Talk:BCM5719

From RCS Wiki
Revision as of 23:44, 22 December 2017 by Torpcoms (talk | contribs) (→‎Firmware image signing: add link to file mentioned, I hope that is okay with you JSharp)
Jump to navigation Jump to search

BCM95719 not BCM5719?

This page was moved ([1]) from BCM5719 to BCM95719, yet I can't see any reference to BCM95719 on the page nor on the Raptor Computing contest; even the image on the contest page shows:

BCM5719A1KFBG
TE1636 P11
625576-11 N[?]

which I would guess means that it is BCM5719 not BCM95719. Am I mistaken? - Torpcoms (talk) 00:13, 22 December 2017 (CST)

This is somewhat tricky since the package says BCM5719 but the firmware says BCM95719. Since both are correct a redirect may be in order. SiteAdmin (talk) 12:02, 22 December 2017 (CST)
Is this something you might want to ask people to fix in the open source firmware? :) - Torpcoms (talk) 14:25, 22 December 2017 (CST)

MAC address legality

The page mentions "the two MAC addresses inside this image must be changed to match the MAC addresses on your particular Talos™ II system; failure to do so may violate law and could potentially cause serious network issues." having two ports with the same address would obviously cause issues if both are in use on the same network, but in what way is MAC address spoofing even remotely illegal? Even Windows 10 and iOS are starting to use MAC spoofing. Torpcoms (talk) 14:47, 22 December 2017 (CST)

Mitigation

Is it possible to use the IOMMU to limit the firmware's ability to do DMA within sensitive memory regions? Is that currently implemented while we're waiting on replacement firmware? - JSharp (talk) 20:01, 22 December 2017 (CST)

According to Timothy Pearson's reply on the coreboot mailinglist, it is behind the IOMMU, and this arrangement is even good enough to get RYF certification from the FSF. - Torpcoms (talk) 23:41, 22 December 2017 (CST)

Firmware image signing

The firmware image linked from article is binary code intended to be flashed to Talos II systems for recovery of bricked NIC firmware... perhaps they should be signed by Raptor CS for manual verification? - JSharp (talk) 20:20, 22 December 2017 (CST)