Taint Analysis for C [closed] - c

Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
We don’t allow questions seeking recommendations for books, tools, software libraries, and more. You can edit the question so it can be answered with facts and citations.
Closed 7 years ago.
Improve this question
I need to perform static taint analysis on my C program. I tried using Splint, no luck. Are there any other open source or freeware tools that are available to perform taint analysis?
If yes, can you please also mention about the way to use it or refer to any link. Appreciate your help. Thanks

Searching google I have found the following that support taint analysis for C programs:
http://code.google.com/p/tanalysis/
http://www.cs.umd.edu/~jfoster/cqual/ -- see their printf format string example

I haven't tried it, but taintgrind (for Valgrind) is probably where I would start. It's on GitHub and seems reasonably "alive".

You can use SAINT: a static taint analysis tool for C to perform static taint analysis on C programs.
The tool is still in development.

Related

tool to visualize C sourcecode [closed]

Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
We don’t allow questions seeking recommendations for books, tools, software libraries, and more. You can edit the question so it can be answered with facts and citations.
Closed 3 years ago.
Improve this question
It's always hard to understand new code,
especially if it is spread over many files with
hundreds of functions - like most linux kernel parts.
I think it is easier to understand the big picture if it is
visualized and if you can follow the links "with your eyes".
I am therefore looking for a tool to visualize C code,
which function is calling which one, where is the entry
and so on.
I would prefer a vscode plugin but it doesn't really matter.
Thank you in advance!
You might want to try these tools:
https://github.com/johnyf/pycflow2dot
Layout C call graphs from cflow using GraphViz dot
https://marketplace.visualstudio.com/items?itemName=joaompinto.vscode-graphviz
vscode extension for Graphviz
http://www.gson.org/egypt
egypt - a tool for making call graphs
https://kcachegrind.github.io
KCachegrind profiling tool Callgrind and the profile data visualization

Clean up a csv file in C [duplicate]

Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
We don’t allow questions seeking recommendations for books, tools, software libraries, and more. You can edit the question so it can be answered with facts and citations.
Closed 4 years ago.
Improve this question
Is there a library I can use to parse CSV files in C. I am on a Linux system. I know about this but it is in C++ and I need something in C. Don't want to go through the pain of debugging and testing if someone has already done it.
Take a look at libcsv, which is a CSV library written in ANSI C89.
There's a simple CSV parser library that's described in the excellent book The Practice of Programming by
Kernighan and Pike, and the source is available from the site linked to.
Parsing a CSV is no too much complicated, depend of the CSV structure, take a look at the strtok function.

C, malloc, free, and automated checking [closed]

Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
We don’t allow questions seeking recommendations for books, tools, software libraries, and more. You can edit the question so it can be answered with facts and citations.
Closed 8 years ago.
Improve this question
I have a very long convoluted piece of undocumented nightmare code that I have to use, full of mallocs and frees. I have already found a couple that are not matched correctly. Is there any automated source code examination tool that would help me analyse it?
There is a GNU tool for this: It is called GDB, stands for the Gnu DeBugger. You can use it to load a piece of code compiled with the appropriate debug symbols. Then you can use it to put in a temporary break and step through it manually to see exactly what is going on, and you can examine individual functions/subroutines.
For C language, following open-source STATIC CODE ANALYSER tool should be good start.
Cppcheck – Open-source tool that checks for several types of errors, including use of STL.
cpplint – An open-source tool that checks for compliance with Google's style guide for C++ coding.
Clang – An open-source compiler that includes a static analyzer.

command line interpreter in c [closed]

Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
We don’t allow questions seeking recommendations for books, tools, software libraries, and more. You can edit the question so it can be answered with facts and citations.
Closed 7 years ago.
Improve this question
I want to create a console "shell" for an embedded device.
anyone knows about an open-source implementation of such a thing in c ?
I need basic line parsing to commands & arguments.
Something similar to uboot - console shell will be great.
You may find usefull piece of codes in this shell a friend of mine is writting.
His aim is to learn issues regarding the shell coding, so this project should keep small and easily readable.
There is/was the book "Linux application development"
It implements a Shell as example. I found this quite convincing.

Parsing JSON using C? [closed]

Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
We don’t allow questions seeking recommendations for books, tools, software libraries, and more. You can edit the question so it can be answered with facts and citations.
Closed 7 years ago.
Improve this question
There are several C libraries available for parsing JSON, that will compile on Linux. Which library would you recommend?
Just to close the loop:
For the project in question, we ended up going with cJSON. We chose this one from the list of C libraries linked from json.org. Per the homepage, cJSON is:
An ultra-lightweight, portable, single-file, simple-as-can-be ANSI-C compliant JSON parser, under MIT license.
This happened to be a good fit for the particular project at hand, and the library worked out fine.
I've seen YAJL used with MGTwitterEngine (Mac/Cocoa), so I assume it is ok.
I haven't done much with it apart from compiling it and pointing MGTwitterEngine on Mac to its library/header files.
Check out the list at json.org. There are several C libraries for JSON.

Resources