{"id":42997687,"url":"https://github.com/crocs-muni/tpm2-algtest","last_synced_at":"2026-01-31T03:35:28.191Z","repository":{"id":48281065,"uuid":"157266956","full_name":"crocs-muni/tpm2-algtest","owner":"crocs-muni","description":"A tool for testing and measuring TPM 2.0 crypto functionality.","archived":false,"fork":false,"pushed_at":"2024-12-19T11:38:22.000Z","size":315,"stargazers_count":6,"open_issues_count":2,"forks_count":8,"subscribers_count":7,"default_branch":"master","last_synced_at":"2025-09-10T06:17:03.073Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"","language":"C","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"bsd-2-clause","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/crocs-muni.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE.md","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2018-11-12T19:44:23.000Z","updated_at":"2024-12-19T11:38:26.000Z","dependencies_parsed_at":"2023-12-18T15:09:30.433Z","dependency_job_id":"4f722323-041d-4c23-99b7-abe06e29a752","html_url":"https://github.com/crocs-muni/tpm2-algtest","commit_stats":null,"previous_names":[],"tags_count":5,"template":false,"template_full_name":null,"purl":"pkg:github/crocs-muni/tpm2-algtest","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/crocs-muni%2Ftpm2-algtest","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/crocs-muni%2Ftpm2-algtest/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/crocs-muni%2Ftpm2-algtest/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/crocs-muni%2Ftpm2-algtest/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/crocs-muni","download_url":"https://codeload.github.com/crocs-muni/tpm2-algtest/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/crocs-muni%2Ftpm2-algtest/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":28928148,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-01-31T02:59:34.861Z","status":"ssl_error","status_checked_at":"2026-01-31T02:59:05.369Z","response_time":128,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.5:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2026-01-31T03:35:28.111Z","updated_at":"2026-01-31T03:35:28.175Z","avatar_url":"https://github.com/crocs-muni.png","language":"C","funding_links":[],"categories":["Software Tools"],"sub_categories":["Root of Trust and TPM"],"readme":"# TPM2-AlgTest\n\nThe cryptographic hardware, including the security-certified one (Common Criteria, FIPS 140), was shown to contain serious vulnerabilities like [[1](https://en.wikipedia.org/wiki/ROCA_vulnerability)], [[2](https://minerva.crocs.fi.muni.cz/)] or [[3](https://tpm.fail)]. Since TPM chips are often manufactured by the same vendors as cryptographic smartcards, TPM2-AlgTest collects data from various TPMs that could be used for further analysis and discovery of similar bugs. The results from almost 80 TPM firmware revisions from 6 TPM vendors were published at [CHES'24](https://ches.iacr.org/2024/) conference, and existing and new vulnerabilities were found in several of them. \n\n![image](https://github.com/user-attachments/assets/d2930dc1-8964-41f1-b15c-597f703bad11)\n\n\nIf you like the tool, please consider citing our paper:\n```\n@inproceedings{2024-ches-tpmscan,\n   title = {TPMScan: A wide-scale study of security-relevant properties of TPM 2.0 chips},\n   year = {2024},\n   author = {Svenda, Petr and Dufka, Antonin and Broz, Milan and Lacko, Roman and Jaros, Tomas and Zatovic, Daniel and Pospisil, Josef},\n   booktitle = {IACR Transactions on Cryptographic Hardware and Embedded Systems},\n   keywords = {TPM, common criteria, fips140, RSA, ECDSA},\n   issn = {ISSN 2569-2925},\n   pages = {714–734},\n   volume={2024, No. 2}, \n   url={https://tches.iacr.org/index.php/TCHES/article/view/11444}, \n   DOI={10.46586/tches.v2024.i2.714-734}\n}\n```\n\nThis project uses sources from the [tpm2-tools](https://github.com/tpm2-software/tpm2-tools) project.\n\n## Running the tool\n\nInstall [`tpm2-tools`](https://github.com/tpm2-software/tpm2-tools) (version 5.0 or newer), `tss2-lib`, `openssl`, `dmidecode`:\n\n```sh\n# On Debian-based distros\nsudo apt-get install tpm2-tools libtss2-dev openssl dmidecode\n```\n\nBuild `tpm2-algtest` tool:\n```sh\ngit clone https://github.com/crocs-muni/tpm2-algtest.git\nmkdir build\ncd build\ncmake .. \u0026\u0026 make\ncd ..\n```\n\nInstall requirements (and optionally use venv):\n```sh\npython -m venv venv\nsource venv/bin/activate\npip install -r requirements.txt\n```\n\nRun `collect.py` with root privileges:\n```sh\nsudo python collect.py all\n```\n\n**Important:** Please DO NOT suspend or hibernate the computer while running the algtest, it will affect the results! Locking the screen is ok.\n\n## Troubleshooting\n\nOnly one process can access /dev/tpm0 directly at the same time. Some distributions (e.g. Fedora) use daemon `tpm2-abrmd` as a resource manager which already takes control of the device. In order to run this script you have to temporarily stop this daemon:\n```sh\nsudo systemctl stop tpm2-abrmd\n```\nWhen the script finishes, you can start it again:\n```sh\nsudo systemctl start tpm2-abrmd\n```\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcrocs-muni%2Ftpm2-algtest","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fcrocs-muni%2Ftpm2-algtest","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcrocs-muni%2Ftpm2-algtest/lists"}