Re: [PATCH net 0/6] net/ncsi: harden packet parsing against malformed BMC replies

Next message: Andi Kleen: "Re: [Patch v2 2/4] perf/x86/intel: Disable PMI for self-reloaded ACR events"
Previous message: Simon Horman: "Re: [PATCH net v3 1/2] bnge: fix initial HWRM sequence"
In reply to: Paul Fertser: "Re: [PATCH net 0/6] net/ncsi: harden packet parsing against malformed BMC replies"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Michael Bommarito

Date: Wed Apr 22 2026 - 13:12:15 EST

On Wed, Apr 22, 2026 at 12:44 PM Paul Fertser <fercerpav@xxxxxxxxx> wrote:
> The code your patches modify always runs only on the BMC itself, the
> packets parsed are generated by a NIC directly.
>
> So if anything, the threat model here is compromised NIC
> firmware. MITMing sounds unlikely as that would require tricky
> hardware modifications and if you can do that it's easier to put a
> modified NIC instead.

Thanks for the correction, I definitely got that backwards!

Should I submit a v2 with the corrected notes or wait for any other
feedback / review on patch substance (assuming you think it's actually
worth merging)?

Thanks,
Mike Bommarito