From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <michael.d.kinney@intel.com>
Received: from mga03.intel.com (mga03.intel.com [134.134.136.65])
 (using TLSv1 with cipher CAMELLIA256-SHA (256/256 bits))
 (No client certificate requested)
 by ml01.01.org (Postfix) with ESMTPS id C0B171A1EDD
 for <edk2-devel@lists.01.org>; Wed,  5 Oct 2016 11:28:54 -0700 (PDT)
Received: from orsmga002.jf.intel.com ([10.7.209.21])
 by orsmga103.jf.intel.com with ESMTP; 05 Oct 2016 11:28:55 -0700
X-ExtLoop1: 1
X-IronPort-AV: E=Sophos;i="5.31,302,1473145200"; d="scan'208";a="1060913922"
Received: from mdkinney-mobl.amr.corp.intel.com ([10.232.96.21])
 by orsmga002.jf.intel.com with ESMTP; 05 Oct 2016 11:28:54 -0700
From: Michael Kinney <michael.d.kinney@intel.com>
To: edk2-devel@lists.01.org
Date: Wed,  5 Oct 2016 11:28:48 -0700
Message-Id: <1475692130-20756-1-git-send-email-michael.d.kinney@intel.com>
X-Mailer: git-send-email 2.6.3.windows.1
Subject: [Patch 0/2] QuarkSocPkg/QncSmmDispatcher: Fix SMI Handler ASSERTs()
X-BeenThere: edk2-devel@lists.01.org
X-Mailman-Version: 2.1.21
Precedence: list
List-Id: EDK II Development  <edk2-devel.lists.01.org>
List-Unsubscribe: <https://lists.01.org/mailman/options/edk2-devel>,
 <mailto:edk2-devel-request@lists.01.org?subject=unsubscribe>
List-Archive: <http://lists.01.org/pipermail/edk2-devel/>
List-Post: <mailto:edk2-devel@lists.01.org>
List-Help: <mailto:edk2-devel-request@lists.01.org?subject=help>
List-Subscribe: <https://lists.01.org/mailman/listinfo/edk2-devel>,
 <mailto:edk2-devel-request@lists.01.org?subject=subscribe>
X-List-Received-Date: Wed, 05 Oct 2016 18:28:54 -0000

This series fixes the following two issues:

QuarkSocPkg QncSmmDispatcher passes incorrect context to SMI handler
  https://bugzilla.tianocore.org/show_bug.cgi?id=136

QuarkSockg Use after free in QNCSmmCoreDispatcher
  https://bugzilla.tianocore.org/show_bug.cgi?id=51

These issues can be reproduced using the unit test available in the following 
branch that registers a periodic SMI that is triggered every 8 seconds and 
unregisters itself after the periodic SMI handler has been triggered 4 times.

https://github.com/mdkinney/edk2/tree/Bug51/Reproduce

Cc: Kelly Steele <kelly.steele@intel.com>
Contributed-under: TianoCore Contribution Agreement 1.0
Signed-off-by: Michael Kinney <michael.d.kinney@intel.com>

Michael Kinney (2):
  QuarkSocPkg/QncSmmDispatcher: Fix context passed to SMI handlers
  QuarkSocPkg/QncSmmDispatcher: Fix use after free issue

 .../QncSmmDispatcher/QNC/QNCSmmPeriodicTimer.c     |  4 +-
 .../Smm/DxeSmm/QncSmmDispatcher/QNCSmm.h           |  9 ++--
 .../Smm/DxeSmm/QncSmmDispatcher/QNCSmmCore.c       | 51 +++++++++++++++++-----
 3 files changed, 49 insertions(+), 15 deletions(-)

-- 
2.6.3.windows.1