Added support for:

RedHat Enterprise Linux 8.9

RedHat Enterprise Linux 9.3

Updated to driver version 10.02.11.00-k1

This Driver is FIPs enabled.

]]> This Driver is FIPs enabled.

]]> Added support for:

RedHat Enterprise Linux 8.9

RedHat Enterprise Linux 9.3

Updated to driver version 10.02.11.00-k1

]]> Support FIPS mode.

]]>

Update build environment with SHA384

]]>

AMD EPYC DRTM Boot Driver update

]]>

Driver update

]]>

Added support for Microsoft Server Windows 2022.

]]>

Added support for Microsoft Server Windows 2022.

]]>

Support firmware flash in OS FIPS enabled mode.

]]>

Added support for RHEL 9.

]]> Enhanced the SMBIOS type 203 ability for PCI device information displays that can support when the PCI slot is bifurcated.

Added an option of "Filter Non-bootable Drives" in RBSU Boot Options.

]]> Important Notes:

This version of the System ROM should be paired with Server Platform Services (SPS) Firmware 04.04.04.603 (2.00_12_18_2023).

Firmware Dependencies:

None

Problems Fixed:

Addressed an issue where the PCI VPD data would be written unconditionally while system is accessing to PCI VPD.
This revision of the System ROM includes the latest revision of the Intel IPU 2024.1 BIOS update which provides Intel's mitigation for BIOS advisory and security vulnerabilities documented as CVE-2021-38575, CVE-2022-36763, CVE-2022-36764, CVE-2023-45229 and CVE-2023-45853. This security vulnerability is documented in the CVE report site. This issue is not unique to HPE servers.
Addressed an issue where the UBM version between RBSU and iLO web pages was not synchronized.
Addressed an issue where NVME hot plug when installing fully loaded NVME drives.
Addressed a potential security vulnerability in some 3rd and 4th Generation Intel® Xeon® Processors when using Intel® Software Guard Extensions (SGX) or Intel® Trust Domain Extensions (TDX) may allow escalation of privilege, as documented in CVE-2023-22655.
Addressed an issue vulnerabilities in network IP stack documented as from CVE-2023-45230 to CVE-2023-45237.
Addressed an issue where the PCIE slot control would disappear in RBSU when the PCIE switchboard is installed in the system.
Addressed an issue where the iSCSI SW ipv6 HDD could not be found under OS when iSCSI IP Address Type option is set to Auto in RBSU Network Options / iSCSI Configuration / Add an iSCSI Attempt > select Network device > IP Address Type.
Addressed an issue where setup options of the BIOS Configuration (RBSU) utility may not be synchronized to the latest state when a server is idle in RBSU for more than 30 minutes.

Known Issues:

None

]]> Enhanced the SMBIOS type 203 ability for PCI device information displays that can support when the PCI slot is bifurcated.

Added an option of "Filter Non-bootable Drives" in RBSU Boot Options.

]]> Important Notes:

This version of the System ROM should be paired with Server Platform Services (SPS) Firmware 04.04.04.603 (2.00_12_18_2023).

Firmware Dependencies:

None

Problems Fixed:

Addressed an issue where the PCI VPD data would be written unconditionally while system is accessing to PCI VPD.

This revision of the System ROM includes the latest revision of the Intel IPU 2024.1 BIOS update which provides Intel's mitigation for BIOS advisory and security vulnerabilities documented as CVE-2021-38575, CVE-2022-36763, CVE-2022-36764, CVE-2023-45229 and CVE-2023-45853. This security vulnerability is documented in the CVE report site. This issue is not unique to HPE servers.

Addressed an issue where the UBM version between RBSU and iLO web pages was not synchronized.

Addressed an issue where NVME hot plug when installing fully loaded NVME drives.

Addressed an issue vulnerabilities in network IP stack documented as from CVE-2023-45230 to CVE-2023-45237.

Addressed an issue where the PCIE slot control would disappear in RBSU when the PCIE switchboard is installed in the system.

Addressed an issue where the iSCSI SW ipv6 HDD can't be found under OS when iSCSI IP Address Type option is set to Auto in RBSU Network Options / iSCSI Configuration / Add an iSCSI Attempt > select Network device > IP Address Type.

Known Issues:

None]]>

Fixes an intermittent issue where the incorrect model number can be reported during spin-up.

]]>

Added support for Microsoft Server Windows 2022.

]]>

Support firmware flash in OS FIPS enabled mode.

]]>

Added support for RHEL 9.

]]> TBD

]]>

This product enhances to added support for ens queue-stats multi-queue.

This product enhances Update Driver logging as more generic.

This product enhances to ENS driver to avoid blocking calls.

This product enhances the Collection of Firmware debugging data in different scenarios.

This product enhances to enable software/stack checksum calculation.

]]>

This product corrects an issue where Fixed PSOD for rx-ring size less than 256 use case.

This product corrects an issue where Fixed checksum issues for tunnel packets in ENS mode.

This product corrects an issue where Fix VXLAN tunnel port config failure during driver reload.

This product corrects the issue where Failing to bring up maximum number of VFs.

This product corrects an issue where Fix Invalid memory access when DCB （Data Center Bridging） access alloc fails during driver load.

This product corrects an issue where Fix BFD （Bidirectional Forwarding Detection）control failures in NSX environment.

]]> The following fixes were incorporated in this version:

The Enabled-ClusterS2D command now completes successfully when executed on a SATA drive within a D3610 disk enclosure for a NonStop solution.
The smart carrier, which is the drive case for SAS drives, now authenticates in the D3610/D3710 drive enclosure.
Added new 7-segment error codes E0 and E1 to report issues with Fan modules A and B, respectively. These new codes only apply to the D3610/D3710 and only display when running firmware 5.04.
If the storage enclosure processor within the I/O module fails, a hard reset (power down and then power up) is executed to ensure the processor comes back online.

Please refer to the Release Notes for the complete listing of fixes, enhancements, known issues and work-arounds corresponding to this firmware.

]]> The following fixes were incorporated in this version:

The Enabled-ClusterS2D command now completes successfully when executed on a SATA drive within a D3610 disk enclosure for a NonStop solution.
The smart carrier, which is the drive case for SAS drives, now authenticates in the D3610/D3710 drive enclosure.
Added new 7-segment error codes E0 and E1 to report issues with Fan modules A and B, respectively. These new codes only apply to the D3610/D3710 and only display when running firmware 5.04.
If the storage enclosure processor within the I/O module fails, a hard reset (power down and then power up) is executed to ensure the processor comes back online.

Please refer to the Release Notes for the complete listing of fixes, enhancements, known issues and work-arounds corresponding to this firmware.

]]> This product now supports Red Hat Enterprise Linux 8.8.

]]>

This firmware provides bug fixes for the P5620/P5520.

]]>

Add support of new flash on the latest expander board.

Provided a proper downgrade restriction to ensure firmware compatibility with the latest flashes.

]]>

Add support of new flash on the latest expander board.

Provided a proper downgrade restriction to ensure firmware compatibility with the latest flashes.

]]> Updated to version 1.0.0.1

]]>

Support firmware flash in OS FIPS enabled mode.

]]>

Fix for V6 Read disturb issue (which might have caused data integrity issue) and other issues.

]]> Enhanced the SMBIOS type 203 ability for PCI device information displays that can support when the PCI slot is bifurcated.

Added an option of "Filter Non-bootable Drives" in RBSU Boot Options.

]]> Important Notes:

This version of the System ROM should be paired with Server Platform Services (SPS) Firmware 04.04.04.603 (2.00_12_18_2023).

Firmware Dependencies:

None

Problems Fixed:

Known Issues:

None

]]> Enhanced the SMBIOS type 203 ability for PCI device information displays that can support when the PCI slot is bifurcated.

Added an option of "Filter Non-bootable Drives" in RBSU Boot Options.

]]> Important Notes:

This version of the System ROM should be paired with Server Platform Services (SPS) Firmware 04.04.04.603 (2.00_12_18_2023).

Firmware Dependencies:

None

Problems Fixed:

Addressed an issue where the PCI VPD data would be written unconditionally while system is accessing to PCI VPD.

Addressed an issue where the UBM version between RBSU and iLO web pages was not synchronized.

Addressed an issue where NVME hot plug when installing fully loaded NVME drives.

Addressed an issue vulnerabilities in network IP stack documented as from CVE-2023-45230 to CVE-2023-45237.

Addressed an issue where the PCIE slot control would disappear in RBSU when the PCIE switchboard is installed in the system.

Addressed an issue where the iSCSI SW ipv6 HDD can't be found under OS when iSCSI IP Address Type option is set to “Auto” in RBSU Network Options / iSCSI Configuration / Add an iSCSI Attempt > select Network device > IP Address Type.

Known Issues:

None]]>

Support firmware flash in OS FIPS enabled mode.

]]>

Optimize thermal maximum continuous operation temperature values

]]>

Added support for VMware 8.0

]]>

Added support for VMware 8.0

]]>

It has fix code for V6 read disturb and other issues.

For more information, refer to HPE Customer Advisory at the following URL: https://support.hpe.com/hpesc/public/docDisplay?docId=emr_na-a00136659en_us

]]> It has fix code for V6 read disturb and other issues

]]>

Fix component SAS core dump issue which along with NVMe drives behind MR controllers on certain platform flashing.

Fix NVMe drive component failed to update problem behind more than 2 MR controllers on certain platform.

Fix NVMe drive component which shows wrong behavior message against the flash result.

Fix SPP force upgrade flash component problem on certain drive family.

Support firmware flash in OS FIPS enabled mode.

]]>

Added support for RHEL 9.

]]>

Added support for Microsoft Server Windows 2022.

]]>

Added support for Microsoft Server Windows 2022.

]]>

Fixes an issue in previous version where the Inquiry model number is reported incorrectly for first few seconds after the drive is powered on

]]>

Fixes an issue in previous version where the Inquiry model number is reported incorrectly for first few seconds after the drive is powered on

]]>

Added support for Microsoft Windows Server 2022.

]]>

Added support for Microsoft Windows Server 2022.

]]>

Added support for VMware 8.0

]]>

Added support for VMware 8.0

]]> Added support for:

RedHat Enterprise Linux 8.9

RedHat Enterprise Linux 9.3

Updated to driver version 10.02.11.00-k1

This Driver is FIPs enabled.

]]> This Driver is FIPs enabled.

]]> Added support for:

RedHat Enterprise Linux 8.9

RedHat Enterprise Linux 9.3

Updated to driver version 10.02.11.00-k1

]]>

Improves performance in certain file systems and implements fixes for several of the previous firmware’s shortcomings.

The risk of not upgrading to this firmware is the increased possibility of data corruption in certain error and timing conditions.

Several maintenance items are included in this firmware revision that reduce the probability of hangs.

]]>

Improves data integrity

Decreases possibility of data corruption in certain error and timing conditions

Reduces the probability of hangs

]]> Added new Microsoft secure boot keys, KEK2023, Microsoft UEFI CA 2023 and Windows UEFI CA 2023, since the original keys will expire in 2026.

Added the System Configuration (RBSU) option "Boot Options/UEFI Boot Settings/Filter Non-bootable Drives" and set to "Auto" by default. This setting has the following Redfish property:

/redfish/v1/systems/1/bios/settings/FilterNonbootableDrive

]]> Important Notes:

Ver. 3.00_01-26-2024(B) contains updates to the firmware packaging and is functionally equivalent to ver. 3.00_01-26-2024. It is not necessary to upgrade with Revision B if a previous component revision was used to upgrade the firmware to version 3.00_01-26-2024.

This revision of the System ROM includes AMD reference code MilanPI 1.0.0.C for AMD 3rd Generation EPYC processors. This revision of the System ROM includes AMD reference code RomePI 1.0.0.H for AMD 2nd Generation EPYC processors. This revision of the System ROM includes the mitigation for security vulnerabilities CVE-2023-31346 and CVE-2023-31347 for AMD 3rd Generation EPYC processors. This security vulnerability is documented in the CVE report site. This issue is not unique to HPE servers. This revision of the System ROM includes the mitigation for NetworkPkg iSCSI Dxe driver vulnerability documented as CVE-2021-38575. This revision of the System ROM includes the mitigation for NetworkPkg PXE IP stack vulnerabilities documented as CVE-2023-45229, CVE-2023-45230, CVE-2023-45231, CVE-2023-45232, CVE-2023-45233, CVE-2023-45234, CVE-2023-45235, CVE-2023-45236, and CVE-2023-45237.

Firmware Dependencies:

None

Problems Fixed:

This revision of the System ROM includes the mitigation for NetworkPkg iSCSI Dxe driver vulnerability documented as CVE-2021-38575.

This revision of the System ROM includes the mitigation for NetworkPkg PXE IP stack vulnerabilities documented as CVE-2023-45229 CVE-2023-45230 CVE-2023-45231 CVE-2023-45232 CVE-2023-45233 CVE-2023-45234 CVE-2023-45235 CVE-2023-45236 CVE-2023-45237.

Known Issues:

None

]]> Added new Microsoft secure boot keys, KEK2023, Microsoft UEFI CA 2023 and Windows UEFI CA 2023, since the original keys will expire in 2026.

Added the System Configuration (RBSU) option "Boot Options/UEFI Boot Settings/Filter Non-bootable Drives" and set to "Auto" by default. This setting has the following Redfish property:

/redfish/v1/systems/1/bios/settings/FilterNonbootableDrive

]]> Important Notes:

Firmware Dependencies:

None

Problems Fixed:

This revision of the System ROM includes the mitigation for NetworkPkg iSCSI Dxe driver vulnerability documented as CVE-2021-38575.

Known Issues:

None]]> Security Hardening Enhancements: This release contains important reliability improvements and security hardening enhancements. HPE recommends upgrading your device's firmware to this release to improve the firmware security and reliability of your device.

No New features or changes have been included in version 20.40.1000.

]]> The following issues have been fixed in version 20.40.1000:

RDE LLDPTransmit ChassisID was occassionally not represented correctly.

]]> Security Hardening Enhancements: This release contains important reliability improvements and security hardening enhancements. HPE recommends upgrading your device's firmware to this release to improve the firmware security and reliability of your device.

New features and changes included in version 20.39.1002:

Get Temperature OEM command now always returns a unified temperature.
Enabled Management Component Transport Protocol (MCTP) over PCIe.
Added a caching mechanism to improved expansion ROM performance and to avoid any slow boot occurrences when loading the expansion ROM driver.
Added new support for reserved mkey index range. When enabled, a range of mkey indexes is reserved for mkey by name use.

]]> No new fixes have been included in version 20.39.1002.

]]> Support SHA384

]]> This product correct an issue which fixed PSOD that keep DRSS module parameter disabled.

]]> This product enhanced the compatibility with firmware of combo image version v8.65.09.

]]>

Updated SBOM requirement

]]>

Added support for HPE ProLiant MicroServer Gen10 Plus v2

]]> Added new Microsoft secure boot keys, KEK2023, Microsoft UEFI CA 2023 and Windows UEFI CA 2023, since the original keys will expire in 2026.

Corrected Redfish Property value changed from vN_N_N to N.N.N in uri:

/redfish/v1/registrystore/registries/{lang}/biosattributeregistry{Platform}.vN_N_N

there, {lang} = { en, ja, zh }, {platform} = Platform Name e.g. A55, U63 , vN_N_N =

version number defined as Redfish specification

[Example]

uri: /redfish/v1/registrystore/registries/zh/biosattributeregistrya55.v1_1_20

Property of RegistryVersion is changed from v1_1_20 to 1.1.20

Added the System Configuration (RBSU) option "Boot Options/UEFI Boot Settings/Filter Non-bootable Drives" and set to "Auto" by default. This setting has the following Redfish property:

/redfish/v1/systems/1/bios/settings/FilterNonbootableDrive

]]> Important Notes:

This revision of the System ROM contains updates aligned with the Intel Product Update (IPU) version IPU.2024.1 guidance. This revision of the System ROM includes the mitigation for vulnerabilities documented as CVE-2021-38575, CVE-2023-45853, CVE-2022-36763 and CVE-2022-36764. This revision of the System ROM includes the mitigation for NetworkPkg PXE IP stack vulnerabilities documented as CVE-2023-45229, CVE-2023-45230, CVE-2023-45231, CVE-2023-45232, CVE-2023-45233, CVE-2023-45234, CVE-2023-45235, CVE-2023-45236, and CVE-2023-45237. This version of the System ROM should be paired with Server Platform Services (SPS) Firmware 06.00.03.604 (2.00_12_20_2023).

Firmware Dependencies:

Problems Fixed:

This revision of the System ROM contains updates aligned with the Intel Product Update (IPU) version IPU.2024.1 guidance.

This revision of the System ROM includes the mitigation for vulnerabilities documented as CVE-2021-38575, CVE-2023-45853, CVE-2022-36763 and CVE-2022-36764.

This revision of the System ROM includes the mitigation for NetworkPkg PXE IP stack vulnerabilities documented as CVE-2023-45229, CVE-2023-45230, CVE-2023-45231, CVE-2023-45232, CVE-2023-45233, CVE-2023-45234, CVE-2023-45235, CVE-2023-45236, and CVE-2023-45237.

Addressed an issue where the operating system cannot detect the iSCSI hard drive through IPv6 installation if the iSCSI IpAddressType is set to auto.

Addressed an issue where DmiAspmCtrl was not set accordingly when setting DMI ASPM to Disabled/L1 Enabled.

Known Issues:

]]> Replaced "AC power" with "external power" in the help text of "Automatic power-on" option. This is due to ProLiant servers also provide the DC power supply option.

Added "DMI Power Management (ASPM)" option in RBSU. The option has the default value of "disable", which will override default setting of "enable" from the previous ROM. This is due to enabling DMI power management might result in system hang with machine check exception based on Intel erratum RKL-15.

The path to the option is: Processor Options -> DMI Power Management (ASPM)

This setting has the Redfish property URI of: /redfish/v1/systems/1/bios/settings/E3DmiAspm

To follow DMTF schema, change the Redfish registry version naming to have the pattern of "^\d+.\d+.\d+$".

For example, /redfish/v1/registrystore/registries/zh/biosattributeregistrya55.v1_1_20 will now becomes /redfish/v1/registrystore/registries/zh/biosattributeregistrya55.1.1.20

]]> Important Notes:

This version of the System ROM contains updates aligned with the Intel Product Update (IPU) version IPU.2023.4 guidance.

Firmware Dependencies:

None

Problems Fixed:

This revision of the System ROM includes the latest revision of the Intel IPU 2023.4 BIOS update which provides Intel's mitigation for BIOS advisory and security vulnerabilities documented as CVE-2023-23583. This security vulnerability is documented in the CVE report site. This issue is not unique to HPE servers.

This revision of the System ROM includes the revision of the OpenSSL library 1.1.1v update which provides mitigation for security vulnerabilities documented as CVE-2023-3817.

Addressed an issue where system might hang while accessing IML logs from RBSU.

Known Issues:

None]]> Added new Microsoft secure boot keys, KEK2023, Microsoft UEFI CA 2023 and Windows UEFI CA 2023, since the original keys will expire in 2026.

Added the System Configuration (RBSU) option "Boot Options/UEFI Boot Settings/Filter Non-bootable Drives" and set to "Auto" by default. This setting has the following Redfish property:

/redfish/v1/systems/1/bios/settings/FilterNonbootableDrive

]]> Important Notes:

This revision of the System ROM includes AMD reference code MilanPI 1.0.0.C for AMD 3rd Generation EPYC processors. This revision of the System ROM includes AMD reference code RomePI 1.0.0.H for AMD 2nd Generation EPYC processors. This revision of the System ROM includes the mitigation for security vulnerabilities CVE-2023-31346 and CVE-2023-31347 for AMD 3rd Generation EPYC processors. This security vulnerability is documented in the CVE report site. This issue is not unique to HPE servers. This revision of the System ROM includes the mitigation for NetworkPkg iSCSI Dxe driver vulnerability documented as CVE-2021-38575. This revision of the System ROM includes the mitigation for NetworkPkg PXE IP stack vulnerabilities documented as CVE-2023-45229 CVE-2023-45230 CVE-2023-45231 CVE-2023-45232 CVE-2023-45233 CVE-2023-45234 CVE-2023-45235 CVE-2023-45236 CVE-2023-45237.

Firmware Dependencies:

None

Problems Fixed:

This revision of the System ROM includes the mitigation for NetworkPkg iSCSI Dxe driver vulnerability documented as CVE-2021-38575.

Known Issues:

None]]> Important Notes:

This revision of the System ROM includes AMD reference code MilanPI 1.0.0.B for AMD 3rd Generation EPYC processors. This revision of the System ROM includes AMD reference code RomePI 1.0.0.G for AMD 2nd Generation EPYC processors.

Firmware Dependencies:

None

Problems Fixed:

This revision provides AMD's mitigation for security vulnerabilities for CVE-2023-20592 for both AMD 2nd and 3rd Generation EPYC processors. This security vulnerability is documented in the CVE report site. This issue is not unique to HPE servers.

Replaced "AC power" with "external power" in the help text of "Automatic power-on" option. This is due to ProLiant servers also provide the DC power supply option.

Addressed an issue where system might hang while accessing IML logs from RBSU.

Known Issues:

None]]>

Support firmware flash in OS FIPS enabled mode.

]]>

Added support for RHEL 9.

]]> TBD

]]> This product enhanced the compatibility with drivers

]]>

Added support for Microsoft Server Windows 2022.

]]>

Added support for Microsoft Server Windows 2022.

]]>

Added support for VMware 8.0

]]>

Added support for VMware 8.0

]]> Important : Security Hardening Enhancements - This release contains important reliability improvements and security hardening enhancements. HPE recommends upgrading your device firmware to this version to improve the firmware security and reliability of your device.

New features and changes included in version 16.35.3006:

Enabled ACS for single port cards.
Added vPort counters after creating the LAG demux table to count kernel packets reaching all the PFs participating in the LAG.

]]> The following issues have been fixed in version 16.35.3006(A):

Component rebuilt to set the 'ResetRequired', 'SysPowerON' parameter values to 'true' in the included payload.json file. This will help SUM categorize the component appropriately for deployment in SPP, and display the correct user prompt after firmware component execution.

The following issues have been fixed in version 16.35.3006:

Packet loss that occurred when restarting the transmit.
An issue that prevented RoCE malformed packets (UDP packet with dest_port equal to RoCE well known udp_dport (0x4791)) from being counted on the vport_counter when the function disables RoCE (through MODIFY_NIC_VPORT_CONTEXT command).
A memory leakage that occurred when closing connected QPs (Type RC/UC/XRC/DC).
Added a missing VLAN strip.

New features and changes included in version 16.35.3006:

Enabled ACS for single port cards.
Added vPort counters after creating the LAG demux table to count kernel packets reaching all the PFs participating in the LAG.

]]> The following issues have been fixed in version 16.35.3006:

Packet loss that occurred when restarting the transmit.
An issue that prevented RoCE malformed packets (UDP packet with dest_port equal to RoCE well known udp_dport (0x4791)) from being counted on the vport_counter when the function disables RoCE (through MODIFY_NIC_VPORT_CONTEXT command).
A memory leakage that occurred when closing connected QPs (Type RC/UC/XRC/DC).
Added a missing VLAN strip.

]]>

Support autoconfig command.

storcli /cx set autoconfig = < none | JBOD >

Added a new option [ReuseTargetId] to add vd command. If "ReuseTargetId" is mentioned in the add vd command, the FW will allow reusing of TargetIDs without 120 seconds delay.
Added support for UBM7 backplanes.

]]> New release for version 007.2613.0000.0000.

]]>

Fixed issue of self-initiated resetting of drives under queue full handling situations

]]> Firmware for the following devices has been updated to 12.28.2006:

843400-B21 (HPE Apollo A10 InfiniBand EDR (100Gb) 2-port Adapter)

Firmware for the following devices has been updated to 16.35.3006:

872723-B21 (HPE Apollo InfiniBand EDR 100Gb 2-port 841z Mezzanine Adapter)
872725-B21 (HPE InfiniBand EDR 100Gb 1-port 841QSFP28 Adapter)

New features and changes included in version 12.28.2006:

Increased the maximum XRQ number to 512.

New features and changes included in version 16.35.3006:

Enabled ACS for single port cards.
Added vPort counters after creating the LAG demux table to count kernel packets reaching all the PFs participating in the LAG.

]]> Fixes in version 12.28.2006:

Fixed an issue that caused the DCR (DC Resources) to be destroyed before the retry option managed to work when the retry timeout is too big. in this case, the DCR' time-to-live was increased, and the maximum retry timeout was decreased.
Increased PHY power consumption limit to 1.5w.
Fixed an issue that caused PortCounters.PortRcvErr / PPCNT.infiniband_counters.PortRcvErr not to report port icrc errors.

The following issues have been fixed in version 16.35.3006:

Packet loss that occurred when restarting the transmit.
An issue that prevented RoCE malformed packets (UDP packet with dest_port equal to RoCE well known udp_dport (0x4791)) from being counted on the vport_counter when the function disables RoCE (through MODIFY_NIC_VPORT_CONTEXT command).
A memory leakage that occurred when closing connected QPs (Type RC/UC/XRC/DC).
Added a missing VLAN strip.

]]> Firmware for the following devices has been updated to 12.28.2006:

843400-B21 (HPE Apollo A10 InfiniBand EDR (100Gb) 2-port Adapter)

Firmware for the following devices has been updated to 16.35.1012:

872723-B21 (HPE Apollo InfiniBand EDR 100Gb 2-port 841z Mezzanine Adapter)
872725-B21 (HPE InfiniBand EDR 100Gb 1-port 841QSFP28 Adapter)

New features and changes included in version 12.28.2006:

Increased the maximum XRQ number to 512.

New features and changes included in version 16.35.1012:

Added pci_rescan_needed field to the MFRL access register to indicate whether a PCI rescan is needed based on the NV configurations issued by the software.
Note: If the Keep Link Up NV configuration is changed, phyless reset will be blocked.
Added a new MAD of class SMP that has the attributes hierarchy_Info as defined in the IB Specification and is used to query the hierarchy information stored on the node and the physical port.
Added a new register (vhca_icm_ctrl access_reg) to enable querying and limiting the ICM pages in use.
Enhanced the XRQ QP error information provided to the user in case QP goes into an error state. In such case, QUERY_QP will provide information on the syndrome type and which side caused the error.
Replaced the deprecated NetworkPort schema with Port schema in NIC RDE implementation.
Updated the ibstat status reported when the phy link is down. Now QUERY_VPORT_STATE.max_tx_speed of UPLINK will not be reported as 0 anymore.
Disabled the option to send SMPs from unauthorized hosts.
Enabled the option to modify the ip_ecn field in the packet header in firmware steering.
Modified the TX or RX cache invalidation behavior. TX or RX cache invalidation now does not occur automatically but only when the software performs the sync operation using the using sync_steering command.
Modified the maximum bulk size per single allocation from "log_table_size - log_num_unisizes", to allocate any range size, to remove limitations that HWS objects such as counters and modify arguments might encounter.
Enabled delay drop for hairpin packets. If a hairpin QP is created with delay_drop_en enabled, the feature will be enabled across all GVMIs, based on the delay drop status.

]]> Fixes in version 12.28.2006:

Fixed an issue that caused the DCR (DC Resources) to be destroyed before the retry option managed to work when the retry timeout is too big. in this case, the DCR' time-to-live was increased, and the maximum retry timeout was decreased.
Increased PHY power consumption limit to 1.5w.
Fixed an issue that caused PortCounters.PortRcvErr / PPCNT.infiniband_counters.PortRcvErr not to report port icrc errors.

The following issues have been fixed in version 16.35.1012

Rare lanes skew issue that caused CPU to timeout in Rec.idle.
The card occasionally masked some PCIe AER reporting.
Incorrect flow of credits blockage that prevented booting during DC cycle test.
An issue with BMC medium migration from SMBUS to PCIe, and increased FIFOs to pass large packets in case of the migration.

]]> Important Notes:

This version of the Server Platform Services (SPS) Firmware contains updates aligned with the Intel Product Update (IPU) version IPU.2024.1 guidance. This version of the SPS should be paired with System ROM 2.00 (02/01/2024) or later.

Firmware Dependencies:

None

Enhancements/New Features:

This version is in compliance with IPU.2024.1 guidance.

Known Issues:

None]]> Important Notes:

This version of the Server Platform Services (SPS) Firmware contains updates aligned with the Intel Product Update (IPU) version IPU.2023.3 guidance.

Firmware Dependencies:

None

Enhancements/New Features:

This version is in compliance with IPU.2023.3 guidance.

Known Issues:

None

]]>

Added support for VMware 8.0

]]>

Added support for VMware 8.0

]]> This Firmware package contains following firmware versions:

Adapter	Speed	Universal Boot Image	Firmware	UEFI	Boot Bios
HPE SN1200E 16Gb Dual Port Fibre Channel Host Bus Adapter	16Gb	14.2.589.21	14.2.589.21	14.2.589.16	14.2.566.0
HPE SN1200E 16Gb Single Port Fibre Channel Host Bus Adapter	16Gb	14.2.589.21	14.2.589.21	14.2.589.16	14.2.566.0
HPE SN1600E 32Gb Dual Port Fibre Channel Host Bus Adapter	32Gb	14.2.589.21	14.2.589.21	14.2.589.16	14.2.566.0
HPE SN1600E 32Gb Single Port Fibre Channel Host Bus Adapter	32Gb	14.2.589.21	14.2.589.21	14.2.589.16	14.2.566.0
HPE SN1610E 32Gb Single Port Fibre Channel Host Bus Adapter	32Gb	14.2.589.19	14.2.589.19	14.2.589.16	14.2.566.0
HPE SN1610E 32Gb Dual Port Fibre Channel Host Bus Adapter	32Gb	14.2.589.19	14.2.589.19	14.2.589.16	14.2.566.0
HPE SN1700E 64Gb Single Port Fibre Channel Host Bus Adapter	64Gb	14.2.589.19	14.2.589.19	14.2.589.16	14.2.566.0
HPE SN1700E 64Gb Dual Port Fibre Channel Host Bus Adapter	64Gb	14.2.589.19	14.2.589.19	14.2.589.16	14.2.566.0

]]> This Firmware package contains following firmware versions:

Adapter	Speed	Universal Boot Image	Firmware	UEFI	Boot Bios
HPE SN1200E 16Gb Dual Port Fibre Channel Host Bus Adapter	16Gb	14.2.589.5	14.2.589.5	14.2.579.0	14.2.566.0
HPE SN1200E 16Gb Single Port Fibre Channel Host Bus Adapter	16Gb	14.2.589.5	14.2.589.5	14.2.579.0	14.2.566.0
HPE SN1600E 32Gb Dual Port Fibre Channel Host Bus Adapter	32Gb	14.2.589.5	14.2.589.5	14.2.579.0	14.2.566.0
HPE SN1600E 32Gb Single Port Fibre Channel Host Bus Adapter	32Gb	14.2.589.5	14.2.589.5	14.2.579.0	14.2.566.0
HPE SN1610E 32Gb Single Port Fibre Channel Host Bus Adapter	32Gb	14.2.589.5	14.2.589.5	14.2.579.0	14.2.566.0
HPE SN1610E 32Gb Dual Port Fibre Channel Host Bus Adapter	32Gb	14.2.589.5	14.2.589.5	14.2.579.0	14.2.566.0
HPE SN1700E 64Gb Single Port Fibre Channel Host Bus Adapter	64Gb	14.2.589.5	14.2.589.5	14.2.579.0	14.2.566.0
HPE SN1700E 64Gb Dual Port Fibre Channel Host Bus Adapter	64Gb	14.2.589.5	14.2.589.5	14.2.579.0	14.2.566.0

]]>

This product enhanced the compatibility with Linux firmware component 2.34.0.

This product now supported for Red Hat Enterprise Linux 8 update 9.

]]> This product now supported for Red Hat Enterprise Linux 8.8

]]>

Added support for Microsoft Windows Server 2022.

]]>

Added support for Microsoft Windows Server 2022.

]]> TBD

]]>

This product allowed GPU direct DKMS package to skip building peermem module if support already exists in kernel.

This product now supported rdma driver version query from ipmi interface.

This product now enabled XPS by default on driver load.

This product added support for SUSE Linux Enterprise Server 15 SP5.

]]>

This product fixed an issue that DKMS RPM packages failing to build driver.

This product fixed an issue that driver and tools DKMS package unable to run POST_INSTALL script.

This product fixed a hang or crash issue when running ntuple scaling tests.

This product fixed a kernel panic issue when PHC UPDATE async event comes.

This product fixed an kernel crash issue when SRIOV is disabled while PF is being moved from switchdev to legacy back and forth in a loop and also while set channels (ring number change) is run in a loop.

This product fixed HOT Reset Timout in scaled up incremental flows.

This product fixed an issue that port stop/start all in a loop triggers memory corruptions after couple of hundred iterations.

This product fixed a host crash issue when adding/deleting filters with traffic.

This product fixed an issue that kernel throws WARN as firmware coredump lengths differs.

This product fixed a host crash issue on null pointer firmware crash when filters are being added on another host.

This product fixed a system crashed issue after enabling RDMA followed by firmware reset and L2 driver unload.

This product fixed warnings observed while compiling bnxt_re driver on kernel.

This product fixed a system crash issue observed while running self-test on port 1 when LAG is configured.

This product fixed a driver crash issue after exiting XDP mode.

This product fixed a crash issue when processing PTP packets on NPAR functions.

This product fixed a system crash issue while binding PF back to bnxt_en after binding it to vfio-pci and launching testpmd.

This product fixed a possible SKB out-of-bounds access.

This product fixed a crash issue observed while running the ethtool command while unloading the driver.

This product fixed VF resource limits issue.

]]> Firmware for the following devices has been updated to 14.32.1010:

P21930-B21 (HPE Ethernet 10Gb 2-port SFP+ MCX4121A-XCAT Adapter)
P11341-B21 (HPE Ethernet 10Gb 2-port SFP+ MCX4621A-ACAB OCP3 Adapter)

Firmware for the following device has been updated to 16.35.3006:

P21927-B21 (HPE Ethernet 100Gb 2-Port QSFP28 MCX516A-CCHT Adapter)

New features and changes included in version 14.32.1010:

Added 3 new assert filters (Health buffer, NVlog, FW trace). The assert will be exposed now if its severity level is equal to or above the new filter.
Enabled Rate Limit per VM instead of VM-TC. This capability is implemented by adding support to a new Scheduling element type: rate limit elements that will connect to the rate_limit and will share its rate limit.
Added support for asymmetrical VFs per PF. To enable it:PF_NUM_OF_VF_VALID must be true, and PF_NUM_OF_VF to a non-zero value.
Limited the external loopback speed to the used module's capabilities.
Improved linkup time when using the fast linkup capability.
Added support for the slow_restart and slow_restart_idle parameters to enable Zero Touch RoCE capability.

New features and changes included in version 16.35.3006:

Enabled ACS for single port cards.
Added vPort counters after creating the LAG demux table to count kernel packets reaching all the PFs participating in the LAG.

]]> The following issues have been fixed in version 14.32.1010:

Firmware got into an unresponsive state and caused unexpected behavior when connecting an optical transceiver that support RxLOS and the remote side port was down.
The system could not create more than 128K QPs.
On rare occasions, the system got into an unresponsive state when a peer port went down while using an Optical module.
Packet Pacing rate was used if asymmetric VFs was enabled.
Incorrect RNR timeout when trying to set it during the rts2rts_qp transition.
Issue with RSS on IPSec flows in ConnectX-4 Lx led to performance degradation. In this scenario, the SPI optimization caused packets from a given host to hash to the same CPU core. The fix was to ignore SPI optimization according to l4_type in ConnectX-4 Lx adapter cards.
The GetInventory NC-SI command reported leading 0xf in firmware version when it started with 0.

The following issues have been fixed in version 16.35.3006:

Packet loss that occurred when restarting the transmit.
An issue that prevented RoCE malformed packets (UDP packet with dest_port equal to RoCE well known udp_dport (0x4791)) from being counted on the vport_counter when the function disables RoCE (through MODIFY_NIC_VPORT_CONTEXT command).
A memory leakage that occurred when closing connected QPs (Type RC/UC/XRC/DC).
Added a missing VLAN strip.

]]> Firmware for the following devices has been updated to 14.32.1010:

P21930-B21 (HPE Ethernet 10Gb 2-port SFP+ MCX4121A-XCAT Adapter)
P11341-B21 (HPE Ethernet 10Gb 2-port SFP+ MCX4621A-ACAB OCP3 Adapter)

Firmware for the following device has been updated to 16.35.1012:

P21927-B21 (HPE Ethernet 100Gb 2-Port QSFP28 MCX516A-CCHT Adapter)

New features and changes included in version 14.32.1010:

Added 3 new assert filters (Health buffer, NVlog, FW trace). The assert will be exposed now if its severity level is equal to or above the new filter.
Enabled Rate Limit per VM instead of VM-TC. This capability is implemented by adding support to a new Scheduling element type: rate limit elements that will connect to the rate_limit and will share its rate limit.
Added support for asymmetrical VFs per PF. To enable it:PF_NUM_OF_VF_VALID must be true, and PF_NUM_OF_VF to a non-zero value.
Limited the external loopback speed to the used module's capabilities.
Improved linkup time when using the fast linkup capability.
Added support for the slow_restart and slow_restart_idle parameters to enable Zero Touch RoCE capability.

New features and changes included in version 16.35.1012:

Added support for copy modify header steering action to/from the UDP field.
Enabled ADP timer to allow the user to configure RC or DC qp_timeout values lower than 16.
QoS priority trust default state can now be changed using the new nvconfig below:
- QOS_TRUST_STATE_P1
- QOS_TRUST_STATE_P2

The values that can be used to set the default state are:

TRUST_PORT
TRUST_PCP
TRUST_DSCP
TRUST_DSCP_PCP

]]> The following issues have been fixed in version 14.32.1010:

Firmware got into an unresponsive state and caused unexpected behavior when connecting an optical transceiver that support RxLOS and the remote side port was down.
The system could not create more than 128K QPs.
On rare occasions, the system got into an unresponsive state when a peer port went down while using an Optical module.
Packet Pacing rate was used if asymmetric VFs was enabled.
Incorrect RNR timeout when trying to set it during the rts2rts_qp transition.
Issue with RSS on IPSec flows in ConnectX-4 Lx led to performance degradation. In this scenario, the SPI optimization caused packets from a given host to hash to the same CPU core. The fix was to ignore SPI optimization according to l4_type in ConnectX-4 Lx adapter cards.
The GetInventory NC-SI command reported leading 0xf in firmware version when it started with 0.

The following issues have been fixed in version 16.35.1012:

RDE (Redfish) PATCH operation to LLDPTransmit properties "ManagementAddressIPv4", "ManagementAddressIPv6" and "ManagementAddressMAC" were applied only in the first attempt, but failed in the next.
PLDM AEN event receiver media was changed unexpectedly and destination BDF was overridden with garbage when some PLDM packet were received from the SMBus layer.
Bad configuration of number of VFs and SFs led to the consumption of too many functions and triggered a FW assert 0x888E. The reduction flows behavior was fixed to ensure the configuration does not exceed the total number of supported functions.
InfiniBand L2 QP could not receive RDMA traffic occasionally.
Running with a debug firmware reduced security as if token was applied.

]]>

Updated SBOM requirement

]]>

Added Supported Platforms tag

]]> TBD

]]> This product enhanced the compatibility with firmware of FVL9.2.

]]>

Fix for unrecovered errors which may occur on the targeted Blocks of Wear-leveling process when host issues Read command.

]]>

Added support for VMware 8.0

]]>

Added support for Microsoft Server Windows 2022.

]]>

Added support for Microsoft Server Windows 2022.

]]> TBD

]]>

This product addressed the problem that RoCE driver failed to load with specific active firmware version.

This product addressed private data retrieval for user mode RDMA connectors.

This product addressed a fix for NDSPI to correctly detect the type of retransmit capability.

]]> This product addresses the issue of inconsistent metadata within the component products.

]]> This product addresses an issue where BSOD is seen.

]]> Support SHA384

]]> Added new details for surface analysis

]]> Support SHA384

]]> This product is updated to maintain compatibility with CNSA (Commercial National Security Algorithm) compliance.

]]> This product is updated to maintain compatibility with updated Windows installation library NicInVXS.dll and vxsmsg.dll.

]]> Important Notes:

This version of the System ROM contains updates aligned with vulnerability fixes in EDK2 NetworkPkg IP stack implementation that is described in the address https://github.com/tianocore/edk2/security/advisories/GHSA-hc6x-cw6p-gj7h.

Firmware Dependencies:

None

Problems Fixed:

Known Issues:

None

]]> Important Notes:

Firmware Dependencies:

None

Problems Fixed:

Known Issues:

None

]]> The following enhancement has been added in this version:

Added support of RHEL 8.7
Added support of RHEL 9.1
Added support of SLES15 SP4

]]> The following fixes were incorporated in this version:

Smart Array reporting "Storage Enclosure FW upgrade Problem Detected".
PSU version is showing as "No Ver" after inserted the New bel power PSU.
GEM_5_2 Coverity defect fix.

Please refer to the Release Notes for the complete listing of fixes, enhancements, known issues and work-arounds corresponding to this firmware.

]]> The following enhancement has been added in this version:

Added support of Rhel 7.8
Added support of Rhel 8.2
Added support of SLES15 SP2

]]> The following fixes were incorporated in this version:

Smart Array reporting "Storage Enclosure FW upgrade Problem Detected".
PSU version is showing as "No Ver" after inserted the New bel power PSU.
GEM_5_2 Coverity defect fix.

Please refer to the Release Notes for the complete listing of fixes, enhancements, known issues and work-arounds corresponding to this firmware.

]]> Fix issues of MCTP over I2C fix for obtaining Endpoint ID(EID), and SPDM support fix onto MCTP reply message.

]]> Agentless Management Service

Fixed OID name hrSystemUptime is reported incorrectly

]]> Agentless Management Service

Extend network adapter speed support with 20,40, and 100G for CPQNIC MIB cpqNicIfPhysAdapterConfSpeedDuplex OID.

]]> Agentless Management Service

Fixed incorrect NVMe drive information displayed after hot plugging.
Fixed SSD wear status sudden peak value triggering SNMP trap false alarm.
Fixed incomplete uninstallation for amscli while upgrading Agentless Management Service.

]]>

Fix the detection issue on wondermiddle after hot-plug

]]>

Fix for V6 Read disturb issue (which might have caused data integrity issue) and other issues.

For more information, refer to HPE Customer Advisory at the following URL: https://support.hpe.com/hpesc/public/docDisplay?docId=emr_na-a00136659en_us

]]>

Fix for V6 Read disturb issue (which might have caused data integrity issue) and other issues.

]]>

This fix is for unrecovered errors may occur on the targeted Blocks of Wear-leveling process when host issues Read command.

]]> Redfish Property value changed from vN_N_N to N.N.N in uri:

/redfish/v1/registrystore/registries/{lang}/biosattributeregistry{Platform}.vN_N_N

there, {lang} = { en, ja, zh }, {platform} = Platform Name e.g. A55, U63 , vN_N_N =

version number defined as Redfish specification

[Example]

uri: /redfish/v1/registrystore/registries/zh/biosattributeregistrya55.v1_1_20

Property of RegistryVersion is changed from v1_1_20 to 1.1.20

]]> Important Notes:

This revision of the System ROM contains updates aligned with the Intel Product Update (IPU) version IPU.2024.1 guidance. This revision of the System ROM includes the mitigation for vulnerabilities documented as CVE-2023-45853 and CVE-2021-38575. This revision of the System ROM includes the revision of the OpenSSL library 1.0.2zi update which provides mitigation for security vulnerabilities documented as CVE-2023-3817. This revision of the System ROM includes the mitigation for NetworkPkg PXE IP stack vulnerabilities documented as CVE-2023-45229, CVE-2023-45230, CVE-2023-45231, CVE-2023-45232, CVE-2023-45233, CVE-2023-45234, CVE-2023-45235, CVE-2023-45236, and CVE-2023-45237. This version of the System ROM should be paired with Server Platform Services (SPS) Firmware 05.01.04.913.

Firmware Dependencies:

Problems Fixed:

This revision of the System ROM contains updates aligned with the Intel Product Update (IPU) version IPU.2024.1 guidance.

This revision of the System ROM includes the mitigation for vulnerabilities documented as CVE-2023-45853 and CVE-2021-38575.

This revision of the System ROM includes the revision of the OpenSSL library 1.0.2zi update which provides mitigation for security vulnerabilities documented as CVE-2023-3817.

Addressed an issue where the operating system cannot detect the iSCSI hard drive through IPv6 installation if the iSCSI IpAddressType is set to auto.

Known Issues:

]]> Replaced "AC power" with "external power" in the help text of "Automatic power-on" option. This is due to ProLiant servers also provide the DC power supply option.

]]> Important Notes:

None

Firmware Dependencies:

None

Problems Fixed:

Addressed an issue where “Restore Manufacturing Defaults” and “Restore Defaults” from iLO web did not restore the Secure Boot Status.

Addressed an issue where system might hang while accessing IML log from RBSU.

Known Issues:

None]]> This component is FIPs enabled.

This Firmware package contains following firmware versions:

Adapter	Speed	MBI	Firmware	UEFI	Boot Bios
HPE SN1100Q 16GB Dual Port PCIe Fibre Channel Host Bus Adapter	16Gb	02.02.05	9.14.00	7.25	3.68
HPE SN1100Q 16GB Single Port PCIe Fibre Channel Host Bus Adapter	16Gb	02.02.05	9.14.00	7.25	3.68
HPE SN1600Q 32Gb Single Port Fibre Channel Host Bus Adapter	32Gb	02.02.05	9.14.00	7.25	3.68
HPE SN1600Q 32Gb Dual Port Fibre Channel Host Bus Adapter	32Gb	02.02.05	9.14.00	7.25	3.68
HPE SN1610Q 32Gb Dual Port Fibre Channel Host Bus Adapter	32Gb	02.09.07	09.14.01	7.36	0.0
HPE SN1610Q 32Gb Single Port Fibre Channel Host Bus Adapter	32Gb	02.09.07	09.14.01	7.36	0.0
HPE SN1700Q 64Gb Dual Port Fibre Channel Host Bus Adapter	64Gb	02.09.07	09.14.01	7.36	0.0
HPE SN1700Q 64Gb Single Port Fibre Channel Host Bus Adapter	64Gb	02.09.07	09.14.01	7.36	0.0

]]> This component is FIPs enabled.

]]> This Firmware package contains following firmware versions:

Adapter	Speed	MBI	Firmware	UEFI	Boot Bios
HPE SN1100Q 16GB Dual Port PCIe Fibre Channel Host Bus Adapter	16Gb	02.02.05	9.14.00	7.25	3.68
HPE SN1100Q 16GB Single Port PCIe Fibre Channel Host Bus Adapter	16Gb	02.02.05	9.14.00	7.25	3.68
HPE SN1600Q 32Gb Single Port Fibre Channel Host Bus Adapter	32Gb	02.02.05	9.14.00	7.25	3.68
HPE SN1600Q 32Gb Dual Port Fibre Channel Host Bus Adapter	32Gb	02.02.05	9.14.00	7.25	3.68
HPE SN1610Q 32Gb Dual Port Fibre Channel Host Bus Adapter	32Gb	02.09.07	09.14.01	7.36	0.0
HPE SN1610Q 32Gb Single Port Fibre Channel Host Bus Adapter	32Gb	02.09.07	09.14.01	7.36	0.0
HPE SN1700Q 64Gb Dual Port Fibre Channel Host Bus Adapter	64Gb	02.09.07	09.14.01	7.36	0.0
HPE SN1700Q 64Gb Single Port Fibre Channel Host Bus Adapter	64Gb	02.09.07	09.14.01	7.36	0.0

]]> Added new Microsoft secure boot keys, KEK2023, Microsoft UEFI CA 2023 and Windows UEFI CA 2023, since the original keys will expire in 2026.

Corrected Redfish Property value changed from vN_N_N to N.N.N in uri:

/redfish/v1/registrystore/registries/{lang}/biosattributeregistry{Platform}.vN_N_N

there, {lang} = { en, ja, zh }, {platform} = Platform Name e.g. A55, U63 , vN_N_N =

version number defined as Redfish specification

[Example]

uri: /redfish/v1/registrystore/registries/zh/biosattributeregistrya55.v1_1_20

Property of RegistryVersion is changed from v1_1_20 to 1.1.20

Added the System Configuration (RBSU) option "Boot Options/UEFI Boot Settings/Filter Non-bootable Drives" and set to "Auto" by default. This setting has the following Redfish property:

/redfish/v1/systems/1/bios/settings/FilterNonbootableDrive

]]> Important Notes:

Firmware Dependencies:

Problems Fixed:

This revision of the System ROM contains updates aligned with the Intel Product Update (IPU) version IPU.2024.1 guidance.

This revision of the System ROM includes the mitigation for vulnerabilities documented as CVE-2021-38575, CVE-2023-45853, CVE-2022-36763 and CVE-2022-36764.

Addressed an issue where the operating system cannot detect the iSCSI hard drive through IPv6 installation if the iSCSI IpAddressType is set to auto.

Addressed an issue where DmiAspmCtrl was not set accordingly when setting DMI ASPM to Disabled/L1 Enabled.

Known Issues:

]]> Replaced "AC power" with "external power" in the help text of "Automatic power-on" option. This is due to ProLiant servers also provide the DC power supply option.

The path to the option is: Processor Options -> DMI Power Management (ASPM)

This setting has the Redfish property URI of: /redfish/v1/systems/1/bios/settings/E3DmiAspm

To follow DMTF schema, change the Redfish registry version naming to have the pattern of "^\d+.\d+.\d+$".

For example, /redfish/v1/registrystore/registries/zh/biosattributeregistrya55.v1_1_20 will now becomes /redfish/v1/registrystore/registries/zh/biosattributeregistrya55.1.1.20

]]> Important Notes:

This version of the System ROM contains updates aligned with the Intel Product Update (IPU) version IPU.2023.4 guidance.

Firmware Dependencies:

None

Problems Fixed:

This revision of the System ROM includes the revision of the OpenSSL library 1.1.1v update which provides mitigation for security vulnerabilities documented as CVE-2023-3817.

Addressed an issue where system might hang while accessing IML logs from RBSU.

Known Issues:

None]]>

Fix component SAS core dump issue which along with NVMe drives behind MR controllers on certain platform flashing.

Fix NVMe drive component failed to update problem behind more than 2 MR controllers on certain platform.

Fix NVMe drive component which shows wrong behavior message against the flash result.

Fix SPP force upgrade flash component problem on certain drive family.

High Security Enablement support FIPs.

]]>

Fixes a false indication of rare capacitor test failure

]]>

This firmware revision improves data integrity and reliability by optimizing adjacent track refresh parameters and management of emergency power loss table structure.

The risk of not upgrading to this firmware is the increased possibility of data corruption in emergency power loss events.

Several maintenance items are included in this firmware revision that reduce the probability of hangs and provide some minor performance improvements.

]]>

This firmware revision improves data integrity and reliability by optimizing adjacent track refresh parameters and management of emergency power loss table structure.

The risk of not upgrading to this firmware is the increased possibility of data corruption in emergency power loss events.

Several maintenance items are included in this firmware revision that reduce the probability of hangs and provide some minor performance improvements.

]]>

Added support for VMware 8.0

]]>

Added support for VMware 8.0

]]> For Gen11 PR3 & 2023 March MSB

]]> Support Gen11 Intel servers.

]]> For 2024 March MSB

]]> Initial Release

]]> The following fixes were incorporated in this version:

Temperature sensors logic inside gSEP model and SES database
When an IOM is pulled the surviving IOM reports false critical temperatures

Please refer to the Release Notes for the complete listing of fixes, enhancements, known issues and work-arounds corresponding to this firmware.

]]> The following fixes were incorporated in this version:

Temperature sensors logic inside gSEP model and SES database
When an IOM is pulled the surviving IOM reports false critical temperatures

Please refer to the Release Notes for the complete listing of fixes, enhancements, known issues and work-arounds corresponding to this firmware.

]]>

Support firmware flash in OS FIPS enabled mode.

]]>

Added support for RHEL 9.

]]>

Added support for VMware 8.0

]]>

Added support for VMware 8.0

]]> Important Notes:

Ver. 1.0.0.22(B) contains updates to the firmware packaging and is functionally equivalent to ver. 1.0.0.22. It is not necessary to upgrade with Revision B if a previous component revision was used to upgrade the firmware to version 1.0.0.22.

Firmware Dependencies:

None

Problems Fixed:

Addressed an issue where Innovation Engine (IE) may improperly reset every 24 hours.

Known Issues:

None

]]> Important Notes:

None

Firmware Dependencies:

None

Problems Fixed:

Addressed an issue where Innovation Engine (IE) may improperly reset every 24 hours.

Known Issues:

None

]]>

Added support for VMware 8.0

]]>

Added support for VMware 8.0

]]> Added support for:

RedHat Enterprise Linux 8.9

RedHat Enterprise Linux 9.3

Updated to version 14.2.589.11-1

The Enablement Kit is FIPs enabled

]]> The Enablement Kit is FIPs Enabled

]]> Added support for:

RedHat Enterprise Linux 8.9

RedHat Enterprise Linux 9.3

Updated to version 14.2.589.11-1

]]>

This product now supports PHY debug register dump by ethtool.

This product now supports Red Hat Enterprise Linux 8.8.

]]> This product correct an issue where the NVM fail to update due to the improper 802.1q VLAN tag feature detection.

]]>

This product now supports PHY debug register dump by ethtool.

This product now supports Red Hat Enterprise Linux 8.8.

]]> This product correct an issue where the NVM fail to update due to the improper 802.1q VLAN tag feature detection.

]]>

This product now supports PHY debug register dump by ethtool.

This product now supports SUSE Linux Enterprise Server 15 SP5.

]]> This product correct an issue where the NVM fail to update due to the improper 802.1q VLAN tag feature detection.

]]>

This product now supports PHY debug register dump by ethtool.

This product now supports SUSE Linux Enterprise Server 15 SP5.

]]> This product correct an issue where the NVM fail to update due to the improper 802.1q VLAN tag feature detection.

]]> Updated to version 3.3-3

This Component is FIPs enabled.

]]> This Component is FIPs enabled.

]]> Updated to version 3.3-3

]]> TBD

]]> This product enhanced the compatibility with firmware of FVL9.2.

]]>

Assert fixes, logging enhancements and all current firmware improvements and bug fixes.

]]>

Adds support for a second source drive pre-amp, and improves reliability with an updated direct offline scan algorithm.

]]> Patch for CVE-2021-38575: The vulnerability allows a remote attacker to execute arbitrary code on the target system.

Patch the primary APIC ID for SMBIOS type 211: Some special CPUs may not have an intra-processor APIC ID == 00h and may cause wrong TControl data.

Patch for CVE-2023-45853: The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error in the IScsiHexToBin() function in NetworkPkg/IScsiDxe. A remote attacker with ability to inject data into communication between edk2 and the iSCSI target can execute arbitrary code on the target system.

Prevented a non-standard VPD content from causing the UEFI read function to become write.

Patch for CVE-2022-36763 and CVE-2022-36764: EDK2 is susceptible to a vulnerability in the Tcg2MeasureGptTable() function, allowing a user to trigger a heap buffer overflow via a local network. Successful exploitation of this vulnerability may result in a compromise of confidentiality, integrity, and/or availability.

Added a new event support for IML.

Patch for CVE-2023-45229: EDK2 NetworkPkg Vulnerability

Added an additional retry mechanisms to avoid a BIOS hang from iLO failure.

Corrected Redfish Property value changed from vN_N_N to N.N.N in uri:

/redfish/v1/registrystore/registries/{lang}/biosattributeregistry{Platform}.vN_N_N

there, {lang} = { en, ja, zh }, {platform} = Platform Name e.g. A55, U63 , vN_N_N =

version number defined as Redfish specification

[Example]

uri: /redfish/v1/registrystore/registries/zh/biosattributeregistrya55.v1_1_20

Property of RegistryVersion is changed from v1_1_20 to 1.1.20

]]> Important Notes:

This version of the System ROM should be paired with Server Platform Services (SPS) Firmware 04.01.05.002.

Firmware Dependencies:

None

Problems Fixed:

Addressed an issue where SBCE and ECC storm records may disappear from AHS.

Addressed an issue where the iSCSI SW IPv6 HDD is not found under OS when the iSCSI IpAddressType is set to Auto.

Addressed an issue where the server may hang due to an IE function error.

Merged the solutions from EDK2 for vulnerabilities:

- Buffer overflow in the DHCPv6 client via a long Server ID option

- Out-of-bounds read when handling a ND Redirect message with truncated options

- Infinite loop when parsing unknown options in the Destination Options header

- Infinite loop when parsing a PadN option in the Destination Options header

- Buffer overflow when processing DNS Servers option in a DHCPv6 Advertise message

- Predictable TCP ISNs

- Use of a Weak PseudoRandom Number Generator

Known Issues:

None

]]> Patch for CVE-2021-38575: The vulnerability allows a remote attacker to execute arbitrary code on the target system.

Patch the primary APIC ID for SMBIOS type 211: Some special CPUs may not have an intra-processor APIC ID == 00h and may cause wrong TControl data.

Patch for CVE-2023-45853: The vulnerability allows a remote attacker to execute arbitrary code on the target system.

Prevented a non-standard VPD content from causing the UEFI read function to become write.

Added a new event support for IML.

Patch for CVE-2023-45229: EDK2 NetworkPkg Vulnerability

Added an additional retry mechanisms to avoid a BIOS hang from iLO failure.

Corrected Redfish Property value changed from vN_N_N to N.N.N in uri:

/redfish/v1/registrystore/registries/{lang}/biosattributeregistry{Platform}.vN_N_N

there, {lang} = { en, ja, zh }, {platform} = Platform Name e.g. A55, U63 , vN_N_N =

version number defined as Redfish specification

[Example]

uri: /redfish/v1/registrystore/registries/zh/biosattributeregistrya55.v1_1_20

Property of RegistryVersion is changed from v1_1_20 to 1.1.20

]]> Important Notes:

None

Firmware Dependencies:

None

Problems Fixed:

Addressed an issue where SBCE and ECC storm records may disappear from AHS.

Addressed an issue where the iSCSI SW IPv6 HDD is not found under OS when the iSCSI IpAddressType is set to Auto.

Addressed an issue where the server may hang due to an IE function error.

Merged the solutions from EDK2 for vulnerabilities:

- Buffer overflow in the DHCPv6 client via a long Server ID option

- Out-of-bounds read when handling a ND Redirect message with truncated options

- Infinite loop when parsing unknown options in the Destination Options header

- Infinite loop when parsing a PadN option in the Destination Options header

- Buffer overflow when processing DNS Servers option in a DHCPv6 Advertise message

- Predictable TCP ISNs

- Use of a Weak PseudoRandom Number Generator

Known Issues:

None]]>

Update build environment with SHA384

Update OS

]]> Initial Release

]]>

Support firmware flash in OS FIPS enabled mode.

]]>

Fixes an issue in previous version where the Inquiry model number is reported incorrectly for first few seconds after the drive is powered on

]]>

Added support for VMware 8.0

]]>

Added support for VMware 8.0

]]>

Support autoconfig command.

storcli /cx set autoconfig = < none | JBOD >

Added a new option [ReuseTargetId] to add vd command. If "ReuseTargetId" is mentioned in the add vd command, the FW will allow reusing of TargetIDs without 120 seconds delay.
Added support for UBM7 backplanes.

]]> New release for version 7.2613.0.0

]]>

Support firmware flash in OS FIPS enabled mode.

]]>

Added support for RHEL 9.

]]> This product now supports GetPackageStatus NCSI Command.

]]> The product addressed some Broadcom code structure utilization.

]]> This product addressed that platform might encounter a POST failure when NX1-based controllers and some storage controllers combines.

]]>

Support firmware flash in OS FIPS enabled mode.

]]>

Added support for RHEL 9.

]]> This product addressed a memory leak in vmkernel.

]]>

Added support for vSphere 8.0U2.

]]> Important Notes:

Firmware Dependencies:

None

Problems Fixed:

Known Issues:

None]]> Important Notes:

This revision of the System ROM includes AMD reference code RomePI 1.0.0.G for AMD 2nd Generation EPYC processors. This revision of the System ROM includes AMD reference code NaplesPI 1.0.0.K for AMD 1st Generation EPYC processors.

Firmware Dependencies:

None

Problems Fixed:

Addressed an issue where Restore Manufacturing Defaults and Restore Defaults from iLO web did not restore the Secure Boot Status.

Replaced "AC power" with "external power" in the help text of "Automatic power-on" option. This is due to ProLiant servers also provide the DC power supply option.

Addressed an issue where system might hang while accessing IML logs from RBSU.

Known Issues:

None]]> Firmware for the following devices are updated to 2.42.5000:
764282-B21
764286-B21

Firmware for the following devices are updated to 2.42.5056:
764283-B21
764284-B21

Firmware for the following device is updated to 2.42.5700:
764285-B21

New features in firmware version 2.42.5000:

Added support for the following features.
- new TLV: CX3_GLOBAL_CONF to enable/disable timestamp on incoming packets through mlxconfig configuration.
- User MAC configuration.
- Automatically collecting mstdump before driver reset.
- A mechanism to detect DEAD_IRISC (plastic) from TPT (iron) and raise an assert.
- A new field is added to "set port" command which notifies the firmware what is the user_mtu size.
Improved the debug ability for command timeout cases.

New features and changes in firmware version 2.42.5700.

Modified the mlx_cmd_get_mlx_link_status command return value to return "Link Type = Ethernet" in Ethernet adapter cards.

]]> Fixes in version 2.42.5000:

PortRcvPkts counter was prevented from being cleared after resetting it.
The system Timed Out on the configuration cycle of the Virtual Functions (VFs) when more than 10 Virtual Functions performed FLR and the completion Time Out value was configured to a range of less than 16 msec.
The server hangs and results in NMI when running “mlxfwtop –d mt4103_pci_cr0” while restarting the driver in parallel (from a different thread). In this case, the downstream bridge over the device reported completion timeout error.
In flow_steering, BMC could not receive a ping over IPV6 after running bmc_reboot.
While closing the HCA, the RX packet caused bad access to resources that did not exist, and consequently caused the QPCGW or the irisc to get stuck.
The master SMLID and the LID was either 0 or 0xFFFF when the port was neither active nor armed.
ibdump could not capture all MADs packets.
link did not go up after reboot.
Fixed a rare issue that cause the PCIe configuration cycle that arrived during the time of sw_reset to generate 2 completions.
Network Controller Sideband Interface (NC-SI) did not work when adding the disable_static_steering_ini field in the ini file, due to memory allocation issue for this field in the scratchpad.

Fixes in version 2.42.5056:

Fixed an issue that resulted in reading from invalid I/O address on handover from UEFI boot to OS boot, when a port was configured as InfiniBand on a VPI adapter device.

]]>

Added support for VMware 8.0

]]>

Added support for VMware 8.0

]]>

Improve the FW about data mismatch after SPL

]]>

Improve the FW about data mismatch after SPL

]]> Added new Microsoft secure boot keys, KEK2023, Microsoft UEFI CA 2023 and Windows UEFI CA 2023, since the original keys will expire in 2026.

Added the System Configuration (RBSU) option "Boot Options/UEFI Boot Settings/Filter Non-bootable Drives" and set to "Auto" by default. This setting has the following Redfish property:

/redfish/v1/systems/1/bios/settings/FilterNonbootableDrive

]]> Important Notes:

Firmware Dependencies:

None

Problems Fixed:

This revision of the System ROM includes the mitigation for NetworkPkg iSCSI Dxe driver vulnerability documented as CVE-2021-38575.

Known Issues:

None]]> Important Notes:

Firmware Dependencies:

None

Problems Fixed:

Replaced "AC power" with "external power" in the help text of "Automatic power-on" option. This is due to ProLiant servers also provide the DC power supply option.

Addressed an issue where system might hang while accessing IML logs from RBSU.

Known Issues:

None]]> This product now supports SUSE Linux Enterprise Server 15 SP5.

]]> This product now supports SUSE Linux Enterprise Server 15 SP5.

]]> 7.26 Patch Release Beta Drop

]]> Fix brick controller issue.

]]>

DMTF PLDM Redfish Device Enablement enhancements

iLO5 2.99, iLO6 1.54 or later versions are required.
Added support for Chassis Data Model
- GET Storage[Links][Enclosures]
- GET Chassis
- GET DriveCollection
- GET Drive[Status][State]=Absent (include empty bays under Chassis.)
- GET Drive[Links][Chassis]
- Note1: Drive URL will change to /redfish/v1/Chassis/{Id}/Drives/{Id}
- Note2: The empty bay resource ID is generated using <Encl ID in upper byte>:<Bay Number in lower byte>
Added support for Fabric Data Model
- GET Fabric, SwitchCollection, Switch, PortCollection, Port
Added support the following Redfish Events
- DriveMissing
- DriveMissingCleared
- DriveOffline
- DriveOfflineCleared
- VolumeOffline
- VolumeOfflineCleared
Added support for the following Redfish Annotations
- @Redfish.AllowableValues (patch and post)
- @Redfish.AllowablePattern (patch and post)
- @Redfish.AllowableNumbers (patch and post)
- @Redfish.WriteableProperties (patch only)
- Note1: Any property not listed in the writeable properties list does not contain any other annotation.
- Note2: For VolumeCapabilities[@CapacityBytes.AllowableValues], the range is set from 1GiB to a maximum possible value of the RAID0 volume size considering the same type of the available ‘n’ number of unconfigured drives. The CapacityBytes in the POST is not validated against the range in the VolumeCapabilities as the RAID Type and the number of drives, strip size and so on matter.
Added support for Redfish AutoVolumeCreate
- GET/PATCH Storage[AutoVolumeCreate]
- MR200 will return AutoVolumeCreate=NonRAID, which remains the same as earlier firmware versions.
- MR400 will return AutoVolumeCreate=Disabled. Any newly added drive into a MR400 will no longer automatically appear as a JBOD and the user must configure the drive before using it.

Added support for UBM7 backplanes

Update to 2023.1 schema bundle

Improve Copyback disable handling while copyback is in progress on drives

Support new PSoC 6 part information display.

]]>

Fix a00133433en_us: HPE Compute MR Gen11 and Gen10 Plus Controllers - Controllers On HPE ProLiant AMD Gen11 Servers and Gen10Plus Servers Do Not Support Microsoft Secured-Core and AMD DMA Remapping (DMAr)

Fix a00133091en_us: Storage Information Might Be Lost in iLO When Drives Are Behind MR Controllers In Passthrough Mode

Fix a00134330en_us: HPE MR Gen10 Plus/Gen11 Controller - Non-Volatile Memory Express (NVMe) Drive FWPKG Flash Through HPE Integrated Lights-Out (iLO) Does Not Reflect the New Firmware Version on the Storage Page

Fix an issue that NVMe passthrough command may hang when getting log page over 1MB data

Fix an issue that setting JBOD shows sucessful, but JBOD does not appear to be created when all the target IDs (0 to 239) are exhausted.

Fix an issue that Log Sense page 0x15 fails on ACS-5 supported SATA drive

Fix an issue that crashdump.txt is taking longer than 15s to generate for ondemand snapdump

Fix an issue that some snapdump prints flood the uart

Fix a rare issue that logical drive data might be corrupted when expected power loss happens in the completion of copyback operation.

Fix a rare issue that snapdump might not finish collecting events and generate incomplete snapdump when power off system

Fix an issue that BatteryOK RDE alert was logged after every AC power cycle of the server

Fix an issue that predictive failure RDE alert for a drive was logged twice on a single server reboot or controller reset

Fix an issue that drive count for the enclosure might not be correct when pulling all drives simultaneously.

Fix an issue that PLDM firmware update on drive fails when there are different drive models are connected to the controller

Fix an issue that firmware might crash when the UBM controller is in non operational mode

Fix Volume schema property IOPerfModeEnabled to be always enabled since it is dynamically decided by the controller

Fix an issue that RSOD occurs when selecting the Enclosure Management for MR416i-p from System Utility Menu in ML30 Gen10 Plus

Fix an issue that firmware fault might occurs when Self-Test page request is sent to the low power mode NVMe drive

Fix an issue that Battery Charging Redfish Event is not generating

Fix an issue that Status is not updated for the Volume resource when copyback operation is in progress

Fix a rare issue that firmware fault might be observed while removing the foreign drives from the configuration

Fix an issue that empty JSON PATCH request from REST client results in incorrect HTTP error code

]]>

Support firmware flash in OS FIPS enabled mode.

]]>

Added support for RHEL 9.

]]>

Added support for VMware 8.0

]]>

Added support for VMware 8.0

]]> This product updated the copyright of the new year and compatibility with firmware.

]]> This product fix an issue that TCP traffic on VMs might be interrupted if PF undergoes a reset.

]]>

Support firmware flash in OS FIPS enabled mode.

]]>

Fix contains optimization to increase the time for Recovery operation and few checks for maintenance.

]]> Added support for:

RedHat Enterprise Linux 8.9

RedHat Enterprise Linux 9.3

Updated to driver version 10.02.11.00-k1

]]> Added support for:

RedHat Enterprise Linux 8.9

RedHat Enterprise Linux 9.3

Updated to driver version 10.02.11.00-k1

]]>

Support firmware flash in OS FIPS enabled mode.

]]>

Added support for RHEL 9.

]]>

Support firmware flash in OS FIPS enabled mode.

]]>

This component provides support only for VMD enabled Intel VROC platform

]]> See the iSUT Release Notes for information about the issues resolved in this release

]]> This product is updated to maintain compatibility with CS5.0 compliance

]]> This product is updated to maintain compatibility with CNSA (Commercial National Security Algorithm) compliance.

]]>

This product correct an issue where System crash while upgrading with NPAR SRIOV-EP mode enabled.

This product correct an issue where BSOD in Windows NDIS driver while in WS2022 PCS Configuration.

]]> TBD

]]>

This product fixed a system crash issue observed on running RoCE and L2 IO with Virtual Function creation/deletion and triggering firmware error recovery.

This product fixed a system crashed issue while running the RoCE hammer on Wh+ with 8K pertest and 8K graf work QP's.

This product fixed an issue that RoCE driver took longer time than expected to close in PCIe-AER fatal error.

This product fixed RoCE error recovery fails upon injecting error on Thor adapter with 32K qps ib_send_bw IO.

This product disabled RoCE LAG support for Wh+.

This product restriced RoCE resources for Wh+ adapters.

]]>

Provides proactive protection against contamination built up on the media and air-bearing surface of the heads by increased routine “sweeping” of the media surface.

For more information, refer to HPE Customer Advisory at the following URL: https://support.hpe.com/hpesc/public/docDisplay?docLocale=en_US&docId=a00127593en_us

]]>

Provides proactive protection against contamination built up on the media and air-bearing surface of the heads by increased routine “sweeping” of the media surface.

]]>

Update build environment with SHA384

Update OS

]]>

Modify Product ID to "A4200 Gen10P LFF" and "A4200 Gen10P SFF" to distinguish the different generation expander backplane.

]]>

Added support for VMware 8.0

]]>

Added support for VMware 8.0

]]>

This product enhanced the compatibility with Linux firmware component 2.34.0.

This product now supported for Red Hat Enterprise Linux 9 update 3.

]]> This product now supported for Red Hat Enterprise Linux 9.2

]]>

Support firmware flash in OS FIPS enabled mode.

]]>

Optimize sensor reporting to improve failure rate - AFR (Annual Failure Rate) metrics

]]>

Added support for VMware 8.0

]]>

Added support for VMware 8.0

]]>

Fixes an intermittent issue where the incorrect model number can be reported during spin-up.

]]>

Added support for Microsoft Server Windows 2022.

]]> This product fix an issue that TCP traffic on VMs might be interrupted if PF undergoes a reset.

]]>

This product now supports PHY debug register dump by ethtool.

This product now supports Red Hat Enterprise Linux 9.2.

]]> This product correct an issue where the NVM fail to update due to the improper 802.1q VLAN tag feature detection.

]]>

This product now supports PHY debug register dump by ethtool.

This product now supports Red Hat Enterprise Linux 9.2.

]]> This product correct an issue where the NVM fail to update due to the improper 802.1q VLAN tag feature detection.

]]>

Added support for Microsoft Server Windows 2022.

]]>

Added support for Microsoft Server Windows 2022.

]]> Supports VMware ESXi 8.0

]]> For 2024 March MSB

]]> Initial Release

]]> MFT prerequisite RPMs for Mellanox adapter firmware update in Secure Boot mode.

]]> Added support for:

RedHat Enterprise Linux 8.9

RedHat Enterprise Linux 9.3

Updated to driver version 10.02.11.00-k1

This Driver is FIPs enabled.

]]> This Driver is FIPs enabled.

]]> Added support for:

RedHat Enterprise Linux 8.9

RedHat Enterprise Linux 9.3

Updated to driver version 10.02.11.00-k1

]]> The RHEL8 AMS rpm is now FIPS compliant

]]> Fixed the following items:

Fixed the issue where AMS was crashing after plugging and removing a USB drive

]]> The following enhancements are included in this release:

A warning and terminate amsd message is now displayed when system SW RAID is enabled
Added "support iLO6" string to the description field of the amsd installation file
Added ahslog service status to system log

]]> Fixed the following items:

Added an error handling mechanism so that the ahslog service will no longer crash when there is no system package or the packet is NULL.
Customers who use the snmpwalk command to query cpqSePciSlotWidth OID will see the correct data reported for all ports

]]> This Firmware package contains following firmware versions:

Adapter	Speed	Universal Boot Image	Firmware	UEFI	Boot Bios
HPE SN1200E 16Gb Dual Port Fibre Channel Host Bus Adapter	16Gb	14.2.589.21	14.2.589.21	14.2.589.16	14.2.566.0
HPE SN1200E 16Gb Single Port Fibre Channel Host Bus Adapter	16Gb	14.2.589.21	14.2.589.21	14.2.589.16	14.2.566.0
HPE SN1600E 32Gb Dual Port Fibre Channel Host Bus Adapter	32Gb	14.2.589.21	14.2.589.21	14.2.589.16	14.2.566.0
HPE SN1600E 32Gb Single Port Fibre Channel Host Bus Adapter	32Gb	14.2.589.21	14.2.589.21	14.2.589.16	14.2.566.0
HPE SN1610E 32Gb Single Port Fibre Channel Host Bus Adapter	32Gb	14.2.589.19	14.2.589.19	14.2.589.16	14.2.566.0
HPE SN1610E 32Gb Dual Port Fibre Channel Host Bus Adapter	32Gb	14.2.589.19	14.2.589.19	14.2.589.16	14.2.566.0
HPE SN1700E 64Gb Single Port Fibre Channel Host Bus Adapter	64Gb	14.2.589.19	14.2.589.19	14.2.589.16	14.2.566.0
HPE SN1700E 64Gb Dual Port Fibre Channel Host Bus Adapter	64Gb	14.2.589.19	14.2.589.19	14.2.589.16	14.2.566.0

]]> This Firmware package contains following firmware versions:

Adapter	Speed	Universal Boot Image	Firmware	UEFI	Boot Bios
HPE SN1200E 16Gb Dual Port Fibre Channel Host Bus Adapter	16Gb	14.2.589.5	14.2.589.5	14.2.579.0	14.2.566.0
HPE SN1200E 16Gb Single Port Fibre Channel Host Bus Adapter	16Gb	14.2.589.5	14.2.589.5	14.2.579.0	14.2.566.0
HPE SN1600E 32Gb Dual Port Fibre Channel Host Bus Adapter	32Gb	14.2.589.5	14.2.589.5	14.2.579.0	14.2.566.0
HPE SN1600E 32Gb Single Port Fibre Channel Host Bus Adapter	32Gb	14.2.589.5	14.2.589.5	14.2.579.0	14.2.566.0
HPE SN1610E 32Gb Single Port Fibre Channel Host Bus Adapter	32Gb	14.2.589.5	14.2.589.5	14.2.579.0	14.2.566.0
HPE SN1610E 32Gb Dual Port Fibre Channel Host Bus Adapter	32Gb	14.2.589.5	14.2.589.5	14.2.579.0	14.2.566.0
HPE SN1700E 64Gb Single Port Fibre Channel Host Bus Adapter	64Gb	14.2.589.5	14.2.589.5	14.2.579.0	14.2.566.0
HPE SN1700E 64Gb Dual Port Fibre Channel Host Bus Adapter	64Gb	14.2.589.5	14.2.589.5	14.2.579.0	14.2.566.0

]]> Firmware for the following device has been updated to 14.32.1010:

P11338-B21 (HPE Ethernet 10Gb 2-port 548SFP+ Adapter)

New features and changes included in version 14.32.1010:

Added 3 new assert filters (Health buffer, NVlog, FW trace). The assert will be exposed now if its severity level is equal to or above the new filter.
Enabled Rate Limit per VM instead of VM-TC. This capability is implemented by adding support to a new Scheduling element type: rate limit elements that will connect to the rate_limit and will share its rate limit.
Added support for asymmetrical VFs per PF. To enable it:PF_NUM_OF_VF_VALID must be true, and PF_NUM_OF_VF to a non-zero value.
Limited the external loopback speed to the used module's capabilities.
Improved linkup time when using the fast linkup capability.
Added support for the slow_restart and slow_restart_idle parameters to enable Zero Touch RoCE capability.

]]> The following issues have been fixed in version 14.32.1010:

Firmware got into an unresponsive state and caused unexpected behavior when connecting an optical transceiver that support RxLOS and the remote side port was down.
The system could not create more than 128K QPs.
On rare occasions, the system got into an unresponsive state when a peer port went down while using an Optical module.
Packet Pacing rate was used if asymmetric VFs was enabled.
Incorrect RNR timeout when trying to set it during the rts2rts_qp transition.
Issue with RSS on IPSec flows in ConnectX-4 Lx led to performance degradation. In this scenario, the SPI optimization caused packets from a given host to hash to the same CPU core. The fix was to ignore SPI optimization according to l4_type in ConnectX-4 Lx adapter cards.
The GetInventory NC-SI command reported leading 0xf in firmware version when it started with 0.

]]>

Added support for VMware 8.0

]]>

Added support for VMware 8.0

]]>

Fix contains optimization to increase the time for Recovery operation and few checks for maintenance.

]]>

Fix contains optimization to increase the time for Recovery operation and few checks for maintenance.

]]>

Added support for VMware 8.0

]]>

Added support for VMware 8.0

]]> Added new Microsoft secure boot keys, KEK2023, Microsoft UEFI CA 2023 and Windows UEFI CA 2023, since the original keys will expire in 2026.

Corrected Redfish Property value changed from vN_N_N to N.N.N in uri:

/redfish/v1/registrystore/registries/{lang}/biosattributeregistry{Platform}.vN_N_N

there, {lang} = { en, ja, zh }, {platform} = Platform Name e.g. A55, U63 , vN_N_N =

version number defined as Redfish specification

[Example]

uri: /redfish/v1/registrystore/registries/zh/biosattributeregistrya55.v1_1_20

Property of RegistryVersion is changed from v1_1_20 to 1.1.20

Added the System Configuration (RBSU) option "Boot Options/UEFI Boot Settings/Filter Non-bootable Drives" and set to "Auto" by default. This setting has the following Redfish property:

/redfish/v1/systems/1/bios/settings/FilterNonbootableDrive

]]> Important Notes:

Firmware Dependencies:

Problems Fixed:

This revision of the System ROM contains updates aligned with the Intel Product Update (IPU) version IPU.2024.1 guidance.

This revision of the System ROM includes the mitigation for vulnerabilities documented as CVE-2021-38575, CVE-2023-45853, CVE-2022-36763 and CVE-2022-36764.

Addressed an issue where the operating system cannot detect the iSCSI hard drive through IPv6 installation if the iSCSI IpAddressType is set to auto.

Addressed an issue where DmiAspmCtrl was not set accordingly when setting DMI ASPM to Disabled/L1 Enabled.

Known Issues:

]]> Replaced "AC power" with "external power" in the help text of "Automatic power-on" option. This is due to ProLiant servers also provide the DC power supply option.

The path to the option is: Processor Options -> DMI Power Management (ASPM)

This setting has the Redfish property URI of: /redfish/v1/systems/1/bios/settings/E3DmiAspm

To follow DMTF schema, change the Redfish registry version naming to have the pattern of "^\d+.\d+.\d+$".

For example, /redfish/v1/registrystore/registries/zh/biosattributeregistrya55.v1_1_20 will now becomes /redfish/v1/registrystore/registries/zh/biosattributeregistrya55.1.1.20

]]> Important Notes:

This version of the System ROM contains updates aligned with the Intel Product Update (IPU) version IPU.2023.4 guidance.

Firmware Dependencies:

None

Problems Fixed:

This revision of the System ROM includes the revision of the OpenSSL library 1.1.1v update which provides mitigation for security vulnerabilities documented as CVE-2023-3817.

Addressed an issue where system might hang while accessing IML logs from RBSU.

Known Issues:

None]]> Patch for CVE-2021-38575: The vulnerability allows a remote attacker to execute arbitrary code on the target system.

Patch the primary APIC ID for SMBIOS type 211: Some special CPUs may not have an intra-processor APIC ID == 00h and may cause wrong TControl data.

Patch for CVE-2023-45853: The vulnerability allows a remote attacker to execute arbitrary code on the target system.

Prevented a non-standard VPD content from causing the UEFI read function to become write.

Added a new event support for IML.

Patch for CVE-2023-45229: EDK2 NetworkPkg Vulnerability

Added an additional retry mechanisms to avoid a BIOS hang from iLO failure.

Corrected Redfish Property value changed from vN_N_N to N.N.N in uri:

/redfish/v1/registrystore/registries/{lang}/biosattributeregistry{Platform}.vN_N_N

there, {lang} = { en, ja, zh }, {platform} = Platform Name e.g. A55, U63 , vN_N_N =

version number defined as Redfish specification

[Example]

uri: /redfish/v1/registrystore/registries/zh/biosattributeregistrya55.v1_1_20

Property of RegistryVersion is changed from v1_1_20 to 1.1.20

]]> Important Notes:

None

Firmware Dependencies:

None

Problems Fixed:

Addressed an issue where SBCE and ECC storm records may disappear from AHS.

Addressed an issue where the iSCSI SW IPv6 HDD is not found under OS when the iSCSI IpAddressType is set to Auto.

Addressed an issue where the server may hang due to an IE function error.

Merged the solutions from EDK2 for vulnerabilities:

- Buffer overflow in the DHCPv6 client via a long Server ID option

- Out-of-bounds read when handling a ND Redirect message with truncated options

- Infinite loop when parsing unknown options in the Destination Options header

- Infinite loop when parsing a PadN option in the Destination Options header

- Buffer overflow when processing DNS Servers option in a DHCPv6 Advertise message

- Predictable TCP ISNs

- Use of a Weak PseudoRandom Number Generator

Known Issues:

None]]> Replaced "AC power" with "external power" in the help text of "Automatic power-on" option. This is due to ProLiant servers also provide the DC power supply option.

]]> Important Notes:

None

Firmware Dependencies:

None

Problems Fixed:

Addressed an issue where Restore Manufacturing Defaults and Restore Defaults from iLO web did not restore the Secure Boot Status.

Addressed an issue where BIOS did not report CPU status correctly to iLO, and OneView would receive notification when Uncorrectable Machine Check Exception (UMCE) occurs.

Addressed an issue where system might hang while accessing IML logs from RBSU.

Known Issues:

None]]> Firmware for the following devices has been updated to 20.40.1000:

HPE InfiniBand HDR/Ethernet 200Gb 1-port QSFP56 PCIe3 x16 MCX653105A-HDAT Adapter - P06154-B21
HPE InfiniBand HDR100/Ethernet 100Gb 1-port QSFP56 PCIe3 x16 MCX653105A-ECAT Adapter - P06250-B21
HPE InfiniBand HDR100/Ethernet 100Gb 2-port QSFP56 PCIe3 x16 MCX653106A-ECAT Adapter - P06251-B21

Security Hardening Enhancements: This release contains important reliability improvements and security hardening enhancements. HPE recommends upgrading your device's firmware to this release to improve the firmware security and reliability of your device.

No New features or changes have been included in version 20.40.1000.

]]> The following issues have been fixed in version 20.40.1000:

RDE LLDPTransmit ChassisID was occassionally not represented correctly.

]]> Firmware for the following devices has been updated to 20.37.1700:

HPE InfiniBand HDR/Ethernet 200Gb 1-port QSFP56 PCIe3 x16 MCX653105A-HDAT Adapter - P06154-B21
HPE InfiniBand HDR100/Ethernet 100Gb 1-port QSFP56 PCIe3 x16 MCX653105A-ECAT Adapter - P06250-B21
HPE InfiniBand HDR100/Ethernet 100Gb 2-port QSFP56 PCIe3 x16 MCX653106A-ECAT Adapter - P06251-B21

New features and changes included in version 20.37.1700:

A new capability enables the VM to track and limit its Vport's activity. This is done using the new q_counters counter which enables aggregation of other Vport's from PF GVMI.
Updated the link maintenance flow to avoid high uncorrectable error rate.

]]> No new fixes have been included in version 20.37.1700

]]> TBD

]]> This product enhanced the compatibility with drivers

]]>

Support firmware flash in OS FIPS enabled mode.

]]>

Added support for RHEL 9.

]]> TBD

]]>

This product allowed GPU direct DKMS package to skip building peermem module if support already exists in kernel.

This product now supported rdma driver version query from ipmi interface.

This product now enabled XPS by default on driver load.

This product added support for Red Hat Enterprise Linux 9.2.