personal-reply;
font-family:等线;
color:windowtext;}
.MsoChpDefault
{mso-style-type:export-only;
font-size:10.0pt;}
@page WordSection1
{size:612.0pt 792.0pt;
margin:72.0pt 72.0pt 72.0pt 72.0pt;}
div.WordSection1
{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]--></head><body lang=ZH-CN link=blue vlink="#954F72" style='word-wrap:break-word'><div class=WordSection1><p class=MsoNormal><span lang=EN-US style='font-size:10.5pt;font-family:等线'>Jiewen:<o:p></o:p></span></p><p class=MsoNormal><span lang=EN-US style='font-size:10.5pt;font-family:等线'> I am OK to merge this bug fix into this stable tag. If no objection, you can merge it tomorrow. <o:p></o:p></span></p><p class=MsoNormal><span lang=EN-US style='font-size:10.5pt;font-family:等线'><o:p> </o:p></span></p><p class=MsoNormal><span lang=EN-US style='font-size:10.5pt;font-family:等线'>Thanks<o:p></o:p></span></p><p class=MsoNormal><span lang=EN-US style='font-size:10.5pt;font-family:等线'>Liming<o:p></o:p></span></p><div><div style='border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0cm 0cm 0cm'><p class=MsoNormal><b><span style='font-family:等线'>发件人<span lang=EN-US>:</span></span></b><span lang=EN-US style='font-family:等线'> bounce+27952+67779+4905953+8761045@groups.io <bounce+27952+67779+4905953+8761045@groups.io> </span><b><span style='font-family:等线'>代表 </span></b><span lang=EN-US style='font-family:等线'>Yao, Jiewen<br></span><b><span style='font-family:等线'>发送时间<span lang=EN-US>:</span></span></b><span lang=EN-US style='font-family:等线'> 2020</span><span style='font-family:等线'>年<span lang=EN-US>11</span>月<span lang=EN-US>22</span>日<span lang=EN-US> 20:26<br></span><b>收件人<span lang=EN-US>:</span></b><span lang=EN-US> Kun Qin <kun.q@outlook.com>; gaoliming <gaoliming@byosoft.com.cn>; devel@edk2.groups.io<br></span><b>抄送<span lang=EN-US>:</span></b><span lang=EN-US> Wang, Jian J <jian.j.wang@intel.com>; Lu, XiaoyuX <xiaoyux.lu@intel.com>; Jiang, Guomin <guomin.jiang@intel.com><br></span><b>主题<span lang=EN-US>:</span></b><span lang=EN-US> Re: [edk2-devel] [PATCH v1 1/1] CryptoPkg: BaseCryptLib: Fix buffer double free in CryptPkcs7VerifyEku<o:p></o:p></span></span></p></div></div><p class=MsoNormal><span lang=EN-US><o:p> </o:p></span></p><p class=MsoNormal><span lang=EN-US>I can help to merge if it is approved.<o:p></o:p></span></p><p class=MsoNormal><span lang=EN-US><o:p> </o:p></span></p><p class=MsoNormal><span lang=EN-US>I will add reviewed-by tag when I merge it.<o:p></o:p></span></p><p class=MsoNormal><span lang=EN-US><o:p> </o:p></span></p><p class=MsoNormal><span lang=EN-US>Thank you<o:p></o:p></span></p><p class=MsoNormal><span lang=EN-US>Yao Jiewen<o:p></o:p></span></p><p class=MsoNormal><span lang=EN-US><o:p> </o:p></span></p><div style='border:none;border-left:solid blue 1.5pt;padding:0cm 0cm 0cm 4.0pt'><div><div style='border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0cm 0cm 0cm'><p class=MsoNormal><b><span lang=EN-US>From:</span></b><span lang=EN-US> Kun Qin <<a href="mailto:kun.q@outlook.com">kun.q@outlook.com</a>> <br><b>Sent:</b> Sunday, November 22, 2020 3:10 PM<br><b>To:</b> gaoliming <<a href="mailto:gaoliming@byosoft.com.cn">gaoliming@byosoft.com.cn</a>>; <a href="mailto:devel@edk2.groups.io">devel@edk2.groups.io</a>; Yao, Jiewen <<a href="mailto:jiewen.yao@intel.com">jiewen.yao@intel.com</a>><br><b>Cc:</b> Wang, Jian J <<a href="mailto:jian.j.wang@intel.com">jian.j.wang@intel.com</a>>; Lu, XiaoyuX <<a href="mailto:xiaoyux.lu@intel.com">xiaoyux.lu@intel.com</a>>; Jiang, Guomin <<a href="mailto:guomin.jiang@intel.com">guomin.jiang@intel.com</a>><br><b>Subject:</b> RE: [edk2-devel] [PATCH v1 1/1] CryptoPkg: BaseCryptLib: Fix buffer double free in CryptPkcs7VerifyEku<o:p></o:p></span></p></div></div><p class=MsoNormal><span lang=EN-US><o:p> </o:p></span></p><p class=MsoNormal><span lang=EN-US>Hi Liming,<o:p></o:p></span></p><p class=MsoNormal><span lang=EN-US><o:p> </o:p></span></p><p class=MsoNormal><span lang=EN-US>It will be great if we can get this in. But I have been having trouble sending a v2 patch that incorporates Jiewen’s “Reviewed-by” tag through git command line for the past week (no other changes). It kept giving me an error of "No host provider available to service this request". Please let me know if you have any suggestions.<o:p></o:p></span></p><p class=MsoNormal><span lang=EN-US><o:p> </o:p></span></p><p class=MsoNormal><span lang=EN-US>Thanks,<o:p></o:p></span></p><p class=MsoNormal><span lang=EN-US>Kun<o:p></o:p></span></p><p class=MsoNormal><span lang=EN-US><o:p> </o:p></span></p><p class=MsoNormal><span lang=EN-US><o:p> </o:p></span></p><div style='border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0cm 0cm 0cm'><p class=MsoNormal><b><span lang=EN-US>From: </span></b><span lang=EN-US><a href="mailto:gaoliming@byosoft.com.cn">gaoliming</a><br><b>Sent: </b>Thursday, November 19, 2020 9:39 PM<br><b>To: </b><a href="mailto:devel@edk2.groups.io">devel@edk2.groups.io</a>; <a href="mailto:jiewen.yao@intel.com">jiewen.yao@intel.com</a>; <a href="mailto:kun.q@outlook.com">'Kun Qin'</a><br><b>Cc: </b><a href="mailto:jian.j.wang@intel.com">'Wang, Jian J'</a>; <a href="mailto:xiaoyux.lu@intel.com">'Lu, XiaoyuX'</a>; <a href="mailto:guomin.jiang@intel.com">'Jiang, Guomin'</a><br><b>Subject: </b></span><span style='font-family:等线'>回复</span><span lang=EN-US>: [edk2-devel] [PATCH v1 1/1] CryptoPkg: BaseCryptLib: Fix buffer double free in CryptPkcs7VerifyEku<o:p></o:p></span></p></div><p class=MsoNormal><span lang=EN-US><o:p> </o:p></span></p><p class=MsoNormal style='margin-bottom:12.0pt'><span lang=EN-US>Kun:<br> This is a bug fix. It passed code review. Do you request to merge it for<br>this stable tag 202011?<br><br>Thanks<br>Liming<br>> -----</span><span style='font-family:"微软雅黑",sans-serif'>邮件原件</span><span lang=EN-US>-----<br>> </span><span style='font-family:"微软雅黑",sans-serif'>发件人</span><span lang=EN-US>: <a href="mailto:bounce+27952+67567+4905953+8761045@groups.io">bounce+27952+67567+4905953+8761045@groups.io</a><br>> <<a href="mailto:bounce+27952+67567+4905953+8761045@groups.io">bounce+27952+67567+4905953+8761045@groups.io</a>> </span><span style='font-family:"微软雅黑",sans-serif'>代表</span><span lang=EN-US> Yao, Jiewen<br>> </span><span style='font-family:"微软雅黑",sans-serif'>发送时间</span><span lang=EN-US>: 2020</span><span style='font-family:"微软雅黑",sans-serif'>年</span><span lang=EN-US>11</span><span style='font-family:"微软雅黑",sans-serif'>月</span><span lang=EN-US>14</span><span style='font-family:"微软雅黑",sans-serif'>日</span><span lang=EN-US> 8:32<br>> </span><span style='font-family:"微软雅黑",sans-serif'>收件人</span><span lang=EN-US>: Kun Qin <<a href="mailto:kun.q@outlook.com">kun.q@outlook.com</a>>; <a href="mailto:devel@edk2.groups.io">devel@edk2.groups.io</a><br>> </span><span style='font-family:"微软雅黑",sans-serif'>抄送</span><span lang=EN-US>: Wang, Jian J <<a href="mailto:jian.j.wang@intel.com">jian.j.wang@intel.com</a>>; Lu, XiaoyuX<br>> <<a href="mailto:xiaoyux.lu@intel.com">xiaoyux.lu@intel.com</a>>; Jiang, Guomin <<a href="mailto:guomin.jiang@intel.com">guomin.jiang@intel.com</a>>; Yao,<br>> Jiewen <<a href="mailto:jiewen.yao@intel.com">jiewen.yao@intel.com</a>><br>> </span><span style='font-family:"微软雅黑",sans-serif'>主题</span><span lang=EN-US>: Re: [edk2-devel] [PATCH v1 1/1] CryptoPkg: BaseCryptLib: Fix buffer<br>> double free in CryptPkcs7VerifyEku<br>> <br>> Sorry, I missed this email.<br>> <br>> Reviewed-by: Jiewen Yao <<a href="mailto:Jiewen.yao@intel.com">Jiewen.yao@intel.com</a>><br>> <br>> <br>> > -----Original Message-----<br>> > From: Kun Qin <<a href="mailto:kun.q@outlook.com">kun.q@outlook.com</a>><br>> > Sent: Wednesday, October 21, 2020 10:32 AM<br>> > To: <a href="mailto:devel@edk2.groups.io">devel@edk2.groups.io</a><br>> > Cc: Wang, Jian J <<a href="mailto:jian.j.wang@intel.com">jian.j.wang@intel.com</a>>; Lu, XiaoyuX<br>> > <<a href="mailto:xiaoyux.lu@intel.com">xiaoyux.lu@intel.com</a>>; Yao, Jiewen <<a href="mailto:jiewen.yao@intel.com">jiewen.yao@intel.com</a>>; Jiang,<br>> > Guomin <<a href="mailto:guomin.jiang@intel.com">guomin.jiang@intel.com</a>><br>> > Subject: [PATCH v1 1/1] CryptoPkg: BaseCryptLib: Fix buffer double free<br>in<br>> > CryptPkcs7VerifyEku<br>> ><br>> > REF: <a href="https://bugzilla.tianocore.org/show_bug.cgi?id=2459">https://bugzilla.tianocore.org/show_bug.cgi?id=2459</a><br>> ><br>> > SignerCert is part of Pkcs7 instance when both have valid content.<br>OpenSLL<br>> > PKCS7_free function will release the memory of SignerCert when<br>applicable.<br>> > Freeing SignerCert with X509_free again might cause page fault if use-<br>> > after-free guard is enabled.<br>> ><br>> > Cc: Jian J Wang <<a href="mailto:jian.j.wang@intel.com">jian.j.wang@intel.com</a>><br>> > Cc: Xiaoyu Lu <<a href="mailto:xiaoyux.lu@intel.com">xiaoyux.lu@intel.com</a>><br>> > Cc: Jiewen Yao <<a href="mailto:jiewen.yao@intel.com">jiewen.yao@intel.com</a>><br>> > Cc: Guomin Jiang <<a href="mailto:guomin.jiang@intel.com">guomin.jiang@intel.com</a>><br>> ><br>> > Signed-off-by: Kun Qin <<a href="mailto:kun.q@outlook.com">kun.q@outlook.com</a>><br>> > ---<br>> > CryptoPkg/Library/BaseCryptLib/Pk/CryptPkcs7VerifyEku.c | 4 ----<br>> > 1 file changed, 4 deletions(-)<br>> ><br>> > diff --git a/CryptoPkg/Library/BaseCryptLib/Pk/CryptPkcs7VerifyEku.c<br>> > b/CryptoPkg/Library/BaseCryptLib/Pk/CryptPkcs7VerifyEku.c<br>> > index c9fdb65b99d1..40cc39afe7dd 100644<br>> > --- a/CryptoPkg/Library/BaseCryptLib/Pk/CryptPkcs7VerifyEku.c<br>> > +++ b/CryptoPkg/Library/BaseCryptLib/Pk/CryptPkcs7VerifyEku.c<br>> > @@ -508,10 +508,6 @@ Exit:<br>> > free (SignedData);<br>> ><br>> > }<br>> ><br>> ><br>> ><br>> > - if (SignerCert != NULL) {<br>> ><br>> > - X509_free (SignerCert);<br>> ><br>> > - }<br>> ><br>> > -<br>> ><br>> > if (Pkcs7 != NULL) {<br>> ><br>> > PKCS7_free (Pkcs7);<br>> ><br>> > }<br>> ><br>> > --<br>> > 2.28.0.windows.1<br>> <br>> <br>> <br>> <br>> <o:p></o:p></span></p><p class=MsoNormal><span lang=EN-US><o:p> </o:p></span></p></div><div><p class=MsoNormal></o:p></span></p></div></div></body></html>
<div width="1" style="color:white;clear:both">_._,_._,_</div> <hr> Groups.io Links:<p> You receive all messages sent to this group. <p> <a target="_blank" href="https://edk2.groups.io/g/devel/message/67781">View/Reply Online (#67781)</a> | | <a target="_blank" href="https://groups.io/mt/78443908/1813853">Mute This Topic</a> | <a href="https://edk2.groups.io/g/devel/post">New Topic</a><br> <a href="https://edk2.groups.io/g/devel/editsub/1813853">Your Subscription</a> | <a href="mailto:devel+owner@edk2.groups.io">Contact Group Owner</a> | <a href="https://edk2.groups.io/g/devel/unsub">Unsubscribe</a> [edk2-devel-archive@redhat.com]<br> <div width="1" style="color:white;clear:both">_._,_._,_</div>