From owner-freebsd-current@FreeBSD.ORG  Tue May 22 08:21:09 2007
Return-Path: <owner-freebsd-current@FreeBSD.ORG>
X-Original-To: freebsd-current@freebsd.org
Delivered-To: freebsd-current@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id 777D516A46B
	for <freebsd-current@freebsd.org>; Tue, 22 May 2007 08:21:09 +0000 (UTC)
	(envelope-from ianf@clue.co.za)
Received: from munchkin.clue.co.za (munchkin.clue.co.za [66.219.59.160])
	by mx1.freebsd.org (Postfix) with ESMTP id 4219413C4C5
	for <freebsd-current@freebsd.org>; Tue, 22 May 2007 08:21:09 +0000 (UTC)
	(envelope-from ianf@clue.co.za)
DomainKey-Signature: a=rsa-sha1; q=dns; c=simple; s=20070313; d=clue.co.za;
	h=Received:Received:Received:To:cc:From:Subject:In-Reply-To:X-Attribution:Date:Message-Id;
	b=p6JvVwMjOd7221QGFJGGtBgYb1dhoi80YaJIkhL68X12LZhhwr0xV7YU5TqK85NDYEkkYEmgPfz15FwbHGmrN925VSpLleOa1q/hhBq/R4uoGic/pgL0PSIXBcUn6ij6ptsu4yE5aeA/Me8ZWsyH+dPOEvqSLBiDhVYSl9WZGqCYE5AxNQEZV1bHZ0FhI1imyTs+Qymbqzhb9htug9Da6vq/b5dLrtY5Bax4RyK2pFwqQHar2cIFktAPpmoJsYA3;
Received: from uucp by munchkin.clue.co.za with local (Exim 4.66)
	(envelope-from <ianf@clue.co.za>)
	id 1HqPcC-0006aS-EF; Tue, 22 May 2007 08:21:08 +0000
Received: from cluetoy.clue.co.za ([10.0.0.19] helo=clue.co.za)
	by urchin.clue.co.za with esmtpa (Exim 4.66)
	(envelope-from <ianf@clue.co.za>)
	id 1HqPbr-0002YD-T4; Tue, 22 May 2007 08:20:47 +0000
Received: from localhost ([127.0.0.1])
	by clue.co.za with esmtp (Exim 4.66 (FreeBSD))
	(envelope-from <ianf@clue.co.za>)
	id 1HqPbq-0000s8-MQ; Tue, 22 May 2007 10:20:46 +0200
To: "Jack Vogel" <jfvogel@gmail.com>
From: Ian FREISLICH <ianf@clue.co.za>
In-Reply-To: Message from "Jack Vogel" <jfvogel@gmail.com> of "Tue,
	22 May 2007 00:49:26 MST."
	<2a41acea0705220049w32b50fc6m37a2e2fef5c8837e@mail.gmail.com> 
X-Attribution: BOFH
Date: Tue, 22 May 2007 10:20:46 +0200
Message-Id: <E1HqPbq-0000s8-MQ@clue.co.za>
Cc: freebsd-current@freebsd.org
Subject: Re: em0 hijacking traffic to port 623 
X-BeenThere: freebsd-current@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Discussions about the use of FreeBSD-current
	<freebsd-current.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-current>, 
	<mailto:freebsd-current-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-current>
List-Post: <mailto:freebsd-current@freebsd.org>
List-Help: <mailto:freebsd-current-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-current>,
	<mailto:freebsd-current-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 22 May 2007 08:21:09 -0000

"Jack Vogel" wrote:
> On 5/21/07, Ian FREISLICH <ianf@clue.co.za> wrote:
> > Ian FREISLICH wrote:
> > > "Jack Vogel" wrote:
> > > > On 5/21/07, Sten Spans <sten@blinkenlights.nl> wrote:
> > > > > On Mon, 21 May 2007, Ian FREISLICH wrote:
> > > > > > I've looked at the bios, but I can't find any settings that remotel
y
> > > > > > hint IPMI or RMCP+ or serial-over-lan.
> > > > > >
> > > > > > Does anyone know how I can stop the card or system from stealing
> > > > > > port 623 in hardware or must I just stop using em0 (and/or Intel NI
CS)?
> > > > >
> > > > > Does "ifconfig em0 promisc" help ?
> > > > > That fixed firmware related vanishing ipv6 packets on fxp and em.
> > > >
> > > > Is this happening even with the latest CURRENT driver,  there is code i
n
> > > > it now that is supposed to stop the firmware from doing that, at least
> > > > that was the theory :)
> > >
> > > No, it's a March 6 current.  How safe is it to just update the
> > > sys/dev/em directory and recompile?  Quite a lot has changed in
> > > CURRENT since then and I don't want to update everything on these
> > > servers just yet.
> >
> > Looking at the new source, I'm not sure it will stop this adaptor
> > gobbling port 623.  It's a 82546EB, e1000_82546_rev_3 e1000_mac_type.
> > In em_init_manageability(), it looks like it's only disabled for
> > e1000_mac_type >= e1000_82571 which excludes this adaptor:
> >
> >                 /* enable receiving management packets to the host */
> >                 if (adapter->hw.mac.type >= e1000_82571) {
> >                         manc |= E1000_MANC_EN_MNG2HOST;
> > #define E1000_MNG2HOST_PORT_623 (1 << 5)
> > #define E1000_MNG2HOST_PORT_664 (1 << 6)
> >                         manc2h |= E1000_MNG2HOST_PORT_623;
> >                         manc2h |= E1000_MNG2HOST_PORT_664;
> >                         E1000_WRITE_REG(&adapter->hw, E1000_MANC2H, manc2h)
;
> >                 }
> >
> > I'll give the driver a whirl anyway.  If it doesn't, is it safe to write
> > 'manc |= E1000_MANC_EN_MNG2HOST' for adapter->hw.mac.type >= e1000_82546?
> 
> It may be that register doesnt exist on the earlier adapter, I'm not sure.
> There is also a system configuration to avoid that port use by the port
> mapper, although the exact way slips my mind right now.
> If you can test that would be useful.

Looking at the software developers manual for the chip, the management
control word 13h and 23h for lan B and lan A respectively have bits
for enabling and disabling filtering ports 623 and 644 (pp. 113,114).
I haven't been able to figure out the correlation between the driver
source and the manual yet.  Maybe the difference will be in the
initialization of the chip.  Although it looks like it uses left
over BIOS settings.

I'll start with the new driver and test/work from there.

Ian

--
Ian Freislich