PTF MH01109 HMC V7 R3.4.0 Update Package

HMC V7R3.4.0 Update Package.

This package updates your HMC from HMC V7R3.3.0 to HMC V7R3.4.0. You can also reference this package by APAR MB02310. All enhancements and fixes included in this package is the same as for PTF MH01147.

Package information

Package Name

Size

Checksum

APAR#

PTF#

HMC_Update_V7R340_1.zip
HMC_Update_V7R340_2.zip
HMC_Update_V7R340_1.iso
HMC_Update_V7R340_2.iso

635156005
672153542
636352512
678846464

56692
06784
53580
52553

MB02310

MH01109

Splash Panel information (or lshmc -V output)

Version: 7
Release: 3.4.0
Service Pack: 0
HMC Build level 20081014.1
","base_version=V7R3.4.0

Back to top

PTF MH01147 HMC V7R3.4.0 Recovery media

HMC V7R3.4.0 Recovery Media.

This package represents the Recovery image that can be used to upgrade your HMC from HMC V6R1.3 or HMC V7R3.1.0 or HMC V7R3.2.0 or HMC V7R3.3.0 to HMC V7R3.4.0. This package can also be used to install a clean version of HMC V7R3.4.0. You can also reference this package by APAR MB02754.

NOTE: MH01127 (apar MB02828) is needed for one to upgrade from HMC V6R1.3 to HMC V7R3.4.0. MH01135 (apar MB02661) is needed for one to upgrade from HMC V7R3.1.0 to HMC V7R3.4.0.

Package information

Package Name

Size

Checksum

APAR#

PTF#

HMC_Recovery_V7R3.4.0_1.iso
HMC_Recovery_V7R3.4.0_2.iso

1653200896
1405143040

20889
45752

MB02754

MH01147

Splash Panel information (or lshmc -V output)

Version: 7
Release: 3.4.0
Service Pack: 0
HMC Build level 20081014.1
","base_version=V7R3.4.0

Enhancements and Fixes

This package provides the following enhancements and fixes:

Server and Partition Management

  • New Virtual Fibre Channel adapter capability has been added. NPIV capable Fibre Channel adapters assigned to a VIOS partition can be shared between multiple client partitions by allocating a virtual sever fibre channel adapter on a VIOS and a virtual client fibre channel adapter on a client partition.
  • Enhanced partition mobility to include support for migrating (AIX and Linux) partitions with virtual fibre channel adapters (POWER6 servers only).
  • Enhanced partition mobility to enable migrating a partition (AIX or Linux) to a destination managed system which is managed by a different HMC than the source managed system (POWER6 servers only).
  • Internet Protocol Version 6 (IPv6) is now supported over HMC to FSP connections and also over RMC connections.
  • Managed system performance improvements.
  • Addition of new Processor Compatibility Modes to support the POWER6+ Systems. Enabling GUI to change Processor Compatibility Modes for Profiles.

Platform Management

  • Provided support for IPv6 in the Hardware Management Console (HMC) and associated IBM Power servers. In particular, RSCT is enhanced to support the configuration of IPv6 addresses in the Management Domain. The Management Domain is automatically created on the HMC and the LPARs it manages.
  • E355004D and E332FFFF may occur when Service Agent Connection Manager is enabled for POWER4 servers.
  • Corrected a behavioral issue within the Serviceable Events GUI when closing events.
  • Corrected the OK button to properly disable after the set up service processor failover process has been initiated.
  • Corrected a problem in the View Network Topology task to never attempt to ping 0.0.0.0 during Network Topology mapping of remote HMCs.
  • Enhanced the Format Media task to give the option to choose which memory stick to format when multiple memory keys are installed.
  • Service event E355104B (Extension 0000810F) caused by some web browers is now logged as informational only.
  • Corrected the Edit MTMS task to only allow this option when systems are in the "Operating" state.
  • Corrected a GUI table issue to prevent SRC E355104C from being logged.
  • Updated the Save Upgrade task to preserve LDAP configuration during the save.
  • Corrected a problem where Internet Explorer memory usage steadily increases if a session is left open on a frequently updated work area for a long period of time.
  • Corrected a problem where SRC E3321032 is logged and possibly a delay occurs in getting problem updates out to a secondary HMC.
  • Corrected a problem where an upgrade from 3.2 to 3.3 changes the "eth" (ethernet) identifiers and as a result the user cannot change the configuration of an interface that has switched from public to private.
  • Corrected a problem where certain PEL events were not being captured in multi-HMC environments.
  • Corrected a column filtering problem on the Manage Serviceable Events panel where a user would be unable to Select All rows without the task terminating with an error.

Licensed Internal Code (LIC) update

  • Provided support for disruptive power firmware updates which require powering off all managed systems in the managed frame.
  • Changed the handling of several error codes that can occur during the survey phase of code update to be logged as informational and not be called home.
  • Corrected a problem where the Unactivated Deferred Fix level was displayed incorrectly if the user did not exit the Advanced Features panel after activation.
  • Corrected a problem where the HMC attempted to initiate Service Processor failover when redundancy is enabled but hardware or firmware cannot support failover.
  • Corrected a problem where error status is not shown for all components on the progress panel and the operation appears to run forever when an error occurs while firmware is being retrieved.
  • Enhanced firmware activation logic to enable failover before powering on managed system to prevent error B181601E from being logged.
  • Corrected a problem where the I/O microcode update command was built incorrectly, resulting in error code E302F8AC.
  • Enhanced firmware activation logic to retry operations to a secondary FSP on P5 systems to prevent error E302F841.
  • Corrected a problem in the updlic command to issue the correct error message when a readiness check error occurred and the -q option was specified.
  • Enhanced the I/O device table panel so that partition rows cannot be selected.
  • Corrected a problem where Service Processor reboot was successful but error E302F844 was reported.

Problem Analysis

  • Improved the call home design by placing the IQYYPELL log in the zip file and transmitted on all call homes.
  • Corrected a problem where some error logs appear on ASM but not in SFP as expected. This is believed to be triggered when a primary analyzing HMC is disconnected for a short period and logs are cleared from the FSP or BPC.
  • Corrected a distributed problem replicator error that caused serviceable event E3321032 to be logged.

Service Agent

Added additional tracing for Service Agent Connection Manager failure.

RSF

  • Updated the error message when connectivity is lost due to a VPN issue.
  • Fixed a remote service problem that allows an HMC to receive remote service should the HMCs not have any external connections other than the modem.

Help

Enhancements and updates were made to the help documentation.

Repair and Verify

  • Provided Concurrent Node Add function that offers the ability to concurrently add a new CEC node as an upgrade to increase the system hardware capacity. The Concurrent Cold Node Repair function is the ability to concurrently replace a defective CEC node or defective processor, memory, planar FRU(s) within the node.
  • Provided support for clearing adapter information from the HMC and PHYP LPAR config data when an adapter is concurrently removed.
  • Provided base functionality support for Hardware Concurrent Maintenance in the following areas:
    • Node Hot Remove Firmware support for concurrently removing a processor/memory book from an SMP
    • I/O Hub Hot Remove Firmware support for concurrently removing an I/O-hub card.
  • Enhancements and updates were made to the Repair and Verify Fill and Drain Tool procedures.
  • Corrected a problem in the HMC Add Enclosure GUI where the Add button now properly enables and disables.
  • Updated the BPC communication cable replacement on systems 9119-FHA and 9125-F2A to list locations on both sides of the system, which eliminated asking the user to "trace" the cable to the other side.
  • Enhanced the isolation procedure for the Bulk Power Fan cable to verify the bulk power fan cable is plugged in prior to exchanging the fan as part of a service procedure.
  • Updated the Add Node procedure with correct plugging rules.
  • Updated the IB and RIO 5791 Drawers to list all PCI card slots during Repair and Verify Exchange.
  • Corrected a graphic inconsistency during Fan Remove, Exchange and Install procedures for the 9117 system.
  • Updated the MCM Exchange tool Part Number for the 9119-FHA system.
  • Corrected a problem during Concurrent Repair of AMDs that eliminated the possibility of SRCs 11007611 and 11007621 being logged. The verification process now completes successfully.
  • Updated the Tape Drive Exchange graphics and text for the 8204-E8A and 8203-E4A systems.
  • Enhanced the Node Add graphics and instructions for the 9119-FHA system.

Command Line

  • The following commands have been added to manage the logged on users and the tasks they are running on the HMC:
    • lslogon - lists the logged on users or the tasks they are running on the HMC
    • termtask - terminates a user's task that is running on the HMC
  • The following commands have been added to manage encryption support for the HMC Web user interface:
    • chhmcencr - changes which encryptions can be used by the HMC Web user interface
    • lshmcencr - lists the encryptions which are available and those which can currently be used by the HMC Web user interface
  • A new option has been added to the chhwres command to clear a physical I/O slot (POWER6 servers only). This command can be used to clear stale physical I/O slot information after a physical I/O adapter has been concurrently removed but not replaced.
  • The following commands have been enhanced to support virtual fibre channel adapters (POWER6 servers only): chsyscfg, lssyscfg, mksyscfg, chhwres, lshwres, lslparmigr, and migrlpar.
  • The following commands have been enhanced to support migrating a partition to a destination managed system which is managed by a different HMC than the source managed system (POWER6 servers only): lslparmigr, mkauthkeys, and migrlpar.
  • A new option has been added to the bkconsdata command to allow critical HMC data to be backed up to a USB flash memory device.
  • A new option has been added to the saveupgdata command to allow HMC upgrade data to be saved to a USB flash memory device.
  • A new option has been added to the lslic and updlic commands to allow a USB flash memory device to be used as the Licensed Internal Code (LIC) repository.
  • A new option has been added to the updlic command to allow the HMC to power off all managed systems in the same managed frame during a disruptive update of the power subsystem, if necessary. Use this option carefully. It allows the HMC to power off managed systems which were not explicitly targeted by the command.
  • The chhmc and lshmc commands have been enhanced to support changing and displaying the speed and duplex settings for a network interface.
  • The lshmc command has been enhanced to display the syslog server configured for the HMC.
  • The lsusrtca command, which was deprecated in HMC V7.3.1, has been redone. Now the lsusrtca command displays the Web user interface welcome text or the SSH banner text that is shown before users log onto the HMC.
  • A new option has been added to the mksysplan command to perform additional inventory probes for active partitions, perform hardware discovery for inactive partitions or unallocated hardware, but to not gather additional information from VIOS partitions when creating a system plan.

Back to top

Security Fixes in HMC V7R3.4.0

Fix

Abstract

CVE-2007-5116:

perl regular expression buffer overflow

CVE-2005-4872 CVE-2006-7227, 7228, 7230 CVE-2007-1659, 1660, 1661, 4766, 4767:

pcre remote code execution

CVE-2997-4995

openssl DTLS problem

CVE-2008-0960

net-snmp SNMPv3 HMAC authentication bypass

CVE-2007-5497

e2fsprogs overflows in libext2fs

CVE-2008-1379, 1377, 2360, 2361, 2362

xorg-x11 many security fixes

CVE-2008-1483, 1657

openssh X access leakage

CVE-2007-4770, 4771

icu regular expression problems

CVE-2008-0595

dbus-1 policy application problem

CVE-2008-0888

unzip crash due to uninitialized memory

CVE-2008-1372

bzip2 decoder denial of service

CVE 2008-1806, 1807, 1808

freetype2 various integer overflows

CVE-2008-1447 CVE-2008-0122

bind DNS cache poisoning

Back to top

Known Issues in HMC V7R3.4.0

  • Only one instance of IBM Director 5.2 or IBM Systems Director 6.1 to discover and manage a HMC is supported. NOTE: If one is running HMC V7R3.3.0 and wants to use IBM Director 5.2 or IBM Systems Director 6.1 then order PTF MH01146.
  • One cannot launch the ASM panel via the asmmenu command with an IPv6 address. It will work via the GUI. This will be fixed in a future PTF.
  • Upgrading from 320 HMCs using the Save Upgrade procedure will cause custom password expiration values to appear to be "forgotten" in the GUI. Users with custom password expiration times will appear, in the Manage User Profiles task, to have default expiration times (the field will be blank and the checkbox will be unchecked). The correct expiration times are preserved and can be viewed via the CLI. If the password expiration value for an affected user needs to be changed, the GUI can be used to make this change and the changed value will be handled correctly
  • Backup of critical console data to USB key will fail if the data file exceeds 4GB in size.
  • Cross HMC inactive LPAR migration can only be aborted before the source HMC sends the migrate request to the target HMC. This will be fixed in a future PTF.
  • While creating or modifying a logical partition profile with dedicated processors using the GUI, the maximum number of processors value is limited by the number of installed processors in the managed system. This limits the ability to dynamically add new processors to the partition via DLPAR after a Node addition. Modify the maximum number of processors value using the CLI ('chsyscfg'). This will be corrected in a future PTF.
  • During the activation phase of Cold Node Add or HOT Node repair operation, the HMC will vary on the resources it found to the corresponding owning LPAR. If the resources are not associated with any LPAR, the HMC will return this information to display return code 21. User can disregard RC=21 being displayed on the RV panel. This issue will be corrected in a future PTF.
  • The processor utilization numbers shown on the Utilization Data - Utilization Sample screens for partitions, the physical processor pool, and shared processor pools are wrong. The processor utilization percentages shown are correct however. Also, the processing units shown on the Utilization Data - Utilization Sample screen for shared processor pools are also wrong. This will be corrected in a future PTF.
  • When user attempts Migration using Validation Panel and selects any shared processor pool other than Default, Default shared processor pool is taken instead of the selected shared processor pool.
  • Internal task error when trying to view first utilization sample event in GUI. The error occurs only when first sampling event record is selected to view. It does not occur when viewing other records. The workaround is to use CLI 'lslparutil' to view first utilization sample event. This issue will be corrected in a future PTF.
  • If you do not specify both the partition name and partition id for the migrlpar "-i virtual_scsi_mappings" option, the HMC will not honor the user specified request.
  • During lpar migration or validation, if the client partition's processor compatibility mode is not supported by the destination managed system, a rather generic error message will be displayed" "HSCLA2AD The migrating partition's compatibility data checking on the destination managed system has failed. Verify that the partition has been correctly set up for migration to the selected destination managed system, and try the operation again."
  • There is a problem with the HMC inventory function which prevents the collection of system Vital Product Data (VPD), including the information used for transmittal of On/Off Capacity On Demand (COD) usage. The problem will be fixed in a future PTF.
  • Scheduled operations created using HMC version HMC V7.3.2.0 and earlier may not migrate correctly to HMC V7.3.3.0 and later. After the upgrade, the day and time of some operations may change to Wednesday 6/7pm. The affected scheduled operations need to be deleted and then recreated.
  • Scheduled operations for partitions are temporarily deleted if the HMC is unable to connect to the managed system within 10 minutes of a HMC power on/restart. The affected operations will not execute nor appear in the partition scheduled operations panel. To resolve the problem, first correct the managed system connectivity then restart the HMC. The scheduled operations will be rebuilt during the HMC restart.

Back to top

Supported languages

Languages

Locales

English

en_US, en_GB, en_GB@euro, en_AU, en_BE, en_BE@preeuro, en_CA, en_HK, en_Ne, en_IE, en_IE@preeuro, en_NZ, en_PH, en_PK, en_ZA, en_SG

Catalan

ca_ES, ca_ES@preeuro

German

de_DE, de_DE@preeuro, de_CH, de_AT, de_AT@preeuro, de_LU, de_LU@euro

French

fr_FR, fr_FR@preeuro, fr_CH, fr_CA, fr_BE, fr_BE@euro, fr_LU, fr_LU@euro

Italian

it_IT, it_IT@preeuro, it_CH

Spanish

es_ES, es_ES@preeuro, es_AR, es_BO, es_CL, es_CO, es_CR, es_DO, es_EC,es_SV, es_GT, es_HN, es_MX, es_NI, es_PA, es_PY,es_PE, es_PR, es_US, es_UY,es_VE

Brazilian Portuguese

pt_BR

Portugal Portuguese

pt_PT, pt_PT@preeuro

Polish

pl_PL, pl_PL@euro,pl_PL@preeuro

Japanese

ja_JP

Simplified Chinese

zh_CN, zh_SG

Traditional Chinese

zh_TW, zh_HK

Korean

ko_KR

Hungarian

hu_HU

Dutch

nl_NL, nl_NL@preeuro, nl_BE, nl_BE@preeuro

Russian

ru_RU

Czech

cs_CZ

Slovakian

sk_SK