Skip to content

Protectli VP2420 Dasharo Release Notes

Following Release Notes describe status of open-source firmware development for Protectli VP2420.

For details about our release process please read Dasharo Standard Release Process.

Subscribe to Protectli Dasharo Release Newsletter

Test results for this platform can be found here.

v1.2.1 - 2025-03-12

Test results for this release can be found here.

Added

Changed

  • Updated coreboot base to 24.02. Please refer to SBOM section for details
  • Updated UEFI payload base to edk2-stable202402. Please refer to SBOM section for details
  • Updated microcode blob. Please refer to SBOM section for details
  • Updated FSP blob. Please refer to SBOM section for details
  • Removed UEFI Shell
  • Removed the autoboot timeout in the iPXE menu
  • ME PCI device hidden to match the behavior of other Protectli devices with ME disabled
  • Updated UEFI Secure Boot DBX to 2025-02-24
  • Simplified setup password policy

Known issues

Binaries

protectli_vp2420_v1.2.1.rom sha256 sha256.sig

protectli_vp2420_v1.2.1_dev_signed.rom sha256 sha256.sig

To verify binary integrity with hash and signature please follow the instructions in Dasharo release signature verification using this key

SBOM (Software Bill of Materials)

v1.2.0 - 2024-05-16

Added

Changed

  • Rebased to coreboot 4.21
  • Enroll default UEFI Secure Boot keys on the first boot
  • Improved UEFI Secure Boot menu user experience
  • Scope of reset to defaults hotkey to global in firmware setup
  • Updated microcode to the newer version; refer to SBOM section below
  • Updated ME to the newer version; refer to SBOM section below

Fixed

Binaries

protectli_vp2420_v1.2.0.rom sha256 sha256.sig

protectli_vp2420_v1.2.0_dev_signed.rom sha256 sha256.sig

To verify binary integrity with hash and signature please follow the instructions in Dasharo release signature verification using this key

SBOM (Software Bill of Materials)

v1.1.0 - 2023-04-20

Added

Changed

Fixed

Known issues

Binaries

protectli_vp2420_v1.1.0.rom sha256 sha256.sig

To verify binary integrity with hash and signature please follow the instructions in Dasharo release signature verification using this key

SBOM (Software Bill of Materials)

v1.0.1 - 2023-02-02

Added

Changed

  • Downgrade edk2 Secure Boot driver to achieve consistent user experience as on the VP46XX v1.0.19 release

Fixed

Known issues

Binaries

protectli_vp2420_v1.0.1.rom sha256 sha256.sig

To verify binary integrity with hash and signature please follow the instructions in Dasharo release signature verification using this key

SBOM (Software Bill of Materials)

v1.0.0 - 2022-12-22

Added

Binaries

protectli_VP2420_v1.0.0.rom sha256 sha256.sig

How to verify signatures:

wget https://3mdeb.com/open-source-firmware/Dasharo/protectli_vault_ehl/v1.0.0/protectli_vp2420_v1.0.0.rom
wget https://3mdeb.com/open-source-firmware/Dasharo/protectli_vault_ehl/v1.0.0/protectli_vp2420_v1.0.0.rom.sha256
wget https://3mdeb.com/open-source-firmware/Dasharo/protectli_vault_ehl/v1.0.0/protectli_vp2420_v1.0.0.rom.sha256.sig
gpg --fetch-keys https://raw.githubusercontent.com/3mdeb/3mdeb-secpack/master/keys/master-key/3mdeb-master-key.asc
gpg --fetch-keys https://raw.githubusercontent.com/3mdeb/3mdeb-secpack/master/dasharo/3mdeb-dasharo-master-key.asc
gpg --fetch-keys https://raw.githubusercontent.com/3mdeb/3mdeb-secpack/master/customer-keys/protectli/release-keys/protectli-dasharo-firewall-release-1.0-key.asc
gpg --list-sigs "3mdeb Master Key" "3mdeb Dasharo Master Key" "Protectli Dasharo Firewall Release 1.0 Signing Key"
sha256sum -c protectli_vp2420_v1.0.0.rom.sha256
gpg -v --verify protectli_vp2420_v1.0.0.rom.sha256.sig protectli_vp2420_v1.0.0.rom.sha256

SBOM (Software Bill of Materials)