构建通用固件分发平台.pdf

《构建通用固件分发平台.pdf》由会员分享，可在线阅读，更多相关《构建通用固件分发平台.pdf（12页珍藏版）》请在三个皮匠报告上搜索。

1、Jean-Marie VerdunBuilding a common firmware distribution platformBuilding a common Firmware distribution platformJean-Marie VerdunSYSTEMS MANAGEMENTFrom static hardware configuration to dynamic setup and hardware discoveryFrom microcontroller setup to advanced CPU Firmware evolutionStatic embedded l

2、ow level firmware setupInitialize just what is needed,mainlyRAM controllerLocal CPU(single core)Network adapter(ethernet)Dynamic,upgradable and configurable partSetup system for long term useInitialize PCIe subsystem when neededBring up storage,and provide configuration toolsRun burn tests at full s

3、peedLock security and hand over to next stageBreaking down the firmware stackProposed system boot flowBMCFirmware repositoryROMPCIEEnd Points123123123Boot BMC from the network Retrieve a signed linux kernel and mount BMC user space from a network block storage deviceBoot PCIe device from networkRetr

4、ieve firmware by using Ethernet from the BMC and network mount images(for big firmware images)BMC load images from main repoLoad ROM to the host and release system from RESETNo advanced firmware feature stored into the server,just bootloadersFirmware are becoming volatiles software.Config parameters

5、 are stored into a single place:the BMC who is the single root of trust for all devices into the platform.BMC storage doesnt happen inside the platform,it is secured through unique encryptions keys per server inside a network block storage device Impact on firmware distributionBMC needs to start fir

6、st from a common repositoryWhich protocol to use to start the BMCA mix of TFTP/HTTP and iSCSI discoveryiSCSI devices are protected by LUKSHow to update the repository?Direct from secure internet source?Through which protocol?Fwupd?How to identify devices to provide the right firm