SARIF output format

gitHubActionCreateSarif/goblintAnalysis.yml

@@ -0,0 +1,67 @@
+name: goblintAnalysis
+
+on:
+  push:
+  pull_request:
+
+jobs:
+  generate-Sarif:
+    env:
+      # ./analysisTarget/main.c needs to be replaced with ./analysisTarget/PATH_TO_MAIN
+      #the prefix  ./analysisTarget/ is removed in Goblint, so the location shows correctly in Github
+      MAIN_NAME: './analysisTarget/main.c'
+    strategy:
+      fail-fast: false
+      matrix:
+        os:
+          - ubuntu-latest
+        ocaml-compiler:
+          - 4.12.0 # matches opam lock file
+          # don't add any other because they won't be used
+
+    runs-on: ${{ matrix.os }}
+    permissions:
+       security-events: write
+    steps:
+        - name: Checkout Goblint repository
+          uses: actions/checkout@v2
+          with:
+              repository: AlexanderEichler/analyzer
+              #this path needs to be changed to the main branch
+              ref: integrationSarif
+        - name: PWD
+          run: pwd
+
+        - name: Set up OCaml ${{ matrix.ocaml-compiler }}
+          env:
+            # otherwise setup-ocaml pins non-locked dependencies
+            # https://github.com/ocaml/setup-ocaml/issues/166
+            OPAMLOCKED: locked
+          uses: ocaml/setup-ocaml@v2
+          with:
+            ocaml-compiler: ${{ matrix.ocaml-compiler }}
+        - name: PWD
+          run: pwd
+
+        - name: Install dependencies
+          run: |
+            pwd
+            opam install . --deps-only --locked
+        - name: Build
+          run: |
+            pwd
+            ./make.sh nat
+        - name: Checkout code
+          uses: actions/checkout@v2
+          with:
+              path: analysisTarget
+        - name: Generate the Sarif output
+          run: |
+              pwd
+              ls
+              ./goblint --sarif -o GitHubSarif.sarif  ${{env.MAIN_NAME}}
+        - name: Upload the generated Sarif File
+          uses: github/codeql-action/upload-sarif@v1
+          with:
+             # Path to SARIF file relative to the root of the repository
+            sarif_file: GitHubSarif.sarif

scripts/createSarifTestOutput.sh

@@ -0,0 +1,16 @@
+#!/bin/bash
+clear
+echo "Generating output of test runs of tests/regression/*"
+mkdir  "/home/alex/Documents/git/analyzer/testResults"
+dstpath=/home/alex/Documents/git/analyzer/testResults/
+for folder in "/home/alex/Documents/git/analyzer/tests/regression"/*; do
+	foldername=$(basename "$folder")
+	echo "$foldername"
+	mkdir "/home/alex/Documents/git/analyzer/testResults"/$foldername
+	for entry in "/home/alex/Documents/git/analyzer/tests/regression"/$foldername/*; do
+
+	  basename=$(basename "$entry")
+	  dst="${dstpath}"$foldername"/"${basename::-2}".sarif"
+	  ../goblint --sarif -o "$dst" "$entry" 
+	done
+done

src/framework/analyses.ml

@@ -213,6 +213,17 @@ struct
       else
         let f = BatIO.output_channel out in
         write_file f (get_string "outfile")
+     | "sarif" -> 
+      let open BatPrintf in
+
+
+      let write_file f fn =
+        printf "Writing sarif to temp. file: %s\n%!" fn;
+        Sarif.createSarifOutput f;
+
+      in
+      let f = BatIO.output_channel out in
+      write_file f (get_string "outfile")
     | "json" ->
       let open BatPrintf in
       let module SH = BatHashtbl.Make (Basetype.RawStrings) in

src/framework/control.ml

@@ -498,7 +498,7 @@ struct
             let cnt = Cilfacade.countLoc fn in
             uncalled_dead := !uncalled_dead + cnt;
             if get_bool "dbg.uncalled" then
-              M.warn ~loc ~category:Deadcode "Function \"%a\" will never be called: %dLoC" CilType.Fundec.pretty fn cnt
+              M.warn ~loc ~category:Deadcode "Function \'%a\' will never be called: %dLoC" CilType.Fundec.pretty fn cnt
         | _ -> ()
       in
       List.iter print_and_calculate_uncalled file.globals;