A tool translating GIMPLE to CryptoLine
GIMPLE is a IR(intermidiate representation) used in machine-independent optimization of GCC
The CryptoLine verifier is here
- cmake
- gcc
- gcc plugin dev header
- ubuntu
sudo apt-get install gcc-${version}-plugin-dev
- cmake 3.5.1
- gcc 8.1.0
- ubuntu 16.04
docker build -t gcc2cryptoline .
docker run -it gcc2cryptoline
You can see the gcc2cryptoline.so under the build directory and how to use the plugin by looking at the test/test.sh
mkdir build
cd build
cmake ..
the plugin is gcc2cryptoline.so
- prerequisite
- python3 > 3.6
- need support of f string
- package: toml
- pip3 install -r requirements.txt
- python3 > 3.6
cd script
cp config-example.toml config.toml # edit config.toml
python3 run_experiments.py- add options when compile
-fplugin=./gcc2cryptoline.so: make sure the plugin path-fplugin-arg-gcc2cryptoline-func=${function name}: target function name-fplugin-arg-gcc2cryptoline-dump: will dump output to the ${function name}.cl-fpluin-arg-gcc2cryptoline-debug: use when debugging
- take curve25519 as example
You can see the corresponding result in
gcc \ -fplugin=./gcc2cryptoline.so \ -fplugin-arg-gcc2cryptoline-func=fe51_add \ -fplugin-arg-gcc2cryptoline-dump \ ${some other flags need to compile curve25519.c} -O3 \ -c curve25519.cexamples/openssl/curve25519/fe51_add.cl
Becasue of the gramma of cryptoline parser, we need to escape some characters such as .
./script/escape.py [cryptoline file]
- add options when compile
- c like format:
-fdump-tree-optimized - raw format:
-fdump-tree-optimized-raw
- c like format:
Not all GIMPLE statements are supported (maybe throw some errors in runtime).
Please report such errors!
@inproceedings{Fu:2019:SCP:3319535.3354199,
author = {Fu, Yu-Fu and Liu, Jiaxiang and Shi, Xiaomu and Tsai, Ming-Hsien and Wang, Bow-Yaw and Yang, Bo-Yin},
title = {Signed Cryptographic Program Verification with Typed CryptoLine},
booktitle = {Proceedings of the 2019 ACM SIGSAC Conference on Computer and Communications Security},
series = {CCS '19},
year = {2019},
isbn = {978-1-4503-6747-9},
location = {London, United Kingdom},
pages = {1591--1606},
numpages = {16},
url = {http://doi.acm.org/10.1145/3319535.3354199},
doi = {10.1145/3319535.3354199},
acmid = {3354199},
publisher = {ACM},
address = {New York, NY, USA},
keywords = {cryptographic programs, formal verification, model checking},
}
Yu-Fu Fu, Jiaxiang Liu, Xiaomu Shi, Ming-Hsien Tsai, Bow-Yaw Wang, and Bo-Yin Yang. 2019. Signed Cryptographic Program Verification with Typed CryptoLine. In Proceedings of the 2019 ACM SIGSAC Conference on Computer and Communications Security (CCS '19). ACM, New York, NY, USA, 1591-1606. DOI: https://doi.org/10.1145/3319535.3354199
- CryptoLine Verifier
- LLVM Dragonegg project
- good source code to learn how to write a gcc plugin
- GIMPLE documentation
- GCC plugin documentation