US 11,809,851 B2
System and method for managing update installation lockdown policies for firmware devices and driver-managed devices
Anusha Bhaskar, Bengaluru (IN); Santosh Gore, Bangalore (IN); Muniswamy Setty, Bengaluru (IN); Parmeshwr Prasad, Bangalore (IN); and Chandrashekar Nelogal, Round Rock, TX (US)
Assigned to DELL PRODUCTS L.P., Round Rock, TX (US)
Filed by Dell Products L.P., Round Rock, TX (US)
Filed on Jul. 27, 2021, as Appl. No. 17/386,449.
Claims priority of application No. 202111025909 (IN), filed on Jun. 10, 2021.
Prior Publication US 2022/0398088 A1, Dec. 15, 2022
Int. Cl. G06F 8/65 (2018.01)
CPC G06F 8/65 (2013.01) 12 Claims
OG exemplary drawing
 
1. A method for managing a resource system, the method comprising:
obtaining, by a hardware resource manager, a firmware update lockdown request for a lockdown for a first firmware device and a second firmware device of the resource system, wherein the hardware resource manager operates in a first computing device;
in response to the firmware update lockdown request:
identifying, based on first firmware operating on the first firmware device, a firmware protocol corresponding to the first firmware device, wherein the first firmware device is operatively connected to the computing device;
identifying, based on second firmware operating on the second firmware device, a second firmware protocol corresponding to the second firmware device, wherein the computing device comprises the second firmware device;
in parallel:
generating a first firmware lockdown command corresponding to the first firmware device based on the first firmware protocol; and
generating a second firmware lockdown command corresponding to the second firmware device based on the second firmware protocol;
in parallel:
sending, to the first firmware device, the first firmware lockdown command, wherein the first firmware device operates using a firmware management protocol (FMP), wherein the first firmware lockdown command is an FMP command that specifies updating a firmware lockdown policy of the first firmware device to specify a lockdown mode of a hardware device in the first firmware device, and wherein the first firmware device executes the first firmware lockdown command; and
sending, to the second firmware device, the second firmware lockdown command, wherein the second firmware device operates using a platform-level data model (PLDM) protocol, wherein the second firmware lockdown command is a PLDM command that specifies obtaining firmware parameters of the second firmware device for specifying a lockdown of a hardware device in the second firmware device, and wherein the second firmware device executes the second firmware lockdown command;
initiating updating the lockdown policies, wherein the lockdown policies are updated at the first and second devices based on the first firmware lockdown command and the second firmware lockdown command.