Skip to content
/ tpm2-tss-verified Public

A modified version of tpm2-tss that passed memory safety formal verification

License

View license
11 stars 3 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

mesalock-linux/tpm2-tss-verified

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits

dist

dist

 
 

doc

doc

 
 

include/tss2

include/tss2

 
 

lib

lib

 
 

m4

m4

 
 

man

man

 
 

script

script

 
 

src

src

 
 

test

test

 
 

.appveyor.yml

.appveyor.yml

 
 

.travis.yml

.travis.yml

 
 

CHANGELOG.md

CHANGELOG.md

 
 

CONTRIBUTING.md

CONTRIBUTING.md

 
 

Dockerfile

Dockerfile

 
 

Doxyfile.in

Doxyfile.in

 
 

INSTALL.md

INSTALL.md

 
 

LICENSE

LICENSE

 
 

MAINTAINERS

MAINTAINERS

 
 

Makefile-test.am

Makefile-test.am

 
 

Makefile.am

Makefile.am

 
 

Original_README.md

Original_README.md

 
 

README.md

README.md

 
 

RELEASE.md

RELEASE.md

 
 

bootstrap

bootstrap

 
 

configure.ac

configure.ac

 
 

tpm2-tss-verify-results.md

tpm2-tss-verify-results.md

 
 

tpm2-tss.sln

tpm2-tss.sln

 
 

Repository files navigation

tpm2-tss-verified

This repository hosts a modified version of tpm2-tss 2.1.0 that can pass memory safety formal verification. We utilized Abstract Interpretation and the tool TrustInSoft Analyzer to achieve this goal. The original TSS readme is renamed to Original_README.md.

It took us 9 person-months to verify the overall 1300+ funcitons (or 67K+ lines of code). During the verification, We found several potential memory safety flaws (e.g. null pointer dereference, memory leakage, buffer over-read, integer overflow etc.), and made 140+ patches to address them. Under our constraints, the program has been proven to be memory safe. Hopefully this effort can help developers to build memory safe TPM applications, and further contributions from you are always welcome!

Getting Started

Our formal verification process makes no changes to the original building or testing procedures, so please check the original instructions for detailed information.

Running the tests

Please check the original instructions for detailed information.

Formal Verification Information

The verification result is summarized in tpm2-tss-verify-results.md. Each function in this file is followed by its verification coverage, false/true positive counts, whether it’s passed or not, and whether it’s patched by us in order to pass the verification.

The following are some examples. Please check tpm2-tss-verify-results.md for the full result.

Function Name Coverage # of False Positive # of True Positive Patched or Not
Tss2_MU_TPMS_ALG_PROPERTY_Marshal 100% 1 0 No
Tss2_MU_TPMS_ALG_PROPERTY_Unmarshal 100% 1 0 No
Tss2_MU_TPMS_CAPABILITY_DATA_Marshal 100% 0 0 No
Tss2_MU_TPMS_CAPABILITY_DATA_Unmarshal 100% 0 0 No
Tss2_MU_TPMS_TIME_INFO_Unmarshal 100% 0 0 No

Issues Found

Contributing

Contrbutions are welcome. This modified version is based on tpm2-tss 2.1.0. We are happy if you're interested in verifying the functions newly added in newer releases. Feel free to send us pull requests on the GitHub and join the verification journey with us. If you have questions, you can also talk to our maintainers for help.

Discussion

Feel free to submit Github issues, pull requests, or contact the following maintainers.

About

A modified version of tpm2-tss that passed memory safety formal verification

Topics

formal-verification tis

Resources

Readme

License

View license
Activity
Custom properties

Stars

11 stars

Watchers

5 watching

Forks

3 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages