nvindex: introduce an nvindex registry#118
nvindex: introduce an nvindex registry#118poettering wants to merge 1 commit intouapi-group:mainfrom
Conversation
The TCG would like to assign a NV index range to the Linux community. Let's hence create a registry of subranges and to which open source projects they are delegated. For now this is only systemd.
|
don't merge this yet The listed range is not officially delegated to Linux yet. Once I hear back from TCG and get confirmation that this registry looks good to them we can make this offical. |
| Note that while TPM 2.0 NV indexes are not quite as scarce as PCRs they still aren't free. Hence, please | ||
| request only minimal ranges for your purposes. | ||
|
|
||
| We will not delegate subranges to projects that aren't under an Open Source license. For NV index delegations |
There was a problem hiding this comment.
Given recent drama around commercial licenses trying to pass as open source, let's be extra precise and specifically say license [approved by the Open Source Initiative](https://opensource.org/licenses)
|
|
||
| The Trusted Computing Group (TCG) maintains a [Registry of Reserved TPM 2.0 Handles and | ||
| Localities](https://trustedcomputinggroup.org/resource/registry/) which assigns TPM 2.0 NV index ranges | ||
| (among ther things, see section 2.2) to organizations (by convention only!). They have assigned the NV index |
There was a problem hiding this comment.
| (among ther things, see section 2.2) to organizations (by convention only!). They have assigned the NV index | |
| (among other things, see section 2.2) to organizations (by convention only!). They have assigned the NV index |
| The Trusted Computing Group (TCG) maintains a [Registry of Reserved TPM 2.0 Handles and | ||
| Localities](https://trustedcomputinggroup.org/resource/registry/) which assigns TPM 2.0 NV index ranges | ||
| (among ther things, see section 2.2) to organizations (by convention only!). They have assigned the NV index | ||
| range **0x01D10200-0x01D105FF** to the Linux community. |
There was a problem hiding this comment.
Should we specify how many by number as well?
|
Missing a link to the README. |
|
and i guess there should be cross links from the nvindex registry to the pcr registry and back |
|
@poettering has there been any progress on getting the range assigned? |
keszybz
left a comment
keszybz
left a comment
There was a problem hiding this comment.
Since this is a new document, please let's do semantic line breaks (in the sense of semb.org).
Did the registration happen?
5 participants
The TCG would like to assign a NV index range to the Linux community. Let's hence create a registry of subranges and to which open source projects they are delegated.
For now this is only systemd.