fs-y2k38-checker is Clang Static Analyzer plugin which detects the Y2K38 bug caused by file-system with a 32 bit timestamp.
Clone the demo repository.
git clone https://github.com/cysec-lab/fs-y2k38-checker.gitCreate a new directory for building.
mkdir buildChange into the new directory.
cd buildRun CMake with the path to the LLVM source.
cmake -DCMAKE_EXPORT_COMPILE_COMMANDS=True \
-DLLVM_DIR=</path/to/LLVM/build>/lib/cmake/llvm/ \
../fs-y2k38-checkerRun make inside the build directory.
makeThis produces standalone tools called bin/print-functions and
bin/runstreamchecker. Loadable plugin variants of the analyses are also
produced inside lib/.
Note, building with a tool like ninja can be done by adding -G Ninja to
the cmake invocation and running ninja instead of make.
Both the AST plugins and clang static analyzer plugins can be run via standalone programs or via extra command line arguments to clang. The provided standalone variants can operate on individual files or on compilation databases, but compilation databases are somewhat easier to work with.
To load and run AST plugins dynamically in clang, you can use:
clang -fplugin=lib/libfunction-printer-plugin.so -c ../test/functions.cTo run the plugin via the standalone program:
bin/print-functions -- clang -c ../test/functions.cNote that this will require you to put the paths to all headers in the command
line (using -I) or they will not be found. It can be simpler to instead use
a compilation database:
bin/print-functions -p compile_commands.jsonTo load and run a static analyzer plugin dynamically in clang, use:
clang -fsyntax-only -fplugin=lib/libstreamchecker.so \
-Xclang -analyze -Xclang -analyzer-checker=demo.streamchecker \
../clang-plugins-demo/test/files.cTo run the plugin via the standalone program:
bin/runstreamchecker -- clang -c ../clang-plugins-demo/test/files.cAgain, missing headers are likely, and using a compilation database is the preferred and simplest way to work around this issue. Note that clang comes with scripts that can build a compilation database for an existing project.
| DONE | function | read/write (r/w) | st_atime / st_mtime / st_ctime (a/m/c) |
|---|---|---|---|
| ⬜ | stat() | r | a,m,c |
| ⬜ | lstat() | r | a,m,c |
| ⬜ | fstat() | r | a,m,c |
| ⬜ | utime() | w | a |
| ⬜ | utimes() | w | a |
| ⬜ | creat() | w | a |
| ⬜ | mknod() | w | a |
| ⬜ | pipe() | w | a |
| ⬜ | read() | w | a |
| ⬜ | utime() | w | m |
| ⬜ | utimes() | w | m |
| ⬜ | creat() | w | m |
| ⬜ | mknod() | w | m |
| ⬜ | pipe() | w | m |
| ⬜ | write() | w | m |
| ⬜ | ckmod() | w | c |
| ⬜ | chown() | w | c |
| ⬜ | creat() | w | c |
| ⬜ | link() | w | c |
| ⬜ | mkmod() | w | c |
| ⬜ | pipe() | w | c |
| ⬜ | unlink() | w | c |
| ⬜ | utime() | w | c |