Redfish direction to update EEPROMs

Redfish direction to update EEPROMs Dec 4, 2020 19:26:05 GMT

Quote

Post by josephreynolds1 on Dec 4, 2020 19:26:05 GMT

Is my understanding of Redfish's direction correct?:
Per redfishforum.com/thread/393/modify-schema-propertys-permission
- I understand the boundary of the Redfish spec is that various Assembly BinaryDataURI's identify the locations of EEPROMs that may contain serial numbers, permanent MAC addresses, etc., that relate to other parts of the Redfish spec.
- Redfish is intended for end-users , so it does not specify the content of EEPROMs or allow updates.
- Redfish acknowledges that manufacturers may need to write to the EEPROMs, and that is outside the scope of the Redfish spec.

Proposed customization:

I would like my Redfish implementation (https://github.com/openbmc/bmcweb) to allow a manufacturer to write the EEPROM. So I propose a new OemOpenBMCPerformService privilege. Specifically, this privilege is required to write to the EEPROM (PUT to the URI given by the BinaryDataURI property). The service agent would have this privilege; other accounts (possibly including administrator accounts) would omit this privilege, meaning they cannot write to the EEPROMs. I believe this is a straightforward customization to the Redfish authorization model. The name "PerformService" reflects the actions that a manufacturer's authorized service representative might have to do after replacing a FRU part, for example, setting the system serial number or MAC address back to its intended value.

My purpose for this thread is to document that Redfish does not intend to standardize this use case and to collect ideas about how to proceed.

Post by josephreynolds1 on Dec 4, 2020 19:26:05 GMT

Post by jautor on Dec 8, 2020 15:38:02 GMT