Security Hardening Enhancements: This release contains important reliability improvements and security hardening enhancements. NVIDIA recommends upgrading your devices firmware to this release to improve the devices’ firmware security and reliability.
SR-IOV - Virtual Functions (VF) per Port - The maximum Virtual Functions (VF) per port is 127. For further information, see RoCE Limitations.
It is recommended to enable the “above 4G decoding” BIOS setting for features that require large amount of PCIe resources.
Such features are: SR-IOV with numerous VFs, PCIe Emulated Switch, and Large BAR Requests.
Changes and New Feature in this Firmware Version
|Max MTU Policy||Updated the max MTU policy. Now when setting the admin MTU, the max admin MTU of all hosts on this port is set to the physical port. When querying the admin MTU, the max admin MTU of all hosts on this port is returned.|
|200Gb/s Throughput on Crypto Capable Devices|
Enabled 200Gb/s out-of-the-box throughput on crypto capable devices.
Note: If any crypto offloads is in use, 200Gb/s throughput can be achieved only after the next firmware reset
|VF Migration||Added support for VF migration. The hypervisor can now suspend its VF, meaning from that point the VF cannot perform action such as send/receive traffic or run any command. In this firmware version only the suspend resume mode is supported (on the same VM).|
|MADs||Added a new MAD of class SMP that has the attributes |
|NV Configurations via the Relevant Reset Flow||Added |
Note: If the Keep Link Up NV configuration is changed, phyless reset will be blocked.
|Precision Time Protocol (PTP)|
Added Precision Time Protocol (PTP) support.
In this version, the support includes:
In this version, the following are not supported:
Note: All PTP SQs must be closed before operating LFWP (life fw patch).
|Resource Dump Support for HW Steering||Added support for HW Steering objects dump via resource dump interface.|
This support includes: STC, RTC, STE, modify argument, and modify pattern.
|VF Migration||Added support for VF migration.|
|ICM Pages||Added a new register (|
|Steering Definer||Added support for creating a steering definer with a dword selector using |
|XRQ QP Errors Enhancements||Enhanced the XRQ QP error information provided to the user in case QP goes into an error state. In such case, QUERY_QP will provide information on the syndrome type and which side caused|
|HW Steering: WQE Insertion Rules|
[Beta] Added HW Steering support for the following:
|Holdover Mode||Added support for holdover mode to comply to SyncE specifications (EEC compliance) to limit the maximum phase transient response upon link loss.|
|SyncE Enhancements||Added support for noise filtering to comply to the SyncE specifications requirements.|
|vDPA: Performance||Optimized the performance of virtio including: throughput, QoS, and accuracy of min/max bandwidth when virtio works with the QoS settings.|
|vDPA: virtio-net Full Emulation|
This new capability reduces the switchover time of creating a virtq from scratch during live migration, by creating the virtq beforehand on the target server.
When swithover happens, the pre-created virtq will be used and modified with necessary parameters.
|ibstat||Updated the ibstat status reported when the phy link is down. Now |
|NetworkPort Schema Replacement||Replaced the deprecated NetworkPort schema with Port schema in NIC RDE implementation.|
|Firmware Steering||Enabled the option to modify the |
|ZTRCC||Added support for advanced ZTR_RTTCC algorithm based on the Programmable CC platform to achieve better congestion control without dependency on the switch ECN marking.|
|Dynamic Completion Event Moderation for vDPA|
DIM is used to tune moderation parameter dynamically using an mlxreg command.
To disable this capability, run:
|SW Steering Cache||Modified the TX or RX cache invalidation behavior. TX or RX cache invalidation now does not occur automatically but only when the software performs the sync operation using the using sync_steering command.|
|Mega Allocations in Bulk Allocator Mechanism||Modified the maximum bulk size per single allocation from |
|Dynamic Flex Parser over a VF|
Added support for creating a dynamic flex parser on untrusted function, and changed the flex parser cap for untrusted function to the following:
|SNAPI: Comm-Channel||Added support for SNAPI (comm-channel) connection while running on raw ETH link.|
|Changing all the Crypto Features to Wrapped or Cleartext|
Crypto features can be in either wrapped or unwrapped mode. Meaning, the key can be wrapped or in plaintext when running the CREATE_DEK PRM command. To comply with the requirements specified in FIPS publication, all the created DEKs must be wrapped.
This feature adds new
|ICM Direct Access by the Software to write/modify the DEK Objects|
[Beta] This new capability enables the software to directly access ICM and write/modify the DEK objects. Such change improves the DEK object update rate by re-using DEK object instead of creating a new one.
In addition, added the following:
|Bug Fixes||See Bug Fixes in this Firmware Version section.|