问题
As there are 24 PCR's in TPM 1.2 specification. Some of these PCRs are reserved and cannot be extended by user's code. Below are the PCR Index their PCR Usage
- CRTM, BIOS and Platform Extensions
- Platform Conguration
- Option ROM Code
- Option ROM Conguration and Data
- IPL7Code (MBR Information and Bootloader Stage 1)
- IPL Code and Conguration Data (for use by IPL Code)
- State Transition and Wake Events
- Reserved for future usage. Do not use.
- Bootloader Stage 2 Part 1
- Bootloader Stage 2 Part 2
- Not in Use.
- Not in Use.
- Bootloader Commandline Arguments
- Files checked via checkle routine
- Files which are actually loaded (e.g. Linux kernel, initrd, modules..)
- Not in Use.
- Not in Use.
- DRTM8
18-23. Not in Use.
what I understood that a user can extend all the PCR's which are not in use? Is this correct? I asked this question Because I have written my own code to extend PCR's (by following trousers coding guidelines) and it turns out that i can extend all the PCR's except from PCR 17 to PCR 22. And my understanding was that I can only extend few and especially cannot play with the lower ones from PCR 0 to PCR 7.
回答1:
Depends on the locality, I was in locality 0.
来源:https://stackoverflow.com/questions/19705588/which-pcr-can-be-extended-by-our-own-code