From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from IMSVA.IN.MEGATRENDS.COM (Webmail.amiindia.co.in [203.199.198.232]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ml01.01.org (Postfix) with ESMTPS id 0B7512095A32E for ; Wed, 24 May 2017 23:38:20 -0700 (PDT) Received: from IMSVA.IN.MEGATRENDS.COM (IMSVA.IN.MEGATRENDS.COM [127.0.0.1]) by IMSVA (Postfix) with ESMTP id AABB78205B; Thu, 25 May 2017 12:10:11 +0530 (IST) Received: from IMSVA.IN.MEGATRENDS.COM (IMSVA.IN.MEGATRENDS.COM [127.0.0.1]) by IMSVA (Postfix) with ESMTP id 9DD0E8205A; Thu, 25 May 2017 12:10:11 +0530 (IST) Received: from webmail.amiindia.co.in (venus1.in.megatrends.com [10.0.0.5]) by IMSVA.IN.MEGATRENDS.COM (Postfix) with ESMTPS; Thu, 25 May 2017 12:10:11 +0530 (IST) Received: from VENUS2.in.megatrends.com ([fe80::2002:4a07:4f17:c09b]) by VENUS1.in.megatrends.com ([fe80::951:7975:6ecf:eae5%14]) with mapi id 14.01.0438.000; Thu, 25 May 2017 12:08:11 +0530 From: Karunakar P To: "afish@apple.com" , "edk2-devel@lists.01.org" CC: "Ye, Ting" Thread-Topic: [edk2] Pressing ESC from "PXE windows Boot manager" causes ASSERT Thread-Index: AdLURLC6iiwpAC5dQK2zZjiTmgfeiQABWJwwAABfyyAACXwlAAArxsog Date: Thu, 25 May 2017 06:38:11 +0000 Message-ID: References: In-Reply-To: Accept-Language: en-GB, en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: x-originating-ip: [10.0.84.126] MIME-Version: 1.0 X-TM-AS-GCONF: 00 X-TM-AS-Product-Ver: IMSVA-9.1.0.1600-8.1.0.1062-23090.005 X-TM-AS-Result: No--24.145-5.0-31-10 X-imss-scan-details: No--24.145-5.0-31-10 X-TMASE-Version: IMSVA-9.1.0.1600-8.1.1062-23090.005 X-TMASE-Result: 10--24.145300-10.000000 X-TMASE-MatchedRID: cxtZ8fwm3r/tvMVN/9JMyozb2GR6Ttd310V1aibon7L7qC1VxP7lmhKD eJ94PUa2vKC71Ln+ddvf83k5rbasOhV2s20zhmOIvHKClHGjjr2eimGtNywjti62hjZS0WoY1xc NUWFjXW3xslvRo0b//8feNbltQfTqkCRuY1IDswOvewqI9skO8yTa6AWhmfi1OW8XgChxVdhdEC m6UqpY6mkNgXdSS0e83JyAwpW1XLePrjM/ltMU+XRP3YYzvGvkC/ExpXrHizxrKNt7ipQiY7hKh cvRpOQOc2fLri4FXJAtMPhyeYjT0Opla2Pf53gCk3ewifG2MNOWHGENdT+VP1c/CedjlcvkeOGd mwAPhlxVRLW4AwWlrXAI6fl4R/bJcfRJq1ctTfwkyjvaMSKSntmmHZ8J+6h3pbyIsT/ya8Gaam5 NoqcKGhvaIsEMo1nNFjQn3iNPC0x3z84khlNitEKcYi5Qw/RVlUUCfaRqz9lOKZLuSzNY+zyO6M gDLhRA2TtEMkKrch5z+OXyEkIn4niQkXsJwTIoEe5D10MltLYLitYSIrUiB+dTjSOFC/vqo8WMk QWv6iUfACoClnjRoSlb/gBwsNFKseWplitmp0j6C0ePs7A07RQEL0GGu6SDokF4Fb2RsfRI64pl 2Lz0lI9F3QD4sVtlRBSuCvFt6+w= X-TMASE-SNAP-Result: 1.821001.0001-0-1-12:0,22:0,33:0,34:0,39:0-0 Subject: Re: Pressing ESC from "PXE windows Boot manager" causes ASSERT X-BeenThere: edk2-devel@lists.01.org X-Mailman-Version: 2.1.22 Precedence: list List-Id: EDK II Development List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 25 May 2017 06:38:20 -0000 Content-Language: en-US Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Hello All, I've added some traces to narrow down the issue. Once the NBP file downloaded, control will be given to it. I've added some traces before StartImage() and after StartImage() call. Following are the debug messages // DEBUG message printed before StartImage() // StartImage() called wdsmgfw.Entry(100061C0) WDS Boot Manager version 0800 Client IP: 192.168.0.6 Server IP: 192.168.0.1 Server Name: WIN-8PL637590SS Press ENTER for network boot service. Windows Deployment Services (Server IP: 192.168.0.1) Contacting Server (192.168.0.1): ESC=3DExit -ConvertPages: Incompatible memory types bootmgfw.Entry(849FE1C0) ASSERT d:\PathtoProject\MdeModulePkg\Core\Dxe\Mem\Pool.c(561): CR has Bad S= ignature It might be Boot Loader Issue, As control is NOT coming back. Could you please help on this. Thanks, karunakar -----Original Message----- From: afish@apple.com [mailto:afish@apple.com]=20 Sent: Wednesday, May 24, 2017 8:39 PM To: Karunakar P Cc: Ye, Ting; edk2-devel@lists.01.org Subject: Re: [edk2] Pressing ESC from "PXE windows Boot manager" causes ASS= ERT Karunakar, Every Pool allocation has a header and a tail data structure that is outsid= e of the user visible data. Both these structures have signatures. The ASSE= RT you are seeing is a bad signature in the header so that looks like a buf= fer underflow. It could also be a use after free bug. Head: POOL_HEAD Buffer: User Data Tail: POOL_TAIL Given the checks only happen on Free it is possible it could be a buffer ov= erflow on a buffer that has not yet been freed that runs into this buffer.= =20 If you have a debugger dumping the memory before and after the buffer can s= ome times be useful. The pattern might give you some clues.=20 Thanks, Andrew Fish > On May 23, 2017, at 10:16 PM, Karunakar P wro= te: >=20 > Hello All, >=20 > The ASSERT happens in the following function >=20 > /** > Internal function to free a pool entry. > Caller must have the memory lock held >=20 > @param Buffer The allocated pool entry to free > @param PoolType Pointer to pool type >=20 > @retval EFI_INVALID_PARAMETER Buffer not valid > @retval EFI_SUCCESS Buffer successfully freed. >=20 > **/ > EFI_STATUS > CoreFreePoolI ( > IN VOID *Buffer, > OUT EFI_MEMORY_TYPE *PoolType OPTIONAL > ) > { > . > . > ASSERT(Buffer !=3D NULL); > // > // Get the head & tail of the pool entry // > Head =3D CR (Buffer, POOL_HEAD, Data, POOL_HEAD_SIGNATURE); // ASSERT ha= ppens here > ASSERT(Head !=3D NULL); > . > . > } >=20 > We are using NetworkPkg: SHA- ef810bc807188224a752ffbcf5e7f4b651291cee >=20 > I think here I'm unable attach the files. > You can find the attached screenshots in the following Bug571 > https://bugzilla.tianocore.org/show_bug.cgi?id=3D571 >=20 > Thanks, > Karunakar >=20 >=20 > -----Original Message----- > From: Ye, Ting [mailto:ting.ye@intel.com] > Sent: Wednesday, May 24, 2017 10:29 AM > To: Karunakar P; edk2-devel@lists.01.org > Subject: RE: Pressing ESC from "PXE windows Boot manager" causes=20 > ASSERT >=20 > Hi Karunakar, >=20 > Sorry I did not find your attached files. Would you please send them agai= n? Besides that, do you mind telling us which code base are you using for P= XE boot? Are you using some revision of EDKII main trunk or UDK release? >=20 > Thanks, > Ting >=20 > -----Original Message----- > From: edk2-devel [mailto:edk2-devel-bounces@lists.01.org] On Behalf Of=20 > Karunakar P > Sent: Wednesday, May 24, 2017 12:20 PM > To: edk2-devel@lists.01.org > Subject: [edk2] Pressing ESC from "PXE windows Boot manager" causes=20 > ASSERT >=20 > Hi All, >=20 > We have facing an issue with PXE boot. > [Issue] > When ESC is pressed from Windows Boot manager during PXE boot (IPv4 or=20 > IPv6) system Hangs with following ASSERT >=20 > ASSERT [DxeCore] \MdeModulePkg\Core\Dxe\Mem\Pool.c : CR has Bad=20 > Signature >=20 > [Reproduction Steps] > 1. Perform UEFI PXEv4 or UEFI PXEv6 boot 2. It will start PXE boot over I= Pv4/6 and Downloads NBP file successfully. > Attached the Screenshot for the same(ScreenShot1.jpg) >=20 > It will Displays the info like "Press ENTER for network boot service" > Attached Screensho(ScreenShot2.jpg) >=20 > 3. Press ENTER and then press ESC immediately to see the Windows Boot Man= ager Menu > It will list the available Operating Systems > Attached the screenshot(ScreenShot3.png) >=20 > 4. Press ESC to come back to Setup or next Boot option >=20 > [Result] > System hangs with ASSERT >=20 > [Expected Result] > On pressing ESC from Windows Boot Manager, it should come back to=20 > setup/Next boot option in boot order >=20 > Note: > We have PXE server configured in Windows Server 2012 R2. >=20 > Please look into it. >=20 >=20 > Thanks, > karunakar > _______________________________________________ > edk2-devel mailing list > edk2-devel@lists.01.org > https://lists.01.org/mailman/listinfo/edk2-devel > _______________________________________________ > edk2-devel mailing list > edk2-devel@lists.01.org > https://lists.01.org/mailman/listinfo/edk2-devel