System and method for supporting host-based firmware upgrade of input/output (I/O) devices in a middleware machine environment
First Claim
1. A method for supporting controlled and secure firmware upgrade in a middleware machine environment, comprising:
- managing the network fabric with a fabric administrator system;
providing a fabric administration boot image of an operating system on a host node which is separate from a normal boot image of the operating system on the host node,wherein the host node connects to a shared resource via an input/output device,wherein the normal boot image provides access to a local file system of the host node but no access to firmware of the input/output device,wherein the fabric administration boot image provides access to firmware of the input/output device but no access to the local file system of the host node, andwherein when loaded with the fabric administration boot image, the host node is accessible to the fabric administrator system and not a local host administrator of the host node;
specifying, by the local host administrator, and via a local logic of the input/output device, an identified firmware update option from a plurality of firmware update options persistently stored on the input/output device;
loading the fabric administration boot image; and
upgrading, by the fabric administration system, and via the fabric administration boot image, the firmware of the input/output device using a firmware image which corresponds to the identified firmware update option.
1 Assignment
0 Petitions
Accused Products
Abstract
A system and method can support controlled and secure firmware upgrade in a middleware machine environment. The system can provide a boot image of an operating system (OS) in a host node, wherein the host node connects to a shared resource, such as a network fabric, via an input/out (I/O) device. The boot image can receive at least one of a firmware image and a firmware update from the host node, and upgrade firmware in the I/O device associated with the host node. Furthermore, the host-based firmware upgrade can be based on a special boot image that is prevented from accessing local information on the host node, or a normal boot image that is prevented from controlling the I/O device.
-
Citations
16 Claims
-
1. A method for supporting controlled and secure firmware upgrade in a middleware machine environment, comprising:
-
managing the network fabric with a fabric administrator system; providing a fabric administration boot image of an operating system on a host node which is separate from a normal boot image of the operating system on the host node, wherein the host node connects to a shared resource via an input/output device, wherein the normal boot image provides access to a local file system of the host node but no access to firmware of the input/output device, wherein the fabric administration boot image provides access to firmware of the input/output device but no access to the local file system of the host node, and wherein when loaded with the fabric administration boot image, the host node is accessible to the fabric administrator system and not a local host administrator of the host node; specifying, by the local host administrator, and via a local logic of the input/output device, an identified firmware update option from a plurality of firmware update options persistently stored on the input/output device; loading the fabric administration boot image; and upgrading, by the fabric administration system, and via the fabric administration boot image, the firmware of the input/output device using a firmware image which corresponds to the identified firmware update option. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A system for supporting controlled and secure firmware upgrade in a middleware machine environment, comprising:
-
a fabric administrator system that manages a network fabric; a host node that connects to a shared resource via an input/output device, wherein the host node includes; one or more microprocessors; a normal boot image of an operating system of the host node, wherein the normal boot image is executable on the one or more microprocessors, and wherein the normal boot image provides access to a local file system of the host node but no access to firmware of the input/output device; and a fabric administration boot image of the operating system executable on the one or more microprocessors and that is separate from the normal boot image of the operating system, wherein the fabric administration boot image provides access to the firmware of the input/output device but no access to the local file system of the host node, and wherein, when loaded with the fabric administration boot image, the host node is accessible to the fabric administrator system and not a local host administrator of the host node; wherein the input/output device operates to receive, from a local host administrator via a local logic of the input/output device that is accessible through the normal boot image, a selection of an identified firmware update option from a plurality of firmware update options persistently stored on the input/output device; and wherein the fabric administration system loads the fabric administration boot image and upgrades the firmware of the input/output device using a firmware image which corresponds to the identified firmware update option. - View Dependent Claims (10, 11, 12, 13, 14, 15)
-
-
16. A non-transitory machine readable storage medium having instructions stored thereon that when executed cause a system to:
-
provide a fabric administration system that manages a network fabric; provide a fabric administration boot image of an operating system in a host node and provide a normal boot image of the operating system which is separate from the fabric administration boot image of the operating system, wherein the host node connects to a shared resource via an input/output device, wherein the normal boot image provides access to a local file system of the host node but no access to firmware of the input/output device, wherein the fabric administration boot image provides access to the firmware of the input/output device but no access to the local file system of the host node, and wherein when loaded with the fabric administration boot image, the host node is accessible to the fabric administrator system and not a local host administrator of the host node; provide a local logic of the input/output device, wherein the local logic of the input/output device is accessible through the normal boot image, and wherein the local logic of the input/output device receives a selection, from a local host administrator of the host node, of an identified firmware update option from a plurality of firmware update options persistently stored on the input/output device; and cause the fabric administration system to load the fabric administration boot image and upgrade the firmware of the input/output device using a firmware image which corresponds to the identified firmware update option.
-
Specification