Hi Gua, I don’t think handling the error one level up (i.e. only in the calling function) solves the problem in entirety, can you check please? Example, now the crash can happen in BuildGuidDataHob() see https://github.com/tianocore/edk2/blob/master/EmbeddedPkg/Library/PrePiHobLib/Hob.c#L488-L490 I believe such cases are at other places as well.
I think it may be better to introduce a Panic() hander to fix this properly. Regards, Sami Mujawar On 12/01/2024, 02:25, "gua....@intel.com <mailto:gua....@intel.com>" <gua....@intel.com <mailto:gua....@intel.com>> wrote: From: Gua Guo <gua....@intel.com <mailto:gua....@intel.com>> PR: https://github.com/tianocore/edk2/pull/5252 <https://github.com/tianocore/edk2/pull/5252> V3 1. UefiPayloadPkg/Hob: Integer : Add error handle 2. StandaloneMmPkg/Hob: Integer Overflow in : Add error handle 3. EmbeddedPkg/Hob: Integer Overflow in CreateHob() : Add error handle V2 1. UefiPayloadPkg/Hob: Integer : Add Reviewed-by and Authored-by 2. StandaloneMmPkg/Hob: Integer Overflow in : Add Reviewed-by and Authored-by 3. EmbeddedPkg/Hob: Integer Overflow in CreateHob() : Add Reviewed-by and Authored-by 4. MdeModulePkg/Hob: Integer Overflow in CreateHob() : Add Authored-by V1 1. UefiPayloadPkg/Hob: Integer 2. StandaloneMmPkg/Hob: Integer Overflow in 3. EmbeddedPkg/Hob: Integer Overflow in CreateHob() 4. MdeModulePkg/Hob: Integer Overflow in CreateHob() Cc: Ard Biesheuvel <ardb+tianoc...@kernel.org <mailto:ardb+tianoc...@kernel.org>> Cc: Gerd Hoffmann <kra...@redhat.com <mailto:kra...@redhat.com>> Cc: John Mathew <john.math...@intel.com <mailto:john.math...@intel.com>> Cc: Vincent Zimmer <vincent.zim...@intel.com <mailto:vincent.zim...@intel.com>> Cc: Sami Mujawar <sami.muja...@arm.com <mailto:sami.muja...@arm.com>> Gua Guo (4): UefiPayloadPkg/Hob: Integer Overflow in CreateHob() StandaloneMmPkg/Hob: Integer Overflow in CreateHob() EmbeddedPkg/Hob: Integer Overflow in CreateHob() MdeModulePkg/Hob: Integer Overflow in CreateHob() EmbeddedPkg/Library/PrePiHobLib/Hob.c | 43 +++++++++++++++++++ MdeModulePkg/Core/Pei/Hob/Hob.c | 2 +- .../Arm/StandaloneMmCoreHobLib.c | 35 +++++++++++++++ .../Library/PayloadEntryHobLib/Hob.c | 43 +++++++++++++++++++ .../FitUniversalPayloadEntry.c | 8 ++-- .../UefiPayloadEntry/UniversalPayloadEntry.c | 8 ++-- 6 files changed, 132 insertions(+), 7 deletions(-) -- 2.39.2.windows.1 IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you. -=-=-=-=-=-=-=-=-=-=-=- Groups.io Links: You receive all messages sent to this group. View/Reply Online (#114038): https://edk2.groups.io/g/devel/message/114038 Mute This Topic: https://groups.io/mt/103675959/21656 Group Owner: devel+ow...@edk2.groups.io Unsubscribe: https://edk2.groups.io/g/devel/unsub [arch...@mail-archive.com] -=-=-=-=-=-=-=-=-=-=-=-
