Battery firmware lockout
Most devices with rechargeable batteries has a battery management system (BMS) module. This module monitors and regulate key variables and capable of communicating with the device and preventing unsafe usage that could cause failure. However, many of them contains proprietary code that locks the battery from operation, "bricking" it and prevent the battery from third-party repair. Effectively making the whole device that depends on said battery unusable.
How it works
When the battery is outside its operating range, such as overcharged, overcharged, overheated, unbalanced(in multi-celled battery packs), the BMS prevents the battery from further usage, limiting damage. However, the BMS should resume normal operation when the battery is back within operating range. Instead, the BMS changes bytes in its memory, leading to a "Permanent Fail (PF)" state, preventing the use of said battery even after recondition or repair.
Documentations from known BMS manufacturers such as Texas Instruments said the device can permanently disable the use of the battery pack in case of a "severe failure"[1]. However users report the battery is "bricked" after scenarios like long-term storage, discharging laptop overnight or use a power tool in warm environment while charging it cool, indicating the manufacturers have abused the BMS program, exaggerating the nature of the failure as a from of self-destructive design.
To make matters worse, many of the BMS needs "access code" to read and change it's parameters, including runtime ones like the "Permanent Fail" flag. The unlock or unseal code is kept secret by the battery's manufacturer, making user and third-parties very difficult, if not impossible, to repair said battery[2].
Alarmingly, the condition of "bricking" includes "Capacity Degradation Permanent Failure"[3], which means the manufacturers can artificially limit the battery pack's lifespan, making it unusable after a certain health (e.g 80%).
Why it is a problem
Increased repair cost
When the battery is bricked, most users would buy an entire battery pack, increasing the total cost of ownership. The "access code" lock prevents third-parties from replacing individual cells and refurbishing the battery pack, reducing its lifespan.
Environmental impact
Lithium-ion batteries are 95% recyclable, however, only about 5% of them are actually recycled. BMS firmware lockout increases the number of battery packs end up in waste, increasing pollution. Some of the materials like cobalt, are hazardous.
Undermining ownership
When the purchase is complete. The ownership is transferred to the user of the device. Locking out the battery after purchase is akin to installing a lock on someone else's property, and should be considered "Digital Handcuffs"[4].
Examples
Consumer electronics
The most common consumer electronics using sophisticated battery management system for their multi-cell battery pack are laptop computers. There are many discussions about the battery "lockout" after replacing or recharging individual cells, indicating battery firmware lockout is the main obstacle of battery repair[5].
Commercial UAVs
DJI, a well known commercial UAV manufacturer, locks out the battery after long-term storage, claiming over-discharging damages the battery. Users who successfully "revives" the battery packs by charging their cells using a bench power supply and clearing the failure code, reports identical or slightly degraded flight time.
Home appliances
Dyson
Power tools
Ryobi
Electric vehicles
Tesla
Consumer reactions
Although some consumers rationalize such behavior of increasing safety or avoiding liability. Many of them condemn such practices and describing it as planned obsolescence.
There are ways of tackling battery firmware lockout:
- Replacing the battery pack: This is the simplest way of "repairing" a "bricked" battery. However doing so is costly, increases e-waste production and further fuels planned obsolescence of said manufacturers.
- Extracting the BMS code: Certain logic analyzers can extract the code from communications to and from the BMS chip. Users or repair technicians can use this way to extract the "unseal" password, then reset the "permanent fail" flag and recalibrate the battery's capacity.
- Buying the unlock password: Some of the battery models' BMS code has been leaked and it's possible to purchase it in the grey market. However the legality of such behavior is in the gray area, there's a risk of scam, some of the passwords can be as expensive as the pack itself, and there's no guarantee of working.
- Install a custom (or OEM) BMS chip: Buying a brand new BMS chip and write own program. The main challenge is the knowledge of the working mechanism of the battery and its BMS. Different battery chemistries have different voltage and current characteristics, using the wrong data may cause incorrect capacity reading at best, or battery/device malfunction at worst.
Lawsuits
References
- ↑ https://www.ti.com/lit/ug/sluua43a/sluua43a.pdf?
- ↑ "Experiences with TI BQ management IC's when re-building laptop batteries?". EEVblog Electronics Community Forum. 28 Sep 2019. Archived from the original on 26 Sep 2024. Retrieved 13 Sep 2025.
- ↑ https://www.ti.com/lit/ds/symlink/bq40z50.pdf?
- ↑ "Words to Avoid (or Use with Care) Because They Are Loaded or Confusing". GNU Operating System. Archived from the original on 2025-09-09. Retrieved 2025-09-13.
- ↑ "How can I reset the laptop battery BMS?". Stack Exchange. 2022-10-06. Archived from the original on 2015-09-13. Retrieved 2015-09-13.
{{cite web}}:|archive-date=/|archive-url=timestamp mismatch; 2025-09-13 suggested (help)