VAST-checker is a VAST-based tool that
scans C code for variants of the
Sequoia bug. It
is intended to be run after translating C code to
VAST's
hl MLIR dialect via the vast-front tool that ships with VAST. The main
purpose of the project is to demonstrate the capabilities of VAST and MLIR in
bug hunting and program analysis use cases.
wget -O - https://apt.llvm.org/llvm-snapshot.gpg.key | sudo apt-key add -
sudo add-apt-repository 'deb http://apt.llvm.org/jammy/ llvm-toolchain-jammy-16 main'
sudo apt-get update && sudo apt-get install -y --no-install-recommends \
clang-16 \
clang-tools-16 \
libclang-common-16-dev \
libclang-16-dev \
llvm-16 \
llvm-16-dev \
libllvm16 \
libmlir-16-dev \
mlir-16-tools \
lld-16git clone --recursive https://github.com/trailofbits/vast-checker.gitcmake -S vast-checker -B build --toolchain ./external/vast/cmake/lld.toolchain.cmake \
-D CMAKE_BUILD_TYPE=Release \
-D CMAKE_PREFIX_PATH=/usr/lib/llvm-16 \
-D CMAKE_C_COMPILER=clang-16 \
-D CMAKE_CXX_COMPILER=clang++-16cmake --build build -j$(nproc)./build/external/vast/tools/vast-front/vast-front \
-vast-emit-mlir=hl \
-o extract.hl.mlir \
vast-checker/sequoia/extract.c./build/vast-checker -sequoia extract.hl.mlir > /dev/null
See the CONTRIBUTING document.
vast-checker is licensed according to the Apache 2.0 license. VAST and vast-checker link against and uses Clang and LLVM APIs. Clang is also licensed under Apache 2.0, with LLVM exceptions.